UJP - 技術情報1

Life is fun and easy!

不正IP報告数

Okan Sensor
 
メイン
ログイン
ブログ カテゴリ一覧

RTX1100で高負荷トラフィッククライアントを捜す

RTX1100で高負荷トラフィッククライアントを捜す


0.改訂履歴

  • 2007.04.04 新規作成

1.はじめに

 このドキュメントでは,RTX1100を利用しているネットワークで,急にネットワーク接続が遅い,切れる現象が発生したときに,ネットワークトラフィックを増加させているPCを特定する手順を説明する. show environmentコマンドで状況を確認し,nat descriptorの状態を確認して特定にはいる. よって,NATされている環境で利用できる方法で,アドレステーブルを表示し大量通信を行っているPCを特定し,切り離し,アドレステーブルをリセットして対応する手順となる.

2.高負荷状態の確認

  • RTX1100に接続する.
  • show enviuronmentコマンドでステータスを確認する.
# show environment 
RTX1100 BootROM Rev.5.07
RTX1100 Rev.8.03.46 (Mon Aug 28 13:00:42 2006)
  main:  RTX1100 ver=c0 serial=N1AAAAAAA MAC-Address=00:XX:XX:XX:XX:XX MAC-Address=
00:XX:XX:XX:XX:XX MAC-Address=XX:XX:XX:XX:XX:XX
CPU:  44%(5sec)  77%(1min)  78%(5min)    Memory: 30% used
Firmware: exec0  Config. file: config0
Default firmware: exec0  Default config. file: config0
Boot time: 2007/03/10 18:59:37 +09:00
Current time: 2007/04/04 10:16:10 +09:00
Elapsed time from boot: 24days 15:16:33
Security Class: 2, Type: ON, TELNET: ON
# 
  • CPU使用率をみると,高い状態が続いていることが分かる.
  • この時点でのネットワークの体感,現象としては,繋がったり切れたりを繰り返している.
  • このような状態から,大量にセッションを消費してアクセスを行っている人がいる事が分かる.
  • 大量データのやり取りをしているだけであれば,転送速度が遅いだけで繋がったり切れたりを繰り返さない.

