compdigit44
asked on
SharePoint 2010 SSL External Sites and Performance
I have inherited a SharePoint 2010 environment from my predecessor who never documented anything, and used their production environment as the test environment as well.
Anyway, all sharepoint 2010 servers are VM's that connect to a physical backend SQL server. All front end servers have very low CPU and memory usage. The main site all users connect to uses SSL, and is accessible from the outside.
1) How can I be certain that when users access the site internally, they are going through the internal network instead of going through the external network? When I ping the server FQDN name internally, it replies on a different IP address as compared to when I ping it from an external connection.
2) When I use network monitor 3.4 to view traffic, I see that 99.99% of the traffic is all TLS based (Please note, this site is using claims authentication with kerbose) In the packet trace though, I see tons of frames that contain the following TCP:[Continuation of # 108] the number keeps changes though, but I think you get the point. Does this mean packets are getting retransmitted? I also see that a number of packet contain the following "Negotiating Scale..."
Thank you in advance for your help
Anyway, all sharepoint 2010 servers are VM's that connect to a physical backend SQL server. All front end servers have very low CPU and memory usage. The main site all users connect to uses SSL, and is accessible from the outside.
1) How can I be certain that when users access the site internally, they are going through the internal network instead of going through the external network? When I ping the server FQDN name internally, it replies on a different IP address as compared to when I ping it from an external connection.
2) When I use network monitor 3.4 to view traffic, I see that 99.99% of the traffic is all TLS based (Please note, this site is using claims authentication with kerbose) In the packet trace though, I see tons of frames that contain the following TCP:[Continuation of # 108] the number keeps changes though, but I think you get the point. Does this mean packets are getting retransmitted? I also see that a number of packet contain the following "Negotiating Scale..."
Thank you in advance for your help
Last Comment
ASKER
I guess the thing that confuses my if the fact the Sharepoint URL address is the name for both internal and external users..
DO you have any thoughts on my network packet traces?
DO you have any thoughts on my network packet traces?
The same URL for int and ext is quite common.
Did you do the test I posted above?
Did you do the test I posted above?
ASKER
I haven't had a chance to setup a new Site but in regards to the SQL server. All the performance counter for Buffer Cache, Disk read / write I/O and network utilization are all well with in the best practices guideline pubished by Microsoft.
ASKER CERTIFIED SOLUTION
THIS SOLUTION IS ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
Active Directory
Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.
86K
Questions
--
Followers
--
Top Experts
Get a personalized solution from industry experts
TRUSTED BY
1. This is typically set on your DHCP server. When a machine connects to your network and retrieves an IP from DHCP, they typically get an internal DNS server address as well. If they are inside your network, they are using your internal DNS server.
Out of curiosity.....have you tried creating a new test web application and site collection, to see what performance is like there? That will narrow your scope of problem (possibly).