Active Directory over VSAT

  • 1.3K Views
  • Last Post 18 January 2016
Mahdi posted this 18 January 2016

Greetings,   Our network team has decided to consider utilising VSAT connections when our main links goes down just to have a back up link available for services such as core banking and etc. They asked me about the active directory traffic and their suitable bandwidth also. Let me present a background:   Our forest consist of 35 child domains and 35 sites for each domain. Since clients in each domain login to their computers in their domain and each domain has only one site associated to it, we do not have Inter-Site related traffic for domain partitions except the schema and configuration partition which we rarely alter them.   ‎I was thinking to informing our network team about 512 Kbps is the need for this scenario. Any thoughts? Did I miss something to include for my considerations?    Mahdi Tehrani www.mahditehrani.ir

Order By: Standard | Newest | Votes
mcasey posted this 18 January 2016

You may also want to consider how many objects are in each domain, how much attribute data is stored in the objects, as well as how often the attribute data changes.

On Jan 18, 2016 1:27 AM, <tehrani.mahdi@xxxxxxxxxxxxxxxx> wrote:




Greetings,

 

Our network team has decided to consider utilising VSAT connections when our main links goes down just to have a back up link available for services such as core banking and etc. They asked me about the active directory traffic and their suitable bandwidth also. Let me present a background:

 

Our forest consist of 35 child domains and 35 sites for each domain. Since clients in each domain login to their computers in their domain and each domain has only one site associated to it, we do not have Inter-Site related traffic for domain partitions except the schema and configuration partition which we rarely alter them.

 

‎I was thinking to informing our network team about 512 Kbps is the need for this scenario. Any thoughts? Did I miss something to include for my considerations? 

 

Mahdi Tehrani

www.mahditehrani.ir

show

g4ugm posted this 18 January 2016

You don’t say which versions. If this is a single forest and you have older clients, then you may see severe degradation of logon performance while global group membership is checked with the nearest Global CatLog server.  The problem with VSAT connections is not the bandwidth, but the latency. Active Directory logon might be low bandwidth, but its very dependent on network latency. Dave Wade 

show

bdesmond posted this 18 January 2016

There’s a bunch of good advice in the thread already.

 

Rather than picking an arbitrary number, there are performance counters for replication throughput (DRA Inbound/Outbound Bytes/sec). You could collect this

data from your DCs for a period of time (perhaps a week), and do some analysis to find out what you’re actually consuming. The figure you’re guesstimating sounds high to me.



 

Thanks,

Brian Desmond

 

w – 312.625.1438 | c – 312.731.3132

 

show

Close