Jump to content
xisto Community
Sign in to follow this  
Followers 0
Mr. Matt

Tracing Broadcast Storms A poorly managed or configured layer 2 switch may affect network laten

By Mr. Matt, in Computer Networks

Recommended Posts

Mr. Matt    0

Mr. Matt
Posted

In some cases, a single layer 2 switching device configured improperly can cause serious connectivity problems, especially on a large network. Problems of this nature behave similar to Denial of Service (DoS) attacks but are slightly easier to track.Most intranets serve a central location where other internal networks are connected. Whether it is a remote off-site location or only accessible by taking an underground railway, it's usually the best place to start disconnecting backbones to find out which physical subnet is causing the problem. Broadcast storms are generally identified by the simultaneous blinking of LEDs spanning multiple switches. By disconnecting its uplink (or backbone), process of elimination can be used to determine if it is a node connected or another switching device.In a typical setup, once a subnet is determined to have caused the problem, trimming down the network hierarchy to the very node causing the problem requires hardly more than taking a little walk and disconnecting backbones to track down the building housing the IDF with suspicious activity.In a recent hunt for the offensive node, we found that a home/office size 8-port Linksys was plugged into itself. Unfortunately, switching devices are apparently incapable of interpreting or ignoring packets that loop back into itself (or the same layer 2 device). Unfortunate indeed...

Share this post

Link to post
Share on other sites

skedad    0

skedad
Posted

While we were learning in our Cisco lab in college, we created a small LAN storm. It was interesting to learn that we had two sides of our class, and the second side would steal a lot of our bandwidth. We had a server PC on the other side that added an extra router in hopes to take the extra steps needed to get online. Well I believe he took a line to an outside WAN line, and instead of getting the extra bandwidth to our side of the room, he disrupted the left side of the room and each line went inactive. Sorry if my story is a little rough around the edges, it has been a while since I have been back in class! I just knew that storms were an interesting, but small threat to our learning process... But we went back and started fresh... and we made sure that we had more openings to the outside world.

Share this post

Link to post
Share on other sites

iGuest    3

iGuest
Posted
LAN Broadcast controlTracing Broadcast StormsWe have several hundred nodes (1000+) in our LAN. No VLAN's implemented yet. We have to manage some how without it. Often we recieve directed broadcast or broadcsat storm which chokes whole network, most of the times the Core Switch & routers stopped responding. We do use sniffers, iRIS, netflow, solarwinds for analyzing that particular incident by Top 10 Users or finding top traffic generator machine.We use the broadcast storm control command in Cisco switches but ginving right packet per second size is difficult as some time single machine either having virus or make session to outside world machine with limited packet size that is legitimate as given in storm control command but due to excess of traffic works enough to choke the link.Need any quick fix to the problem.

Share this post

Link to post
Share on other sites

iGuest    3

iGuest
Posted
IT MGR.Tracing Broadcast Storms

Dear users.

The best solution is put in your company a firewall and make sure the antivirus should be trend micro.

Here I am facing lot of problem like this. Daily I monitor but I can control becoz my firewall shows the system broadcasting.If your antivirus not good than nobody can do. System Broadcasting it means your antivirus signature is not matching with virus.But trend micro controlled  that type of problmes.I will not suggest you to purchase trend micro you can purchase any but make sure signature file is must be there.

Regards,

Rajesh shah

-reply by rajeshshah

Share this post

Link to post
Share on other sites

iGuest    3

iGuest
Posted
Broadcasting in lanTracing Broadcast StormsHi, I am facing broadcasting problem in my lan. Presently I am having 20 systems with 2 seperate blocks like admin and production. Production block is 60mts away from admin block which has been connected through cat 5 cable from one end to another. I am using railtel corporation as ISP.I am using dax 1821i router which has been provided by my isp.D-link 24 port switch. Offently I use to get problems like internet speed decreasing due to this all of a sudden work goes down at my office. When I call ISP person he says broadcasting is happening at our end can u pls advise me what are the ways to check the broadcast and how to avoid this...Kindly help me in this regard...-question by sathish

Share this post

Link to post
Share on other sites

iGuest    3

iGuest
Posted
Dlink lan card broadcasting Tracing Broadcast Storms

Dear Sir

  I use Dlink lan in a system lan card broadcasting again and again I unstall driver format windows and update motherboard bios 

Please solve this problem

-reply by parveen jangra

Share this post

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Sign in to follow this  
Followers 0
Go To Topic Listing
×
×
  • Create New...

Important Information

Terms of Use | Privacy Policy | Guidelines | We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.

  I accept