< Day Day Up > |
Network connectivity problems can be defined as communication problems between one host and another host (or set of hosts). In general, these communications problems exist in one of three areas: the remote host, the local host, or in the connection between them. A computer that is unable to communicate with any other computers is likely to be the source of its own problem. If the computer can communicate with some, but not all other computers, performing an accurate diagnosis can be more complicated. It is important for you to note that this exam objective uses the term diagnose rather than troubleshoot. Although it is important for you to be able to suggest a solution, the key to this section of the exam is to know how to get a clearer understanding of the problem. Simple Diagnostic ToolsThere are several diagnostic tools that are automatically installed on Windows Server 2003. For many of you, these tools are so obvious a choice that it might seem trite to mention them here. On the other hand, you are expected to remember that even simple tools can offer a solution and that questions can be written in such a way that you might discount a correct answer because it seems too easy in comparison to other presented options. ipconfigThe ipconfig utility can be used from the command prompt. When run without switches, the ipconfig command-line utility displays the basic TCP/IP configuration of the computer on which it is run. When you run the tool without a switch, you are shown the
Looking at this information can tell you if the IP address of the server is configured correctly. In troubleshooting IP address problems, three things could be wrong:
Subnet CalculationsIf you are already competent at subnetting, you can skip this section and go on to the next. The subnet on which a host resides is determined by two things: its IP address and its subnet mask. The subnet mask modifies the IP address revealing the network address. After you become adept at these calculations, you can quickly do them in your head. Until you reach that stage, you, like many other students before you, will find subnet calculations tedious and unnecessarily complicated. There are many different methods to performing subnet calculations. The "Need to Know More?" resources for this chapter, found in Appendix B, have a link to an excellent site that can help you if the method presented here does not suit you. IP addresses and subnet masks are made up of four numbers, called quads, separated by periods. A decimal quad in a subnet mask can only have nine distinct values: 255, 254, 252, 248, 240, 224, 192, 128, and 0. A decimal quad in an IP address can have values from 0 to 255. To determine whether two hosts, in this case the default gateway and the host address, are on the same subnet, you compare the binary version of the subnet quads against the binary version of the host and default gateway quads. Before you worry about converting decimal to binary in an exam situation, remember that you are allowed to use the Windows Calculator during the exam. Be certain to switch the Calculator to Scientific mode, as shown in Figure 10.5, rather than Standard mode, as this allows you to translate from binary to decimal and back. Figure 10.5. The Windows Calculator is a tool that you are allowed to use during this exam.To determine whether two hosts (for example, a host and its default gateway) are on the same subnet, convert the IP addresses and the subnet masks to binary. Then place them in a table similar to Table 10.1.
The one digits in the subnet quads show which digits in the host and gateway quads must match. In the example shown in Table 10.1, the first, second, and third quads are exactly the same in the host and gateway IP addresses. The subnet mask in the fourth quad has four ones followed by four zeros; this means that the first four binary digits of the fourth quad of the host and gateway must match if they are on the same subnet. In this case, they do not match; the fourth binary digit of the fourth gateway quad is zero, whereas the fourth binary digit of the fourth host quad is one. pingThe ping utility is used to quickly check connectivity between two hosts. Ping sends five Internet Control Message Protocol (ICMP) echo requests to the destination host, giving you an estimate of the time it takes for a packet to travel to the destination and back. Ping is generally used to determine whether a remote host can be contacted. It can also be used to determine how unreliable a link is by displaying what sort of packet loss is occurring. Ping does not work through firewalls and some hosts no longer respond to ping because ICMP can be used in Denial of Service attacks. tracertWhereas the ping utility can tell you whether a host can be contacted, how long a packet takes to get there and back, and what sort of packet loss the connection is experiencing, the tracert utility can be used to map out the exact path between one host and another. Tracert can be used to locate bottlenecks in the path taken from one host to another, though for more information you should use the pathping tool. pathpingPathping is a utility that combines the functionality of tracert with that of ping. Pathping not only displays the route to another host, but also displays how long each step in the path takes as well as the reliability of each step in the path. If there is a router somewhere on the network that is overloaded, you are likely to find it with the pathping utility, as this utility displays how many packets the router is dropping as well as a delay in the path. In such a case, you would either try to bypass the problematic router or replace it. telnetTelnet can provide a quick way of verifying that a remote SMTP server, Internet Message Access Protocol version 4 (IMAP4) server, or Post Office Protocol version 3 (POP3) server is functioning. As you know, these servers operate on specific ports. To check that, for example, an SMTP service is running on a local or remote computer, use the following command from the command prompt: telnet destination.host 25 In the telnet window, you should receive a message like 220 exchange4.adintegtest.internal Microsoft ESMTP MAIL Service, Version: 6.0.37 90.0 ready at Mon, 5 Jan 2004 11:59:41 +1100 The preceding message will be different if the mail server is running an SMTP Service other than that used by Exchange. This message simply informs you that the Microsoft ESMTP MAIL service is functioning at this particular moment in time. The syntax of the command is telnet destination.host portnumber. In the case of SMTP, it will be port 25; IMAP4 is port 143, and POP3 is port 110. If you Telnet to each of these ports on a mail server that supports them, it results in a different message informing you of the service status. NetDiagNetDiag is a part of the Windows Server 2003 support tools. If you followed the Exchange Server Deployment Tools installation checklist, you have already installed the support tools on your Exchange server. When you ran the tool, you performed a basic examination of the network connectivity of the computer that was going to host Microsoft Exchange Server 2003. In this section, we explore this tool in more detail. Installing NetDiagIf you did not follow the Exchange Server Deployment Tools installation checklist, you can install the Windows Server 2003 support tools (or the equivalent version for Windows 2000 Server) by installing the suptools.msi file in the \support\tools folder of your Windows Server 2003 (or Windows 2000 Server) installation media. Running NetDiagNetDiag installs to the \Program Files\Support Tools folder. Unless this folder is included in your path variable, you need to run NetDiag from the folder in which it is installed.
Without switches, some of the checks that NetDiag performs include
When the command has completed running, it announces whether it was able to complete successfully. As the output is verbose, you might want to pipe it via more, as seen in the following example: Netdiag | more Alternatively, NetDiag can be run with the /q switch, which only displays errors and warnings that NetDiag generates. Other switches are included in Table 10.2.
Network MonitorNetwork Monitor (see Figure 10.6) is a tool that can be installed on Windows Server 2003 or Windows 2000 Server through the Add/Remove Windows Components section of the Add/Remove Programs area of the Control Panel. Figure 10.6. The Network Monitor can be used to examine traffic on the network to and from the Exchange Server 2003 computer.Network Monitor can be used to
Ruling Out Problems with the NetworkIn addition to checking the items in the preceding list, it can be worth checking how the network cards are performing and whether they are overloaded by traffic. If the network card is overloaded, this necessarily causes blowouts in the size of the external and internal mail queues. The performance counter you should check is the Network Interface\Bytes Total/sec counter, which indicates how much information the network card is processing per second. For a 100 megabit network, the rate should be below 8 MB/sec. You have several methods to reduce problems involved in excessive network traffic. One is to create a separate network just for global catalog and Exchange Server to Exchange Server traffic. This is not feasible on the WAN scale, but is definitely an option if using a local area network (LAN). |
< Day Day Up > |