[c-nsp] Good way of finding unauthorized network elements/
Ryan West
rwest at zyedge.com
Fri Oct 30 16:08:17 EDT 2009
The guys at Cacti have a plugin called Mactrack that will do this as well. It also has a MAC db download function that will do the lookup for you.
-ryan
-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net [mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Scott Granados
Sent: Friday, October 30, 2009 2:09 PM
To: cisco-nsp at puck.nether.net
Subject: [c-nsp] Good way of finding unauthorized network elements/
Hi all
I have a general question. I have a network consisting of about 20 access
switches and 2 core switches. We have 3 access points that we manage but
think someone might have brought in a linksys or DLink consumer device and
plugged in. (users, can't live with em, can't shoot em)
Is there a tool or good method that could scan the arp table and look for
Manufacturor ID bits so I could see roughly what's attached where? Are
there better tools in general or better methods of finding rogue elements
that people may attach?
Any pointers would be appreciated.
Thanks
Scott
_______________________________________________
cisco-nsp mailing list cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
More information about the cisco-nsp
mailing list