SQL Packet Analysis Using Dynamic Baselining
Packet analysis can be very overwhelming since there are many things to keep in mind as you go through a trace file.
Like any application, several servers and protocols have to work together to get the job done. Unfortunately, it can be very difficult to figure out which server, protocol or application is the source of your issues.
In this example, a client was complaining about application performance. We installed Wireshark (www.wireshark.org) on their desktop and asked them if they could reproduce their issues. We got lucky and captured what they considered to be ‘slow’ performance.
One of the first things I do when analyzing a trace file like this is to look for any common issues that would cause performance issues. Here is a quick list of some of the things I look for:
- Name server performance issues (DNS, LDAP, WINS)
- Small packets used during hi volume transactions
- TCP retransmissions
- UDP dropped packets
- ICMP or application ERROR messages
- Excessive delays
That last one “Excessive Delays” is a tough one. Ideally, you want to compare a good and bad trace. So, what do you do when you do not have a baseline or good trace to reference?
That’s what I cover in the video as well as how to configure your protocol analyzer.
Please keep in mind where the trace was taken. In this case, it was from the client. If we see delays from the server, keep in mind it may not be the server, it could be anything between the client and the server. If we had the time and resources, I would have taken a trace from the server.
Lastly, we did find that the server was sized properly and the administrator found that the server needed more RAM and CPU’s.
Here is the video:
Recommended For You
IBN is set to take network management to the next level. Is your organization ready to join the ride?
We have updated the Network Computing site to make it easier to find the information you need. Please take a look at our new features.
Low-Power WANs offer an alternative to 5G for connecting a fast-growing array of basic devices and sensors that transmit small amounts of data.
An effective network visibility strategy requires understanding the technical, financial, political, and legal aspects impacting your network operations.
Emerging organizational structures for IT include placement of IT pros in user areas and departments forming their own "micro IT's."
Combining commodity server platforms and FPGA-based SmartNICs will allow network applications to operate at hundreds of gigabits of throughput with support for millions of simultaneous flows.