- Community Home
- >
- Networking
- >
- Legacy
- >
- Switches, Hubs, Modems
- >
- Locating unauthorized, unmanaged hubs?
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-23-2005 05:43 AM
тАО09-23-2005 05:43 AM
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-23-2005 05:48 AM
тАО09-23-2005 05:48 AM
SolutionIf you are not ready for such drastic action, you would need to query the MAC addresses of all the ports that are not ISL. Those with more than one MAC would have a hub/switch/WAP attached.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-23-2005 06:08 AM
тАО09-23-2005 06:08 AM
Re: Locating unauthorized, unmanaged hubs?
?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-23-2005 08:07 AM
тАО09-23-2005 08:07 AM
Re: Locating unauthorized, unmanaged hubs?
You can also do this using SNMP via the dot1dTpFdbTable within the Bridge MIB.
1.3.6.1.2.mib2(1).dot1dBridge(17).dot1dTp(4).dot1dTpFdbTable(3)
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-24-2005 01:25 AM
тАО09-24-2005 01:25 AM
Re: Locating unauthorized, unmanaged hubs?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-26-2005 04:44 AM
тАО09-26-2005 04:44 AM
Re: Locating unauthorized, unmanaged hubs?
The suggestions to look for more than one MAC address at ingress to your switch ports is probably the best you can do, but keep in mind it may have false positives and false negatives.
The false positives might include single systems running virutal machines - they can have several MAC addresses.
The false negatives might include people with the hub, but only one system connected to it.
That you are getting reports of people bringing-in hubs suggests they are looking to solve problems with the current setup. You may want to go beyond finding the hubs and figure-out why people are adding the hubs in the first place and address that too.
Unless you are running with spanning tree disabled, I'm not sure what "harm" could come from folks having hubs in their offices - heck or even switches for that matter. Is there a specific concern you have with people having hubs?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-26-2005 06:31 AM
тАО09-26-2005 06:31 AM
Re: Locating unauthorized, unmanaged hubs?
In addition to that, there are technical issues that arise, such as the fact that we are operating without spanning tree (which I have been a big proponent of getting it turned on, but there was an issue years ago with STP not allowing the Novell client to authenticate. I believe it was solved with portfast, or, RSTP, but I have not tested that...and its been an uphill battle getting that arena set up.), managing things with an IT department that is clearly understaffed...etc.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-26-2005 06:35 AM
тАО09-26-2005 06:35 AM
Re: Locating unauthorized, unmanaged hubs?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-26-2005 06:58 AM
тАО09-26-2005 06:58 AM
Re: Locating unauthorized, unmanaged hubs?
I'd love to study up and make a case for deploying it once i make sure out network functions with it enabled (netware client, other apps, etc)
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-26-2005 07:08 AM
тАО09-26-2005 07:08 AM
Re: Locating unauthorized, unmanaged hubs?
Since STP doesn't cross routers, ass-u-me-ing each separate location is one or more IP subnets, the number of locations should be a don't care for STP.