Improve company productivity with a Business Account.Sign Up

x
?
Solved

how do I find a device on my network?

Posted on 2012-03-21
11
Medium Priority
?
692 Views
Last Modified: 2013-11-29
Ran a belarc program and it showed a wireless netgear on my lan but I can find it anywhere. I want to track it down but dont know how. I was able to get its ip and physical address but nothing else. Is there a way to effectively block it by GPO or any other way?
0
Comment
Question by:sirius7
  • 3
  • 3
  • 2
  • +3
11 Comments
 
LVL 2

Expert Comment

by:wherami
ID: 37750893
Does the lan have managed switches? Do you know the mac address? If so you should be able to find out the switch and port that  the offending device is plugged into.
0
 
LVL 16

Expert Comment

by:Raymond Peng
ID: 37750903
Using snmp on Cisco switches, you would be able to do so. What kind of switch do you have?
0
 
LVL 1

Author Comment

by:sirius7
ID: 37750921
I have a dell powerconnect 3448p but Im really unfamiliar with it. Snmp I know.
0
The Lifecycle Approach to Managing Security Policy

Managing application connectivity and security policies can be achieved more effectively when following a framework that automates repeatable processes and ensures that the right activities are performed in the right order.

 
LVL 10

Expert Comment

by:abbright
ID: 37751129
I think using the command "show mac-address-table" on your switch(es) you should be able to locate the switchport where the device is connected to (see http://support.dell.com/support/edocs/network/5p788/clig/address.htm).
0
 
LVL 10

Expert Comment

by:abbright
ID: 37751135
As the unknown device is probably a wireless router or access point you also might try to figure out the WLAN-SSID it is broadcasting. Depending on the size of the building(s) you might try to find  the signal and go towards the point where the signal strength increases to find the sender.
0
 
LVL 1

Author Comment

by:sirius7
ID: 37751248
can i block it by mac address?
0
 
LVL 10

Expert Comment

by:abbright
ID: 37751272
Maybe you can block it by mac address. It might be better though to identify the port it is connected to so you can find the physical device and talk to the user not to use the device anymore. Otherwise he might just change the device, the port, or the mac address and continue to use it.
0
 
LVL 35

Accepted Solution

by:
Ernie Beek earned 2000 total points
ID: 37751359
If the switch uses snmp, you could use lantopolog to find out where the wireless is connected.
http://www.lantopolog.com/
0
 
LVL 1

Author Closing Comment

by:sirius7
ID: 37751360
thank you
0
 
LVL 35

Expert Comment

by:Ernie Beek
ID: 37751451
You're welcome :)

Thx for the points.
0
 
LVL 4

Expert Comment

by:dbright5813
ID: 37752580
Not sure if the 34xx series has the command, but on the 35xx series you can create a MAC-Based ACL to block specific devices by MAC.

Here's the command cheat-sheet that I keep handy:

mac access-list rogues
deny any [MAC address of rogue] 00:00:00:00:00:00
deny [MAC address of rogue] 00:00:00:00:00:00 any
permit any any
exit
interface range ethernet all
service-acl input rogues
exit
0

Featured Post

The Firewall Audit Checklist

Preparing for a firewall audit today is almost impossible.
AlgoSec, together with some of the largest global organizations and auditors, has created a checklist to follow when preparing for your firewall audit. Simplify risk mitigation while staying compliant all of the time!

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

The Windows Firewall provides an important layer of protection and a rich interface to configure it. Unfortunately, it lacks item level filtering. This article details my process of implementing firewall-as-code to reduce GPO bloat.
A question that many companies need to answer until May 25th of 2018... Is your company ready for GDPR?
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…
In a question here at Experts Exchange (https://www.experts-exchange.com/questions/29062564/Adobe-acrobat-reader-DC.html), a member asked how to create a signature in Adobe Acrobat Reader DC (the free Reader product, not the paid, full Acrobat produ…

606 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question