前言
反正怎么說都好,到了這個月,見到我還寫著這樣的帖子,大多數(shù)人都知道的了,是的,我這個落伍大學(xué)生是個廢渣對吧。。。
其實一開始不想寫這篇東西給兩位站長,一開始知道兩位站長即將離開這個板塊的時候,都是在內(nèi)部溝通的。不過卻不幸我們的管理人員的嘴閉不上,泄漏出來了。。。(是誰泄漏的自己認(rèn)了吧。。。。)
當(dāng)然了,我這個版主,雖然說在之前的幾年都為論壇做出過很多很多,不過自從今年,這幾年的功績毀于一旦。連找工作,人家拿起我的簡歷的時候都說:啥?!TPY論壇版主??!!啥屁東西?。。ㄎ抑荒苷f我這沒用的廢柴,非常中的廢柴。。。)
所以論壇大家也懂得,從過年后開始情況一落千丈多吧。。。。
在群里面我是個負(fù)能量爆燈的一員,基本上除了潛水
還是潛水。。。
為了避免自己那負(fù)能量釋放影響大家,所以也辛苦了“陳年老酒”這位元老級臨時站長。。。
至于為什么我會這樣說,我可以說的是:我在之前,崩了兩個著名論壇,崩了不少Q(mào)Q群,游戲都崩的,連電腦手機摸兩摸都會燒掉的。。。(其余的話請自行腦補吧。。。)
好了,說到這里我不想說什么了,懶得再釋放負(fù)能量了。。。
最近看了很多的帖子,很多的內(nèi)容,很多人都說單機能上,但接了路由卻上不了網(wǎng)。。。有些路由會提示一些相應(yīng)的信息說明是啥回事。。。但實際上不一定是路由提示的這個信息產(chǎn)生問題。。。
除了這個方面外,我們有些網(wǎng)絡(luò)異常情況,有些比如網(wǎng)絡(luò)攻擊啊,網(wǎng)絡(luò)干擾等信息,我們該怎么在路由器里面找到信息呢?
其實路由跟電腦一樣,都有日志系統(tǒng)
日志系統(tǒng)是什么呢?
日志系統(tǒng)
日志系統(tǒng)是讓用戶在使用過程中,系統(tǒng)會記錄運行的情況,比如說登錄資料、運行服務(wù)、出錯信息等等情況
而路由器的日志系統(tǒng)也是一樣,但路由器的日志系統(tǒng)主要分成這幾類:
1:系統(tǒng)運行日志:比如開機,重啟,清除日志等
2:WAN口運行日志:比如WAN口連接,斷開,PPPOE信息等
3:DHCP運行日志:比如請求獲取IP地址,通知IP地址使用,釋放IP地址等
4:防火墻運行日志:比如ARP攻擊、DHCP沖突、DoS網(wǎng)絡(luò)攻擊行為等
5:上網(wǎng)行為運行日志(上網(wǎng)行為專用):比如登錄QQ號,MSN賬號記錄、用戶訪問地址記錄等
6:PPPOE服務(wù)端運行日志(PPPOE服務(wù)器功能專用):PPPOE服務(wù)器運行狀態(tài),PPPOE客戶端撥號、斷開、session報警、PPPOE使用協(xié)議、MAC記錄等
7:其他類型的日志
這里我們以TP-LINK牌子為例,介紹如何去看路由器為什么出現(xiàn)WAN口無法訪問的問題
TP-LINK、水星、fast牌子的路由器的日志系統(tǒng)最為詳細(xì),因而對WAN口無法正常連接得到非常好的幫助
如以下日志:
正常情況下的路由日志是這樣的;
1970-01-01 00:00:01 [5] DSL: ADSL Idle/L3/Activating!
1970-01-01 00:00:02 [5] DSL: ADSL Slowblink!
1970-01-01 00:00:04 [5] DSL: ADSL Idle/L3/Activating!
1970-01-01 00:00:05 [5] DSL: ADSL Slowblink!
1970-01-01 00:00:06 [5] DSL: ADSL Idle/L3/Activating!
1970-01-01 00:00:06 [5] DSL: ADSL Slowblink!
