Slow performance from Domain Controller

-

good morning,

i'm having problem on 1 of our domain controllers in forest.  there no errors in log.  issue if try add new user, takes 10 seconds pop box add user , same thing trying add user group.  it's on first domain controller in forest.

my setup

root domain

dc1-windows server 2008 r2 (forest level 2003)-problem child

dc2-windows server 2008 r2

child domain

dc1-windows server 2008 r2 (forest level 2003

dc2-windows server 2008 r2

old domain trusted bi-directional child domain

dc1-windows server 2003 (forest level 2003)

dc2-windows server 2003

i don't have problems can see in application/system/dns logs.  here something.  created 2 test dc's test upgrading forest level behind scenes.  built 2 vm's , promoted them dc's.  cut off network adapters outside , had test vm(windows 7) test upgrading forest level without hits network.  trashed these machines.  deleting entries out of dns, , sites , services.  there else missing? 

any commands point me in right direction?  don't understand why second dc on root domain work fine first 1 slow.  if dns wouldn't slow performance issue on both? 

any apperciated,

tim

there multiple reasons slow performance dns misconfig,nic binding issue,server performance bottleneck,etc.

ensure following dns setting on dc:
1. each dc / dns server points private ip address primary dns server , other remote/local dns servers secondary in tcp/ip properties.
2. each dc has 1 ip address , single network adapter enabled.
3. contact isp , valid dns ips them , add in forwarders, not set public dns server in tcp/ip setting of dc.
4.make sure ipv6 configured dynamic (automatically).
5. once done, run "ipconfig /flushdns & ipconfig /registerdns", restart dns , netlogon service each dc.
not put private dns ip addresses in forwarder list.
6.assigning static ip address dc if ip address assigned dhcp server dc.it not recommended.

--check nic binding the nic online , has ip details should in first order.if multiple nic present disabled unrequired nic.http://theregime.wordpress.com/2008/03/04/how-to-setview-the-nic-bind-order-in-windows/

--also, disable local windows firewall service, default enabled in vista/windows 2008 , above.
disable windows firewall: http://technet.microsoft.com/en-us/library/cc766337(ws.10).aspx

--installed latest sp , hotfix on server if not installed.exclude sysvol,ntds/ntfrs folder av scan.

--run hardware diagnosis to check health of server,you can contact h/w vendor same.

if still issue persist post ipconfig /all,dcdiag /q , repadmin /replsum output check health of problematic dc.

hope helps

best regards,

sandesh dubey.

mcse|mcsa:messaging|mcts|mcitp:enterprise adminitrator | blog

disclaimer: posting provided "as is" no warranties or guarantees , , confers no rights.



Windows Server  >  Directory Services



Comments

Post a Comment

Popular posts from this blog

DCOM received error "2147746132" from...

-
hi everybody, i have dc (my windows essentials 2012 server) , windows 2012 server in network.  the windows server 2012 inside domain. on server, got "non stopping" error says in event logs : ===> dcom received error "2147746132" fromd computer xxxx(my dc computer) while server trying activation : {6df8cb71-153b-4c66-8fc4-e59301b8011b} it never stops, got 11000+ new events :s i found : http://support.microsoft.com/kb/971153/fr i'm not sure should ? does got idea ? matthieu. hi, please try solution mentioned in below link: http://www.eventid.net/display-eventid-10006-source-dcom-eventno-272-phase-1.htm regards, cicely Windows Server  >  Windows Server 2012 General ...
Read more

DFSR RPC replication errors 5014 1726 with large files over VPN

-
i have similar issue ryan in reply http://social.technet.microsoft.com/forums/en-gb/winserverfiles/thread/6d49fd71-2236-4fcb-9763-bf1c03459ee8 cited below. start additional thread here because other 1 related windows server 2003 (r2) , i'm (as ryan) on windows 2008 r2 x64. here first of post ryan: i've got same problem on 2008 r2 dfsr server.  the spoke server has 2x intel 1 gigb on-board nics in active/standby teamed configuration. the hub server (running on vmware using 10gbit vmnet3 nic driver) logs dfsr event 5014 every 2-15mins (usually around 5mins). the spoke server not log event. replication running slowly. initial sync/replication. had re-configure replication folder because of lost dfsr database on spoke server.  could teamed nic on spoke causing error on host? a note: last time did initial sync on folder processed @ 30k files , hour. time it's doing few hundred and hour. another note: hub server has several replication groups , conne...
Read more

ADFS 3.0 Event ID 4625 | An Error occurred During Logon | Status: 0xC000035B

-
we're getting these random errors on our adfs security logs, how can track down generating them? an account failed log on. subject: security id: null sid account name: - account domain: - logon id: 0x0 logon type: 3 account logon failed: security id: null sid account name: account domain: failure information: failure reason: an error occured during logon. status: 0xc000035b sub status: 0x0 process information: caller process id: 0x0 caller process name: - network information: workstation name: - source network address: - source port: - detailed authentication information: logon process: kerberos authentication package: kerberos transited services: - package name (ntlm only): - key length: 0 event generated when logon request fails. generated on computer access attempted. subject fields indicate account on local system requested logon. commonly service such server service, or local process such ...
Read more