Slow web interface browsing from workstations, but from servers it is normal
Hi guys,
We are experiencing the strangest problem.
When browsing to the web interface of devices(switches and printers) on our desktops using IE/Firefox/Chrome from our workstations it is EXTREMELY slow, but when doing the same from our Servers it is normal speed.
Both virtual as well as physical servers access the devices normally.
All devices are using the same switches.
OS on workstations are XP Pro/W7 machines, all up to date. Getting the slow sluggish speeds on both OS's when web interface browsing.
Server OS's are Windows 2003.
Firewalls are disabled on internal side of the network on all machines/servers.
Problem is general web interface specific, ie switches and printers(so not all the same manufacturer).
Could it be some GP setting which differs on the servers compared to the workstations?
Any suggestions would be much appreciated.
We are experiencing the strangest problem.
When browsing to the web interface of devices(switches and printers) on our desktops using IE/Firefox/Chrome from our workstations it is EXTREMELY slow, but when doing the same from our Servers it is normal speed.
Both virtual as well as physical servers access the devices normally.
All devices are using the same switches.
OS on workstations are XP Pro/W7 machines, all up to date. Getting the slow sluggish speeds on both OS's when web interface browsing.
Server OS's are Windows 2003.
Firewalls are disabled on internal side of the network on all machines/servers.
Problem is general web interface specific, ie switches and printers(so not all the same manufacturer).
Could it be some GP setting which differs on the servers compared to the workstations?
Any suggestions would be much appreciated.
ASKER
Thank you for the reply.
Both the workstations, and the servers that are able to browse the interfaces, use the same DNS settings.
Also, even after totally removing AV off of a workstation, the browsing still slow from workstations.
Such a strange issue, and almost certainly just a small setting that will resolve it!
Compared settings on network connections between workstations and servers, and disabled the "QoS Packet Scheduler" on the workstations, as this isnt on the server connections, but also no joy.
Grrr.
Both the workstations, and the servers that are able to browse the interfaces, use the same DNS settings.
Also, even after totally removing AV off of a workstation, the browsing still slow from workstations.
Such a strange issue, and almost certainly just a small setting that will resolve it!
Compared settings on network connections between workstations and servers, and disabled the "QoS Packet Scheduler" on the workstations, as this isnt on the server connections, but also no joy.
Grrr.
If QoS were involved it would likely be at the gateway router or switches, not at the client end.
Any proxy setting being pushed on clients?
What if you take a PC outside the network to browse?
How big is this network?
Internet connection details?
Firewall or filter details?
SBS?
Any proxy setting being pushed on clients?
What if you take a PC outside the network to browse?
How big is this network?
Internet connection details?
Firewall or filter details?
SBS?
ASKER
No proxy being used.
Web content is filtered through an offsite but managed from our end "Sonicwall" solution, however both workstations and servers are governed by same restrictions etc...
Tested on an undomained machine and connection browsing to web interfaces is normal.
200odd workstations/20 servers
Interenet connection 20mb leased line, however the issue is browsing to the interfaces of devices within our network.
Windows 2003 Standard all fully patched etc...
Web content is filtered through an offsite but managed from our end "Sonicwall" solution, however both workstations and servers are governed by same restrictions etc...
Tested on an undomained machine and connection browsing to web interfaces is normal.
200odd workstations/20 servers
Interenet connection 20mb leased line, however the issue is browsing to the interfaces of devices within our network.
Windows 2003 Standard all fully patched etc...
When you try to connect from pc's - are you using a url or ip address for the remote device?
ping test times different between server or pc?
DNS set the same on servers and pc's?
ping test times different between server or pc?
DNS set the same on servers and pc's?
ASKER
I am using the IP address to browse to the devices.
They are basically devices on our network, ie all our printers, and our main switch.
Ping times are 1ms from both servers and workstations(all on same local network).
DNS settings are the same on the servers, as well as the workstations.
Very strange, actual network speed appears fine, it is just when going to the web browser interface of the devices that it is slow from workstations.
They are basically devices on our network, ie all our printers, and our main switch.
Ping times are 1ms from both servers and workstations(all on same local network).
DNS settings are the same on the servers, as well as the workstations.
Very strange, actual network speed appears fine, it is just when going to the web browser interface of the devices that it is slow from workstations.
Very strange!!!! - have you tried a different browser? (e.g mozilla instead of IE?)
also might be worth doing a netsh winsock reset from a command prompt.
I would also compare internet options on pc vs server - specifically connections tab- lan settings to see if any difference.
also might be worth doing a netsh winsock reset from a command prompt.
I would also compare internet options on pc vs server - specifically connections tab- lan settings to see if any difference.
ASKER
Yup, treid with IE, Firefox and Chrome, all showing the same sluggishness from the domained workstations...
I will try various itnernet options, it may well be something in GP that is overiding a certain setting on the pc's, because when I perform the same test on an undomained pc, I can browse the devices fine.