1970-01-01 00:00:07 [5] DSL: ADSL Idle/L3/Activating!
1970-01-01 00:00:09 [5] DSL: ADSL Slowblink!
1970-01-01 00:00:10 [5] DSL: ADSL Idle/L3/Activating!
1970-01-01 00:00:12 [5] DSL: ADSL Slowblink!
1970-01-01 00:00:14 [5] DSL: ADSL Initializing!
1970-01-01 00:00:22 [5] DSL: ADSL Enter showtime!
1970-01-01 00:01:09 [5] DHCPD: Recv DISCOVER from 00:12:FE:E1:7F:5D
1970-01-01 00:01:10 [5] DHCPD: Send OFFER with ip 10.1.1.4
1970-01-01 00:01:10 [5] DHCPD: Recv REQUEST from 00:12:FE:E1:7F:5D
1970-01-01 00:01:10 [5] DHCPD: Send ACK to 10.1.1.4
1970-01-01 00:01:11 [6] PPP: ppp0 sent [LCP TERM_REQ ID(0x00)]
1970-01-01 00:01:11 [6] PPP: ppp0 sent [PADT SESS_ID(0x0000)]
1970-01-01 00:01:11 [6] PPP: ppp0 sent [PADI SVC_NAME() HOST_UNIQ(0x00e04c1f8f291caf)]
1970-01-01 00:01:11 [6] PPP: ppp0 rcvd [PADO SVC_NAME(leasedline.gd) AC_NAME(GZ-XS-BAS-5.MAN.SE800-B2024090601288) AC_MAC(00:
1970-01-01 00:01:11 [6] PPP: ppp0 sent [PADR SVC_NAME() HOST_UNIQ(0x00e04c1f90291caf)]
1970-01-01 00:01:11 [6] PPP: ppp0 rcvd [PADS SESS_ID(0x0520)]
1970-01-01 00:01:11 [6] PPP: ppp0 sent [LCP CONF_REQ ID(0x01) MRU(1492) MAGIC(0x000010ec)]
1970-01-01 00:01:11 [6] PPP: ppp0 rcvd [LCP CONF_REQ ID(0x43) MRU(1492) AUTH(PAP) MAGIC(0x5118b68d)]
1970-01-01 00:01:11 [6] PPP: ppp0 sent [LCP CONF_ACK ID(0x43) MRU(1492) AUTH(PAP) MAGIC(0x5118b68d)]
1970-01-01 00:01:11 [6] PPP: ppp0 rcvd [LCP CONF_ACK ID(0x01) MRU(1492) MAGIC(0x000010ec)]
1970-01-01 00:01:13 [6] PPP: ppp0 sent [PAP ID(0x02) NAME() PWD(hidden]
1970-01-01 00:01:14 [6] PPP: ppp0 rcvd [PAP ID(0x02)]
1970-01-01 00:01:14 [6] PPP: ppp0 sent [IPCP CONF_REQ ID(0x03) IP_ADDR(0.0.0.0) DNS_PRI(0.0.0.0) DNS_SEC(0.0.0.0)]
1970-01-01 00:01:14 [6] PPP: ppp0 rcvd [IPCP CONF_REQ ID(0x0b) IP_ADDR(183.5.68.1)]
1970-01-01 00:01:14 [6] PPP: ppp0 sent [IPCP CONF_ACK ID(0x0b) IP_ADDR(183.5.68.1)]
1970-01-01 00:01:14 [6] PPP: ppp0 rcvd [IPCP CONF_NAK ID(0x03) IP_ADDR(183.5.68.67) DNS_PRI(202.96.134.133) DNS_SEC(202.96.12
