Microsoft Message Analyzer


Microsoft Message Analyzer Usage Scenario Guidance

The installation of #MMA is easy in just a few steps .

Microsoft Message Analyzer is a new tool for capturing, displaying, and analyzing protocol messaging traffic. It is the successor to Microsoft Network Monitor 3.x and is a key component in the Protocol Engineering Framework (PEF) that was created by Microsoft for the improvement of protocol design, development, documentation, testing, and support. With Message Analyzer, you can capture live data or retrieve archived message collections from saved files such as traces and logs. Message Analyzer also enables you to display data in a default tree grid view and in selectable graphical views that employ grids, charts, and timeline visualizer components that provide high-level data summaries and other statistics.

More info : Microsoft Message Analyzer Usage Scenario Guidance

clip_image002 clip_image004 clip_image006

clip_image008 clip_image010

After the installation no Reboot is required , ready to start.


clip_image012 clip_image014 clip_image016

The Welcome screen is nice and direct links to the blog or forum is there or other help pages

clip_image018 clip_image020 clip_image022

Sample filters SMB filters are there if you want to capture the traffic extra options can be set

clip_image024 clip_image026 clip_image028


Firewall options are all there



clip_image032 clip_image034  imageimage


IntelliSense UI for filter creation – As one of the most requested features, Filter IntelliSense is now available for exploring protocol message hierarchies to find the fields you need to build filter expressions. The capabilities are vastly improved compared to Network Monitor, now displaying protocols, messages, fields, structures, properties, annotations and more!


· Quick filter – Quick filtering makes it easy to create a time window in which to view trace results!   Unlike BSV, it filters messages in memory after loading them instead of during import.  Just select the traces you want, adjust the time slider as needed, and you are done.  It’s that easy.


· Capture firewall discard events – This feature allows you to discover how the firewall is affecting network traffic.  New messages tell you when traffic is blocked and associated IDs point to the specific firewall rule responsible for dropping the message.

· OPN Viewer – You can right click on any field and select Go to Definition to view the field’s OPN definition.  This feature provides the equivalent functionality of the NPL Viewer in Network Monitor 3.4.


· Parsing REST Protocols – This feature enables you to diagnose and analyze RESTful web services.  RESTful web services are one of the fastest growing network areas.

· Performance improvements:

o Message Analyzer startup time has improved by over 50%.

o Sorting on selected column has improved by 60%.

o Grouping has improved by 30%

o Parsing after the initial load has improved by up to 15%, depending upon the protocol type.

Message Analyzer also presents exciting graphic viewer features that are still under development, but we would like to share them with you now to get your initial feedback:

· Gantt viewer – Do you need to see a bird’s eye view of your message traffic?  Message Analyzer now includes a highly customizable Gantt Viewer that provides easy-to-use navigation, zooming, and the ability to drill down into further details, as necessary.

Microsoft Message Analyzer Usage Scenario Guidance

· Console viewer provides an interactive command-line interface for filtering, sorting, grouping, and viewing messages collections.

Posted February 17, 2013 by Robert Smit in Microsoft Message Analyzer

Tagged with

  • Tag