Overclock.net › Forums › Specialty Builds › Servers › Advise on optimizing and hardening a W2k8 r2 Server
New Posts  All Forums:Forum Nav:

Advise on optimizing and hardening a W2k8 r2 Server

post #1 of 2
Thread Starter 
I have just finished setting up the media side of my home server and would like to know how I can optimize my server so it can serve clients on the network more effectively without processing and read/write IO bottlenecks while the server running its services.

The system specs are:

CPU: Q6600
RAM: 6GB (DDR2 800 *one was doa will be 8 soon)
MOTHERBOARD: intel DQ965GFEKR
RAID CARD: ARECA 1280ml
BOOT: WD black 1tb (boot)
DATA (RAID 5): WD green 2tb x 3

Currently running these roles:

- NFS
- Plex Media Server serving a single client so far. (cannot run as service)
- utorrent *
- SABnzbd+ *
- Sickbeard *

*service running under user in admin group


Problems:

- The raid array write speed is 65MB/s from observing copy/pasting to the NFS, does this sound right for my setup? How would I improve it if it is not.

- I've noticed while plex is streaming to a client and someone is moving files to or from the raid storage the stream will stutter.
Everything is connected via cat5 and runs on gigabit except for the plex client, this should not matter as it runs flawlessly when no other IO operations are taking place.
I'm not to familiar with w2k8 and was wondering what would I have to do to give IO priorities + buffer to plex over the NFS service to fix this, This would also expand to Network IO priorities.

- I would like to centralize all of the http services to a single port. Would I have to write my own page directing each service to its own port+url, using hyperlinks? Is there something like this already out there? The reason for this is for wan access of there service (I would like to be presented with a list of services the host is providing and a link to each http service)

- How would I harden this server to prevent unauthorized access to this machine/ hijacking ( Is there something like disable root access via ssh?) How would I limit wan to specific services?


Thanks biggrin.gif
Zardoz
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 950 @ 4.21 (HT/On) #3043A793 Rampage III GENE NVIDIA Geforce GTX 560 Ti MSI TFII @ Stock G.SKILL Ripjaws Series 8GB DDR3 1600 
Hard DriveOptical DriveOSMonitor
Intel X25-M SSD 80GB [x2] Raid 0 + Seagate 1TB Pioneer BR-Drive Win7 Ultimate 64bit Acer B273hu 
PowerCase
GE-M800A-d1 Gigabyte LIAN LI PC-A04B mATX 
  hide details  
Reply
Zardoz
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 950 @ 4.21 (HT/On) #3043A793 Rampage III GENE NVIDIA Geforce GTX 560 Ti MSI TFII @ Stock G.SKILL Ripjaws Series 8GB DDR3 1600 
Hard DriveOptical DriveOSMonitor
Intel X25-M SSD 80GB [x2] Raid 0 + Seagate 1TB Pioneer BR-Drive Win7 Ultimate 64bit Acer B273hu 
PowerCase
GE-M800A-d1 Gigabyte LIAN LI PC-A04B mATX 
  hide details  
Reply
post #2 of 2
Quote:
Originally Posted by anthony92 View Post

- The raid array write speed is 65MB/s from observing copy/pasting to the NFS, does this sound right for my setup? How would I improve it if it is not.

This doesn't seem too abnormal. RAID 5 typically has quite poor write speeds which can hamper copy operations.

If you can get by with less space and/or can afford another drive, something like RAID 10 might be better.
Quote:
Originally Posted by anthony92 View Post

- I've noticed while plex is streaming to a client and someone is moving files to or from the raid storage the stream will stutter.
Everything is connected via cat5 and runs on gigabit except for the plex client, this should not matter as it runs flawlessly when no other IO operations are taking place.
I'm not to familiar with w2k8 and was wondering what would I have to do to give IO priorities + buffer to plex over the NFS service to fix this, This would also expand to Network IO priorities.

If you can segregate different uses on different physical drives, this would be the best way to reduce I/O bottlenecks. However, this may not be practical if you want to easily stream stuff you have shared or vice versa.

You should also make sure large system cache is enabled (it is by default) and manually set Plex to a higher CPU priority as I/O priorities are derived from that.
Quote:
Originally Posted by anthony92 View Post

- I would like to centralize all of the http services to a single port. Would I have to write my own page directing each service to its own port+url, using hyperlinks? Is there something like this already out there? The reason for this is for wan access of there service (I would like to be presented with a list of services the host is providing and a link to each http service)

Sounds like simple NAT and port forwarding could work for this.
Quote:
Originally Posted by anthony92 View Post

- How would I harden this server to prevent unauthorized access to this machine/ hijacking ( Is there something like disable root access via ssh?) How would I limit wan to specific services?

