Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 689
  • Last Modified:

how do I find a device on my network?

Ran a belarc program and it showed a wireless netgear on my lan but I can find it anywhere. I want to track it down but dont know how. I was able to get its ip and physical address but nothing else. Is there a way to effectively block it by GPO or any other way?
0
sirius7
Asked:
sirius7
  • 3
  • 3
  • 2
  • +3
1 Solution
 
wheramiCommented:
Does the lan have managed switches? Do you know the mac address? If so you should be able to find out the switch and port that  the offending device is plugged into.
0
 
Raymond PengSystems EngineerCommented:
Using snmp on Cisco switches, you would be able to do so. What kind of switch do you have?
0
 
sirius7Author Commented:
I have a dell powerconnect 3448p but Im really unfamiliar with it. Snmp I know.
0
The Lifecycle Approach to Managing Security Policy

Managing application connectivity and security policies can be achieved more effectively when following a framework that automates repeatable processes and ensures that the right activities are performed in the right order.

 
abbrightCommented:
I think using the command "show mac-address-table" on your switch(es) you should be able to locate the switchport where the device is connected to (see http://support.dell.com/support/edocs/network/5p788/clig/address.htm).
0
 
abbrightCommented:
As the unknown device is probably a wireless router or access point you also might try to figure out the WLAN-SSID it is broadcasting. Depending on the size of the building(s) you might try to find  the signal and go towards the point where the signal strength increases to find the sender.
0
 
sirius7Author Commented:
can i block it by mac address?
0
 
abbrightCommented:
Maybe you can block it by mac address. It might be better though to identify the port it is connected to so you can find the physical device and talk to the user not to use the device anymore. Otherwise he might just change the device, the port, or the mac address and continue to use it.
0
 
Ernie BeekExpertCommented:
If the switch uses snmp, you could use lantopolog to find out where the wireless is connected.
http://www.lantopolog.com/
0
 
sirius7Author Commented:
thank you
0
 
Ernie BeekExpertCommented:
You're welcome :)

Thx for the points.
0
 
dbright5813Commented:
Not sure if the 34xx series has the command, but on the 35xx series you can create a MAC-Based ACL to block specific devices by MAC.

Here's the command cheat-sheet that I keep handy:

mac access-list rogues
deny any [MAC address of rogue] 00:00:00:00:00:00
deny [MAC address of rogue] 00:00:00:00:00:00 any
permit any any
exit
interface range ethernet all
service-acl input rogues
exit
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

  • 3
  • 3
  • 2
  • +3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now