Solved

ESXi and SFU 3.5

Posted on 2009-04-15
11
489 Views
Last Modified: 2013-12-19
We are running a Windows 2003 Standard server as a vm using VMware ESXi.  This server is running service for unix 3.5.  We have 2 NFS shares setup on the Windows server which exports to 2 other Unix servers.  The VM is setup using 4GBs of ram and 4 processor running at 2.4Ghz a piece.  We are noticing high CPU utiliaztion with the rpcxdr.sys driver which is used primarliy for SFU.  CPU will spike to over 90% and users notice slowness accessing server.  Is there anything I can do to decrease the overhead used by SFU and is there any known problems using SFU with VMWare ESXi?  Any ideas would be very helpful.  Thanks  
0
Comment
Question by:isgrot
  • 6
  • 5
11 Comments
 
LVL 61

Expert Comment

by:gheist
ID: 24149224
It is DNS server timeout - quite popular in common AD scenarios.
All the "transparent" "background" DNS synchronisations causes that.
I would suggest running NFS on Linux or BSD as it is intended to be.
0
 

Author Comment

by:isgrot
ID: 24149368
Unfortuanaltly, this is the setup we have and need to stick with for the time being.  Are you saying DNS lookups cause the CPU to spike?  Are there any work arounds to this problem?
0
 
LVL 61

Expert Comment

by:gheist
ID: 24149600
DNS cache in front of AD DNS server, running BIND on Linux (mandriva or ubuntu for easy setup in ESXi)
0
 

Author Comment

by:isgrot
ID: 24149673
So you think I should setup a Linux VM to NFS to Unix servers and have Windows pull files from there?
0
 
LVL 61

Expert Comment

by:gheist
ID: 24149761
You have to install DNS cache to cover AD DNS defect (or make DNS and Users synchronize nightly)
Basically Windows NFS is not getting machine name from IP and polls connection eating out CPU time.
0
Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

 

Author Comment

by:isgrot
ID: 24149792
What if I setup mounts in Unix to connect directly to IP and not hostname?
0
 
LVL 61

Expert Comment

by:gheist
ID: 24149904
It queries for name of client IP.
It is really minimal Linux installation, which saves the day when you reboot or break AD controller(s)
0
 

Author Comment

by:isgrot
ID: 24150459
This setup is just not visable for our network.  We are limited to what we can setup due to secuirty issues.  Are there any tweaks that can be made with SFU to reduce the amount of overhead it uses?  
0
 
LVL 61

Expert Comment

by:gheist
ID: 24150530
NO, no tweaks, maybe "Microsoft Update" knows better.
I cannot promise this is solution: http://www.microsoft.com/downloads/details.aspx?FamilyId=70ae23c2-3ae8-4ea6-ba8d-8ac7e4f82663&displaylang=en

You can actually install DNS service on host to cache AD DNS records.
0
 

Author Comment

by:isgrot
ID: 24150850
"You can actually install DNS service on host to cache AD DNS records."

This is interesting idea.  So I would install DNS on my Windows VM and set it to cache records?  How do you setup a DNS server to just cache for that host?  This cannot run full DNS becuase it will violate security policy here.  I know I sound like a broken record but we have to be careful what we install here.
0
 
LVL 61

Accepted Solution

by:
gheist earned 500 total points
ID: 24150900
Ask your security policemen to elaborate...
You just have to run DNS service with forwarders being AD masters...
0

Featured Post

The curse of the end user strikes again      

You’ve updated all your end user’s email signatures. Hooray! But guess what? They’re playing around with the HTML, adding stupid taglines and ruining the imagery. Find out how you can save your signatures from end users today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Comparing Internet speeds via throughput 3 39
Outlook keeps opened file locked 2 55
NAS with google authentication 6 62
Add ESXi to LDAP/AD = Scripted? 2 4
Veeam Backup & Replication has added a new integration – Veeam Backup for Microsoft Office 365.  In this blog, we will discuss how you can benefit from Office 365 email backup with the Veeam’s new product and try to shed some light on the needs and …
In this article, I will show you HOW TO: Suppress Configuration Issues and Warnings Alert displayed in Summary status for ESXi 6.5 after enabling SSH or ESXi Shell.
Teach the user how to configure vSphere clusters to support the VMware FT feature Open vSphere Web Client: Verify vSphere HA is enabled: Verify netowrking for vMotion and FT Logging is in place or create it: Turn On FT for a virtual machine: Verify …
Teach the user how to install log collectors and how to configure ESXi 5.5 for remote logging Open console session and mount vCenter Server installer: Install vSphere Core Dump Collector: Install vSphere Syslog Collector: Open vSphere Client: Config…

920 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now