Identify excessive bandwidth utilization or unexpected application traffic with SolarWinds Bandwidth Analyzer Pack.
Help Diagnosing Network Issues
Hi all,
We look after a number of small business networks and from time to time we have reports of network connectivity issues. Recently we have a network that is randomly stopping and starting internet access on a handful of PC's that are not patched into the same switch. We have found however that removing one switch in particular seems to fix the issue so we think that's the cause. It does make me think however that we could use a very easy to use network diagnosis tool, be it hardware or software to help with this sort of thing. As we are not advanced network engineers we'd like something reasonably easy to use and translate the findings. Any recommendations? Thanks
We look after a number of small business networks and from time to time we have reports of network connectivity issues. Recently we have a network that is randomly stopping and starting internet access on a handful of PC's that are not patched into the same switch. We have found however that removing one switch in particular seems to fix the issue so we think that's the cause. It does make me think however that we could use a very easy to use network diagnosis tool, be it hardware or software to help with this sort of thing. As we are not advanced network engineers we'd like something reasonably easy to use and translate the findings. Any recommendations? Thanks
Who is Participating?
Experts Exchange Solution brought to you by
Enjoy your complimentary solution view.
Get every solution instantly with Premium.
Start your 7-day free trial.
I wear a lot of hats...
"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.
Hi James,
Unfortunately I've tried to use Wireshark in the past and it completely baffles me, just don't know how to interpret the results. Was kind of looking for something a little more basic that (for instance) scans the network, works out the basic structure of the network (switches, access points, pc's etc and then identifies possible trouble areas. 2 out of the 5 switches are managed (but not actually configured in any way) and the rest are just smart switches, all a mix of TP Link and HP, nothing complex.
Thanks
Unfortunately I've tried to use Wireshark in the past and it completely baffles me, just don't know how to interpret the results. Was kind of looking for something a little more basic that (for instance) scans the network, works out the basic structure of the network (switches, access points, pc's etc and then identifies possible trouble areas. 2 out of the 5 switches are managed (but not actually configured in any way) and the rest are just smart switches, all a mix of TP Link and HP, nothing complex.
Thanks
Adam,
Unfortunately I am not aware of any program that map out the network with details without being complex. I would suggest that you find one, like Wireshark, and start to familiarize yourself with it. Its scary to look at but with a couple of youtube videos you can make a lot more sense of it quickly (Speaking from experience).
The only other networking tool that I know you could use to determine simplistic locations of hostname/Ip's is "Advanced IP Scanner" but it doesn't map routes and give detailed information like you are looking for. Its more for finding a rogue item for diagnostic.
Good luck!
Unfortunately I am not aware of any program that map out the network with details without being complex. I would suggest that you find one, like Wireshark, and start to familiarize yourself with it. Its scary to look at but with a couple of youtube videos you can make a lot more sense of it quickly (Speaking from experience).
The only other networking tool that I know you could use to determine simplistic locations of hostname/Ip's is "Advanced IP Scanner" but it doesn't map routes and give detailed information like you are looking for. Its more for finding a rogue item for diagnostic.
Good luck!
Experts Exchange Solution brought to you by
Your issues matter to us.
Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.
Start your 7-day free trial
You might try tshark (command line version of Wireshark). Easy to interrupt.
And, this type of problem (intermittent) is difficult to diagnose.
To catch these sorts of problems what I do is track a few local machine stats on each machine.
1) Local Packet Loss - using netstat -i looking at RX-ERR + RX-DRP + TX-ERR + TR-DRP, sending notifications if percentages get high.
2) Router Config - using ethtool to ensure basic settings like speed + duplex are correct, sending notifications of any change.
3) Path Packet Loss - run mtr in line/report mode between different local + other machines looking for oddities, like sustained high packet loss, sending notifications if percentages get high.
These simple tests surface all manner of problems.
If you create a few simple CRON jobs to do this type of test every 5 minutes (saving data, for later graphing) you can turn up all manner of interesting data.
For example, some tech at one hosting company reset one of my router ports from 1G to 10M one day. I could then open a ticket + give the exact time (within 5 minutes) the problem started + the hosting company then reviewed it's tech logs + found the problem + fixed it quickly.
If I hadn't noticed the problem + been able to point to exact time problem started, likely it would have been difficult to find + fix.
Sometimes simple tests work better than analyzing packets.
And, this type of problem (intermittent) is difficult to diagnose.
To catch these sorts of problems what I do is track a few local machine stats on each machine.
1) Local Packet Loss - using netstat -i looking at RX-ERR + RX-DRP + TX-ERR + TR-DRP, sending notifications if percentages get high.
2) Router Config - using ethtool to ensure basic settings like speed + duplex are correct, sending notifications of any change.
3) Path Packet Loss - run mtr in line/report mode between different local + other machines looking for oddities, like sustained high packet loss, sending notifications if percentages get high.
These simple tests surface all manner of problems.
If you create a few simple CRON jobs to do this type of test every 5 minutes (saving data, for later graphing) you can turn up all manner of interesting data.
For example, some tech at one hosting company reset one of my router ports from 1G to 10M one day. I could then open a ticket + give the exact time (within 5 minutes) the problem started + the hosting company then reviewed it's tech logs + found the problem + fixed it quickly.
If I hadn't noticed the problem + been able to point to exact time problem started, likely it would have been difficult to find + fix.
Sometimes simple tests work better than analyzing packets.
Absolutely, and if you have questions about Wireshark feel free to message me and I will try to help if possible. I am still learning a lot of it myself but have recently been looking into some of the "Self-Help" videos and things and may be able to offer a little assistance along the way. I'm sure we can narrow it down enough to make it worthwhile! =)
Best,
James
Best,
James
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Networking Hardware-Other
From novice to tech pro — start learning today.
Experts Exchange Solution brought to you by
Enjoy your complimentary solution view.
Get every solution instantly with Premium.
Start your 7-day free trial.
Also, when removing the one switch out of the network it corrects the problem completely? Can you tell if its trying to communicate or locks up when this happens? Could be creating broadcast storms or loops and may be faulty all together. Is there any special configuration on this one switch? Is it a layer 2 (typical) switch or is it a layer 3 (Managed for VLAN assignments)?