Solved

TMG server stops responding after every restart

Posted on 2012-03-27
4
331 Views
Last Modified: 2015-05-27
Hello

We have strange trouble with TMG server:
It is installed on esx 4.1, OS under TMG is Server 2008 R2 SP1, actual TMG is 2010 SP2, but behaviour was the same in TMG SP1.

We restart the OS, and server hangs during next morning between 8:30 and 10:30 a.m.
Server stops responding to ping from external and internal networks. Login in RDP is not available - it must be done via esx console with server local admin account.
We must stop wspsrv - process manually (service Microsoft forefront firewall hangs in stopping when we attempt to restart the service) and then start Firewall service manually again.

In the event logs are no errors and service state in msc console looks running.


After we restart the process, the server gets to similar state a few times during cca 2-3 hours, we must repeat this 2-3 times and then suddenly everything works correctly and is working until next server restart (patch management etc.)
This behaviour happens again EVERYTIME we restart the server.
Strange is - we restart server at lunch - then all afternoon is the network under load from users and all is OK, in the next morning - happens again.

We installed fresh new Server 2008 R2 with TMG to the same hardware box under esx - import configuration - same behaviour.
No antivirus, backup solution or third party software on new server aplied. Only roles the server hosts is TMG and NPS (only as Radius server).
Service is set as automatic - delayed start.

We did not find any scheduled task that could be related.

Any help would be appreciated.
0
Comment
Question by:dataline
4 Comments
 
LVL 12

Expert Comment

by:S00007359
ID: 37774394
Check the Disk I/O from ther performance manager.

i have seen cases like this before. most of the time, the paging and TMG Logging needs to be moved to another dfisk, or a RDM disk, for faster I/O. this causes the firewall service to stop.

give that a shot and see the outcome. alternative is put OS 2008 R2 SP1 and TMG 2010 SP2, on a physical box. it's very disk I/O hungry.

cheers
0
 

Accepted Solution

by:
dataline earned 0 total points
ID: 37837084
Trouble solved - there was too heavy DNS traffic - because of domain name sets in traffic rules - flooding the TMG server.
Solution:
disabling eDNS probe - http://support.microsoft.com/kb/2550719/en-us
and adding DNS role on TMG server
Next step will be lowering number of domain name sets in rules and using URL sets instead
0
 
LVL 34

Expert Comment

by:Seth Simmons
ID: 40797863
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
who removed AD Domain ID 9 45
DHCP scope restore question Server 2003 to 2012R2 6 59
Questions about DHCP migration 5 61
Active Directory Failed Logon Attempts. 18 54
There are several problems reported according slow link speeds or poor performance in TMG 2010, UAG 2010 or ISA 2006. I want to collect here some of the common issues together to give a brief overview what can be the reason. Nevertheless, not all of…
New Windows 7 Installations take days for Windows-Updates to show up and install. This can easily be fixed. I have finally decided to write an article because this seems to get asked several times a day lately. This Article and the Links apply to…
This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conne…
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention. Multiple USB devices need t…

773 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question