Link to home
Create AccountLog in
Avatar of akhalighi
akhalighiFlag for Canada

asked on

File copy is very slow over VPN link

We just installed a 10MB MPLS link to our data center and I can access my servers ; RDP works perfectly fine and I have no issues with it.

Pings are coming back to fast , the problem is that file transfer is awefully slow . even a 5 MB file takes about 15 min. and most of the times
it fails.

windows servers on data center are 2008 64-bit and my machines here are all windows ( 32-bit) . it seems like a configuration in OS since RDP and other stuff are working fine , any ideas ?
Avatar of digitap
digitap
Flag of United States of America image

my initial thought is to try to disable smb 2.0 on your windows 2008 server.  i have a link for how to disable that but i'm mobile now so only can offer the suggestion.
Avatar of akhalighi

ASKER

Thanks , I disabled smb 2.0 but it didn't help .
ASKER CERTIFIED SOLUTION
Avatar of digitap
digitap
Flag of United States of America image

Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
SOLUTION
Avatar of giltjr
giltjr
Flag of United States of America image

Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
SOLUTION
Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
@ giltjt : ping -f -l 1472 replies back fine :

Pinging 10.0.1.100 with 1472 bytes of data:
Reply from 10.0.1.100: bytes=1472 time=8ms TTL=125
Reply from 10.0.1.100: bytes=1472 time=8ms TTL=125
Reply from 10.0.1.100: bytes=1472 time=8ms TTL=125
Reply from 10.0.1.100: bytes=1472 time=8ms TTL=125

I will check interface speed and MTU size with provider and update the thread. Thanks everybody.



Well since that worked, you are not having a MTU issue, unless something is trying to use a MTU bigger than 1500, which is the standard Ethernet MTU.

Still thinking ....
we have QOS setting on that link . would that affect anything ? however right now tehre is no traffic of anytype running across the link . it's only me that is trying to configure servers.
QoS would guarantee bandwidth to certain types of traffic and if those policies are not including file copy, then it's possible this is preventing your traffic from traversing the VPN.  can you access the QoS policies and post them here?

I checked two MPLS routers in our end and datacenter end ,

Our end : interfaces are 10 MB full duplex
Datacenter end : interfaces are 100 MB full duplex

Could this be the root cause ?

@ digitap : here is QOS config ... thanks for your helps.

class-map match-any AF2_WAN
  match qos-group 3
class-map match-any AF3_WAN
  match qos-group 4
class-map match-any CUSTOMER_AF2
  match access-group name CUSTOMER_AF2
class-map match-any CUSTOMER_AF3
  match access-group name CUSTOMER_AF3
!
!
policy-map WAN_IN_MEA
  class CUSTOMER_AF3
   set qos-group 4
  class CUSTOMER_AF2
   set qos-group 3
  class class-default
   set qos-group 1
policy-map CUSTOMER_IN_BASIC
  class CUSTOMER_AF3
   set qos-group 4
   set dscp af41
   set cos 4
  class CUSTOMER_AF2
   set qos-group 3
   set dscp af31
   set cos 3
  class class-default
   set qos-group 1
   set dscp af11
   set cos 1
policy-map BASIC
  class AF3_WAN
    bandwidth remaining percent 66
    queue-limit 272
    queue-limit precedence  4 150
  class AF2_WAN
    bandwidth remaining percent 21
    queue-limit 150
  class class-default
    bandwidth remaining percent 13
    queue-limit 150
if there is a speed/duplex mismatch, then there's a possibility this will allow packets to drop causing slow connectivity.  this is typically seen between firewall and ISP hardware or, in your case, your router and MPLS router.  the hardware i use, sonicwall, is typically set to auto for speed/duplex.  sometimes, i have to set this to 10mb/full or 100mb/half or whatever combo works, when connecting to ISP hardware or mpls router.

sigh...i don't speak Cisco, sorry.  i see the bandwidth allocations, but i don't know what services it's referring to.
You need to look at the access-lists to see which addresses/protocols(ports) are put into which class.
The issue was the speed setting on  MPLS router interface.
glad we could help and thanks for the points!