It happens. Somehow, someway you have got really strange stuff going on. Very intermittent connectivity with applications or just flat out not working. Web pages extremely slow, partial loading, connections reset constantly. But for some reason pings don't time out. As a last ditch effort you decide to check layer2/3 to see what's going on and you suspect possible a duplicate IP because it's just a single host.
To troubleshoot look at ARP tables on the machine's default gateway. You'll see the router periodically has a different MAC for the same IP address. Or you'll see the ARP time for that entry is very low and stays that way. You can also clear the ARP entry and check a few times and see the entry change. Those are two dead giveaways that you have two MAC addresses with the same IP.
Then go through the switch MAC table, find one of the MACs and disable the port. That should resolve the application troubles and give time to hunt down the person that caused this atrocity.
To troubleshoot look at ARP tables on the machine's default gateway. You'll see the router periodically has a different MAC for the same IP address. Or you'll see the ARP time for that entry is very low and stays that way. You can also clear the ARP entry and check a few times and see the entry change. Those are two dead giveaways that you have two MAC addresses with the same IP.
Then go through the switch MAC table, find one of the MACs and disable the port. That should resolve the application troubles and give time to hunt down the person that caused this atrocity.
Facebook
Twitter