Solved

determining network bottleneck

Posted on 2009-07-13
5
628 Views
Last Modified: 2012-05-07
I manage the network and systems in a secondary school.

There are two situations with slow response I need to investigate this summer:

1 access to internal Apache web server system from outside the school.
2 One outlying classroom has slow connection to applications, internet, email.

Can anyone recommend FREE and EASY to UNDERSTAND network analysis software to help determine if there is a bottleneck and if so where?

I'm no networking expert - I know what I have needed to know over the last 15 years.
0
Comment
Question by:ComputerFundi
5 Comments
 
LVL 32

Expert Comment

by:Kamran Arshad
ID: 24847731
Hi,

Wireshark is the most comprehensive packet analyzer available to date. It captures data and decodes the packet headers for diagnostics. You can download it for free.

www.wireshark.org

Incase you are new to wireshark;

wiki.wireshark.org

Also have a look at Laurell Chappell's lessons on wireshark university;

www.wiresharktraining.com
0
 
LVL 16

Expert Comment

by:Aaron Street
ID: 24847898
HAve to agree wireshark is the best tool by far. ITs puts a lot of other tools costs many thousands of pounds to shame!!

you will need to spend a few hours learning the syntex of filters but they are generaly very stright forward

ie.

ip.addr==192.168.2.6

will filter out all the traffic in the capture apart from the listed ipaddress. this you jsut type in a bar to enavble it, and there is plenty of help around.

you will need to be able to mirror ports, have a wire tap, or a hub to capture the data but it is all fully explained in the documentation.

giving your self a few hours to learn wire shark will pay its self back many times over in years to come. To trouble shoot both network and servers it is a god send!
0
 
LVL 5

Expert Comment

by:KETTANEH
ID: 24857282
you dont need a sniffer to find the bottlenecks
0
 
LVL 16

Accepted Solution

by:
Aaron Street earned 500 total points
ID: 24857350
nope you right you don't..

but it makes things a whole lot simpler.

they show up what is using a links, ie. who on the network is hammering a link with data making it slow for every one else.
errors on the link, such as a duplicate ip address causing a slow down,
in the case of a web server you can see things like traffic delay and server delay, client delay, so determin at what point the slowdown is occouring.

And most of these things can be done with out a sniffer such as wire shark, viewing webserver logs or looking at the counters on a switch to see network usage.... The lovely thing about a sniffier is you can see every thing from one centraly point. you can see what webpages are being visited. see how much bandwith jo bloggs is using. see the web server is taking 30seconds to respond to a request, see exactly how data is moving across the network and by what routes.

of course you need to use common sence. do you have a 10mbs link from the
outlaying classroom? what the network bandwith in to site to the webserve?

Kettanch is correct you dont need a sniffer to find bottle necks, however learn how to use one correctly and it can turn a 2+ hour serch for a problem, in to a 10min job.

They are not hard to learn, and as you use them you will pick up so much about networks and how they work that trouble shooting will just get simpler and simpler.
0
 

Author Closing Comment

by:ComputerFundi
ID: 31602848
Thanks - I'm in favour of anything that'll cut a 2 hour job down to 10 minutes!
0

Featured Post

What Security Threats Are You Missing?

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

Join & Write a Comment

This article is in response to a question (http://www.experts-exchange.com/Networking/Network_Management/Network_Analysis/Q_28230497.html) here at Experts Exchange. The Original Poster (OP) requires a utility that will accept a list of IP addresses …
The use of stolen credentials is a hot commodity this year allowing threat actors to move laterally within the network in order to avoid breach detection.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

758 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now