Avatar of compdigit44
compdigit44
 asked on

SharePoint 2010 SSL External Sites and Performance

I have inherited a SharePoint 2010 environment from my predecessor who never documented anything, and used their production environment as the test environment as well.

Anyway, all sharepoint 2010 servers are VM's that connect to a physical backend SQL server. All front end servers have very low CPU and memory usage. The main site all users connect to uses SSL, and is accessible from the outside.

1) How can I be certain that when users access the site internally, they are going through the internal network instead of going through the external network? When I ping the server FQDN name internally, it replies on a different IP address as compared to when I ping it from an external connection.

2) When I use network monitor 3.4 to view traffic, I see that 99.99% of the traffic is all TLS based (Please note, this site is using claims authentication with kerbose) In the packet trace though, I see tons of frames that contain the following TCP:[Continuation of # 108] the number keeps changes though, but I think you get the point. Does this mean packets are getting retransmitted? I also see that a number of packet contain the following "Negotiating Scale..."

Thank you in advance for your help
Microsoft SharePointActive DirectoryNetworking Protocols

Avatar of undefined
Last Comment
Justin Smith

8/22/2022 - Mon
Justin Smith

"All front end servers have very low CPU and memory usage"........how about the SQL Server?

1. This is typically set on your DHCP server.  When a machine connects to your network and retrieves an IP from DHCP, they typically get an internal DNS server address as well.  If they are inside your network, they are using your internal DNS server.  

Out of curiosity.....have you tried creating a new test web application and site collection, to see what performance is like there?  That will narrow your scope of problem (possibly).
compdigit44

ASKER
I guess the thing that confuses my if the fact the Sharepoint URL address is the name for both internal and external users..

DO you have any thoughts on my network packet traces?
Justin Smith

The same URL for int and ext is quite common.

Did you do the test I posted above?
Experts Exchange has (a) saved my job multiple times, (b) saved me hours, days, and even weeks of work, and often (c) makes me look like a superhero! This place is MAGIC!
Walt Forbes
compdigit44

ASKER
I haven't had a chance to setup a new Site but in regards to the SQL server. All the performance counter for Buffer Cache, Disk read / write I/O and network utilization are all well with in the best practices guideline pubished by Microsoft.
ASKER CERTIFIED SOLUTION
Justin Smith

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question