• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Port Security - MAC adresses

O

oddyager

Diamond Member
I noticed from the Cisco Network Assistant that one of the ports configured for port security (with a max no. of mac address count to 2) is getting a ton of rejections (165 addresses to be exact). This appears to be just a regular workstation. What would cause a host to shoot out packets of info from that many MAC addy's? virus? vmware (based on my knowledge it shouldn't be any)?

Thanks.
 
turns out it was an infected machine. what's odd though is even though the machine has pulled form the network, and i clear the mac address table from that interface, it's still getting pounded with packets from all different mac addresses.


EDIT: TUrns out the source addresses aren't spoofed (i think). I double-checked the dhcp server and the mac addresses that are shown sending packets to that one port are all legit machines.
 
you may have a loop then. try to track down where the mac addresses are coming from (look at mac addy table)

what exactly are they syptoms and any messages?
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top