NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
GSM7224P VLAN Routing and DHCP issues
Hi My pc O/S - WIndows 10 Pro, Firmaware of switch - 10.0.1.21, live office envionment. This switch does vlan routing for our 4 vlans. I have attempted to move the vlan routing to a different swit...
Hi
Finally figured out what it was. The firewall has a DOS settings for both INTERNAL and external, god knows why internal. Anyhow there is a setting for the speed of your network and one for the speed of your internet. We upgraded our network and internet so the draytek firewall was doing its nut thinking we were under attack and stopped all traffic. Problem is now resolved, many thanks
Hi Fusion98,
Welcome to Netgear Community.
From msg.txt, APR replied are invalid, so we guess, there must have large of ARP request/reply, which cause the network congested. there might a kind of ARP attack. can you help enable dymanic ARP inspection? refer page P240 of Admin Manual
Also would you like to answer below couple of questions?
1> any configuration or topoloy change before/after network migration? if yes, what're they?
2> Which device owning IP 192.168.0.1 and MAC 00:50:7f:e7:ce:68?
Hello,
Many thanks for the help, it is REALLY appreciated.
1) the only change i have made apart from trying to move the VLAN routing was to swap the Draytek firewall (192.168.0.1) for an identicle unit as it appears to be either (a) swamped and can not cope with the requests (b) broken and stuck as non responsive. This fixed an initial problem however two days later the replacement unit had the same issues as the original, so i'm guessing its not broken just swamped by requests.
I will enable ARP inspection and take a look at the results. What i can not understand is why the ARP tables dont update right away? If i move vlan routing from switch a (192.168.0.210) to switch b (192.168.0.217) then yes all the ARP tables in the network switches need to update to reflect this. I did not expect this to take days / weeks on such a small network.
Apart from the two changes above nothing has changed. We do however from time to time get our entire network swampped to the point where the firewall and servers become unresponsive and we can not seem to locate what is causing it. We have swapped out switches we thought may be causing the problem (4 months ago) but every so often the problem re-occurs. We have locked down access to the WIFI, and prevented unauthorised devices connecting to the network. We are stumpped.
Can you recommend anything to locate what may be causing it, or could it be related to this ARP attack?
Once again, really appreciate your help
kind regards
John
Hi
the PDF in the link is broken and does not download, is there another copy somewhere?
many thanks
john
Hi Fusion98,
Thanks for your feedback.
User Manual link is clickable, I just checked, can you try more time?
To answer your ARP question, once network topology change (e.g. routing interface or routing table), ARP table will be flushed immediately. So your problem is not related with ARP update, more looks like ARP traffic flood.
Also, can you help check who owning IP 192.168.0.1 and MAC 00:50:7f:e7:ce:68?
Hi
I did as the manual suggests and only on the wifi vlan. The entire switch locked up and stopped functioning meaning that my entire domain and all the manufacturing equipment also stopped. I had to reboot the device and then upload a previous config.
Any other ideas i could try?
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
