Jump to content

Got an email from the FBI today...


Casper

Recommended Posts

Gotcha... I can see that now that I'm awake... lol

On a related topic, today I learned that even if all of your corp. switches all have spanning tree protocol enabled, some asshole will bring in an old 5 port POS switch that doesn't, put it under his desk, attempt to plug in a WAP and with one patch cable, plug into port 2, and with the other end of the same cable, loop around the desk and plug into port 5... Whammo, broadcast storm! Spanning tree only shuts down loops as it detects them, and no loops on the other corp. switches so, if you have a broadcast storm on a switch and uplink it to the corp. network, the uplink re-transmits the broadcasts to the corp. switches properly, as it should, unaware of the storm. This even took out another building connected to this network via 2 media converters and fiber. No router to isolate b-cast domains.

1 DHCP broadcast is all it takes. Damn it!!!

Who do you work for where this happened. One of my Delaware clients was having problems today. hmmm do you work for them? :)

Link to comment
Share on other sites

If you've got a Cisco switch, give spanning-tree bpduguard a try. Enable spanning-tree portfast on all your access switchports, then plug in a Linksys switch. Loop the Linksys. Once the Cisco sees its own BPDU's come back at it, it puts the switchport in a error-disable state and drops that motherfucker. Also works for regular loops to the same switch. I'd highly recommend having some sort of SNMP monitor running on that tells you if the port popped, otherwise you'll be doing a lot of sh int status mod x to figure out what ports are in what state when things magically "stop working". I had no idea about bpduguard before I came to Nationwide, now I'm kicking myself of all the time it would have saved me in previous gigs.

No Cisco but thank you for the info... I'll look into that.

Link to comment
Share on other sites

Who do you work for where this happened. One of my Delaware clients was having problems today. hmmm do you work for them? :)

I'm curious now, who do you work for? I heard that they might be looking around for assistance. I work for a consulting company in Delaware. This happened to one of our clients who has offices in Delaware, Columbus, and other areas... Originally I thought it was the point-to-point T1 from Delaware to Columbus, and CRC, etc.. errors on the interfaces kind of pointed to that. However, that was caused when TW telecom pulled the circuit down last night to loop up the smart jacks. The tests came back clean so we went in to figure out WTF happened. To stay somewhat confidential, what type of business is this that was having trouble?

Link to comment
Share on other sites

No Cisco but thank you for the info... I'll look into that.

No problem. BPDUGuard and HSRP configs (to create a HA environment out of 2 switches) literally blew my mind when I came over here.

Link to comment
Share on other sites

Gotcha... I can see that now that I'm awake... lol

On a related topic, today I learned that even if all of your corp. switches all have spanning tree protocol enabled, some asshole will bring in an old 5 port POS switch that doesn't, put it under his desk, attempt to plug in a WAP and with one patch cable, plug into port 2, and with the other end of the same cable, loop around the desk and plug into port 5... Whammo, broadcast storm! Spanning tree only shuts down loops as it detects them, and no loops on the other corp. switches so, if you have a broadcast storm on a switch and uplink it to the corp. network, the uplink re-transmits the broadcasts to the corp. switches properly, as it should, unaware of the storm. This even took out another building connected to this network via 2 media converters and fiber. No router to isolate b-cast domains.

1 DHCP broadcast is all it takes. Damn it!!!

:lol:

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...