Ask Me Help Desk

Ask Me Help Desk (https://www.askmehelpdesk.com/forum.php)
-   Networking (https://www.askmehelpdesk.com/forumdisplay.php?f=76)
-   -   HOw to identify which PC in the network is broadcasting (https://www.askmehelpdesk.com/showthread.php?t=129017)

  • Sep 13, 2007, 12:22 AM
    vishalsaswade
    HOw to identify which PC in the network is broadcasting
    Dear all,

    How to identify which computer in the network is broadcasting?what r the reasons that PC strats broadcasting in the network... please reply n help the needful
  • Sep 13, 2007, 01:16 AM
    benn11
    You can use wire shark to capture your network packets and the reason for a computer to broadcast packets is because of unknown destination, so it sends the packets to all known routes.
  • Sep 13, 2007, 04:10 AM
    cajalat
    benn11 was correct. To be more specific as far as "unknown destinations" the broadcasts are sent to unknown "local" destinations. If it doesn't know about a destination to yahoo.com for instance then it only needs to know the mac address of its default gateway. Another reason a PC is broadcasting could be due to faulty NIC. I've seen this too many times where a faulty NIC could flood the network.

    Wireshark as benn11 mentioned is probably your best starting point for troubleshooting broadcast issues.
  • Sep 13, 2007, 04:22 AM
    retsoksirhc
    I've never heard of wireshark... but you could use any packet sniffer really... Microsoft provides one called NetMon, there is a free version and a pay version. The free version should be able to pick up broadcasts and tell you where they come from.

    And a PC might broadcast when it first gets on the network. That's how they find a DHCP server to get an IP address, if they're set to acquire one automatically.
  • Sep 13, 2007, 04:28 AM
    cajalat
    Wireshark used to be know as ethereal. It is an excellent and fairly complete sniffer for windows. It is also free and is well established.
  • Sep 15, 2007, 06:31 PM
    retsoksirhc
    Quote:

    Originally Posted by cajalat
    Wireshark used to be know as ethereal. It is an excellent and fairly complete sniffer for windows. It is also free and is well established.

    Ah, good ol ethereal. I've not used it in ages. It's got a following now? It used to be mainly for ARP poisoning...

  • All times are GMT -7. The time now is 03:29 PM.