OK here is the problem. We just recently replaced our domain controller. Instead of migrating gracefully to the new server we treated it like a new install and just built it from scratch and then moved all of the clients over to the server. After we got done we started having what looked like slow network browsing issues. Then the Domain controller started hanging for a few seconds then it would be ok. It looks like something is writing a large amount of data to the hard drive on this server about every 12 minutes and when this happens the server just kind of slows down and becomes very unresponsive. Any suggestions would be appreciated.
Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
Slow win2k Domain Controller
- Thread starter Goose241
- Start date
- Thread starter
- #3
Domain Naming Master
Schema Master
Relative Id Master
Infrastructure Master
PDC Emulator Master
The root Domain controller should be the Domain Naming Master and Schema Master .....
If it is the only dc in the domain it has the other roles too. If it is not, then the other three roles should be given to other dcs in the root domain....
Domain Naming Master - AD domains and Trusts
Schema Master - MMC AD Schema Snapin
Relative Id Master - AD Users and Computers
Infrastructure Master - AD Users and Computers
PDC Emulator Master - AD Users and Computers
Domain Naming Master
In AD domains and Trusts right click on
Active directory Domains and Trusts ...
Select Operations Master
The procedure is pretty much the same for the rest, you just go in and rightclick and pick Operations Master...
Schema Master
Relative Id Master
Infrastructure Master
PDC Emulator Master
The root Domain controller should be the Domain Naming Master and Schema Master .....
If it is the only dc in the domain it has the other roles too. If it is not, then the other three roles should be given to other dcs in the root domain....
Domain Naming Master - AD domains and Trusts
Schema Master - MMC AD Schema Snapin
Relative Id Master - AD Users and Computers
Infrastructure Master - AD Users and Computers
PDC Emulator Master - AD Users and Computers
Domain Naming Master
In AD domains and Trusts right click on
Active directory Domains and Trusts ...
Select Operations Master
The procedure is pretty much the same for the rest, you just go in and rightclick and pick Operations Master...
- Thread starter
- #6
- Thread starter
- #9
I have been watching event logs and network monitor. The only thing that I can find is that something appears to be accessing the hard drive alot but I can't tell what.
Not installed:
exchange server
WINS
DHCP
installed:
Norton Antivirus Server
Print Server
File Server
Domain Controller
DNS
IIS
FTP
Netbackup Client
Not installed:
exchange server
WINS
DHCP
installed:
Norton Antivirus Server
Print Server
File Server
Domain Controller
DNS
IIS
FTP
Netbackup Client
- Thread starter
- #11
We have 2 GB of RAM and an equal slice of virtual memory. We have about 160 GB of disk drive space on 1 partition. It has about 100 GB of free space. I just finished defragging it.
We have already for the most part disabled all of the unnecessary processes and things that are running.
We have already for the most part disabled all of the unnecessary processes and things that are running.
The recommended size for the paging file is 1.5 times the amount of ram on your system. To increase performance you can put it on another partition, other than the OS one. You said that you have 160 gb all on one partition, this could be giving you a problem. Usually you make the system and boot partitions smaller, this results in a performance boost. Example .... System partition 2gb Boot partition 10gb
One trouble with large partitions is that they take too long to defrag.. Use the larger partions for DATA and File System.
One trouble with large partitions is that they take too long to defrag.. Use the larger partions for DATA and File System.
- Thread starter
- #14
![[shadessad]](/data/assets/smilies/shadessad.gif "[shadessad] [shadessad]")
- Thread starter
- #16
Well that is highly unlikely. I have Norton Antivirus running real time virus scanning most of the time and I just ran a scan with the newest sigs and it didn't find anything. This network isn't connected to the outside world and I am pretty much the only one who could introduce somthing like this. Any other suggestions would be great.
Is the services.exe file located in the Winnt or Windows directory? This is a good sign of a trojan.
I have Norton's too and it did not find the Pepper trojan on my computer (So much for the latest virus definitions).
The trouble is a lot of the trojans today know how to fool the virus programs. Did you try booting in safe mode and running a check? I would investigate it further.....
