Solved

TMG server stops responding after every restart

Posted on 2012-03-27
4
320 Views
Last Modified: 2015-05-27
Hello

We have strange trouble with TMG server:
It is installed on esx 4.1, OS under TMG is Server 2008 R2 SP1, actual TMG is 2010 SP2, but behaviour was the same in TMG SP1.

We restart the OS, and server hangs during next morning between 8:30 and 10:30 a.m.
Server stops responding to ping from external and internal networks. Login in RDP is not available - it must be done via esx console with server local admin account.
We must stop wspsrv - process manually (service Microsoft forefront firewall hangs in stopping when we attempt to restart the service) and then start Firewall service manually again.

In the event logs are no errors and service state in msc console looks running.


After we restart the process, the server gets to similar state a few times during cca 2-3 hours, we must repeat this 2-3 times and then suddenly everything works correctly and is working until next server restart (patch management etc.)
This behaviour happens again EVERYTIME we restart the server.
Strange is - we restart server at lunch - then all afternoon is the network under load from users and all is OK, in the next morning - happens again.

We installed fresh new Server 2008 R2 with TMG to the same hardware box under esx - import configuration - same behaviour.
No antivirus, backup solution or third party software on new server aplied. Only roles the server hosts is TMG and NPS (only as Radius server).
Service is set as automatic - delayed start.

We did not find any scheduled task that could be related.

Any help would be appreciated.
0
Comment
Question by:dataline
4 Comments
 
LVL 12

Expert Comment

by:S00007359
ID: 37774394
Check the Disk I/O from ther performance manager.

i have seen cases like this before. most of the time, the paging and TMG Logging needs to be moved to another dfisk, or a RDM disk, for faster I/O. this causes the firewall service to stop.

give that a shot and see the outcome. alternative is put OS 2008 R2 SP1 and TMG 2010 SP2, on a physical box. it's very disk I/O hungry.

cheers
0
 

Accepted Solution

by:
dataline earned 0 total points
ID: 37837084
Trouble solved - there was too heavy DNS traffic - because of domain name sets in traffic rules - flooding the TMG server.
Solution:
disabling eDNS probe - http://support.microsoft.com/kb/2550719/en-us
and adding DNS role on TMG server
Next step will be lowering number of domain name sets in rules and using URL sets instead
0
 
LVL 34

Expert Comment

by:Seth Simmons
ID: 40797863
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.
0

Featured Post

Are end users causing IT problems again?

You’ve taken the time to design and update all your end user’s email signatures, only to find out they’re messing up the HTML, changing the font and ruining the imagery. What can you do to prevent this? Find out how you can save your signatures from end users today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

We recently had an issue where out of nowhere, end users started indicating that their logins to our terminal server were just showing a "blank screen." After checking the usual suspects -- profiles, shell=explorer.exe in the registry, userinit.exe,…
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conne…
This tutorial will walk an individual through the steps necessary to install and configure the Windows Server Backup Utility. Directly connect an external storage device such as a USB drive, or CD\DVD burner: If the device is a USB drive, ensure i…

863 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now