Solved

How do i determin if NIC is causing a broardcast storm

Posted on 2003-11-03
12
585 Views
Last Modified: 2012-05-04
Im having some trouble here.
Im trying to determine if my Server/Workstation NIC is causing broadcast storm. If my server/workstation NIC is causing a broadcast storm how would i determine it, and how would i resolve the matter...
0
Comment
Question by:nakz
  • 3
  • 3
  • 2
  • +3
12 Comments
 
LVL 41

Expert Comment

by:stevenlewis
ID: 9675525
you need a packet analyzer
here's one (there are lots out there
http://www.wildpackets.com/products/etherpeek/features
0
 
LVL 41

Expert Comment

by:stevenlewis
ID: 9675887
0
 

Expert Comment

by:sp10de
ID: 9676155
Yep - etherpeek

:)
0
Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

 

Expert Comment

by:sp10de
ID: 9676170
To find out if there's an abundance of network traffic, keep it simple.

Is your network performance sluggish?  Look at the lights on the networking equipment.  Are they constantly active?

If you disconnect one workstation, does network performance improve?  If its the server - you might have troubles.

Keep your a/v up to date.  Might be worthwhile investing in and IDS and FW, depending on the size of your organization.
0
 

Author Comment

by:nakz
ID: 9676398
It not what im looking for, but more information on it..
0
 
LVL 35

Expert Comment

by:ShineOn
ID: 9676913
www.ethereal.com.  It's free.

First, and simplest - whatever device you suspect is causing a broadcast storm will exhibit excessive activity on its switch or hub port.  that is a big red flag for you.

If you are using a switch, it is best to put a dumb, plain hub/repeater in the circuit, plug your monitoring PC into the hub, and run the protocol analyzer.  It can be done on a switch port, provided that the switch port is configured properly to allow a protocol analyzer to capture all packet activity.

If you have a multi-level collapsed backbone, and have already isolated the problem device to a specific segment, you can put the dumb hub in circuit between the problem segment and the backbone to pinoint the problem device.
0
 
LVL 35

Expert Comment

by:ShineOn
ID: 9676927
After you isolate the problem device, then you can troubleshoot the device to resolve the issue.  It may be that what sp10de and stevenlewis suggested is the root cause - you may have been stung by a virus or worm.

Once you isolate the device and find out what kind of excessive traffic it is causing (arps for instance) then it's easier to determine what might be the cause, and what to do about it.

To avoid a lot of putzing, I personally would download both the blaster and welchia cleaner programs from www.symantec.com and run them both on the suspect computer first, and save further protocol analysis for after if that doesn't fix it.
0
 
LVL 4

Expert Comment

by:Wiired
ID: 9683406
Flashback....mine was a bad NIC. 5 minute fix :-)
0
 

Author Comment

by:nakz
ID: 9693004
What other major thing that mite cause NIC broadcast storm. ive use the software but it doesnt dermine anything.. could be be my server??
0
 
LVL 35

Expert Comment

by:ShineOn
ID: 9694550
Have you isolated the device causing the broadcast storm?  Is it the server?
0
 
LVL 41

Expert Comment

by:stevenlewis
ID: 9697712
try swapping out the NIC with a known good one
0
 

Accepted Solution

by:
wattanak earned 200 total points
ID: 10976416
Change Your server NIC
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
slow vpn connection 9 65
Application timeout question 2 37
QoS for Voip 7 39
move My Documents folder location to point to server's my documents 4 26
If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
When you try to share a printer , you may receive one of the following error messages. Error message when you use the Add Printer Wizard to share a printer: Windows could not share your printer. Operation could not be completed (Error 0x000006…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question