Tweet
My cable modem has been getting blasted with traffic as of late, so I ran Ethereal to try and determine what was a happening. I captured 2500 packets in 15 seconds, the vast majority (99.5%) is ARP traffic coming from 3 maybe 4 IP addresses. I also took a look at my router logs and it's getting hammered with ICMP traffic. To me, it looks like echo requests (type =8) and my router as designed is dropping them.
So I have a host of questions that I can't answer....
What would be causing the 3 or 4 addresses to be blasting the ARP traffic and how can I get it (them) to stop? I've tried calling the ISP engineers but they were of little to no help (and no DSL isn't an option right now)
Is there any correlation between the ICMP traffic and the ARP traffic? Why wouldn't Ethereal capture the ICMP traffic as well, or is it the same traffic but my capturing devices (router and Ethereal) are working at different layers, the network layer and the data link layer respectively.
So I have a host of questions that I can't answer....
What would be causing the 3 or 4 addresses to be blasting the ARP traffic and how can I get it (them) to stop? I've tried calling the ISP engineers but they were of little to no help (and no DSL isn't an option right now)
Is there any correlation between the ICMP traffic and the ARP traffic? Why wouldn't Ethereal capture the ICMP traffic as well, or is it the same traffic but my capturing devices (router and Ethereal) are working at different layers, the network layer and the data link layer respectively.
Comment