3.NATの状態を確認する

  • 大量にセッションを張ってアクセスをしているPCがいるはずなので,その特定を行う.
  • 今回の環境では,NATを使用して外部へアクセスしているので,NATのアドレスマップ状態を確認する.
# show nat descriptor address all
Reference Descriptor : 55555, Assigned Interface : PP[01](1)
Masquerade Table
        Outer address: 999.196.107.241   port range=60000-64095   290 used.
 Protocol              Inner           Destination   Masquerade  TTL(second)
   TCP     192.168.0.96.1203   999.172.164.145.110        62365           57
   TCP     192.168.0.72.1358   999.172.164.145.110        63133           52
   TCP    192.168.0.102.2185       999.195.73.2.22        61831          900
   TCP    192.168.0.122.1235   999.172.164.145.110        61551           42
   TCP    192.168.0.102.2183      999.195.73.2.443        60955           42
   UDP    192.168.0.102.2161   999.54.227.138.3544        60504          886
   TCP    192.168.0.102.2177      999.195.73.2.443        61788           36
   TCP    192.168.0.102.2176      999.195.73.2.443        62718           36
   TCP    192.168.0.102.2175      999.195.73.2.443        63082           36
   TCP    192.168.0.102.2174      999.195.73.2.443        62212           36
   TCP    192.168.0.102.2173      999.195.73.2.443        63344           36
   TCP    192.168.0.102.2172      999.195.73.2.443        61690           36
   TCP    192.168.0.102.2171      999.195.73.2.443        61099           36
   TCP    192.168.0.102.2170      999.195.73.2.443        63343           36
   TCP    192.168.0.102.2169      999.195.73.2.443        62617           36
   TCP    192.168.0.102.2168      999.195.73.2.443        62675           36
   TCP    192.168.0.111.1175    999.133.134.61.110        61885           35
   TCP    192.168.0.111.1173    999.216.228.28.110        61673           35
   TCP    192.168.0.111.1171       999.90.14.7.110        63545           34
   UDP     192.168.0.102.123    999.46.232.182.123        63202          877
   TCP    192.168.0.111.1169        999.40.42.8.80        61089          877
   TCP    192.168.0.111.1168   999.216.228.122.110        61583           34
   TCP    192.168.0.111.1166   999.172.164.145.110        60046           33
   TCP     192.168.0.45.1184     999.195.73.64.110        63121           30
   TCP     192.168.0.65.1812       999.195.73.2.22        63578          898
   TCP     192.168.0.99.1044     999.55.192.61.443        60965          870
   TCP     192.168.0.43.4029    999.228.192.197.80        60970          878
   TCP    192.168.0.111.1164     999.55.192.61.443        63114          875
   TCP     192.168.0.99.1043      999.55.192.61.80        61585          857
   TCP    192.168.0.130.1092     192.168.1.13.9220        60563          860
   TCP     192.168.0.99.1042       999.40.42.38.80        63850          870
   TCP     192.168.0.99.1041    999.155.101.161.80        62220          851
   TCP     192.168.0.48.1192   999.172.164.145.110        63556           22
   TCP    192.168.0.134.1411   999.172.164.145.110        62012            3
   TCP     192.168.0.77.1075     999.55.192.61.443        63761          894
   TCP    192.168.0.202.1266    999.106.104.25.443        63000          837
   TCP    192.168.0.202.1265    999.106.104.25.443        61482          835
   UDP    192.168.0.130.1091      192.168.1.13.161        63895          833
   UDP    192.168.0.130.1090      192.168.1.13.161        61210          832
   TCP    192.168.0.202.1264    999.106.104.25.443        62860          810
   TCP    192.168.0.202.1262    999.106.104.21.443        63770          807
   TCP     192.168.0.99.1036    192.168.13.24.2967        61281          807
   TCP    192.168.0.128.1180      999.226.7.51.443        62215          812
   TCP    192.168.0.202.1250    999.106.104.25.443        62742          794
   TCP    192.168.0.202.1249    999.106.104.25.443        62415          793
   TCP    192.168.0.202.1247    999.106.104.25.443        62826          790
   TCP    192.168.0.202.1246    999.106.104.25.443        63953          788
   TCP    192.168.0.128.1177      999.226.7.51.443        62289          735
   TCP    192.168.0.128.1163      999.226.7.51.443        62538          734
   TCP    192.168.0.128.1162      999.226.7.51.443        63667          734
   TCP    192.168.0.130.1087     192.168.1.13.9220        60738          738
   TCP    192.168.0.128.1160      999.226.7.51.443        63566          733
   TCP    192.168.0.128.1157      999.226.7.51.443        63061          733
   TCP    192.168.0.143.1318    192.168.13.24.2967        61419          729
