Presentation is loading. Please wait.

Presentation is loading. Please wait.

Network, Server, or App? Chris Greer

Published byIra Singleton Modified over 5 years ago

Similar presentations

Presentation on theme: "Network, Server, or App? Chris Greer"— Presentation transcript:

1 Network, Server, or App? Chris Greer
Undoing the Network Blame Game and Getting to the Real Root Cause of Slow Application Performance Chris Greer Network Analyst | Packet Pioneer LLC

2 Presenter Chris Greer chris@packetpioneer.com Twitter: @packetpioneer
YouTube: packetpioneer Network Analysis and Troubleshooting

3 Sick of blame?

4 Start with the transport layer to divide the OSI in half.
APPLICATION PRESENTATION SESSION TRANSPORT NETWORK DATA LINK PHYSICAL

5 What Should I look for when troubleshooting “slow’?
Wireshark has some great error events to flag TCP problems. Use the tcp.analysis.flags filter to spot them quickly, or the intelligent slide bar.

6 What TCP Events are Flagged?
TCP Retransmissions TCP Out-of-Orders Duplicate Acks Zero Windows Those are the big ones.

7 Example 1: Slow Web Download.pcap
Make sure to add a delta time column as well as a TCP Conversation Timer.

8 Investigate Those Retransmissions
Don’t assume that retransmissions equal network packet loss in all cases. Scenario:

9 Make sure you don’t over-filter
When working to understand the root cause of retransmissions, make sure not to over-filter the trace. Dig until you understand it.

10 TCP Window Problems Open Example 3_TCP Window Problem.pcap

11 TCP Keep Alives These may look bad – but are they?
Open Example 4_Slow Web Application.pcap

12 TCP Delayed ACKs This is the default behaviour of many TCP Stacks.
Open Example 5_Delayed ACKs.pcap

13 Questions? Thanks for coming! Don’t forget to review.

14

15

16 Presenter Packet Pioneer LLC Network Analyst - WCNA
Training and Professional Services Network and application performance analysis

17 Why TCP? Important stuff uses it. Some problems “hide” at this layer.
Key to isolating problem domain. Few take responsibility for it.

18 When a problem strikes Network engineers check network interfaces, utilization levels, link errors and the wireless environment They want to prove it’s not the network. APPLICATION PRESENTATION SESSION TRANSPORT NETWORK DATA LINK PHYSICAL

19 When a problem strikes Server and Application support people may check error logs and server resources to see if the issue is theirs. APPLICATION PRESENTATION SESSION TRANSPORT NETWORK DATA LINK PHYSICAL

20 What if the problem is in the middle. Or
What if the problem is in the middle? Or.. What if you could use the transport layer to find the real root cause? APPLICATION PRESENTATION SESSION TRANSPORT NETWORK DATA LINK PHYSICAL

21 What should I look for in traces?
Wireshark has some great error events to flag TCP problems. Use the tcp.analysis.flags filter to spot them quickly, or the intelligent slide bar.

22 What TCP events are flagged?
TCP Retransmissions TCP Out-of-Orders Duplicate Acks Zero Windows Those are the big ones.

23 Example 1:TCP Retransmission.pcap

24 What causes retransmissions?
Packet Discards FCS/CRC Errors Cable/Interface hardware errors. Those are the big ones.

25 Make sure you don’t over-filter
When working to understand the root cause of retransmissions, make sure not to over-filter the trace. Dig until you understand it. TCPRetransFromARPS.pcap

26 TCP Window Problems Open Example 3_TCP Window Problem.pcap

27 TCP Keep Alives These may look bad – but are they?
Open Example 4_Slow Web Application.pcap

28 TCP Delayed ACKs This is the default behaviour of many TCP Stacks.
Open Example 5_Delayed ACKs.pcap

29 Questions? Thanks for coming! Don’t forget to review.

Download ppt "Network, Server, or App? Chris Greer"

Similar presentations

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 OSI Transport Layer Network Fundamentals – Chapter 4.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 OSI Transport Layer Network Fundamentals – Chapter 4.
B5 – TCP Analysis - First Steps Jasper Bongertz, Senior Consultant Airbus Defence and Space.

B5 – TCP Analysis - First Steps Jasper Bongertz, Senior Consultant Airbus Defence and Space.
CMPE 150- Introduction to Computer Networks 1 CMPE 150 Fall 2005 Lecture 13 Introduction to Computer Networks.

