Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users
Course Of The Month
3 days, 9 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
MS Exchange 2003/Server 2003 - Pulling large amounts of data from Internet
Posted on 2013-01-01
Hi Experts. I have a MS Exchange Server 2003 on Server 2003nthat is pulling about 500MB an hour from the internet even when there is no mail coming in. If I reboot the server the problem goes away for about 3 to 4 hours then starts again. I have virus scanned (Symantec and Eset) and scanned with malwarebytes but nothing shows up. I've used Wireshark to try and see packet details but theres nothing unusual. Anyone got any ideas?
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
-
4
3
2
9 Comments
Check to see if any servers or Pc's are downloading updates like Adobe, Microsoft, RealPlayer, Apple.. There must be someting causing that traffic.
Check to see what ports are getting the most hits.
Check to see what ports are getting the most hits.
Active today
I've narrowed it down to this one server and have moved everything else on to other lines. This is the only thing that now goes out through that line. I've also disabled updates.
Wire shark is the best tool for getting to the bottom of this, you must be able to see a consistent source from the output....
Are you running this on the server?
Are you running this on the server?
Yes that would be better
Alternatively, depending on your switches, you can set up a monitoring port and run the wires hark from your laptop
If you want more details on that setup then let me know
Alternatively, depending on your switches, you can set up a monitoring port and run the wires hark from your laptop
If you want more details on that setup then let me know
Active today
That would be apprecaited, thanks. In the meantime I'll start with wireshark on the server
Is that server a DC?
Is it just replicating?
What apps are loaded that may pull down periodic updates?
Do any users have access to it that may be downloading or uploading files to their user share?
Is it just replicating?
What apps are loaded that may pull down periodic updates?
Do any users have access to it that may be downloading or uploading files to their user share?
Active today
Hi
Yes it is a DC
There should be no other connectivity other than the local network (except for mail of course)
No other apps other than AV and Exchange
No users have access to this server
Thanks for the reply
Yes it is a DC
There should be no other connectivity other than the local network (except for mail of course)
No other apps other than AV and Exchange
No users have access to this server
Thanks for the reply
You might want to run this script. It generates a report of mail sent and received. With the weekend and holiday, their might have been a ton of email that caused this situation.
http://gallery.technet.microsoft.com/scriptcenter/bb94b422-eb9e-4c53-a454-f7da6ddfb5d6
http://gallery.technet.microsoft.com/scriptcenter/bb94b422-eb9e-4c53-a454-f7da6ddfb5d6
Featured Post
Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies. Only from Platform Scholar.
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
A list of top three free exchange EDB viewers that helps the user to extract a mailbox from an unmounted .edb file and get a clear preview of all emails & other items with just a single click on mailboxes.
This article provides a convenient collection of links to Microsoft provided Security Patches for operating systems that have reached their End of Life support cycle. Included operating systems covered by this article are Windows XP, Windows Server…
- Ransomware
- Experts Exchange
- Windows XP
- Windows OS
- Windows Server 2008
- Windows Server 2003, Security
In this video we show how to create a Shared Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center.
Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center.
Navigate to the Recipients >> Sha…
In this video we show how to create a Resource Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center.
Log into Exchange Admin Center.:
Navigate to the Recipients >> Resources tab.: "Recipients" is our default selection …
Suggested Courses
Course of the Month3 days, 9 hours left to enroll
691 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.