- Sep 30, 2001
- 12,684
- 2
- 81
Background details of the setup:
Windows Server 2008 running Active Directory/DNS for a local network of < 20 pcs
All client computers are XP SP3
We've got a program that we run on the clients that connects to an external 3rd party server and provides local API access on the client through an ActiveX server. However said program also uses the ActiveX server for it's main operations.
Problem:
Whenever a client PC is logged into the Domain all calls to the ActiveX server generate SMB network traffic to the Windows Server. The client PC's are making Trans2 requests for 'QUERY_PATH_INFO' with a File Name of nothing and the server responds with a list of the file attributes, where the only flag that is set is the Directory flag. The act of clicking a button in the desktop program generates 6-12KB of network traffic.
The symptoms that appear on the client PCs are extremely slow responsiveness from the desktop application even though CPU utilization remains low which is what led me to doing a packet trace.
This does not occur when the client PC is logged into the local machine instead of the domain.
The traffic is being sent by a svchost, and tracing the PID of svchost reveals LmHosts, RemoteRegistry, and SSDPSRV are being hosted by that instance.
This is where my knowledge of Windows drops off... does anyone know if either of those 3 services would exhibit this kind of behavior? I would think this is somehow related to the security model implemented when logging into a domain but I'm not sure.
edit: It appears that if I disconnect any mapped network drives while connected to the domain the problem go away.
The desktop application does not interact with any files stored on the network drives whatsoever.
Windows Server 2008 running Active Directory/DNS for a local network of < 20 pcs
All client computers are XP SP3
We've got a program that we run on the clients that connects to an external 3rd party server and provides local API access on the client through an ActiveX server. However said program also uses the ActiveX server for it's main operations.
Problem:
Whenever a client PC is logged into the Domain all calls to the ActiveX server generate SMB network traffic to the Windows Server. The client PC's are making Trans2 requests for 'QUERY_PATH_INFO' with a File Name of nothing and the server responds with a list of the file attributes, where the only flag that is set is the Directory flag. The act of clicking a button in the desktop program generates 6-12KB of network traffic.
The symptoms that appear on the client PCs are extremely slow responsiveness from the desktop application even though CPU utilization remains low which is what led me to doing a packet trace.
This does not occur when the client PC is logged into the local machine instead of the domain.
The traffic is being sent by a svchost, and tracing the PID of svchost reveals LmHosts, RemoteRegistry, and SSDPSRV are being hosted by that instance.
This is where my knowledge of Windows drops off... does anyone know if either of those 3 services would exhibit this kind of behavior? I would think this is somehow related to the security model implemented when logging into a domain but I'm not sure.
edit: It appears that if I disconnect any mapped network drives while connected to the domain the problem go away.
The desktop application does not interact with any files stored on the network drives whatsoever.
Facebook
Twitter