CMPE 150- Introduction to Computer Networks 1 CMPE 150 Fall 2005 Lecture 13 Introduction to Computer Networks.
CPSC 601.381 Tutorial: TCP 101 r The Transmission Control Protocol (TCP) is the protocol that sends your data reliably r Used for email, Web, ftp, telnet,

CPSC Tutorial: TCP 101 r The Transmission Control Protocol (TCP) is the protocol that sends your data reliably r Used for , Web, ftp, telnet,
Understanding Networks. Objectives Compare client and network operating systems Learn about local area network technologies, including Ethernet, Token.

Understanding Networks. Objectives Compare client and network operating systems Learn about local area network technologies, including Ethernet, Token.
Computer Networks Transport Layer. Topics F Introduction  F Connection Issues F TCP.

Computer Networks Transport Layer. Topics F Introduction  F Connection Issues F TCP.
Networking Solutions Chapter 2 – The OSI Model. The Layered Approach Similar to a company like ◦ Advantages ◦Divides the network into ◦Multiple vendors.

Networking Solutions Chapter 2 – The OSI Model. The Layered Approach Similar to a company like ◦ Advantages ◦Divides the network into ◦Multiple vendors.
Copyright © 2005 Department of Computer Science CPSC 641 Winter 20111 Tutorial: TCP 101 The Transmission Control Protocol (TCP) is the protocol that sends.

Copyright © 2005 Department of Computer Science CPSC 641 Winter Tutorial: TCP 101 The Transmission Control Protocol (TCP) is the protocol that sends.
Error Checking continued. Network Layers in Action Each layer in the OSI Model will add header information that pertains to that specific protocol. On.

Error Checking continued. Network Layers in Action Each layer in the OSI Model will add header information that pertains to that specific protocol. On.
1 Lab 3 Transport Layer T.A. Youngjoo Han. 2 Transport Layer  Providing logical communication b/w application processes running on different hosts 

1 Lab 3 Transport Layer T.A. Youngjoo Han. 2 Transport Layer  Providing logical communication b/w application processes running on different hosts 
ISO Layer Model Lecture 9 October 16, 2000. The Need for Protocols Multiple hardware platforms need to have the ability to communicate. Writing communications.

ISO Layer Model Lecture 9 October 16, The Need for Protocols Multiple hardware platforms need to have the ability to communicate. Writing communications.
Introduction to Wireshark Making Sense of the Matrix

Introduction to Wireshark Making Sense of the Matrix
3: Transport Layer 3a-1 8: Principles of Reliable Data Transfer Last Modified: 10/15/2015 7:04:07 PM Slides adapted from: J.F Kurose and K.W. Ross, 1996-2010.

3: Transport Layer 3a-1 8: Principles of Reliable Data Transfer Last Modified: 10/15/2015 7:04:07 PM Slides adapted from: J.F Kurose and K.W. Ross,
Transport Layer Natawut Nupairoj, Ph.D. Department of Computer Engineering Chulalongkorn University.

Transport Layer Natawut Nupairoj, Ph.D. Department of Computer Engineering Chulalongkorn University.
Lecture Week 4 OSI Transport Layer Network Fundamentals.

Lecture Week 4 OSI Transport Layer Network Fundamentals.
Sharing the Network It slices, it dices, it sequences ….. All of this and error checking too!

Sharing the Network It slices, it dices, it sequences ….. All of this and error checking too!
Transport over Wireless Networks Myungchul Kim

Transport over Wireless Networks Myungchul Kim
Networking Fundamentals. Basics Network – collection of nodes and links that cooperate for communication Nodes – computer systems –Internal (routers,

Networking Fundamentals. Basics Network – collection of nodes and links that cooperate for communication Nodes – computer systems –Internal (routers,
TCP – Tips and Case Studies. Presenter – Chris Greer Packet Pioneer LLC Network Analyst - WCNA Training and Professional Services Network and application.

TCP – Tips and Case Studies. Presenter – Chris Greer Packet Pioneer LLC Network Analyst - WCNA Training and Professional Services Network and application.
TCP/IP. The idea behind TCP/IP is exactly the same we explained about the OSI reference model: when transmitting data, programs talk to the Application.

TCP/IP. The idea behind TCP/IP is exactly the same we explained about the OSI reference model: when transmitting data, programs talk to the Application.

Similar presentations

Ads by Google