各位老师你们好 遇到个问题 防火墙sec path F1000-S一直长响应报警(像是蜂鸣器一直在响)看日志 好像有什么攻击又不像 下面我把日志贴出来 请各位老师帮忙看下 看是什么原因导致防火墙一直长响报警:有人说是风扇坏了 看风扇的命令是什么 dis fan没这种命令
%Feb 12 01:33:32:641 2020 firewall SEC/4/ATCKDF:atckType(1016)=(21)ARP-spoofing;rcvIfName(1023)=Bridge-template1;srcIPAddr(1017)=192.168.1.4;srcMacAddr(1021)=00-90-0b-13-97-fd;destIPAddr(1019)=192.168.1.2;destMacAddr(1022)=00-0f-e2-b5-eb-83;atckSpeed(1047)=0;atckTime_cn(1048)=20200212013329 %Feb 12 01:33:32:641 2020 firewall SEC/4/ATCKDF:atckType(1016)=(21)ARP-spoofing;rcvIfName(1023)=Bridge-template1;srcIPAddr(1017)=192.168.1.4;srcMacAddr(1021)=00-90-0b-13-97-fd;destIPAddr(1019)=192.168.1.2;destMacAddr(1022)=00-0f-e2-b5-eb-83;atckSpeed(1047)=0;atckTime_cn(1048)=20200212013330 %Feb 12 01:33:32:641 2020 firewall SEC/4/ATCKDF:atckType(1016)=(21)ARP-spoofing;rcvIfName(1023)=Bridge-template1;srcIPAddr(1017)=192.168.1.4;srcMacAddr(1021)=00-90-0b-13-97-fd;destIPAddr(1019)=192.168.1.2;destMacAddr(1022)=00-0f-e2-b5-eb-83;atckSpeed(1047)=0;atckTime_cn(1048)=20200212013331 %Feb 12 01:34:32:647 2020 firewall SEC/4/ATCKDF:atckType(1016)=(21)ARP-spoofing;rcvIfName(1023)=Bridge-template1;srcIPAddr(1017)=192.168.1.4;srcMacAddr(1021)=00-90-0b-13-97-fd;destIPAddr(1019)=192.168.1.2;destMacAddr(1022)=00-0f-e2-b5-eb-83;atckSpeed(1047)=0;atckTime_cn(1048)=20200212013404 %Feb 12 01:34:32:647 2020 firewall SEC/4/ATCKDF:atckType(1016)=(21)ARP-spoofing;rcvIfName(1023)=Bridge-template1;srcIPAddr(1017)=192.168.1.4;srcMacAddr(1021)=00-90-0b-13-97-fd;destIPAddr(1019)=192.168.1.2;destMacAddr(1022)=00-0f-e2-b5-eb-83;atckSpeed(1047)=0;atckTime_cn(1048)=20200212013405 %Feb 12 01:34:32:647 2020 firewall SEC/4/ATCKDF:atckType(1016)=(21)ARP-spoofing;rcvIfName(1023)=Bridge-template1;srcIPAddr(1017)=192.168.1.4;srcMacAddr(1021)=00-90-0b-13-97-fd;destIPAddr(1019)=192.168.1.2;destMacAddr(1022)=00-0f-e2-b5-eb-83;atckSpeed(1047)=0;atckTime_cn(1048)=20200212013406 %Feb 12 01:34:32:647 2020 firewall SEC/4/ATCKDF:atckType(1016)=(9)ICMP-unreachable;rcvIfName(1023)=Bridge-template1;srcIPAddr(1017)=176.168.58.139;srcMacAddr(1021)=;destIPAddr(1019)=10.0.0.10;destMacAddr(1022)=;atckSpeed(1047)=0;atckTime_cn(1048)=20200212013432 %Feb 12 01:36:32:649 2020 firewall