一次办公室网络故障排查续

早上到公司,网络又很卡,难道攻击死灰复燃?
赶紧登陆路由器查看

sh processes cpu sorted | exclude 0.00
CPU utilization for five seconds: 99%/18%; one minute: 99%; five minutes: 99%
 PID Runtime(ms)     Invoked      uSecs   5Sec   1Min   5Min TTY Process 
 335     2173484       74938      29003 49.63% 53.36% 59.70%   0 DNS Server Input 
 334      270936       73221       3700 22.92% 18.58% 10.91%   0 DNS Server       
 160      322784       73984       4362  7.56%  7.93%  8.77%   0 IP Input         
  30         900         790       1139  0.40%  0.07%  0.04% 132 Virtual Exec     
  32        2608       12030        216  0.08%  0.07%  0.08%   0 ARP Input        
 327        3860        5233        737  0.08%  0.10%  0.08%   0 IP NAT Ager      
 114        2124       36866         57  0.08%  0.06%  0.07%   0 VRRS Main thread 

目测攻击方式变了
关掉dns服务看看?

conf t
no ip dns server

果不其然,路由器负载立刻降下来
这谁多大仇,换法攻击我们
考虑让老板掏钱买台防火墙加到网络入口处

你可能感兴趣的:(一次办公室网络故障排查续)