When the computer encounters an error "the IP address detected by the computer conflicts with the physical address of your nic" during usage, you cannot use the network. If a network user connects to the network, the IP address and MAC address information files are established, and strict management and registration systems are enforced for LAN customers from beginning to end, record the IP address, MAC address, uplink port, physical location, and user identity of each user in the database of the network administrator.
If we know the MAC address of an invalid user, we can search for it from the administrator database. If we have a comprehensive record of the MAC address, we can immediately find the specific user information, this will save us a lot of valuable time and avoid the troubles of haystack. At the same time, some applications should avoid using IP addresses for permission restrictions. If we restrict the MAC address from a relatively more secure, this can effectively prevent hackers from stealing IP addresses.
Personal IP address conflict solution
1. If the operating system of your computer is windows 98
Click Start> run in the lower left corner, type winipcfg, and click OK. In the displayed window, click release all, and then click Update all ", to solve the problem.
If the system prompts that the update cannot be performed, restart the computer.
2. If the operating system of your computer is windows 2000 or windows XP
Click Start> run in the lower left corner, Type ipconfig/release, click OK, click Start> run, and enter ipconfig/renew, click "OK" to solve the problem.
Causes of lan ip address conflicts and Solutions
For Internet and Intranet networks, each host must have an independent IP address when using the TCP/IP protocol. Only hosts with IP addresses can communicate with other hosts on the network. With the vigorous promotion of network applications, network customers rapidly expand. Due to the allocation of static IP addresses, IP address conflicts are troublesome. IP address conflicts have a very bad impact. First, network customers cannot work normally. As long as conflicting machines exist on the network, as long as the power is turned on, there will be Frequent address conflicts on the client: "If an application's security policies, such as Access Permissions and access control, are implemented based on IP addresses, this illegal IP address user will pose a serious threat to the security of the application system.
Cause Analysis
Problems sometimes cannot be detected in time. problems can be discovered only when conflicting network customers are in the starting status at the same time, so they are quite concealed. The cause of the analysis may be IP address conflict in the following situations.
1. many users do not know about TCP/IP, and do not know how to set parameters such as "IP address", "subnet mask", and "Default Gateway, sometimes the user does not obtain the preceding parameter information from the Administrator, or the user has no intention to modify the information. 2. When the administrator or user sets the parameter based on the preceding parameter provided by the Administrator, parameters are incorrect due to errors. 3. Maintenance personnel use temporary IP addresses during client service debugging. 4. Someone steals others' IP addresses.
Solution
After receiving the conflict report, we first determine the VLAN where the conflict occurs. Find the CIDR block where the IP address is located through vlan definition and conflicting IP address. This is critical to successfully finding the MAC address of the NIC, because some network commands cannot be accessed across network segments.
First, isolate the client from the network so that the computer with the illegal IP Address can run on the Internet, and the network administrator can find it. The Application Network Test Commands include the ping command and the arp command. Run the ping command. Assume that the IP address is 10.119.40.40. In the msdos window, the command format is as follows. The ITALIC part is the command result.
C: WIDOWS> ping 10.119.40.40 |
Ping this machine for two purposes. First, we need to know that the machine we are looking for is indeed on the network. Second, we need to know the MAC address of the NIC of this machine, so how do we know its MAC address? This requires the second command arp: The arp command can only be used in a VLAN. It is a low-layer protocol and cannot be used across routes.
C: WIDOWS> arp- |
The above list indicates that the MAC address of the NIC with the conflicting IP address 10.119.40.40 is 00-00-21-34-63-56. Next we will look for the physical location of the NIC whose MAC address is 00-00-21-34-63-56.
As described in the network introduction, the network adapter of each client is directly connected to the second-level switch. Next we will look for a large number of Ethernet switches, which are the switch ports corresponding to the conflicting MAC. The device connected to the customer in this network is Bay 303/304. This article uses 303 as an example to describe how to find the Port location of a MAC address. Bay303 has multiple network management methods. The following describes how to find illegal MAC in a Web browser.
Before searching, you must first determine the switch location in the VLAN, find out the IP addresses of these switches, and use the switch address to access the network management information of the switch.
Start the browser on the machine of the Network Manager
Enter the IP address of the vswitch.
Enter the user name and password after prompting for logon.
Enter the "MAC Address Table" option
The following table is displayed:
Index/MAC address/Learned on Port/Learning Method/ |
Now you can see the index's 4th items. It is the MAC address we are looking for, and its port number is 2. Based on the integrated wiring data, you can find the physical location of the corresponding information point to locate the connected microcomputer location. Of course, here is an example of a specific vswitch. In actual work, we need to find many vswitches to find the MAC address we are looking, when there are a large number of switches in a VLAN, we need to find them one by one in these switches until they are found. This is a very cumbersome task.
If a vswitch has a downlink switch on its port, because the switch supports multiple MAC addresses, the lower-level MAC address is recorded in the upper-level MAC table, therefore, first look for the MAC table of the upper-level switch, determine the specific location, and then look for the next-level switch, which will greatly reduce the search range.
Use effective and thorough management policies
Management Policy
For LAN, such IP address conflicts often occur. The larger the number of users, the more difficult it is to find, so the network administrator must think deeply about it. There are currently two solutions: one is to use dynamic IP Address Allocation DHCP), the other is to use static address allocation, but must enhance the management of MAC addresses.
Dynamic IP Address Allocation) the biggest advantage is that the client network configuration is very simple, without the help and intervention of the Administrator, the user can configure the network. However, because the IP address is dynamically allocated, the network administrator cannot identify the customer from the IP address, and the corresponding IP layer management will be ineffective. Additionally, an additional DHCP server is required for dynamic IP Address allocation.
By using static IP Address Allocation, you can make reasonable IP address planning for each department, so that you can easily track and manage the MAC address on the third layer, it will also effectively solve this problem.
Start building with 50+ products and up to 12 months usage for Elastic Compute Service
1 on 1 presale consultation
24/7 Technical Support 6 Free Tickets per Quarter Faster Response
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.
A comprehensive suite of global cloud computing services to power your business
Payment Methods We Support
