asked on
Identifying a rogue device
I have inherited a network with multiple unmanaged switches that are uplinked in various parts of the building. I have experienced several issues with rogue student devices on the network causing a serious slow down and at times causing the firewall to become uncontactable.
Am I correct in thinking managed switches are the way to go or would they help me identify the rogue machine. At times its been a case of unplug everything while running a ping to the firewall and then one by one plug the cables back in!
Am I correct in thinking managed switches are the way to go or would they help me identify the rogue machine. At times its been a case of unplug everything while running a ping to the firewall and then one by one plug the cables back in!
Switches / HubsNetworking Hardware-OtherNetwork Architecture
Last Comment
hypercube
SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER
Excellent replies. I'm confident managed switches are the way to go. This site is connected via a site to site VPN. The ideal scenario would be to connect to one of the servers and be able to view all the switches from one interface (although if this means alot of added cost then connecting to each one individuall is fine)
I want to be able to view which port is showing the highest traffic (I imagine this will be a monitor situation as oppose to restricting bandwidth on ports at this point) I would like ports with high bandwidth usage to be as easy to identify as poosible for the local admin. Text based output that requires in depth networking knowledge may not be the best fit.
Hopefully you would be good enough to suggest what switches would allow for this. Thanks
I want to be able to view which port is showing the highest traffic (I imagine this will be a monitor situation as oppose to restricting bandwidth on ports at this point) I would like ports with high bandwidth usage to be as easy to identify as poosible for the local admin. Text based output that requires in depth networking knowledge may not be the best fit.
Hopefully you would be good enough to suggest what switches would allow for this. Thanks
Some software suggestions:
1. Solarwinds Real Time Bandwidth Monitor http://www.solarwinds.com/products/freetools/real-time-bandwidth-monitor.aspx
2. Sourceforge Nagios http://nagios.sourceforge.net/docs/3_0/monitoring-routers.html
We use Nagios however I have used Solarwinds in the past so both are good products. Solarwinds is probably easier to set up.
As for switches, we are strictly a Cisco shop so I can't speak to other brands. We have had a couple of non-managed Dell switches but they have been replaced with managed Cisco ones.
1. Solarwinds Real Time Bandwidth Monitor http://www.solarwinds.com/products/freetools/real-time-bandwidth-monitor.aspx
2. Sourceforge Nagios http://nagios.sourceforge.net/docs/3_0/monitoring-routers.html
We use Nagios however I have used Solarwinds in the past so both are good products. Solarwinds is probably easier to set up.
As for switches, we are strictly a Cisco shop so I can't speak to other brands. We have had a couple of non-managed Dell switches but they have been replaced with managed Cisco ones.
I prefer PRTG for monitoring.
The information I found on the SG200 switches is that the SG200-08 does not have SNMP but implies that larger units do have it. I can't confirm the latter.
The information I found on the SG200 switches is that the SG200-08 does not have SNMP but implies that larger units do have it. I can't confirm the latter.
According to Cisco the Sx200 switch series does not support SNMP. They had a release document that talked about it but appears to no longer be available.
http://www.cisco.com/en/US/docs/switches/lan/csbss/sf20x_sg20x/release_notes/Sx200_RN1_1.0.0.19.pdf
They added SNMP to the 300 series. See this release notes document:
http://www.cisco.com/en/US/docs/switches/lan/csbss/sf20x_sg20x/release_notes/R_1.3.2_RN.pdf
I know I ran into the same thing here. We put in two Sg200's