I'll also try the winsock reset.
I will try various itnernet options, it may well be something in GP that is overiding a certain setting on the pc's, because when I perform the same test on an undomained pc, I can browse the devices fine.
I'll also try the winsock reset.
Suggest you try a traceroute to one of these devices from a slow pc, and then a normal server. Compare the two, looking extra hops. Also suggest you check settings for gateway on these devices with issues. Is it correct?
If you telnet to the same device (if it supports it), is that slow or normal?
If you telnet to the same device (if it supports it), is that slow or normal?
I would guess it's got to be GP - that would also explain why the servers are ok and it's only "user" pc's that are affected but non domained are fine.
ASKER
@ carlmd
Tracert is the same from both the 'fast' servers, and the 'slow' domained pc's. All 1 hop and same response times
Telnet from a 'slow' pc was actual instant. So no problems there.
Gateway on the devices appear to be set correctly, although because the servers and undomained pc's can web browse to them fine, the issue appears to be more with 'domained' workstations.
@davelongman
Any idea where to start my search? It will be like searching for a needle in a stack of needles ;-)
Tracert is the same from both the 'fast' servers, and the 'slow' domained pc's. All 1 hop and same response times
Telnet from a 'slow' pc was actual instant. So no problems there.
Gateway on the devices appear to be set correctly, although because the servers and undomained pc's can web browse to them fine, the issue appears to be more with 'domained' workstations.
@davelongman
Any idea where to start my search? It will be like searching for a needle in a stack of needles ;-)
Agreed - it can be daunting!!! - logic says that your network settings are fine (given your ping responses and tracert and instant telnet) therefore it's got to be browser specific settings. I would start with netsh winsock reset and if that doesn't resolve then GP internet options - specifically lan settings and whether autodetect or proxy are being "accidentally" overwritten. Also add your device ip to trusted sites as a test.
ASKER
I tried the netsh winsock reset, but no joy from my machine, so that's not it i guess.
Starting to trawl through GP. Will keep you posted regarding my findings.
Starting to trawl through GP. Will keep you posted regarding my findings.
Nice! - good luck!
Since you are browsing to an IP then DNS appears to be unrelated unless the interface of the device fills in with some web based content. If that's the case then it still could be delaying the overall page load.
GP is a good place to start. If you haven't created a policy though there aren't any defaults that would cause the difference. If you haven't always been in charge of AD then it's worth a look.
One big subnet right? Only switches no routers between? I know that the non-domain machine worked but if GP is involved then switch QoS etc. could be machine aware.
When you say non-domain, how different is it from other installed systems? Everything the same except hasn't been joined to the domain or was it a home PC with a lot of differences?
No IPS on the network?
GP is a good place to start. If you haven't created a policy though there aren't any defaults that would cause the difference. If you haven't always been in charge of AD then it's worth a look.
One big subnet right? Only switches no routers between? I know that the non-domain machine worked but if GP is involved then switch QoS etc. could be machine aware.
When you say non-domain, how different is it from other installed systems? Everything the same except hasn't been joined to the domain or was it a home PC with a lot of differences?
No IPS on the network?
ASKER
@mrklaxon
I am almost on my way home now, I was planning on investigating thoroughly further tomorrow morning.
Just quick before I leave:
I have not always been in charge of AD/GP, hence why a colleague and I will be sifting through it tomorrow.
The interface of the devices in question are bascially just our Xerox printers(on site), and also our main HP Procurve switch(also on site).
The devices in question are all on the same subnet(all relating to our main branch).
Regarding the non-domain machine that was tested earlier, it was a very basic build(no office, work apps or anything), just a standard up to date windows, didnt even have latest java installed. It just worked straight off the bat.
Chat tomorrow guys, thanks for the idea's thus far.
I am almost on my way home now, I was planning on investigating thoroughly further tomorrow morning.
Just quick before I leave:
I have not always been in charge of AD/GP, hence why a colleague and I will be sifting through it tomorrow.
The interface of the devices in question are bascially just our Xerox printers(on site), and also our main HP Procurve switch(also on site).
The devices in question are all on the same subnet(all relating to our main branch).
Regarding the non-domain machine that was tested earlier, it was a very basic build(no office, work apps or anything), just a standard up to date windows, didnt even have latest java installed. It just worked straight off the bat.
Chat tomorrow guys, thanks for the idea's thus far.
Stick with DNS troubleshooting. I am pretty sure your clients are going to an outside DNS server for Internal DNS resolution.
Please read this:
https://www.experts-exchange.com/Networking/Protocols/DNS/A_323-DNS-Troubleshooting-made-easy.html
Please read this:
https://www.experts-exchange.com/Networking/Protocols/DNS/A_323-DNS-Troubleshooting-made-easy.html
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Closing as above answers did not solve the problem.
Same AV in use and settings the same between workstations and servers?
Could be other differences in the firewall or switch settings but usually servers would be more restricted.