Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

Login is very slow - possible auditing problem?

Posted on 2008-06-19
9
925 Views
Last Modified: 2013-12-06
Logging into our AIX systems is sporadically very slow (ie - minute(s) instead of 2 seconds.  After debugging our login scripts, I've come to think that this is a network issue or related to auditing in some way.  I found this on IBMs site:
    IZ22120: POOR NFS COPY PERFORMANCE ON 6.1 WITH AUDITING ENABLED
but we're also seeing this on our AIX 5.3 systems, as well as our 6.1 systems.  
I'm looking for ideas on how to debug this issue.  Note that I am not a sys admin and therefore don't have access to root.  Sys admins are available but not dedicated to solving this problem.
0
Comment
Question by:sjpetrov
9 Comments
 
LVL 32

Expert Comment

by:Kamran Arshad
ID: 21821987
Hi,

Possibly you can start Wireshark and run it before logging. This will give you traces of any possible network errors.

www.wireshark.org

If you are new to WireShark:

wiki.wireshark.org
0
 
LVL 4

Accepted Solution

by:
robertfwoods earned 150 total points
ID: 21822051
It is very important that your network DNS is functioning properly.
The AIX machines must be configured properly to "know who they are".
At login time the process checks the host name against the DNS structure.
The timeout period you are seeing may be the DNS timeout.

Troubleshoot using
nslookup - -
Then enter the hostname of the server
Also enter the hostname.domainname.com
Time the return.

This structure is controlled by three files
/etc/hosts
/etc/resolv.conf
/etc/netsvc.conf

Read about them at:
http://publib.boulder.ibm.com/infocenter/pseries/v5r3/index.jsp 
In the Left panel, navigate to:

AIX documentation>Files reference>System Files>netsvc.conf
AIX documentation>Files reference>File Formats>hosts File...
AIX documentation>Files reference>File Formats>resolv.conf

0
 

Author Comment

by:sjpetrov
ID: 21822058
Unfortunately, it's on a classified network and analyzers such as this are forbidden.  Great idea, though.
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 
LVL 16

Expert Comment

by:Hanno Schröder
ID: 21825197
In most of these cases the host has problems resolving it's own name when
you log in.
Try resolving with
  telnet hostname
with hostname being the host's own name.

If this does take long (sometimes!), try adding the "official" host name (either
the short name ot the FQDN (hostname including full domain) into /etc/hosts
and try again.

If this solves your problem, you might haev a problem with name resolution.
Depending on your entry for "hosts = " in /etc/netsvc.conf you will have to
check
  a) DNS
      # nslookup hostname
  b) NIS (aka YP)
      # ypmatch hostname hosts
      or
      #ypcat hosts | grep hostname


0
 
LVL 62

Assisted Solution

by:gheist
gheist earned 100 total points
ID: 21842586
Most likely it is DNS problem - your host has no reverse PTR record.

on aix system do host (your_ip)

it waits same...
0
 
LVL 1

Expert Comment

by:duraisamy
ID: 21844265
Do u have any unwanted IP entry in /etc/resolv.conf file? If yes,  it will delay the login process.
Regarding the NFS, Incase you have any NFS volume with automatic mount, try to replace the hostname with IP address and try.
We had the same problem with login and fixed with above options.
0
 
LVL 16

Expert Comment

by:Hanno Schröder
ID: 21844774
we all will have to wait until the asker comes back after checking his DNS setup ...
0
 

Author Comment

by:sjpetrov
ID: 21845043
My Sys Admin has fixed the problem but isn't being forthcoming with what he did, though I know the reverse DNS was fixed, at a minimum.  Thanks for all of the great ideas!
0
 

Author Closing Comment

by:sjpetrov
ID: 31468744
Only problem was on my end, getting and giving info to my sys admin.  
0

Featured Post

Networking for the Cloud Era

Join Microsoft and Riverbed for a discussion and demonstration of enhancements to SteelConnect:
-One-click orchestration and cloud connectivity in Azure environments
-Tight integration of SD-WAN and WAN optimization capabilities
-Scalability and resiliency equal to a data center

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Solaris 10.  Nmap installation fails 2 71
Wireshark 4 76
unix example issues 18 98
Writing a UNIX script menu allowing for multiple options. 5 85
Java performance on Solaris - Managing CPUs There are various resource controls in operating system which directly/indirectly influence the performance of application. one of the most important resource controls is "CPU".   In a multithreaded…
Why Shell Scripting? Shell scripting is a powerful method of accessing UNIX systems and it is very flexible. Shell scripts are required when we want to execute a sequence of commands in Unix flavored operating systems. “Shell” is the command line i…
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

790 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question