Help with Firewall Log
-
I wouldn't call 5 a second a broadcast storm…
Well I Agree, but the AP's they connect has STP set.
especially if you have multiple macs sending out the traffic - are you seeing duplicates on the mac?
Yep
so your smartswitch1 is the same as your managedswitch1 or do you have 2 switch?
Nope It was just to to show that there are 2 VLANs are configured on the same switch.
Are you running stp? or rstp?
STP although the smart switch has RSTP and MSTP
-
Yeah but are they the same forwarded packet or are they new packets.. Where in your setup could you have a loop? Is your unmanaged switch connected more than once to the managed switch?
Your not going to have a broadcast storm unless there is a loop.. Do you have maybe a mismatched native vlans on ends of a trunk, or problem with access ports and mismatched vlans?
Do you have any other device that has wired and wireless at the same time? Again 5 packets second would not be a broadcast storm.. Maybe the devices are just freaking chatty kattys trying to find each other or something. So they are all wireless, do you have client isolation on or something where they can not talk to each other?
So for example just did a quick sniff here.. Someone on the work network is running dropbox and forgot to turn off their lan discovery.. freaking thing throws out 6 packets in less in like .01 seconds.. Its sending out ssdp like once every second, etc..
-
Yeah but are they the same forwarded packet or are they new packets.. Where in your setup could you have a loop? Is your unmanaged switch connected more than once to the managed switch?
Your not going to have a broadcast storm unless there is a loop.. Do you have maybe a mismatched native vlans on ends of a trunk, or problem with access ports and mismatched vlans?
Do you have any other device that has wired and wireless at the same time? Again 5 packets second would not be a broadcast storm.. Maybe the devices are just freaking chatty kattys trying to find each other or something. So they are all wireless, do you have client isolation on or something where they can not talk to each other?
So for example just did a quick sniff here.. Someone on the work network is running dropbox and forgot to turn off their lan discovery.. freaking thing throws out 6 packets in less in like .01 seconds.. Its sending out ssdp like once every second, etc..
I 'll think I'll have to accept those few broadcasts and as the tcpdump relates them to the Sonos device it's just there to stay.