   TCP    192.168.0.128.1148      999.226.7.51.443        61951          715
   TCP    192.168.0.128.1142      999.226.7.51.443        63542          715
   UDP    192.168.0.130.1085      192.168.1.13.161        63643          710
   UDP    192.168.0.130.1084      192.168.1.13.161        61456          709
   TCP    192.168.0.128.1140   999.168.252.103.443        61380          701
   TCP    192.168.0.128.1138       999.226.7.51.80        63161          698
   TCP    192.168.0.128.1137       999.226.7.51.80        62551          696
   TCP    192.168.0.128.1134       999.226.7.51.80        62647          695
   TCP    192.168.0.130.1081   999.172.164.145.143        63715          828
  ICMP     192.168.0.122.512      192.168.11.150.*        63986          654
  ICMP     192.168.0.122.256      192.168.11.150.*        61656          653
   UDP    192.168.0.122.1218    999.13.35.68.29301        61189          841
   TCP    192.168.0.130.1078      66.249.89.104.80        62250          649
   UDP    192.168.0.122.1213    999.13.35.68.29301        63766          648
   TCP    192.168.0.54.53475    999.151.118.202.80        62312          704
   UDP    192.168.0.122.1212    999.13.35.68.29301        60253          639
   TCP    192.168.0.130.1075     192.168.1.13.9220        60792          621
   TCP    192.168.0.54.53470      999.14.253.95.80        60553          826
   UDP    192.168.0.130.1074      192.168.1.13.161        62241          591
   UDP    192.168.0.130.1073      192.168.1.13.161        63535          593
   TCP     192.168.0.99.1447    192.168.13.24.2967        64054          572
   TCP     192.168.0.41.4768     999.239.63.104.80        63191          565
   TCP     192.168.0.75.1073    999.173.169.161.80        61316          561
   TCP     192.168.0.75.1072      163.221.11.20.80        64006          562
   TCP     192.168.0.75.1070      999.14.253.91.80        62692           13
   TCP    192.168.0.130.1072     192.168.1.13.9220        63653          538
   UDP    192.168.0.111.1084    999.13.35.68.29301        63640          521
   TCP    192.168.0.54.53415     999.247.30.153.80        63378          704
   UDP    192.168.0.130.1070      192.168.1.13.161        61646          511
   TCP    192.168.0.54.53413       999.43.0.144.43        62885          510
   TCP    192.168.0.54.53412       66.249.89.99.80        62837          689
   TCP     192.168.0.65.1743       999.195.73.2.22        62919          677
   UDP    192.168.0.130.1068      192.168.1.13.161        60974          475
   UDP    192.168.0.130.1063      192.168.1.13.161        62521          473
   UDP    192.168.0.130.1058      192.168.1.13.161        62894          467
   UDP    192.168.0.130.1054      192.168.1.13.161        60292          463
   UDP    192.168.0.130.1053      192.168.1.13.161        60114          462
   UDP    192.168.0.130.1052      192.168.1.13.161        60245          461
   TCP    192.168.0.54.53404     999.83.135.242.80        63975          459
   TCP    192.168.0.54.53384    999.216.227.207.80        62115          438
   TCP    192.168.0.127.1205      999.4.208.211.80        61053          391
  ICMP     192.168.0.111.768      192.168.11.150.*        61278          311
   TCP    192.168.0.133.1740     999.157.80.9.2967        63072          276
   TCP    192.168.0.133.1647     999.50.1.113.2967        63440          271
   TCP    192.168.0.133.1687   999.162.46.195.2967        63495          268
   TCP    192.168.0.133.1521  999.174.197.209.2967        60377          264
   TCP    192.168.0.133.1357    999.234.3.212.2967        63060          264
   TCP    192.168.0.133.1356   999.151.187.93.2967        62538          263
   TCP    192.168.0.133.4566   999.189.17.149.2967        63363          260
   TCP    192.168.0.133.1138   999.211.194.25.2967        61636          252
   TCP    192.168.0.133.1168    999.48.41.215.2967        62404          254
   TCP    192.168.0.133.1151   999.179.159.83.2967        63300          247
   TCP    192.168.0.133.1150   999.153.95.242.2967        63193          247
   TCP    192.168.0.133.4183    999.125.16.14.2967        62636          242
   TCP    192.168.0.133.3414    999.80.29.239.2967        60183          228
   TCP    192.168.0.133.3400    999.148.7.199.2967        63826          227
   TCP    192.168.0.133.2786    999.28.224.32.2967        63730          218
   TCP    192.168.0.133.2972     999.9.116.61.2967        61068          218
   TCP    192.168.0.133.2480  999.249.191.201.2967        60602          208