I can't really help you here, I know next to nothing about SSH. You should be able to set security profiles for specific services through the security configuration wizard or Local Security Policy.
Primary
(15 items)
 
Secondary
(13 items)
 
In progress
(10 items)
 
CPUMotherboardGraphicsRAM
5820K @ 4.2/3.5GHz core/uncore, 1.175/1.15v Gigabyte X99 SOC Champion (F22n) Gigabyte AORUS GTX 1080 Ti (F3P) @ 2025/1485, 1... 4x4GiB Crucial @ 2667, 12-12-12-28-T1, 1.34v 
Hard DriveHard DriveHard DriveCooling
Plextor M6e 128GB (fw 1.06) M.2 (PCI-E 2.0 2x) 2x Crucial M4 256GB 4x WD Scorpio Black 500GB Noctua NH-D15 
OSMonitorKeyboardPower
Windows 7 Professional x64 SP1 BenQ BL3200PT Filco Majestouch Tenkeyless (MX Brown) Corsair RM1000x 
CaseMouseAudio
Fractal Design Define R4 Logitech G402 Realtek ALC1150 + M-Audio AV40 
CPUMotherboardGraphicsRAM
X5670 @ 4.4/3.2GHz core/uncore, 1.36 vcore, 1.2... Gigabyte X58A-UD5 r2.0 w/FF3mod10 BIOS Sapphire Fury Nitro OC+ @ 1053/500, 1.225vGPU/1... 2x Samsung MV-3V4G3D/US @ 2000, 10-11-11-30-T1,... 
RAMHard DriveHard DriveHard Drive
1x Crucial BLT4G3D1608ET3LX0 @ 2000, 10-11-11-3... OCZ (Toshiba) Trion 150 120GB Hyundai Sapphire 120GB 3x Hitachi Deskstar 7k1000.C 1TB 
CoolingOSPowerCase
Noctua NH-D14 Windows 7 Pro x64 SP1 Antec TP-750 Fractal Design R5 
Audio
ASUS Xonar DS 
CPUMotherboardGraphicsRAM
i7-6800K @ 4.3/3.5GHz core/uncore, 1.36/1.2v ASRock X99 OC Formula (P3.10) GTX 780 (temporary) 4x4GiB Crucial DDR4-2400 @ 11-13-12-28-T2, 1.33v 
Hard DriveHard DriveCoolingOS
Intel 600p 256GB NVMe 2x HGST Travelstar 7k1000 1TB Corsair H55 (temporary) Windows Server 2016 Datacenter 
PowerCase
Seasonic SS-860XP2 Corsair Carbide Air 540 
  hide details  
Reply
Primary
(15 items)
 
Secondary
(13 items)
 
In progress
(10 items)
 
CPUMotherboardGraphicsRAM
5820K @ 4.2/3.5GHz core/uncore, 1.175/1.15v Gigabyte X99 SOC Champion (F22n) Gigabyte AORUS GTX 1080 Ti (F3P) @ 2025/1485, 1... 4x4GiB Crucial @ 2667, 12-12-12-28-T1, 1.34v 
Hard DriveHard DriveHard DriveCooling
Plextor M6e 128GB (fw 1.06) M.2 (PCI-E 2.0 2x) 2x Crucial M4 256GB 4x WD Scorpio Black 500GB Noctua NH-D15 
OSMonitorKeyboardPower
Windows 7 Professional x64 SP1 BenQ BL3200PT Filco Majestouch Tenkeyless (MX Brown) Corsair RM1000x 
CaseMouseAudio
Fractal Design Define R4 Logitech G402 Realtek ALC1150 + M-Audio AV40 
CPUMotherboardGraphicsRAM
X5670 @ 4.4/3.2GHz core/uncore, 1.36 vcore, 1.2... Gigabyte X58A-UD5 r2.0 w/FF3mod10 BIOS Sapphire Fury Nitro OC+ @ 1053/500, 1.225vGPU/1... 2x Samsung MV-3V4G3D/US @ 2000, 10-11-11-30-T1,... 
RAMHard DriveHard DriveHard Drive
1x Crucial BLT4G3D1608ET3LX0 @ 2000, 10-11-11-3... OCZ (Toshiba) Trion 150 120GB Hyundai Sapphire 120GB 3x Hitachi Deskstar 7k1000.C 1TB 
CoolingOSPowerCase
Noctua NH-D14 Windows 7 Pro x64 SP1 Antec TP-750 Fractal Design R5 
Audio
ASUS Xonar DS 
CPUMotherboardGraphicsRAM
i7-6800K @ 4.3/3.5GHz core/uncore, 1.36/1.2v ASRock X99 OC Formula (P3.10) GTX 780 (temporary) 4x4GiB Crucial DDR4-2400 @ 11-13-12-28-T2, 1.33v 
Hard DriveHard DriveCoolingOS
Intel 600p 256GB NVMe 2x HGST Travelstar 7k1000 1TB Corsair H55 (temporary) Windows Server 2016 Datacenter 
PowerCase
Seasonic SS-860XP2 Corsair Carbide Air 540 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Servers
Overclock.net › Forums › Specialty Builds › Servers › Advise on optimizing and hardening a W2k8 r2 Server