1970-01-01 00:01:14 [6] PPP: ppp0 sent [IPCP CONF_REQ ID(0x04) IP_ADDR(183.5.68.67) DNS_PRI(202.96.134.133) DNS_SEC(202.96.12
1970-01-01 00:01:14 [6] PPP: ppp0 rcvd [IPCP CONF_ACK ID(0x04) IP_ADDR(183.5.68.67) DNS_PRI(202.96.134.133) DNS_SEC(202.96.12
2012-09-21 18:36:00 [5] DHCPD: Recv REQUEST from 00:12:FE:E1:7F:5D
2012-09-21 18:36:00 [5] DHCPD: Send ACK to 10.1.1.4
2012-09-21 18:38:25 [5] DHCPD: Recv REQUEST from 00:12:FE:E1:7F:5D
2012-09-21 18:38:25 [5] DHCPD: Send ACK to 10.1.1.4
2012-09-21 18:40:50 [5] DHCPD: Recv REQUEST from 00:12:FE:E1:7F:5D
2012-09-21 18:40:50 [5] DHCPD: Send ACK to 10.1.1.4
2012-09-21 18:43:15 [5] DHCPD: Recv REQUEST from 00:12:FE:E1:7F:5D
2012-09-21 18:43:15 [5] DHCPD: Send ACK to 10.1.1.4
2012-09-21 18:45:40 [5] DHCPD: Recv REQUEST from 00:12:FE:E1:7F:5D
2012-09-21 18:45:40 [5] DHCPD: Send ACK to 10.1.1.4
2012-09-21 18:48:05 [5] DHCPD: Recv REQUEST from 00:12:FE:E1:7F:5D
這里只是其中一部分,其中:
ADSL同步信息
1970-01-01 00:00:10 [5] DSL: ADSL Idle/L3/Activating! (ADSL PVC線路尋找)
1970-01-01 00:00:12 [5] DSL: ADSL Slowblink! (ADSL線路找到)
1970-01-01 00:00:14 [5] DSL: ADSL Initializing! (ADSL參數(shù)初始化訓(xùn)練)
1970-01-01 00:00:22 [5] DSL: ADSL Enter showtime! (ADSL進(jìn)入正常模式showtime)
DHCP租約信息
1970-01-01 00:01:09 [5] DHCPD: Recv DISCOVER from 00:12:FE:E1:7F:5D (接收發(fā)現(xiàn)DHCP客戶端00:12:FE:E1:7F:5D)
1970-01-01 00:01:10 [5] DHCPD: Send OFFER with ip 10.1.1.4 (發(fā)送租約IP地址10.1.1.4)
1970-01-01 00:01:10 [5] DHCPD: Recv REQUEST from 00:12:FE:E1:7F:5D (接收DHCP正式請求)
1970-01-01 00:01:10 [5] DHCPD: Send ACK to 10.1.1.4 (發(fā)送DHCP確認(rèn)發(fā)送)
PPPOE撥號信息
1970-01-01 00:01:11 [6] PPP: ppp0 sent [LCP TERM_REQ ID(0x00)] (LCP協(xié)議發(fā)送PPPOE)
1970-01-01 00:01:11 [6] PPP: ppp0 sent [PADT SESS_ID(0x0000)] (發(fā)送PADT信息)
1970-01-01 00:01:11 [6] PPP: ppp0 sent [PADI SVC_NAME() HOST_UNIQ(0x00e04c1f8f291caf)](發(fā)送PADI信息,請求PPPOE服務(wù)器信息)
1970-01-01 00:01:11 [6] PPP: ppp0 rcvd [PADO SVC_NAME(leasedline.gd) AC_NAME(GZ-XS-BAS-5.MAN.SE800-B2024090601288) AC_MAC(00: (PPPOE接收PPPOE服務(wù)器返回信息:servername服務(wù)名leasedline.gd,接入點AC_NAME:GZ-XS-BAS-5.MAN.SE800-B2024090601288,接入服務(wù)器MAC地址AC_MAC:00:(未顯示完整))
