取消
显示结果 
搜索替代 
您的意思是: 
cancel
6302
查看次数
0
有帮助
6
回复

cisco 1921路由器日志IP地址冲突

kingisme
Spotlight
Spotlight
有一台cisco1921路由器日志报错,网内都是动态获取,确认不是IP地址冲突然,应该是网内有ARP病毒,如下图,显示的是IPV6地址,这要怎么查找
Mar 5 07:47:24: %DHCPD-4-DECLINE_CONFLICT: DHCP address conflict: client 0033.6366.352e.6363.6431.2e62.3062.662d.566c.616e.31 declined 10.220.81.50.
Mar 5 08:15:48: %DHCPD-4-DECLINE_CONFLICT: DHCP address conflict: client 01b8.41a4.9674.85 declined 10.220.81.87.
Mar 5 08:28:11: %DHCPD-4-DECLINE_CONFLICT: DHCP address conflict: client 0033.6366.352e.6363.6431.2e62.3062.662d.566c.616e.31 declined 10.220.81.101.
Mar 5 08:28:19: %DHCPD-4-DECLINE_CONFLICT: DHCP address conflict: client 0033.6366.352e.6363.6431.2e62.3062.662d.566c.616e.31 declined 10.220.81.102.
Mar 5 08:31:44: %DHCPD-4-DECLINE_CONFLICT: DHCP address conflict: client 0033.6366.352e.6363.6431.2e62.3062.662d.566c.616e.31 declined 10.220.81.106.
Mar 5 08:50:45: %DHCPD-4-DECLINE_CONFLICT: DHCP address conflict: client 0033.6366.352e.6363.6431.2e62.3062.662d.566c.616e.31 declined 10.220.81.127.
6 条回复6

kingisme
Spotlight
Spotlight
085623j0vwcc0dv8yucpwz.png

cisco.feng
Spotlight
Spotlight
貌似是DHCP starvation攻击
上DHCPsnooping port-security IPSG

kingisme
Spotlight
Spotlight
cisco.feng 发表于 2019-3-5 09:15
貌似是DHCP starvation攻击
上DHCPsnooping port-security IPSG

内网只有一个网段,下面接得是不可管理交换机,请问DHCP Snooping要怎么做

Rockyw
Spotlight
Spotlight
kingisme 发表于 2019-3-5 11:37
内网只有一个网段,下面接得是不可管理交换机,请问DHCP Snooping要怎么做

楼主参考一下下面的文档
Configuring DHCP Snooping
https://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/4_1/nx-os/security/configuration/guide/sec_nx-os-cfg/sec_dhcpsnoop.pdf
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Rockyw | If it solves your problem, please mark as answer. Thanks !

AOPIYA-PETERYU
Level 1
Level 1
谢谢分享
:):D:D:P

abletabliz3955
Spotlight
Spotlight
学习大佬们的经验
入门指南

使用上面的搜索栏输入关键字、短语或问题,搜索问题的答案。

我们希望您在这里的旅程尽可能顺利,因此这里有一些链接可以帮助您快速熟悉思科社区:









快捷链接