MECIT
asked on
unknonwn IP address
We did an IP scan on our network and found an IP address that we could not pinpoint back to a device.
I have tried telnet,ssh, traceroute, ping.
Are there any other commands that i can use to figure what this device is?
Can I shut it down or block this device?
I have tried telnet,ssh, traceroute, ping.
Are there any other commands that i can use to figure what this device is?
Can I shut it down or block this device?
Well ping the ip address and then look at your arp table to find the mac address of the device. Then if you have a managed switch you should be able to find the port that that mac address lives off of. Then either you can track it down by cables to find it, or just shut the port down and see who screams.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
If it's a wireless device....could be phone. You can stop the MAC Address thru MAC Address filtering and as Ken pointed out, wait until someone screams.
Additionally, you can do a vendor lookup for the mac address to get an idea of what the device is:
http://www.coffer.com/mac_find/
Could give you an idea if it's a phone or an HP device or a Broadcom NIC.
Additionally, you can do a vendor lookup for the mac address to get an idea of what the device is:
http://www.coffer.com/mac_find/
Could give you an idea if it's a phone or an HP device or a Broadcom NIC.
ASKER
I found the mac address . I have Dell 6248 switches so what would be the commands to see the mac addresses.
I tried the coffer.com but could not find anything.
I tried the coffer.com but could not find anything.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
thanks for the help. We figured out what it was. An apple tv we were testing.