   TCP    192.168.0.133.2479   999.108.35.172.2967        61241          208
   TCP    192.168.0.133.2478  999.122.248.112.2967        63587          208
   TCP    192.168.0.133.2477     999.2.143.31.2967        63990          208
   TCP    192.168.0.133.2476   999.213.170.28.2967        62368          208
   TCP    192.168.0.133.2475    999.219.54.59.2967        61744          208
   TCP    192.168.0.133.2474  999.100.125.208.2967        62766          208
   TCP    192.168.0.133.2542    999.40.74.152.2967        61855          216
   TCP    192.168.0.133.2473    999.230.95.41.2967        62756          207
   TCP    192.168.0.133.4928   999.161.161.32.2967        60885          202
   TCP    192.168.0.133.1717   999.196.95.123.2967        61022          195
   TCP    192.168.0.133.1687   999.174.73.143.2967        63495          187
   TCP    192.168.0.133.1596   999.16.239.166.2967        62220          186
   TCP    192.168.0.133.1641   999.204.232.93.2967        62663          184
   TCP    192.168.0.133.1640  999.108.246.111.2967        61500          184
   TCP    192.168.0.133.1639   999.223.243.38.2967        60402          184
   TCP    192.168.0.133.1637   999.180.189.22.2967        61005          184
   TCP    192.168.0.133.1627   999.38.162.107.2967        60461          189
   TCP    192.168.0.133.1626     999.235.29.9.2967        60997          189
   TCP    192.168.0.133.1625  999.124.221.171.2967        61856          189
   TCP    192.168.0.133.1624    999.82.153.97.2967        63885          189
   TCP    192.168.0.133.1670  999.188.132.103.2967        62227          186
   TCP    192.168.0.133.1669   999.190.20.129.2967        61419          186
   TCP    192.168.0.133.1552    999.117.182.2.2967        61123          183
   TCP    192.168.0.133.1551    999.53.13.236.2967        61862          183
   TCP    192.168.0.133.1550  999.192.204.76.2967        61432          183
   TCP    192.168.0.133.1530 999.223.122.159.2967        60484          182
   TCP    192.168.0.133.1316   999.83.54.144.2967        62425          180
   TCP    192.168.0.133.1586   999.44.213.30.2967        60046          185
   TCP    192.168.0.133.1262  999.15.248.145.2967        61532          177
   TCP    192.168.0.133.1500 999.101.205.134.2967        61864          180
   TCP    192.168.0.133.1499 999.236.198.130.2967        62154          180
   TCP    192.168.0.133.4761   999.180.87.65.2967        60585          176
   TCP    192.168.0.133.4759    999.40.84.78.2967        60278          176
   TCP    192.168.0.133.4423  999.235.83.233.2967        61740          175
   TCP    192.168.0.133.4421  999.191.91.187.2967        60957          175
   TCP    192.168.0.133.4420 999.217.248.166.2967        61002          175
   TCP    192.168.0.133.1210  999.150.73.212.2967        61256          174
   TCP    192.168.0.133.1097   999.71.81.191.2967        60130          163
   TCP    192.168.0.133.1096    999.222.7.36.2967        62078          163
   TCP    192.168.0.133.4702  999.109.73.211.2967        62976          161
   TCP    192.168.0.133.4694  999.131.12.231.2967        62016          161
   TCP    192.168.0.133.1065 999.229.164.147.2967        64058          164
   TCP    192.168.0.133.1064  999.191.63.189.2967        62448          164
   TCP    192.168.0.133.4486 999.154.113.191.2967        62775          167
   TCP    192.168.0.133.4449  999.79.182.175.2967        63410          167
   TCP    192.168.0.133.4432  999.160.176.26.2967        61633          167
   TCP    192.168.0.133.4390    999.58.54.32.2967        61039          167
   TCP    192.168.0.133.1063  999.234.149.16.2967        63402          164
   TCP    192.168.0.133.1062   999.90.51.185.2967        62460          164
   TCP    192.168.0.133.1061 999.140.239.240.2967        62750          164
   TCP    192.168.0.133.1060    999.18.37.85.2967        63271          164
   TCP    192.168.0.133.1059 999.163.209.222.2967        62869          164
   TCP    192.168.0.133.4056  999.175.176.70.2967        60092          156
   TCP    192.168.0.133.4055    999.16.62.92.2967        62157          156
   TCP    192.168.0.133.4054 999.235.174.181.2967        60865          156
   TCP    192.168.0.133.3880 999.240.116.117.2967        60185          155
   TCP    192.168.0.133.4283    999.105.28.3.2967        63937          159
   TCP    192.168.0.133.4147   999.53.79.220.2967        64081          159
   TCP    192.168.0.133.4146   999.24.142.57.2967        62667          159
   TCP    192.168.0.133.4145    999.81.196.5.2967        63911          159
