In linux you can capture the network package used by tcpdump sudo install tcpdmp,if you use debian .you can install it with apt install tcpdump 2. capture the newtork package used next command ,the network_interface_name can find by ip command. sudo tcpdump -i netwrok_interface_name -w capture_name.pcap 3. download the capture_name.pcap and opened it with wireshark.
After National Day, two server that install windows server 2016 will shut down every two hours. first,i doubt that the tempurate is too high so the server shut down itself to protect it.so i open the air conditioner. but it is shut down like i don't open the air conditioner. so i check the system log through system event viewer. in the system event viewer.i find the realy reason. the server shutdown because windows 2016 server is evalution version and it is out of date. so it shut down every a period of time. so i need to change it to stand version. the follow step is how to resolve it. open the command line , need administrator privileges. Run the next command DISM /online /Get-CurrentEdition DISM /online /Set-Edition:ServerStandard /ProductKey:WC2BQ-8NRM3-FDDYY-2BFGV-KHKQY /AcceptEula when the command run complete . after restart it .the version will change to stand. then you can active the windows 2016 server too otherwise the evaluation version can not active.
