High Traffic between Child Domain and Parent Domain

Seuno
Seuno used Ask the Experts™
on
We  have a child domain with Exchange Server 2013 Installed. We discovered that we have high traffic between the two sites and we ran wireshack on the link. We discovered tha the following protocol:
msft-gc, Microsoft Global Catalog ( is much between the two sites.

We have a GC in the child domain, is there a way to make the Exchange in the child domain talk more to the GC in the child domain?

Is it a good practice to set a Default GC and DC on an exchange server?
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Scott CSenior Engineer
Commented:
No, and Exchange server should be just that...and Exchange server and your DCs....DCs.

Run ExPerfWix for a couple of hours on your Exchange CAS.

https://experfwiz.codeplex.com/

Once you have that perf data, run it through PAL.

https://pal.codeplex.com/

Look for the LDAP Read and Search times.  They should be under 15 with spikes not much higher than 50.

Also on your DC do the following:

HKLM\SYSTEM\CurrentControlSet\services\NTDS\Diagnostics

Change 15 Field Engineering to a Value of "5"

Once this is set look in the Directory Services log for event ID 1644.

If this Event ID shows up install HOTFIX http://support.microsoft.com/kb/2862304

I've run into this MANY times. There is a problem with Windows Server and LDAP traffic.
Scott CSenior Engineer

Commented:
This is an example of high LDAP traffic.

When you run ExPerfWiz use the following...

.\experfwiz.ps1 -duration 02:00:00 -threads -interval 5 -filepath D:\Logs (wherever you want the perf data to go)
LDAP.png
Lead email system administrator
Commented:

Author

Commented:
No event ID 1644, I have event ID 1643.

I have also checked the LDAP traffic using PerfMon and noticed a high LDAP traffic to the parent domain and low LDAP search to the child domain where the exhange server is installed.
Scott CSenior Engineer

Commented:
I would still install the hotfix on the Domain Controllers.  

Also, look at Pavel's suggestion.  Definitely looks like he could be onto something.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial