Solved

How can I properly analyze a network, PCs, routers, switches and servers to detect the cause of slowdown

Posted on 2008-10-31
4
420 Views
Last Modified: 2010-04-21
My company is experiencing an odd problem. At 12:00pm EST every day the bandwidth nears 0 and all attempts at tracing network connections and bandwidth usage end with several  IP address distributors
so on a connection by connection or type of traffic basis there is no way to pinpoint specific software or even whether or not it comes from a server or workstation. Thus far the problem has been highly elusive.

Does anyone know of any tools that might help diagnose the problem from the workstation and server side?
Is it possible the problem may be introduced from/through a router, switch or printer ?
Zone Labs suggests a tool called Net Essentials by Tamosoft which allows a perpetual netstat. I was just wondering if there was maybe a special tool out there someone could recommend  or if anyone else has had a similar experience like this. The slowdown happens for about 30-60minutes each day.
Thus far this one has all the network people in my company stumped

Any help would be appreciated
0
Comment
Question by:Robert Silver
4 Comments
 
LVL 10

Expert Comment

by:ChopperCentury
ID: 22854220
Could be a system saturating your bandwidth (perhaps daily AV updates, Windows Updates, etc..). NetFlow is a free tool you can enable on your router and see who the top talkers are during that time frame. If not a bandwidth saturation but simply not available, I would call my ISP...they can setup a monitor and diagnose the problem.
I see no other reason why your link would simply decide to limit connectivity with no traffic.
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 22854499
You can set up something like NTOP on the inside. It will quickly pinpoint the 'top talkers' on the network at those specific times..
http://www.ntop.org

0
 
LVL 32

Accepted Solution

by:
Kamran Arshad earned 500 total points
ID: 22858441
Hi,

You should use protocol analyzer to diagnose for possible broadcast storms. Wireshark is one nice option for such bandwidth related problems.

www.wireshark.org

Incase you are new to wireshark, then

wiki.wireshark.org

Also I recommend the below steps;

1- Turn automatic updates of any sort OFF on your desktops and servers.
2- Check if your Anti-Virus have latest virus definitions and each machine is scanned for any virus.
3- Check all machines/servers for spywares, adwares and malwares.
0
 
LVL 2

Author Closing Comment

by:Robert Silver
ID: 31512210
It did not provide an ideal way to answer the question but a tool is a good start anyway.
0

Featured Post

6 Surprising Benefits of Threat Intelligence

All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

Join & Write a Comment

We've been using the Cisco/Linksys RV042 for years as: - an internet Gateway - a site-to-site VPN device - a leased line site-to-site subnet-to-subnet interface (And, here I'm assuming that any RV0xx behaves the same way as an RV042.  So that's …
PRTG Network Monitor lets you monitor your bandwidth usage, so you know who is using up your bandwidth, and what they're using it for.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now