Re: help sbs2003 add additional SQL server
From: SuperGumby [SBS MVP] (not_at_your.nellie)
Date: 12/12/04
- Next message: Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]: "Re: Has anyone used the Multilink option in Routing and Remote Acc"
- Previous message: Chad A. Gross [SBS MVP]: "Re: how-to disable printer balloon"
- In reply to: Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]: "Re: help sbs2003 add additional SQL server"
- Next in thread: Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]: "Re: help sbs2003 add additional SQL server"
- Reply: Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]: "Re: help sbs2003 add additional SQL server"
- Messages sorted by: [ date ] [ thread ]
Date: Sun, 12 Dec 2004 19:33:41 +1100
server publishing SMTP via ISA also breaks it. I keep teling you about it
but nobody takes any notice.
"Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]" <sbradcpa@pacbell.net>
wrote in message news:%23Z50F8B4EHA.3596@TK2MSFTNGP12.phx.gbl...
> Take off IIS on a SBS box and you've just killed....
>
> Sharepoint
> OWA
> OMA
> portions of Exchange
>
> Tony... this isn't the normal setup and will break many of the wizards.
>
> Server publish exchange on ISA dude and shall I point you to the
> conversations where this CAN turn you into a mail relay?
>
> TSU wrote:
>> Hello sanna,
>>
>> Like Susan I'm running everything including the kitchen sink on my SBS
>> network, but because I'm also running several SQL-based applications I'm
>> likely seeing things you will also see, so I'm going to recommend a
>> configuration to you to address your concerns and with an eye to getting
>> desired performance.
>>
>> First, architecting security.
>> - Understand why we have multi-tiered applications today, you're
>> separating the frontend which is the application's first line of defense
>> from the data which is stored and managed completely separately.
>> Understanding this, remove all highly functional Applications from the
>> Server, especially IIS (or at least do this as much as possible). IMO
>> it's OK to leave ISA running on SBS because ISA doesn't enable as much
>> functionality as IIS so has a tinier attack surface, but continue to run
>> SQL on your SBS as long as no SQL ports are opened on the WAN interface.
>>
>> Note that ironically you're placing your application "frontend" <behind>
>> your SBServer while placing your "backend" in front on the SBServer
>> itself...
>>
>> - Web Publish your internal resources whenever possible. Server Publish
>> only when necessary.
>>
>> - Do not use VPNs extensively if at all. Do not use VPNs for branch
>> offices or regular Users unless no other solution is availalble. VPNs
>> should be used only by your most trusted Users who can be <very>
>> responsible about thier machines, and even then you should consider
>> configuring Quarantine.
>>
>> So, the idea is to run ISA, SQL and Exchange on your SBServer. Personally
>> I also recommend Server Publishing Exchange according to the very
>> specific instructions I've posted publicly before, but if you do this be
>> aware this is contrary to official SBS recommendations (You can search
>> this and the ISA newsgroups using my name and SMTP for instructions).
>>
>> IIS should be running on a different Member Server, and can be support
>> Sharepoint Services/Companyweb, your LOB application, other apps.
>>
>> As for performance, other people I've spoken to often also say that they
>> do nothing to tune performance but they're usually not SBS and are
>> running only one Server app on the box. With SBS I <highly> recommend the
>> following which will minimize latency issues whenever Windows might find
>> that resources need to be re-allocated.
>>
>> - Know you can't tune Exchange much. Its store.exe will grab all
>> available memory over time. So, your strategy should be to make sure that
>> everything else grabs as much memory as they need before Exchange sucks
>> it all up.
>>
>> - SQL. You can tune processor and memory reservation by inspecting the
>> Server Instance' properties. SQL2K is very efficient so if you can
>> configure all applications to point to databases within a single Server
>> Instance and they'll all be happier, but there can be exceptions. I don't
>> think that today there is any point to dedicating a processor to SQL, so
>> avoid that option, but <know> that when you configure memory reservation
>> you're configuring a threshold which <must> be reached before it becomes
>> effective. So, in other words if you set to 200mb and you never reach
>> that threshold, every process will start from zero. Monitor your apps'
>> aggregate usage with something like taskmgr noting peaks and consistent
>> usage, then set your threshold to about 80% of that.
