Slow ping rate caused by SBS2003 server

Posted on 2011-03-03
Last Modified: 2012-05-11
We have a client that has broadband issues. I've narrowed this down to being caused by their server but I just can't figure out what it is that's doing it.

Basically, from any workstation, a constant ping to the outside world will return at about 400 - 500ms. Ping the server and it replies in <1ms.

However, physically unplug the server from the switch and the ping to the outside world immediately falls to around 25ms.

If I get the server to ping itself then I get a <1ms reply.
If I ping the server from a workstation I get a <1ms reply.
If I ping a workstation from the server I get a <1ms reply.

I've been running a Network Traffic Monitor program on a different server (Win 2003 standard) but I'm not seeing massive amounts of traffic from anything. It makes me think it's not a network that's simply flooded with traffic.

I've spent a few hours on site with this today. I've been going through the services list with a fine tooth comb and I stopped anything that I didn't recognise. At one point, the ping rate fell just after stopping a Kaseya agent service. I thought I'd found the problem so I uninstalled the Kaseya agent and rebooted. The high ping rate returned after the reboot and I just find anything that's causing it.

I'm guessing that I ended a process somewhere that made something else crash. I'm not sure what though.

I'm now working on this remotely this evening in the hope that I can resolve it in the next hour or so (bedtime soon!) and they'll have a working system tomorrow.

Any ideas?
Question by:edz_pgt
  • 4
  • 2

Expert Comment

ID: 35031454
Check the speed duplex of the card going to the outside. 1 GB 100 mb or 10 mb

Author Comment

ID: 35031865
There's only one card - it's not multi-homed.

The bit that gets me is that disconnecting the server from the network suddenly lets the network behave properly and ping times reduce in a big way.

It's as if there's something running on the server, broadcasting a flood to the network and slowing everything down. Trouble is, I can't see any traffic with my monitoring program (Ntop/Winpcap).
LVL 35

Expert Comment

by:Cris Hanna
ID: 35032250
download and run the sbs best practice advisor (bpa)   fix everything it finds...there are likely settings on the Server NIC that need to be disabled.
Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.


Author Comment

ID: 35034510
I've done the fixes that the BPA advises but no change so far. :(
LVL 35

Expert Comment

by:Cris Hanna
ID: 35035522
on the server run the following and post the results

ipconfig /all

Accepted Solution

edz_pgt earned 0 total points
ID: 35168443
Turned out to be a large (15MB) email being rejected and then resent to a email account. Finally sorted it by blocking port 25 outbound on the router. This made the email visible in the Exchange queue so that i could delete it. It seems that email that is already in the process of being sent does not appear in the queue. Blocking the port prevented it from beginning to send. Problem solved.

Author Closing Comment

ID: 35196725
Thanks for your suggestions anyway. I can't really justify awarding anything as a solution but possibly useful suggestions for others to find.

Featured Post

Simplifying Server Workload Migrations

This use case outlines the migration challenges that organizations face and how the Acronis AnyData Engine supports physical-to-physical (P2P), physical-to-virtual (P2V), virtual to physical (V2P), and cross-virtual (V2V) migration scenarios to address these challenges.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
After creating this article (, I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Internet Business Fax to Email Made Easy - With  eFax Corporate (, you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now