Performance issue if DTLS is enabled in Citrix ADC
Article ID: CTX239770
Updated On:
Description
With DTLS enabled a lot of performance issue is been encountered. Disabling DTLS works fine. However it cannot be the solution.
Users able to access StoreFront but the access is very slow
Resolution
If there are a lot of NAK missing packets, the issue could be external to Citrix ADC.
Try Activating UDP Flood Protection in the Firewall which is in between ADC and client.
Check if there is a lot of "UDT type: nak missing" packets in the capture
The NAK packet comes when there is a missing lower UDT sequence than the UDT sequence number of the latest received packet. Which shows that recipient missing those specific sequence number packet (could be due to out of order) and that may be another reason for latency.
Try Activating UDP Flood Protection in the Firewall which is in between ADC and client.
Problem Cause
Check the backend VDA, if it is sending most of the packet twice or more time which could lead to latency.Check if there is a lot of "UDT type: nak missing" packets in the capture
The NAK packet comes when there is a missing lower UDT sequence than the UDT sequence number of the latest received packet. Which shows that recipient missing those specific sequence number packet (could be due to out of order) and that may be another reason for latency.
Was this article helpful?
Yes
No
Powered by
