SQL Packet Analysis Using Dynamic Baselining
Packet analysis can be very overwhelming since there are many things to keep in mind as you go through a trace file.
Like any application, several servers and protocols have to work together to get the job done. Unfortunately, it can be very difficult to figure out which server, protocol or application is the source of your issues.
In this example, a client was complaining about application performance. We installed Wireshark (www.wireshark.org) on their desktop and asked them if they could reproduce their issues. We got lucky and captured what they considered to be ‘slow’ performance.
One of the first things I do when analyzing a trace file like this is to look for any common issues that would cause performance issues. Here is a quick list of some of the things I look for:
- Name server performance issues (DNS, LDAP, WINS)
- Small packets used during hi volume transactions
- TCP retransmissions
- UDP dropped packets
- ICMP or application ERROR messages
- Excessive delays
That last one “Excessive Delays” is a tough one. Ideally, you want to compare a good and bad trace. So, what do you do when you do not have a baseline or good trace to reference?
That’s what I cover in the video as well as how to configure your protocol analyzer.
Please keep in mind where the trace was taken. In this case, it was from the client. If we see delays from the server, keep in mind it may not be the server, it could be anything between the client and the server. If we had the time and resources, I would have taken a trace from the server.
Lastly, we did find that the server was sized properly and the administrator found that the server needed more RAM and CPU’s.
Here is the video:
Recommended For You
Low-Power WANs offer an alternative to 5G for connecting a fast-growing array of basic devices and sensors that transmit small amounts of data.
An effective network visibility strategy requires understanding the technical, financial, political, and legal aspects impacting your network operations.
Emerging organizational structures for IT include placement of IT pros in user areas and departments forming their own "micro IT's."
Combining commodity server platforms and FPGA-based SmartNICs will allow network applications to operate at hundreds of gigabits of throughput with support for millions of simultaneous flows.
SD-WAN implementations are on the rise thanks to the potential cost savings, increased network resiliency, and better application performance they deliver.
The Darwinian Accelerator driving the acceptance and deployment of open network solutions in large enterprises turns out to be scale.