?
Solved

How do i determin if NIC is causing a broardcast storm

Posted on 2003-11-03
12
Medium Priority
?
609 Views
Last Modified: 2012-05-04
Im having some trouble here.
Im trying to determine if my Server/Workstation NIC is causing broadcast storm. If my server/workstation NIC is causing a broadcast storm how would i determine it, and how would i resolve the matter...
0
Comment
Question by:nakz
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
  • 2
  • +3
12 Comments
 
LVL 41

Expert Comment

by:stevenlewis
ID: 9675525
you need a packet analyzer
here's one (there are lots out there
http://www.wildpackets.com/products/etherpeek/features
0
 
LVL 41

Expert Comment

by:stevenlewis
ID: 9675887
0
 

Expert Comment

by:sp10de
ID: 9676155
Yep - etherpeek

:)
0
Are You Using the Best Web Development Editor?

The worlds of web hosting and web development are constantly evolving. Every year we see design trends change, coding standards adapt and new frameworks/CMS created. With such a quick pace of change it’s easy to get lost trying to keep up.

See if your editor made the list.

 

Expert Comment

by:sp10de
ID: 9676170
To find out if there's an abundance of network traffic, keep it simple.

Is your network performance sluggish?  Look at the lights on the networking equipment.  Are they constantly active?

If you disconnect one workstation, does network performance improve?  If its the server - you might have troubles.

Keep your a/v up to date.  Might be worthwhile investing in and IDS and FW, depending on the size of your organization.
0
 

Author Comment

by:nakz
ID: 9676398
It not what im looking for, but more information on it..
0
 
LVL 35

Expert Comment

by:ShineOn
ID: 9676913
www.ethereal.com.  It's free.

First, and simplest - whatever device you suspect is causing a broadcast storm will exhibit excessive activity on its switch or hub port.  that is a big red flag for you.

If you are using a switch, it is best to put a dumb, plain hub/repeater in the circuit, plug your monitoring PC into the hub, and run the protocol analyzer.  It can be done on a switch port, provided that the switch port is configured properly to allow a protocol analyzer to capture all packet activity.

If you have a multi-level collapsed backbone, and have already isolated the problem device to a specific segment, you can put the dumb hub in circuit between the problem segment and the backbone to pinoint the problem device.
0
 
LVL 35

Expert Comment

by:ShineOn
ID: 9676927
After you isolate the problem device, then you can troubleshoot the device to resolve the issue.  It may be that what sp10de and stevenlewis suggested is the root cause - you may have been stung by a virus or worm.

Once you isolate the device and find out what kind of excessive traffic it is causing (arps for instance) then it's easier to determine what might be the cause, and what to do about it.

To avoid a lot of putzing, I personally would download both the blaster and welchia cleaner programs from www.symantec.com and run them both on the suspect computer first, and save further protocol analysis for after if that doesn't fix it.
0
 
LVL 4

Expert Comment

by:Wiired
ID: 9683406
Flashback....mine was a bad NIC. 5 minute fix :-)
0
 

Author Comment

by:nakz
ID: 9693004
What other major thing that mite cause NIC broadcast storm. ive use the software but it doesnt dermine anything.. could be be my server??
0
 
LVL 35

Expert Comment

by:ShineOn
ID: 9694550
Have you isolated the device causing the broadcast storm?  Is it the server?
0
 
LVL 41

Expert Comment

by:stevenlewis
ID: 9697712
try swapping out the NIC with a known good one
0
 

Accepted Solution

by:
wattanak earned 600 total points
ID: 10976416
Change Your server NIC
0

Featured Post

Will your db performance match your db growth?

In Percona’s white paper “Performance at Scale: Keeping Your Database on Its Toes,” we take a high-level approach to what you need to think about when planning for database scalability.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Make the most of your online learning experience.
This article is in regards to the Cisco QSFP-4SFP10G-CU1M cables, which are designed to uplink/downlink 40GB ports to 10GB SFP ports. I recently experienced this and found very little configuration documentation on how these are supposed to be confi…
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…
Suggested Courses

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question