   TCP    192.168.0.133.3947  999.229.70.179.2967        62387          147
   TCP    192.168.0.133.3676 999.128.218.178.2967        60651          146
   TCP    192.168.0.133.3259  999.163.61.208.2967        60486          138
   TCP    192.168.0.133.3258  999.136.102.90.2967        60533          138
   TCP    192.168.0.133.3129   999.208.41.53.2967        61914          138
   TCP    192.168.0.133.3128    999.95.67.58.2967        62169          138
   TCP    192.168.0.133.3127 999.247.136.249.2967        60231          138
   TCP    192.168.0.133.2448  999.28.203.120.2967        60547          129
   TCP    192.168.0.133.2925  999.103.20.247.2967        60115          134
   TCP    192.168.0.133.2924   999.25.76.165.2967        60762          134
   TCP    192.168.0.133.2923   999.93.181.27.2967        62898          134
   TCP    192.168.0.133.2922 999.240.188.219.2967        63508          134
   TCP    192.168.0.133.2640   999.75.30.237.2967        62226          127
   TCP    192.168.0.133.4892   999.52.150.78.2967        61209          118
   TCP    192.168.0.133.2164   999.90.127.28.2967        60207          117
   TCP    192.168.0.133.1676  999.37.116.191.2967        60208          111
   TCP    192.168.0.133.1675  999.206.47.157.2967        63273          111
   TCP    192.168.0.133.1595  999.197.91.136.2967        63850          100
   TCP    192.168.0.133.1558    999.92.48.56.2967        61750           98
   TCP    192.168.0.133.1491 999.230.108.161.2967        63343           98
   TCP    192.168.0.133.1412   999.177.99.87.2967        60501           97
   TCP    192.168.0.133.2743  999.249.55.219.2967        61172          104
   TCP    192.168.0.133.1542  999.156.65.113.2967        62851          101
   TCP    192.168.0.133.4615  999.200.138.30.2967        62291           92
   TCP    192.168.0.133.4614    999.42.82.62.2967        61085           92
   TCP    192.168.0.133.1271  999.29.194.133.2967        62088           96
   TCP    192.168.0.133.1270 999.174.199.147.2967        63770           96
   TCP    192.168.0.133.1119  999.169.219.96.2967        61614           87
   TCP    192.168.0.133.3236  999.166.197.16.2967        63724           55
   TCP    192.168.0.133.3080 999.153.247.244.2967        61130           53
   TCP    192.168.0.133.4824 999.177.119.155.2967        62232           34
   TCP    192.168.0.133.4818  999.85.249.145.2967        60683           34
   TCP    192.168.0.133.3146 999.243.199.243.2967        61461           32
   TCP    192.168.0.133.2278   999.32.88.194.2967        61246           38
   TCP    192.168.0.133.2277 999.115.185.236.2967        63253           38
   TCP    192.168.0.133.2275  999.199.197.80.2967        62181           38
   TCP    192.168.0.133.2274    999.12.38.86.2967        63956           38
   TCP    192.168.0.133.2273     999.9.58.71.2967        62114           38
   TCP    192.168.0.133.1973 999.121.253.252.2967        63223           29
   TCP    192.168.0.133.1830  999.244.144.17.2967        60770           20
   TCP    192.168.0.133.1829 999.208.253.140.2967        60685           20
   TCP    192.168.0.133.1492    999.68.70.30.2967        62617           17
   TCP    192.168.0.133.1586   999.60.72.101.2967        60046           18
   TCP    192.168.0.133.1532   999.144.99.83.2967        61739           21
   TCP    192.168.0.133.1531 999.155.223.228.2967        63699           21
   TCP    192.168.0.133.1530  999.27.160.139.2967        60484           21
   TCP    192.168.0.133.1585 999.204.237.249.2967        62572           18
   TCP    192.168.0.133.1584 999.115.142.122.2967        63317           18
   TCP    192.168.0.133.1583   999.155.59.15.2967        61583           18
   TCP    192.168.0.133.1582  999.118.243.99.2967        61089           18
   TCP    192.168.0.133.1465   999.150.73.73.2967        60933           15
   TCP    192.168.0.133.1529  999.97.232.130.2967        63915           15
   TCP    192.168.0.133.1528   999.0.141.206.2967        60345           15
   TCP    192.168.0.133.1527   999.170.14.92.2967        61562           15
   TCP    192.168.0.133.1526   999.255.90.83.2967        62501           15
   TCP    192.168.0.133.1581  999.42.152.133.2967        63202           18
   TCP    192.168.0.133.1580    999.87.32.32.2967        62207           18
   TCP    192.168.0.133.1464   999.152.249.9.2967        61394           15
   TCP    192.168.0.133.1463 999.196.174.200.2967        62840           15