SEC/4/ATCKDF:atckType(1016)=(9)ICMP-unreachable;rcvIfName(1023)=Bridge-template1;srcIPAddr(1017)=176.168.57.52;srcMacAddr(1021)=;destIPAddr(1019)=10.0.0.10;destMacAddr(1022)=;atckSpeed(1047)=0;atckTime_cn(1048)=20200212013620 %Feb 12 01:40:32:643 2020 firewall SEC/4/ATCKDF:atckType(1016)=(21)ARP-spoofing;rcvIfName(1023)=Bridge-template1;srcIPAddr(1017)=192.168.1.3;srcMacAddr(1021)=00-0f-e2-a6-14-4b;destIPAddr(1019)=192.168.1.2;destMacAddr(1022)=00-0f-e2-b5-eb-83;atckSpeed(1047)=0;atckTime_cn(1048)=20200212014018 %Feb 12 02:00:32:643 2020 firewall SEC/4/ATCKDF:atckType(1016)=(21)ARP-spoofing;rcvIfName(1023)=Bridge-template1;srcIPAddr(1017)=192.168.1.3;srcMacAddr(1021)=00-0f-e2-a6-14-4b;destIPAddr(1019)=192.168.1.2;destMacAddr(1022)=00-0f-e2-b5-eb-83;atckSpeed(1047)=0;atckTime_cn(1048)=20200212020003 %Feb 12 02:08:02:648 2020 firewall SEC/4/ATCKDF:atckType(1016)=(9)ICMP-unreachable;rcvIfName(1023)=Bridge-template1;srcIPAddr(1017)=176.168.60.251;srcMacAddr(1021)=;destIPAddr(1019)=10.0.0.11;destMacAddr(1022)=;atckSpeed(1047)=0;atckTime_cn(1048)=20200212020757 %Feb 12 02:15:32:643 2020 firewall SEC/4/ATCKDF:atckType(1016)=(9)ICMP-unreachable;rcvIfName(1023)=Bridge-template1;srcIPAddr(1017)=176.168.58.40;srcMacAddr(1021)=;destIPAddr(1019)=10.0.0.10;destMacAddr(1022)=;atckSpeed(1047)=0;atckTime_cn(1048)=20200212021522 %Feb 12 02:16:32:649 2020 firewall SEC/4/ATCKDF:atckType(1016)=(9)ICMP-unreachable;rcvIfName(1023)=Bridge-template1;srcIPAddr(1017)=176.168.58.196;srcMacAddr(1021)=;destIPAddr(1019)=58.251.112.221;destMacAddr(1022)=;atckSpeed(1047)=0;atckTime_cn(1048)=20200212021609 %Feb 12 02:20:02:640 2020 firewall SEC/4/ATCKDF:atckType(1016)=(21)ARP-spoofing;rcvIfName(1023)=Bridge-template1;srcIPAddr(1017)=192.168.1.3;srcMacAddr(1021)=00-0f-e2-a6-14-4b;destIPAddr(1019)=192.168.1.2;destMacAddr(1022)=00-0f-e2-b5-eb-83;atckSpeed(1047)=0;atckTime_cn(1048)=20200212021948 %Feb 12 02:21:32:649 2020 firewall SEC/4/ATCKDF:atckType(1016)=(9)ICMP-unreachable;rcvIfName(1023)=Bridge-template1;srcIPAddr(1017)=176.168.58.113;srcMacAddr(1021)=;destIPAddr(1019)=10.0.0.11;destMacAddr(1022)=;atckSpeed(1047)=0;atckTime_cn(1048)=20200212022102 %Feb 12 02:23:32:641 2020 firewall SEC/4/ATCKDF:atckType(1016)=(9)ICMP-unreachable;rcvIfName(1023)=Bridge-template1;srcIPAddr(1017)=176.168.58.40;srcMacAddr(1021)=;destIPAddr(1019)=10.0.0.10;destMacAddr(1022)=;atckSpeed(1047)=0;atckTime_cn(1048)=20200212022323 %Feb 12 02:28:32:641 2020 firewall SEC/4/ATCKDF:atckType(1016)=(21)ARP-spoofing;rcvIfName(1023)=Bridge-template1;srcIPAddr(1017)=192.168.1.4;srcMacAddr(1021)=00-90-0b-13-97-fd;destIPAddr(1019)=192.168.1.2;destMacAddr(1022)=00-0f-e2-b5-eb-83;atckSpeed(1047)=0;atckTime_cn(1048)=20200212022812 %Feb 12 02:28:32:641 2020 firewall SEC/4/ATCKDF:atckType(1016)=(21)ARP-spoofing;rcvIfName(1023)=Bridge-template1;srcIPAddr(1017)=192.168.1.4;srcMacAddr(1021)=00-90-0b-13-97-fd;destIPAddr(1019)=192.168.1.2;destMacAddr(1022)=00-0f-e2-b5-eb-83;atckSpeed(1047)=0;atckTime_cn(1048)=20200212022813 %Feb 12 02:28:32:641 2020 firewall SEC/4/ATCKDF:atckType(1016)=(21)ARP-spoofing;rcvIfName(1023)=Bridge-template1;srcIPAddr(1017)=192.168.1.4;srcMacAddr(1021)=00-90-0b-13-97-fd;destIPAddr(1019)=192.168.1.2;destMacAddr(1022)=00-0f-e2-b5-eb-83;atckSpeed(1047)=0;atckTime_cn(1048)=20200212022814 %Feb 12 02:29:02:644 2020 firewall SEC/4/ATCKDF:atckType(1016)=(21)ARP-spoofing;rcvIfName(1023)=Bridge-template1;srcIPAddr(1017)=192.168.1.4;srcMacAddr(1021)=00-90-0b-13-97-fd;destIPAddr(1019)=192.168.1.2;destMacAddr(1022)=00-0f-e2-b5-eb-83;atckSpeed(1047)=0;atckTime_cn(1048)=20200212022853 %Feb 12 02:29:02:644 2020 firewall SEC/4/ATCKDF:atckType(1016)=(21)ARP-spoofing;rcvIfName(1023)=Bridge-template1;srcIPAddr(1017)=192.168.1.4;srcMacAddr(1021)=00-90-0b-13-97-fd;destIPAddr(1019)=192.168.1.2;destMacAddr(1022)=00-0f-e2-b5-eb-83;atckSpeed(1047)=0;atckTime_cn(1048)=20200212022854 %Feb 12 02:29:02:644 2020 firewall SEC/4/ATCKDF:atckType(1016)=(21)ARP-spoofing;rcvIfName(1023)=Bridge-template1;srcIPAddr(1017)=192.168.1.4;srcMacAddr(1021)=00-90-0b-13-97-fd;destIPAddr(1019)=192.168.1.2;destMacAddr(1022)=00-0f-e2-b5-eb-83;atckSpeed(1047)=0;atckTime_cn(1048)=20200212022855 %Feb 12 02:29:32:647 2020 firewall SEC/4/ATCKDF:atckType(1016)=(9)ICMP-unreachable;rcvIfName(1023)=Bridge-template1;srcIPAddr(1017)=176.168.58.196;srcMacAddr(1021)=;destIPAddr(1019)=10.0.0.11;destMacAddr(1022)=;atckSpeed(1047)=0;atckTime_cn(1048)=20200212022930 %Feb 12 02:30:02:640 2020 firewall SEC/4/ATCKDF:atckType(1016)=(21)ARP-spoofing;rcvIfName(102
(0)
像是ARP攻击
(0)
请问该怎么排查
请问该怎么排查
亲~登录后才可以操作哦!
确定你的邮箱还未认证,请认证邮箱或绑定手机后进行当前操作
举报
×
侵犯我的权益
×
侵犯了我企业的权益
×
抄袭了我的内容
×
原文链接或出处
诽谤我
×
对根叔社区有害的内容
×
不规范转载
×
举报说明