Solved

IIS Website VERY slow when accessed via DNS name; fast when accessed via IP

Posted on 2009-06-30
6
2,341 Views
Last Modified: 2013-12-14
I have a website that is running on IIS 6. The site is built in Visual Studio 2008 using the Crystal Reports plug-in.

When I access it via the DNS A-record, it runs at least 10 time slower than when I access it via the IP address.

When I resolve the A-record with nslookup or something, it resolves quickly, so it is not actually a DNS resolution problem.

I am completely stumped as to what could be causing this. Any ideas?

Thanks!
0
Comment
Question by:netmergence
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
6 Comments
 
LVL 38

Expert Comment

by:ChiefIT
ID: 24751967
Slow on all computers or just one?
0
 
LVL 1

Expert Comment

by:Colin_A_Moulder
ID: 24752716
Do you have more than one IP address? Do you have more than one interface? If so, what interface\IP is in DNS?
 
0
 

Author Comment

by:netmergence
ID: 24828327
In response to the first comment, it is slow everywhere outside of the building. I do not have login access to any other internal machines, so I cannot test it from within their LAN.

The server technically has two IP addresses, because it has it's own private IP, then it has the public IP where 80 and 443 are just forwarded to it. However, the server itself only has the one, private IP assigned to its interface. There is just that one interface, and each IP address is only registerred in its corresponding DNS. (Internal DNS resolves the internal IP; external DNS shows the external IP.)

0
Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

 

Accepted Solution

by:
netmergence earned 0 total points
ID: 24828424
I figured it out...

It was the "Integrated Windows Authentication" that was causing problems outside the building. I don't fully understand why it would work, but just be very, very slow, but as soon as I disabled Integrated Authentication and instead enabled Basic Authentication, it started working at the normal speed.

How on earth authentication is tied to the DNS name vs. the IP address is beyond me. I'll award the poitns to anyone who can come up with a plausible explination!
0
 
LVL 38

Expert Comment

by:ChiefIT
ID: 24870266
Will you close the question and refund yourself points by accepting

07/10/09 02:13 PM, ID: 24828424

as your answer.

I am glad to see this is fixed for you. I am now reviewing IWA to see the ramifications of it.
0
 
LVL 38

Expert Comment

by:ChiefIT
ID: 24870286
I also wanted to tell you from what I read, by disabling IWA, you are going to NTLM and LM hash authentication. This is an outdated protocol. We are now on NTLMv5 (Kerberos). So, I can't figure out for the life of me, why enabling the older authentication protocols works best for you.

0

Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Short answer to this question: there is no effective WiFi manager in iOS devices as seen in Windows WiFi or Macbook OSx WiFi management, but this article will try and provide some amicable solutions to better suite your needs.
When you try to share a printer , you may receive one of the following error messages. Error message when you use the Add Printer Wizard to share a printer: Windows could not share your printer. Operation could not be completed (Error 0x000006…
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question