Re: rogue IP address

[Dave <update () dsrtech com>]

run ettercap on the same subnet as the host giving you the issues, get
the MAC from this and then look in your switch mac table and trace the
host.

http://ettercap.sourceforge.net/



On Wed, 2003-04-30 at 18:40, dondon () pacbell net wrote:
> Someone on our network assigned an IP address to their own system without 
> my knowledge.  Using LANguard network scanner, the best I can tell is that 
> it's a Linux box.  The port-to-IP mapping table on our Asante switch 
> doesn't see to work correctly.
>
> Any suggestions on tracing down that system that is associated with the IP 
> is appreciated!
>
> Andy
>
> ---------------------------------------------------------------------------
> FastTrain has your solution for a great CISSP Boot Camp. The industry's most 
> recognized corporate security certification track, provides a comprehensive 
> prospectus based upon the core principle concepts of security. This ALL INCLUSIVE curriculum utilizes lectures, case 
> studies and true hands-on utilization 
> of pertinent security tools. For a limited time you can enter for a chance 
> to win one of the latest technological innovations, the SEGWAY HT. 
> Log onto http://www.securityfocus.com/FastTrain-security-basics
> ----------------------------------------------------------------------------


---------------------------------------------------------------------------
FastTrain has your solution for a great CISSP Boot Camp. The industry's most 
recognized corporate security certification track, provides a comprehensive 
prospectus based upon the core principle concepts of security. This ALL INCLUSIVE curriculum utilizes lectures, case 
studies and true hands-on utilization 
of pertinent security tools. For a limited time you can enter for a chance 
to win one of the latest technological innovations, the SEGWAY HT. 
Log onto http://www.securityfocus.com/FastTrain-security-basics 
----------------------------------------------------------------------------