Using Perfmon to measure network issues

Posted on 2012-04-07
Last Modified: 2012-04-30

Running Windows 2008 Server R2.

I'm running an Application that runs on 2 servers, ServerA and ServerB. ServerA is Active and ServerB is passive. There is replication of data from ServerA > ServerB.

Recently Ive noticed that there are replication errors within the App. The vendor says this could be due to data not reaching ServerB in a timely manner.

I'd like to see if there are any NIC or network related issues. Is this possible via Perfmon? I have asked the Cisco team to check out the switchport too, but it would be useful to have some info from the server side.
Question by:neil4933
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
LVL 17

Expert Comment

ID: 37819731
Permon is actually for performance and utilization. it will not show you incase their are any errors on the network.
it will be better to ask the network team to check for errors on the switch for your port.
so incase their are any errors or network drop it will be shown on the switch logs.

Author Comment

ID: 37819739
I am asking them :)

I just saw some Perfmon counters under TCP v4 on the server and that they maybe useful, does anyone know?
LVL 17

Accepted Solution

Anuroopsundd earned 500 total points
ID: 37819740
I rechecked and yes you can monitor much more in perfmon..
•Network Segment : %Broadcasts. This value will let you know how much of the network bandwidth is dedicated to broadcast traffic. Broadcasts are network packets that have been designated as intended for all machines on the segment. Often, it is this type of traffic that has a detrimental affect on the network.
•Network Segment : %Multicasts. This is a measure of the % of the network bandwidth that multicast traffic is taking. Multicast traffic is similar to the broadcast, however, there is a limited number of intended recipients. The idea was that if you can identify multiple recipients you can reduce the repetitive transmission of data. This type of transfer is used most commonly with video conferencing.
•TCP : Segments Sent/sec. This is the rate at which TCP segments are sent. This is how much information that is being sent out for TCP/IP transmissions.
•TCP : Segments Received/sec. Of course, the rate at which segments are received for the protocol.
•TCP : Segments/sec. This is just the total of the previous two counters. This is the information being sent and received. This is a general indication of how busy the TCP/IP traffic is. The segment size is variable and thus, this does not translate easily to bytes.
•TCP : Segments Retransmitted/sec. This is the rate at which retransmissions occur. Retransmissions are measured based on bytes in the data that are recognized as being transmitted before. On a Ethernet/TCP/IP network retransmissions are a fact of life. However, excessive retransmissions indicate a distinct reduction in bandwidth.
•TCP : Connection Failures. This is the raw number of TCP connections that have failed since the server was started. A failure usually indicates a loss of data somewhere in the process. Data lose can occur at many locations. This could be an indication of another device being down, or problems with the client-side configuration of the software.
•TCP : Connections Reset. This is typically a result of a timeout as opposed to an erroneous set of information. The reset results from the a lack of any information over a period of time.
•TCP : Connections Established. This counter represents them number of connections. Unlike the other two this is more and instantaneous counter of how many TCP connections are currently on the system as opposed to a count of the number of successful connections.
PeopleSoft Has Never Been Easier

PeopleSoft Adoption Made Smooth & Simple!

On-The-Job Training Is made Intuitive & Easy With WalkMe's On-Screen Guidance Tool.  Claim Your Free WalkMe Account Now

LVL 17

Expert Comment

ID: 37819744
So it will be better you configure and also ask network team to monitor on switch level. this way you will be in better complete picture.

Expert Comment

ID: 37819753
Simply you can monitor - Start Ping between source and destination - If there is any issue then you can see some delay. else check event log,
You can get some information from it

Expert Comment

by:Sushant Gulati
ID: 37819767
Well, there is something that I would like to add in and yes, certainly, the Perfmon tool is very good tool to use to check the performance monitoring.

What is this type of application and how come this APP is giving the error and when those errors are getting started?

Can you paste the APP error logs here? What is the type of data is replicated to another server?

Apart from this APP data what other pool of data is replicated from the SERVER A to SERVER B?

Is this app` using any port? If yes and than what is that port number?

Where is the data of this app` is stored? Is it on a NAS or SAN storage?

Are we replicating this data over the LAN or over the WAN? Are these servers on a single network or spread over the multiple segments?

We can use the network monitoring tool like Netmon or WireShark to monitor the application, dropping packets and data transfer over the network. Performance monitoring won't let us to choose or filter specifically. Using the network monitoring tools will help us to drill down to an extent as to what we are looking for.

Please answer the above question and you will easily know what to do.

Good Luck..!!
LVL 78

Expert Comment

ID: 37820204
Do the systems have private network or are they using the same production network for replication. Way type of replication are you performing?
Look at for data collection of snmp enabled systems and graphically displaying the data.
LVL 57

Expert Comment

ID: 37821122
Having your network group look at it from their point of view is probably the best solution.

However, you may need to look at other things on the servers and any SAN's involved.  We had major issues once doing backup replication.  Server group kept saying that it was due to the lack of bandwidth, it was only a 10 Mbps WAN link.  But the networking group (I part of that) noticed that during the time period where the backups failed the link utilization dropped way down.

Server group found that the SAN on the target server had a bad drive or two and once the volume of data got to a certain point it had serious problems.  Replaced the drives and everything was fine.

Expert Comment

ID: 37822820
I agree with suresh_boga, 1st step for the network is to run a continuous ping for a day and see if there is any packet loss and the average and maximum response time.

You may want to increase the ping packet size to 1400.

Featured Post

Is Your DevOps Pipeline Leaking?

Is your CI/CD pipeline a hodge-podge of randomly connected tools? You’ve likely got a tool to fix one problem & then a different tool to fix another, resulting in a cluster of tools with overlapping functionality. Learn how to optimize your pipeline with Gartner's recommendations

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Cisco 3650 switch licensing 6 80
Xerox WorkCentre 7830 Network Printer, Fax, Scanner .. email setup? 12 70
Wannacry 44 108
Network Share Issues 17 32
Background Information Recently I have fixed file server permission issues for one of my client. The client has 1800 users and one Windows Server 2008 R2 domain joined file server with 12 TB of data, 250+ shared folders and the folder structure i…
Possible fixes for Windows 7 and Windows Server 2008 updating problem. Solutions mentioned are from Microsoft themselves. I started a case with them from our Microsoft Silver Partner option to open a case and get direct support from Microsoft. If s…
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor ( If you're looking for how to monitor bandwidth using netflow or packet s…

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question