   TCP    192.168.0.133.1462  999.96.220.127.2967        61823           15
   TCP    192.168.0.133.2854   999.21.248.68.2967        61863           20
   TCP    192.168.0.133.1579  999.244.14.109.2967        60702           17
   TCP    192.168.0.128.1107  999.172.164.145.110        60757          106
   TCP    192.168.0.133.2832   999.81.188.40.2967        61866           20
   TCP    192.168.0.133.2743  999.105.181.58.2967        61172           20
   TCP    192.168.0.133.1460  999.74.248.230.2967        60633           14
   TCP    192.168.0.133.1459   999.43.51.110.2967        60886           14
   TCP    192.168.0.133.1458 999.169.253.109.2967        61304           14
   TCP    192.168.0.133.2597   999.243.81.89.2967        62584           20
   TCP    192.168.0.133.2592   999.77.235.75.2967        61981           20
   TCP    192.168.0.130.1190    192.168.1.13.9220        61928           22
   TCP     192.168.0.99.1409    999.147.39.210.80        62589           38
   TCP    192.168.0.133.1578  999.153.77.219.2967        60709           17
   TCP    192.168.0.133.1577   999.208.76.90.2967        61467           17
   TCP    192.168.0.133.1576    999.34.20.51.2967        61886           17
   TCP    192.168.0.133.1575 999.230.217.248.2967        60525           17
   TCP    192.168.0.133.1574  999.209.85.128.2967        60464           17
   TCP    192.168.0.133.1572    999.6.152.92.2967        63464           17
   TCP    192.168.0.133.1457   999.191.54.94.2967        61769           14
   TCP    192.168.0.133.1456  999.115.37.242.2967        60206           14
   TCP    192.168.0.133.1455 999.134.218.203.2967        63857           14
   TCP    192.168.0.133.1454  999.147.208.70.2967        62645           14
   TCP    192.168.0.133.1453 999.133.170.106.2967        60443           14
   TCP    192.168.0.133.1452    999.25.7.244.2967        60008           14
   TCP    192.168.0.133.1451   999.144.150.9.2967        61336           14
   TCP    192.168.0.133.1450  999.96.137.131.2967        63018           14
   TCP    192.168.0.133.1449    999.63.133.9.2967        60883           14
   TCP    192.168.0.133.1448   999.81.232.68.2967        63337           14
   TCP    192.168.0.133.1447   999.65.199.22.2967        62377           14
   TCP    192.168.0.133.1446   999.41.26.153.2967        60290           14
   TCP    192.168.0.133.1445 999.111.128.216.2967        63748           14
   TCP    192.168.0.133.1444 999.117.248.132.2967        61732           14
   TCP    192.168.0.133.1443   999.188.4.206.2967        61434           14
   TCP    192.168.0.133.1442  999.195.110.13.2967        62464           14
   TCP    192.168.0.133.1441  999.52.251.185.2967        63825           14
   TCP    192.168.0.133.1440   999.51.59.131.2967        61935           14
   TCP    192.168.0.133.1439 999.102.148.188.2967        62513           14
   TCP    192.168.0.133.1438  999.235.138.25.2967        62287           14
   TCP    192.168.0.133.1437    999.96.26.45.2967        63123           14
   TCP    192.168.0.133.1436   999.23.152.47.2967        61716           14
   TCP    192.168.0.133.1434   999.44.221.41.2967        61834           14
   TCP    192.168.0.133.1433 999.103.252.181.2967        62000           14
   TCP    192.168.0.133.1432  999.250.22.214.2967        61751           14
   TCP    192.168.0.133.1430  999.103.172.90.2967        62510           14
   TCP    192.168.0.133.1461   999.76.101.74.2967        61844           14
   TCP     192.168.0.41.4742  999.172.164.145.110        60694           33
   UDP     192.168.0.111.123    999.46.197.32.123        60205          456
   TCP     192.168.0.96.1033   999.46.109.36.1863        60262          355
  ICMP     192.168.0.130.768       192.168.1.13.*        60126          873
   UDP     192.168.0.130.427     192.168.1.13.427        61870          831
   TCP    192.168.0.124.1070  999.216.235.99.5061        60125          781
   TCP    192.168.0.124.1045 999.216.240.162.5050        61841          872
   UDP    192.168.0.203.1025    192.168.1.200.161        63142          636
   UDP     192.168.0.203.137   10.246.113.249.137        62362          876
   TCP    192.168.0.131.1053   999.46.107.68.1863        63119          871
   TCP    192.168.0.134.1057   999.46.106.42.1863        60485          893
   TCP    192.168.0.143.1129   999.46.106.90.1863        63070          872
--------------------- - ---
NAT Descriptor table is 1
#
  • これを確認すると,明らかにIPアドレス192.168.0.133を利用しているPCのアクセスが多い事が分かる.
  • よって,そのIPアドレスを利用しているPCを,直ちにネットワークから遮断する.

