NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

XDRich's avatar
XDRich
Guide
Feb 11, 2017
Solved

Broadcast packet 01:80:c2:00:00:1c poisoning G716Tv3 Switch

Hello,

 

I have the following problem and need some advice.

I have been working with UBIQUITY but they claim they cannot reproduce the issue.

I have a Ubiquity AP that broadcasts just a few packets to the following address, I assume its for some sort of LLDP stuff.

01:80:c2:00:00:1c

 

Once the AP does this, the Switch goes nuts and begins to broadcast this packet to all the ports on that vlan mu7tiple times.

In one minute it gets to about 25k packets.

I can unplug the AP and this packet continues to swirl around the switch, and only a power cycle of the switch will kill it.

 

I have two switchs connected via a lag, I have 5 vlans defines, MSTP turned on,  LLDP turned on.  The switch is connected to a Cisco ISR router and the port has the proper vlans assigned.

 

This is really killing me as I cannot connect the AP without the switch loosing it all from one packet 01:80:c2:00:00:1c

 

Any suggestions?

Firmware
Security
Troubleshooting

2 Replies

  • Carl_z's avatar
    Carl_z
    NETGEAR Expert
    Feb 13, 2017

    Hi XDRich,

    Welcome to the community!

     

    As we known , traffic with destination mac of 01:80:c2:00:00:1c is harmful to switch cpu. And acl can help to protect cpu .

    Kindly update to the latest firmware 6.3.1.16, you can download the version here.

     

    After update to 6.3.1.16, apply acl to the port that connected to AP. The acl can be set as the following pic,

     

    acl.png

     

     

    Hope it helps

    Carl

    Netgear Employee

NETGEAR Academy

Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology! 

Join Us!

ProSupport for Business

Comprehensive support plans for maximum network uptime and business peace of mind.

 

Learn More