I've recently been having some issues with losing internet connectivity and I've been blaming my ISP. However, after additional investigation, I'm not entirely sure it's the ISP at fault. I have a few port based vlans on my switch. One vlan is specifically to allow monitoring traffic between my router and the ONT provided by my ISP. I performed a packet capture by mirroring the port the ONT connects to and I discovered DHCP requests from other vlans in my network which the ISP was responding to.
At that point, I decided to create a vlan with a single port and run a packet capture on that port. I discovered ARP broadcasts and UDP broadcasts in my single port vlan. The broadcasts were coming from vlans 2 and 3 primarily, but some were also coming from vlan 10 (vlan config below). The attached picture shows some of the packet capture displaying the broadcasts showing up in vlan 4. Does anyone know what I can do to prevent any packets crossing vlan boundaries?
At that point, I decided to create a vlan with a single port and run a packet capture on that port. I discovered ARP broadcasts and UDP broadcasts in my single port vlan. The broadcasts were coming from vlans 2 and 3 primarily, but some were also coming from vlan 10 (vlan config below). The attached picture shows some of the packet capture displaying the broadcasts showing up in vlan 4. Does anyone know what I can do to prevent any packets crossing vlan boundaries?
Code:
PORT-VLAN 1, Name DEFAULT-VLAN, Priority level0, Spanning tree Off
Untagged Ports: None
Tagged Ports: None
Uplink Ports: None
DualMode Ports: None
Mac-Vlan Ports: None
Monitoring: Disabled
PORT-VLAN 2, Name INTERNET, Priority level0, Spanning tree Off
Untagged Ports: (U1/M1) 46 47 48
Tagged Ports: None
Uplink Ports: None
DualMode Ports: None
Mac-Vlan Ports: None
Monitoring: Disabled
PORT-VLAN 3, Name IP_CAMERAS, Priority level0, Spanning tree Off
Untagged Ports: (U1/M1) 37 38 39 40 41 42 43 44
Tagged Ports: None
Uplink Ports: None
DualMode Ports: None
Mac-Vlan Ports: None
Monitoring: Disabled
PORT-VLAN 4, Name [None], Priority level0, Spanning tree Off
Untagged Ports: (U1/M1) 3
Tagged Ports: None
Uplink Ports: None
DualMode Ports: None
Mac-Vlan Ports: None
Monitoring: Disabled
PORT-VLAN 10, Name [None], Priority level0, Spanning tree Off
Untagged Ports: (U1/M1) 1 2 4 5 6 7 8 9 10 11 12 13
Untagged Ports: (U1/M1) 14 15 16 17 18 19 20 21 22 23 24 25
Untagged Ports: (U1/M1) 26 27 28 29 30 31 32 33 34 35 36 45
Untagged Ports: (U1/M2) 1 2 3 4 5 6 7 8 9 10
Untagged Ports: (U1/M3) 1 2 3 4 5 6 7 8
Tagged Ports: None
Uplink Ports: None
DualMode Ports: None
Mac-Vlan Ports: None
Monitoring: Disabled
Attachments
-
177.7 KB Views: 15