I have Norton's too and it did not find the Pepper trojan on my computer (So much for the latest virus definitions).
The trouble is a lot of the trojans today know how to fool the virus programs. Did you try booting in safe mode and running a check? I would investigate it further.....
If the old server is network connected, did you run Dcpromo on the old server to demote it, before place the new one on line?
Have you run dcdiag, netdiag, ntfrsutl, nslookup, these tests are critical? any errors
all entries in DNS correct, Dns server pointing to own IP address.
Have a couple of FSMO, with all roles,as a GC, SQL, TSadmin mode, as a general file server, etc etc., extremely fast, so AD roles should not be issue unless they are not in place on a DC, somewhere in your Domain
Do use have Symantec scanning "selective files" vs all files
MS File and print services, the local area connect, have you tried setting it to "balanced".
If you not going to use IIs and FTP, I would uninstall them.
All MS patches applied?
Unnecessary services turned off? indexing, telenet etc.
Disable the browsing service on all machine but the new server.
Newest drivers for all devices in the server.
Connect a wks to the server directly with a cross over cable, symptoms still exist?
Pay particular attention to any errors involving NtFrs.
Have you run dcdiag, netdiag, ntfrsutl, nslookup, these tests are critical? any errors
all entries in DNS correct, Dns server pointing to own IP address.
Have a couple of FSMO, with all roles,as a GC, SQL, TSadmin mode, as a general file server, etc etc., extremely fast, so AD roles should not be issue unless they are not in place on a DC, somewhere in your Domain
Do use have Symantec scanning "selective files" vs all files
MS File and print services, the local area connect, have you tried setting it to "balanced".
If you not going to use IIs and FTP, I would uninstall them.
All MS patches applied?
Unnecessary services turned off? indexing, telenet etc.
Disable the browsing service on all machine but the new server.
Newest drivers for all devices in the server.
Connect a wks to the server directly with a cross over cable, symptoms still exist?
Pay particular attention to any errors involving NtFrs.
- Thread starter
- #19
dcdiag failed on RPCLOCATOR and TrkWks (I fixed this)
ntfrsutl not sure how to use this one
I shut off norton completely now.
all pathces are installed
when you say disable the browsing service you mean "Computer Browser"?
what exactly does NtFrs do?
I have started seeing problems when I am logged on locally to the DC now it will slow down when I am just opening computer manager and things like this. If I have performance monitor open it will hang up and then come back it really looks like the services.exe is banging the system hard. I don't know why.
ntfrsutl not sure how to use this one
I shut off norton completely now.
all pathces are installed
when you say disable the browsing service you mean "Computer Browser"?
what exactly does NtFrs do?
I have started seeing problems when I am logged on locally to the DC now it will slow down when I am just opening computer manager and things like this. If I have performance monitor open it will hang up and then come back it really looks like the services.exe is banging the system hard. I don't know why.
NTfrs=NT file replication services= replicates info/files from and to DCs on the network. If it is not operating proberly it can cause a great deal of disk activity.
the computer browsing service on each workstation, this is not part of a fix, but something you should disable on each workstation, NOT on the FSMO.
Did you run netdiag?
In your event logs what errors are you getting?
Check you do not have any deviant services running?
search google with the names of any services which you are not sure are supposed to be running.
Have to tried removing all software from the server which is not ensential to run the server?
Have you temporily disabled DNS and DHCP, and then logged in locally ? Still disk activity ? DNS misconfiguration can cause a great deal of problems.
the computer browsing service on each workstation, this is not part of a fix, but something you should disable on each workstation, NOT on the FSMO.
Did you run netdiag?
In your event logs what errors are you getting?
Check you do not have any deviant services running?
search google with the names of any services which you are not sure are supposed to be running.
Have to tried removing all software from the server which is not ensential to run the server?
Have you temporily disabled DNS and DHCP, and then logged in locally ? Still disk activity ? DNS misconfiguration can cause a great deal of problems.
- Status
Similar threads
- Locked
- Question
- Locked
- Question
