netscreen self log 分析
一朋友自己开公司,近日反映 网络经常断网或者网速奇慢,遂在NS进行记录分析,在self 日志里有些东西看得不是很明白,前来向各位大侠请教 (self 日志在附件中)背景:
2M 共享带宽接入 netscreen 下连 L2 交换机 直接到个点位
疑问:
1. 通过该日志,能发现问题的原因吗?
2. 类似于这种包是否正常
2008-09-14 20:24:53 Deny 89.137.234.62:55640->202.131.32.77:512 0 sec ICMP
2008-09-14 20:24:51 Deny 89.137.234.62:12376->202.131.32.77:512 0 sec ICMP
2008-09-14 20:24:27 Deny 222.66.126.139:2214->202.131.32.77:135 0 sec MSRPC ENDPOINT MAPPER(TCP)
2008-09-14 20:23:10 Deny 222.73.37.106:6000->202.131.32.77:135 0 sec MSRPC ENDPOINT MAPPER(TCP)
2008-09-14 20:22:52 Deny 222.64.151.116:3713->202.131.32.77:135 0 sec MSRPC ENDPOINT MAPPER(TCP)
2008-09-14 20:22:42 Deny 222.73.204.14:6000->202.131.32.77:135 0 sec MSRPC ENDPOINT MAPPER(TCP)
2008-09-14 20:17:19 Deny 222.66.126.139:2615->202.131.32.77:135 0 sec MSRPC ENDPOINT MAPPER(TCP)
2008-09-14 20:15:37 Deny 222.66.126.139:4790->202.131.32.77:135 0 sec MSRPC ENDPOINT MAPPER(TCP)
2008-09-14 20:12:20 Deny 222.66.33.238:1636->202.131.32.77:139 0 sec NETBIOS (SSN)
2008-09-14 20:12:13 Deny 222.66.33.238:1636->202.131.32.77:139 0 sec NETBIOS (SSN)
2008-09-14 20:12:10 Deny 222.66.33.238:1636->202.131.32.77:139 0 sec NETBIOS (SSN)
2008-09-14 20:11:52 Deny 222.186.9.109:6000->202.131.32.77:1433 0 sec TCP PORT 1433
3. Netscreen 5gt 会不会因为设备过热导致DOWN掉
4. 如何查找导致该网络异常的真正原因
页:
[1]