Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium


UDP vs TCP traffic load?

Posted on 2008-11-18
Medium Priority
Last Modified: 2012-05-05
I know there is some more overhead with using TCP over UDP but how much exactly? I ask because we are switching Kerberos requests from UDP to TCP on our Windows Server 2003 Domain Controllers and this came up because the traffic is going through a VPN tunnel that we suspect are fragmenting UDP traffic already (no proof)

Server 2008 already comes with this reg change switching UDP to TCP by dfeault. So I would assume increased traffic/fragmentation will have no affect.

What do you guy's/Gals think?
Question by:snyderkv
  • 2

Accepted Solution

th3w01f earned 2000 total points
ID: 22991996
The TCP header is 20Bytes and UDP is 8 bytes.  The error detection / congestion control aspects of TCP will most likely result in an increase in traffic but it should be negligible.  What size are the pipes and how many users are there?

Are you having problems with UDP fragmentation that are leading to the change to TCP?

Author Comment

ID: 23025150
Well supposedly thats why the remote VPN users want us to do the change but they have yet to see any issues or event ID errors that would justify wasting even 10 seconds trying to make the change.

We don't know how many users are going through the VPN. It's only for replication traffic of DNS, AD and FSMO roles exc. 2000 users on each side of the VPN. Users authenticate locally though on each side. Two different sites.

Assisted Solution

th3w01f earned 2000 total points
ID: 23045523
I'm with you; if there is no compelling reason to make the change I wouldn't do it.  If you have to make the change I doubt the additional overhead will have much of an impact unless your links are extremely small.

Featured Post

Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

OpenVPN is a great open source VPN server that is capable of providing quick and easy VPN access to your network on the cheap.  By default the software is configured to allow open access to your network.  But what if you want to restrict users to on…
Configuring network clients can be a chore, especially if there are a large number of them or a lot of itinerant users.  DHCP dynamically manages this process, much to the relief of users and administrators alike!
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Suggested Courses

581 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question