mirror
/
WSL
mirror of https://github.com/microsoft/WSL
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

collect tcpdump programatically

This commit is contained in:
Catalin-Emil Fetoiu 2023-10-19 14:16:25 -07:00
parent e1fe99e0b4
commit 28e5bbe487
2 changed files with 32 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

19
CONTRIBUTING.md
View File

@ -119,12 +119,23 @@ Availability Capabilities CapabilityDescriptions
#### Collect WSL logs for networking issues
To collect WSL networking logs, download and execute [collect-wsl-logs.ps1](https://github.com/Microsoft/WSL/blob/master/diagnostics/collect-networking-logs.ps1) in an administrative powershell prompt:
Install tcpdump in your WSL distribution using the following commands.
Note: This will not work if WSL has Internet connectivity issues.
```
Invoke-WebRequest -UseBasicParsing "https://raw.githubusercontent.com/microsoft/WSL/master/diagnostics/collect-networking-logs.ps1" -OutFile collect-networking-logs.ps1
Set-ExecutionPolicy Bypass -Scope Process -Force
.\collect-networking-logs.ps1
# sudo apt-get update
# sudo apt-get -y install tcpdump
```
To collect WSL networking logs, do the following steps in an administrative powershell prompt:
```
$ Invoke-WebRequest 'https://github.com/microsoft/WSL/archive/refs/heads/master.zip' -OutFile .\wsl.zip
$ Expand-Archive .\wsl.zip .\
$ Remove-Item .\wsl.zip
$ cd .\WSL-master\diagnostics
$ Set-ExecutionPolicy Bypass -Scope Process -Force
$ .\collect-networking-logs.ps1
```
The script will output the path of the log file once done.

17
diagnostics/collect-networking-logs.ps1
View File

@ -56,6 +56,14 @@ pktmon start -c --flags 0x1A --file-name "$folder/pktmon.etl" | out-null
# Start WFP capture
netsh wfp capture start file="$folder/wfpdiag.cab"
# Start tcpdump. Using a try/catch as tcpdump might not be installed
$tcpdumpProcess = $null
try
{
$tcpdumpProcess = Start-Process wsl.exe -ArgumentList "-u root /bin/bash -c 'tcpdump -n -i any > $folder/tcpdump.log'" -PassThru
}
catch {}
try
{
Write-Host -NoNewLine -ForegroundColor Green "Log collection is running. Please reproduce the problem and press any key to save the logs."
@ -99,6 +107,15 @@ try
}
finally
{
try
{
if ($tcpdumpProcess -ne $null)
{
Stop-Process -InputObject $tcpdumpProcess
}
}
catch {}
netsh wfp capture stop
pktmon stop | out-null
wpr.exe -stop $folder/logs.etl 2>&1 >> $wprOutputLog