-
1
- #1
hey guys, i'm new to iis, was an apache guy for a while first.
but what i came here to ask is, is there a way to find out who/what is consuming all my iis system/networking resources?
i have a popular website, and and i've noticed lately that ALL my
bandwidth or rather network utilization is being consumed,
and i know my website is NOT that busy, i notice that when i
restart the server, it goes back to normal usage, but after a
couple hours, this happens again, till i again restart the
server. i looked in my log files and found only ONE thing that
i could consider suspicious, and that was somekind of client
device called "WebCopier+v4.2", so i banned that users ip, but
my utilization hasn't changed much. a few days ago, i had a
REALLY bad problem that caused me to have to cut off the
network completely, all of a sudden, as i was watching my
network monitor, the RECIEVE levels went through the roof!
now i am only a webserver with aspx pages, but not a storage
server, or anything that would require me to recieve any
large amounts of data, i only recieve requests. but the
problem was, it was locking up the pc! i've never seen
anything like it. i couldnt do anything on my pc, it was
completely frozen, the only way to stop it, was to unplug
the lan cable. i had windows firewall on, and it's limited
only to what it is currently used for, no unnessecary
permissions have been granted. is there a way to find out
what ip is sending OR recieving a certain amount of traffic,
or to find where a certain traffic is comming from, like the port,
or whatever, and disable it when it becomes a problem?
i'd really apreciate any help at all. thank you all for your time in advance:
ALEX GRIM
-------------
but what i came here to ask is, is there a way to find out who/what is consuming all my iis system/networking resources?
i have a popular website, and and i've noticed lately that ALL my
bandwidth or rather network utilization is being consumed,
and i know my website is NOT that busy, i notice that when i
restart the server, it goes back to normal usage, but after a
couple hours, this happens again, till i again restart the
server. i looked in my log files and found only ONE thing that
i could consider suspicious, and that was somekind of client
device called "WebCopier+v4.2", so i banned that users ip, but
my utilization hasn't changed much. a few days ago, i had a
REALLY bad problem that caused me to have to cut off the
network completely, all of a sudden, as i was watching my
network monitor, the RECIEVE levels went through the roof!
now i am only a webserver with aspx pages, but not a storage
server, or anything that would require me to recieve any
large amounts of data, i only recieve requests. but the
problem was, it was locking up the pc! i've never seen
anything like it. i couldnt do anything on my pc, it was
completely frozen, the only way to stop it, was to unplug
the lan cable. i had windows firewall on, and it's limited
only to what it is currently used for, no unnessecary
permissions have been granted. is there a way to find out
what ip is sending OR recieving a certain amount of traffic,
or to find where a certain traffic is comming from, like the port,
or whatever, and disable it when it becomes a problem?
i'd really apreciate any help at all. thank you all for your time in advance:
ALEX GRIM
-------------
