Take a network trace from SBA without wireshark

SBA is a difficult animal, you do not want to install extra software on it. If you still need to take network trace you can create a following cmd file:

netsh trace start persistent=yes capture=yes maxsize=2048 tracefile=c:\temp\nettrace.etl

timeout 60

netsh trace stop


and run is as administrator

Then open in Microsoft Message Analyser and save as - export as netmon .cap file.

Then you can read it with Wireshark if you want, as you can see it is not possible without Wireshark :)

or use https://github.com/microsoft/etl2pcapng