>>
>> - ISA Web caching. This can be tricky. Know that if you've enable caching
>> that common settings support both forward and reverse caching which might
>> be considered nearly impossible to ridiculous trying to tune well. First,
>> you should know that forward caching (Internal Users surfing websites) is
>> nearly impossible to tune but <must> be accounted for in your
>> calculations. I recommend inspecting your ISA reports tracking pages
>> surfed noting FTP and HTTP large file downloads, then saving a
>> calculation for that.
>>
>> Reverse caching (Users surfing your own Websites) on the other hand can
>> usually be calculated easily and fairly precisely. Total up the size of
>> your website including images, then calculate a number between 1.5 and
>> twice that amount.
>>
>> Finally, add your numbers for forward caching and reverse caching, to
>> know how many megabytes of RAM you want to reserve out of your total RAM
>> installed and set appropriately.
>>
>> If you do these things, you'll do a pretty decent job of general tuning
>> although of course if you want to also improve the performance of the
>> application(s) themselves you have alot more work to do, particularly
>> configuring SQL table indices.
>>
>> Most SBServers won't need this level of tuning, but if you're going to be
>> running some heavy apps, don't ignore the special needs of your
>> situation.
>>
>> HTH,
>> Tony Su
>>
>>
>>
>> "Susan Bradley, CPA aka Ebitz - SBS Rocks" wrote:
>>
>>
>>>For the record... I"m running SQL and ISA and Exchange and the kitchen
>>>sink on a dual prog 4 gig RAM server that is falling asleep from the lack
>>>of things to do.
>>>
>>>Seriously...we keep saying "it's too much to have these boxes do all
>>>this... and really think we are underestimating the horsepower of these
>>>boxes.
>>>
>>>Lanwench [MVP - Exchange] wrote:
>>>
>>>>sanna wrote:
>>>>
>>>>
>>>>>Mike, Thanks for writing.
>>>>>
>>>>>I don't know if I can run a standard SQL server on a second server in
>>>>>the same SBS2003 domain?
>>>>
>>>>
>>>>Yes.
>>>>
>>>>
>>>>>I have NOT tried installing JUST the SQL server from SBS2003 CD.
>>>>
>>>>
>>>>Don't - you need regular Windows server & regular SQL.
>>>>
>>>>
>>>>>Any comments/help wellcome.
>>>>>
>>>>>Thank you.
>>>>>
>>>>>"Mike" wrote:
>>>>>
>>>>>
>>>>>
>>>>>>not version but copy
>>>>>>
>>>>>>"Mike" wrote:
>>>>>>
>>>>>>
>>>>>>
>>>>>>>Sanna,
>>>>>>>
>>>>>>>You can not use the version of SQL that came with SBS. If you have
>>>>>>>another copy of SQL you can set it up to run on a second box.
>>>>>>>
>>>>>>>"sanna" wrote:
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>>>Hi
>>>>>>>>I have sbs2003 Premium ( running DC, Exchange, File srv, OWA/IIS).
>>>>>>>>Now I want to run an critical business app (web based) which
>>>>>>>>requires SQL and IIS. Can I add a second SERVER into same domain,
>>>>>>>>that runs SQL web application? I know sbs2003 Premium already has
>>>>>>>>sql, but I have not enabled it as I am concerned about running
>>>>>>>>everything on one computer
>>>>>>>>(DC,Exchange,File/Print,OWA-IIS,SQL,Anti-virus,Backup ).
>>>>>>>>Your help is grately appreciated.
>>>>
>>>>
>>>>
>
> --
> An open letter to Steve Ballmer::
> http://msmvps.com/bradley/archive/2004/12/06/22637.aspx
- Next message: Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]: "Re: Has anyone used the Multilink option in Routing and Remote Acc"
- Previous message: Chad A. Gross [SBS MVP]: "Re: how-to disable printer balloon"
- In reply to: Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]: "Re: help sbs2003 add additional SQL server"
- Next in thread: Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]: "Re: help sbs2003 add additional SQL server"
- Reply: Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]: "Re: help sbs2003 add additional SQL server"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