1970-01-01 00:01:11 [6] PPP: ppp0 sent [PADR SVC_NAME() HOST_UNIQ(0x00e04c1f90291caf)] (發(fā)送PADR,確認(rèn)信息)
1970-01-01 00:01:11 [6] PPP: ppp0 rcvd [PADS SESS_ID(0x0520)] (接收PADS信息)
1970-01-01 00:01:11 [6] PPP: ppp0 sent [LCP CONF_REQ ID(0x01) MRU(1492) MAGIC(0x000010ec)] (PPPOE發(fā)送LCP初始化配置)
1970-01-01 00:01:11 [6] PPP: ppp0 rcvd [LCP CONF_REQ ID(0x43) MRU(1492) AUTH(PAP) MAGIC(0x5118b68d)] (PPPOE接收到LCP配置信息)
1970-01-01 00:01:11 [6] PPP: ppp0 sent [LCP CONF_ACK ID(0x43) MRU(1492) AUTH(PAP) MAGIC(0x5118b68d)](PPPOE發(fā)送確認(rèn)LCP配置信息)
1970-01-01 00:01:11 [6] PPP: ppp0 rcvd [LCP CONF_ACK ID(0x01) MRU(1492) MAGIC(0x000010ec)](PPPOE接收確認(rèn)LCP配置信息)
1970-01-01 00:01:13 [6] PPP: ppp0 sent [PAP ID(0x02) NAME() PWD(hidden](PPPOE發(fā)送PPPOE用戶名密碼)
1970-01-01 00:01:14 [6] PPP: ppp0 rcvd [PAP ID(0x02)] (PPPOE接收認(rèn)證結(jié)果)
1970-01-01 00:01:14 [6] PPP: ppp0 sent [IPCP CONF_REQ ID(0x03) IP_ADDR(0.0.0.0) DNS_PRI(0.0.0.0) DNS_SEC(0.0.0.0)](PPPOE發(fā)送IPCP配置請求IP、DNS地址)
1970-01-01 00:01:14 [6] PPP: ppp0 rcvd [IPCP CONF_REQ ID(0x0b) IP_ADDR(183.5.68.1)](PPPOE接收IPCP配置的IP地址)
1970-01-01 00:01:14 [6] PPP: ppp0 sent [IPCP CONF_ACK ID(0x0b) IP_ADDR(183.5.68.1)](PPPOE發(fā)送IPCP配置確認(rèn)IP地址)
1970-01-01 00:01:14 [6] PPP: ppp0 rcvd [IPCP CONF_NAK ID(0x03) IP_ADDR(183.5.68.67) DNS_PRI(202.96.134.133) DNS_SEC(202.96.12(PPPOE接收IPCP的IP地址跟DNS地址)
1970-01-01 00:01:14 [6] PPP: ppp0 sent [IPCP CONF_REQ ID(0x04) IP_ADDR(183.5.68.67) DNS_PRI(202.96.134.133) DNS_SEC(202.96.12(PPPOE發(fā)送請求IPCP的IP地址跟DNS地址)
1970-01-01 00:01:14 [6] PPP: ppp0 rcvd [IPCP CONF_ACK ID(0x04) IP_ADDR(183.5.68.67) DNS_PRI(202.96.134.133) DNS_SEC(202.96.12(PPPOE接收確認(rèn)IPCP的IP地址跟DNS地址)
從這些日志里面,我們就看懂了路由器到底做了什么情況。。。。
接下來我們?nèi)タ串?dāng)WAN口無法撥號會出現(xiàn)什么問題???
比如很久以前換了路由卻無法撥號的問題,磊科的路由只提示用戶名密碼錯,填了N次密碼還是這樣,后來換回來就知道了
以下為故障日志
1970-01-01 00:00:16 [5] DSL: ADSL Enter showtime!
