What network traffic does windows generated by default on a repeating basis.
Here is my situation. Recently I had a switch ARP cache (table) get flooded which buried the switch. It repeated it's self on a 20-30 minute basis. The user case is one where we are doing scale testing of a product we develop that runs on Windows Clients and Servers. The scenario is 25 Windows clients each running a spew client generating nearly 1000 connections to 12 different Windows servers. This seemed to flood the switch with a 8k ARP table limit. Now I understand there are various services that run at startup that would populate the ARP cache on a switch. However what I cannot find are the default services that would generate traffic every 20-30 minutes. And yes this could be the action of a virus. The network is isolated from other networks and I already ran various scans.
August 25th, 2012 4:32pm

Hi, Please check if Process Explorer, Process Monitor and Network Monitor can help you to troubleshoot the issue. Hope this helps. Jeremy Wu TechNet Community Support
Free Windows Admin Tool Kit Click here and download it now
August 27th, 2012 12:50am

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics