December 14th, 2012, 03:01 PM
Need Help Understading Incoming Server Traffic
One of the main web servers we host is just getting hammered, so much so it's hard even navigate Windows Server when you login. We've narrowed it down to network traffic, the processor and memory aren't even barley above 15% so it's definitely network traffic. When we stop IIS, the traffic stops and everything operates smoothly. Naturally we assumed it was one of the websites, so we turned IIS back on, but disabled all the websites and SMTP. The network is still chugging, so it's some function of IIS but not web or mail traffic.
Aside from all that detail, essentially what we need is a way to see all the different traffic so we can understand where the issue is coming from. Is there a tool that break the traffic down by IP, or even port, and shows you it's bandwidth? Because all we have to go off of currently is the whole servers traffic. Any help would be greatly appreciated!
December 14th, 2012, 06:42 PM
Use a packet monitor program like wireshark on the web server.
I've never been able to appreciate the sublime arrogance of folks who feel they were put on earth just to save other folks from themselves .." - Donald Hamilton