Simple TMG Perfromance Tweaks using DNS
Boosting TMG Performance through simple DNS tweaks
TMG uses Its own Built-in Name resolution Cache, Then it fails back to DNS, then it fails back to Netbios Name Resolution. Accordingly below are some DNS related methods that can be used to optimize TMG Performance
- TMG Perfroms Forward and backward name resolution for Firewall Rules, so pay attention to the effeciency of its access to the DNS server
- DISABLE Netbios broadcasts on all network cards. Netbios resolution fails back to a broadcast which takes a very long time, leaving the request pending during that time. The best way to perform this is the following registry value
Path: HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\NetBT
Parameters
Name: NodeType
Type: REG_DWORD
Value: 2 - It is preferable to dedicate a name Server for each TMG Server Array
- Put the internal adapter on top of the adapters list, and configure it to use an internal DNS Server
- Do not configure Other adapters with DNS Servers
Comments
Anonymous
January 01, 2003
Is this registry setting any different than going into the adapter's setting, WINS tab and disabling NetBIOS over TCP/IP?Anonymous
December 08, 2010
The comment has been removedAnonymous
January 31, 2011
If you have allowed or denied access based on Domain Name sets or URL sets, if TMG gets an IP, it needs to do a reverse lookup to match the set. TMG cannot automagically resolve that IP to a name. have a read at blogs.technet.com/.../isa-server-2006-stops-answering-requests.aspxAnonymous
January 31, 2011
BTW my previous comment was for Suliman