Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Port 80 performance slow compared to port 8080

Posted on 2004-08-23
7
Medium Priority
?
1,304 Views
Last Modified: 2008-03-17
We have a web server sitting in a DMZ. Performance when connecting to the site from the outside world is fine, but it's remarkably sluggish when connecting from the inside. There are no firewall blocks set up and syslog shows no complaints. Also, our content filter is not touching this site. A sniff shows multiple lost segments and retransmits.

However, our dev site on the same server, going over port 8080, is lightning fast (from inside or out). The production site is fast on the web server itself, but is slow from another machine in the same DMZ. Strangely (to me, anyway) if I change the IIS settings for the production site to 8080 (from 80) it, too, is suddenly very fast from the inside.

There are no access rules affecting the box internally, and the internal DNS is set up properly.

Is there something with PIX that affects port 80 traffic that is not obvious at first glance? Or a bug in the IOS?
0
Comment
Question by:chabuhi
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
7 Comments
 
LVL 10

Expert Comment

by:avidya
ID: 11872762
Hi,

You didn't specify the versions you are using, but maybe this link will help you
http://www.cisco.com/pcgi-bin/search/search.pl
Search for: pix 80 8080 slow
0
 
LVL 1

Author Comment

by:chabuhi
ID: 11873072
I'm sorry -- left that out in my haste to go fatten myself up some more ...

Server is Win 2003

IIS 6.0

Cisco FWSM 1.2.3
0
 
LVL 10

Expert Comment

by:avidya
ID: 11873612

Maybe you can use the troubleshooting options:
http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/mod_icn/fwsm/fwsm_2_2/fwsm_cfg/monitor.htm
http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/mod_icn/fwsm/fwsm_2_2/fwsm_ref/df.pdf

From wath I read it looks like a problem with the settings in combination with the dmz.
Maybe you are better of reallocating your question in the Networking or security area?
0
 
LVL 1

Accepted Solution

by:
chabuhi earned 0 total points
ID: 11953721
Turns out there were a number of contributing factors -- filter ties to the old webserver, firmware out of date on the server NIC, etc. No points awarded as solution was discovered internally.
0

Featured Post

Looking for the Wi-Fi vendor that's right for you?

We know how difficult it can be to evaluate Wi-Fi vendors, so we created this helpful Wi-Fi Buyer's Guide to help you find the Wi-Fi vendor that's right for your business! Download the guide and get started on our checklist today!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Wikipedia defines 'Script Kiddies' in this informal way: "In hacker culture, a script kiddie, occasionally script bunny, skiddie, script kitty, script-running juvenile (SRJ), or similar, is a derogatory term used to describe those who use scripts or…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…
This is my first video review of Microsoft Bookings, I will be doing a part two with a bit more information, but wanted to get this out to you folks.

721 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question