4.NATアドレステーブルのリセット

  • 始めに,この作業が正しい対処かどうかは分からないのが,対処方法の1つとして紹介する.
  • 原因となるPCをネットワークから切り離すだけでは,肥大化したNATテーブルはリセットされない.
  • 大量のNATテーブルを扱うことで,ルータが重たくなる.
  • よって,これをリセットする.
  • リセットするには,一瞬TTLを短くしてみる.
  • 以下のコマンドで60秒としてみる.
# nat descriptor timer 55555 60 
# 
  • 残っているNATテーブルを確認する.
# show nat descriptor address all
Reference Descriptor : 55555, Assigned Interface : PP[01](1)
Masquerade Table
        Outer address:128.196.127.241   port range=60000-64095   12 used.
 Protocol              Inner           Destination   Masquerade  TTL(second)
   TCP    128.168.0.122.1239   128.172.164.145.110        60011           59
   TCP    128.168.0.105.2459      128.52.17.136.80        60010           58
   TCP    128.168.0.105.2458      128.150.18.60.80        60009           57
   TCP    128.168.0.143.1129    999.46.106.90.1863        60008           55
   TCP    128.168.0.130.1121     999.14.235.104.80        60007           59
   TCP     128.168.0.71.1185   128.172.164.145.110        60006           54
   TCP     128.168.0.65.1812        10.185.73.2.22        60005           58
   TCP    128.168.0.105.2457      128.150.18.60.80        60004           58
   TCP    128.168.0.105.2456     128.150.20.118.80        60003           58
   UDP        128.168.0.1.53      128.196.3.183.53        60002            8
   TCP    128.168.0.102.2255     128.239.149.10.80        60001           52
   TCP    128.168.0.102.2256     128.239.149.10.80        60000           52
--------------------- - ---
NAT Descriptor table is 1
# 
  • これで1分以上経過したものが消えた.
  • よって,元に戻す.
# nat descriptor timer 55555 900 
#
  • デフォルトは900秒(15分)
  • これで効果が出れば問題ない.


広告スペース
Google