Solved

IIS Website VERY slow when accessed via DNS name; fast when accessed via IP

Posted on 2009-06-30
6
2,279 Views
Last Modified: 2013-12-14
I have a website that is running on IIS 6. The site is built in Visual Studio 2008 using the Crystal Reports plug-in.

When I access it via the DNS A-record, it runs at least 10 time slower than when I access it via the IP address.

When I resolve the A-record with nslookup or something, it resolves quickly, so it is not actually a DNS resolution problem.

I am completely stumped as to what could be causing this. Any ideas?

Thanks!
0
Comment
Question by:netmergence
  • 3
  • 2
6 Comments
 
LVL 38

Expert Comment

by:ChiefIT
ID: 24751967
Slow on all computers or just one?
0
 
LVL 1

Expert Comment

by:Colin_A_Moulder
ID: 24752716
Do you have more than one IP address? Do you have more than one interface? If so, what interface\IP is in DNS?
 
0
 

Author Comment

by:netmergence
ID: 24828327
In response to the first comment, it is slow everywhere outside of the building. I do not have login access to any other internal machines, so I cannot test it from within their LAN.

The server technically has two IP addresses, because it has it's own private IP, then it has the public IP where 80 and 443 are just forwarded to it. However, the server itself only has the one, private IP assigned to its interface. There is just that one interface, and each IP address is only registerred in its corresponding DNS. (Internal DNS resolves the internal IP; external DNS shows the external IP.)

0
How Do You Stack Up Against Your Peers?

With today’s modern enterprise so dependent on digital infrastructures, the impact of major incidents has increased dramatically. Grab the report now to gain insight into how your organization ranks against your peers and learn best-in-class strategies to resolve incidents.

 

Accepted Solution

by:
netmergence earned 0 total points
ID: 24828424
I figured it out...

It was the "Integrated Windows Authentication" that was causing problems outside the building. I don't fully understand why it would work, but just be very, very slow, but as soon as I disabled Integrated Authentication and instead enabled Basic Authentication, it started working at the normal speed.

How on earth authentication is tied to the DNS name vs. the IP address is beyond me. I'll award the poitns to anyone who can come up with a plausible explination!
0
 
LVL 38

Expert Comment

by:ChiefIT
ID: 24870266
Will you close the question and refund yourself points by accepting

07/10/09 02:13 PM, ID: 24828424

as your answer.

I am glad to see this is fixed for you. I am now reviewing IWA to see the ramifications of it.
0
 
LVL 38

Expert Comment

by:ChiefIT
ID: 24870286
I also wanted to tell you from what I read, by disabling IWA, you are going to NTLM and LM hash authentication. This is an outdated protocol. We are now on NTLMv5 (Kerberos). So, I can't figure out for the life of me, why enabling the older authentication protocols works best for you.

0

Featured Post

Resolve Critical IT Incidents Fast

If your data, services or processes become compromised, your organization can suffer damage in just minutes and how fast you communicate during a major IT incident is everything. Learn how to immediately identify incidents & best practices to resolve them quickly and effectively.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

#Citrix #Citrix Netscaler #HTTP Compression #Load Balance
Today, still in the boom of Apple, PC's and products, nearly 50% of the computer users use Windows as graphical operating systems. If you are among those users who love windows, but are grappling to keep the system's hard drive optimized, then you s…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

856 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question