Slowness on specific websites
We have been having an issue with specific websites being slow for almost a month now. Certain sites (mymathlab, our library system, and various other sites you log into) have been slow when sending or recieving data. You click a link and sometimes it spins and spins and spins. We are working with our firewall vendor Sophos (it seems to have shown up after a firmware update) and we are very hesitant to downgrade because that often can cause issues in itself.
Normal website browsing is fine, seems to be stuck to sites you log into that are hosted off campus. Any thoughts? We have 2 internet connections load balanced behind an ISP load balancing device. I am interested in all theories as this is causing significant hardship for our students and staff. Thank you all very much for your insight!
Normal website browsing is fine, seems to be stuck to sites you log into that are hosted off campus. Any thoughts? We have 2 internet connections load balanced behind an ISP load balancing device. I am interested in all theories as this is causing significant hardship for our students and staff. Thank you all very much for your insight!
ASKER
No bandwidth limits on those specific rules. We created a test rule with absolutely no IPS or web inspection rules and it didn't seem to change anything. The users log on with Active Directory credentials, but the login portion seems fine. It is when they access or submit data to the web apps in question.
If I were to test DNS, what would be the best way to do that? My apologies I deal little with DNS.
If I were to test DNS, what would be the best way to do that? My apologies I deal little with DNS.
use the dig tool (you might need to install it on windows, it is native in unix/linux). That provide the most control on querying DNS servers including some timing.
ASKER
I did end up downloading DIG for Windows which for anyone interested is packaged with BIND (you just install the tools, not the rest of BIND). I ran it, but everything keeps coming back with excellent querying times. Suspect this isn't a DNS issue in this case?
If all relevant queries work, yes then it is not DNS.
dig is part of the bind-tools. These are tools for supporting (& debugging) bind or other DNS servers through DNS queries.
Any luck with tracing network packets?
dig is part of the bind-tools. These are tools for supporting (& debugging) bind or other DNS servers through DNS queries.
Any luck with tracing network packets?
ASKER
I did a packet capture, it was difficult because the issue happens so randomly. But I also am not extremely astute with debugging packet captures. Looks like a bunch of packet loss and re-transmits. I have attached the file for review.
capture.pcap
capture.pcap
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Any rules on bandwith limiting to/from those sites?
Logon via other OAUTH services? where the OAUTH servers mighthave reachability problems?
Try to make packet traces of such logins and check where the gaps are.. 9DNS query / response, HTTP response, ...)