1970-01-01 00:00:17 [6] PPP: ppp0 sent [LCP TERM_REQ ID(0x07)]
1970-01-01 00:00:17 [6] PPP: ppp0 sent [PADT SESS_ID(0x0000)]
1970-01-01 00:00:17 [6] PPP: ppp0 sent [PADI SVC_NAME() HOST_UNIQ(0x00e04c1f8f290751)]
1970-01-01 00:00:19 [6] PPP: ppp0 rcvd [PADO SVC_NAME(menjin.gd) AC_NAME(GZ-XS-BAS-5.MAN.SE800-B2024090601288) AC_MAC(00:30:8
1970-01-01 00:00:19 [6] PPP: ppp0 sent [PADR SVC_NAME() HOST_UNIQ(0x00e04c1f90290751)]
1970-01-01 00:00:19 [6] PPP: ppp0 rcvd [PADS SESS_ID(0x07df)]
1970-01-01 00:00:19 [6] PPP: ppp0 sent [LCP CONF_REQ ID(0x08) MRU(1480) MAGIC(0x000023cc)]
1970-01-01 00:00:20 [6] PPP: ppp0 rcvd [LCP CONF_REQ ID(0xe4) MRU(1492) AUTH(PAP) MAGIC(0x71d31d89)]
1970-01-01 00:00:20 [6] PPP: ppp0 sent [LCP CONF_ACK ID(0xe4) MRU(1492) AUTH(PAP) MAGIC(0x71d31d89)]
1970-01-01 00:00:20 [6] PPP: ppp0 rcvd [LCP CONF_ACK ID(0x08) MRU(1480) MAGIC(0x000023cc)]
1970-01-01 00:00:20 [6] PPP: ppp0 sent [PAP ID(0x09) NAME() PWD(hidden]
1970-01-01 00:00:21 [6] PPP: ppp0 sent [PAP ID(0x0a) NAME() PWD(hidden]
1970-01-01 00:00:21 [6] PPP: ppp0 rcvd [PAP ID(0x09) MSG(22106000: Too many sessions for this product! (auth-aub2))]
1970-01-01 00:00:21 [6] PPP: ppp0 sent [LCP TERM_REQ ID(0x0b)]
1970-01-01 00:00:21 [6] PPP: ppp0 sent [PADT SESS_ID(0x07df)]
1970-01-01 00:00:22 [6] PPP: ppp0 sent [LCP TERM_REQ ID(0x0c)]
1970-01-01 00:00:22 [6] PPP: ppp0 sent [PADT SESS_ID(0x07df)]
1970-01-01 00:00:22 [6] PPP: ppp0 sent [PADI SVC_NAME() HOST_UNIQ(0x00e04c1f8f290945)]
1970-01-01 00:00:22 [6] PPP: ppp0 rcvd [PADO SVC_NAME(menjin.gd) AC_NAME(GZ-XS-BAS-5.MAN.SE800-B2024090601288) AC_MAC(00:30:8
1970-01-01 00:00:22 [6] PPP: ppp0 sent [PADR SVC_NAME() HOST_UNIQ(0x00e04c1f90290945)]
1970-01-01 00:00:22 [6] PPP: ppp0 rcvd [PADS SESS_ID(0x22f4)]
1970-01-01 00:00:22 [6] PPP: ppp0 sent [LCP CONF_REQ ID(0x0d) MRU(1480) MAGIC(0x0000220b)]
1970-01-01 00:00:22 [6] PPP: ppp0 rcvd [LCP CONF_REQ ID(0x8f) MRU(1492) AUTH(PAP) MAGIC(0x6c9b1137)]
1970-01-01 00:00:22 [6] PPP: ppp0 sent [LCP CONF_ACK ID(0x8f) MRU(1492) AUTH(PAP) MAGIC(0x6c9b1137)]
1970-01-01 00:00:22 [6] PPP: ppp0 rcvd [LCP CONF_ACK ID(0x0d) MRU(1480) MAGIC(0x0000220b)]
1970-01-01 00:00:23 [6] PPP: ppp0 sent [PAP ID(0x0e) NAME()PWD(hidden]
1970-01-01 00:00:24 [6] PPP: ppp0 sent [PAP ID(0x0f) NAME()PWD(hidden]
1970-01-01 00:00:25 [6] PPP: ppp0 rcvd [PAP ID(0x0e) MSG(28103012: check user-name in black list. failed!)]
1970-01-01 00:00:25 [6] PPP: ppp0 sent [LCP TERM_REQ ID(0x10)]
1970-01-01 00:00:25 [6] PPP: ppp0 sent [PADT SESS_ID(0x22f4)]
1970-01-01 00:00:25 [5] DHCPD: Recv REQUEST from 00:E0:4C:1F:8F:29
1970-01-01 00:00:25 [5] DHCPD: Send ACK to 192.168.1.241
1970-01-01 00:00:26 [6] PPP: ppp0 sent [LCP TERM_REQ ID(0x11)]
1970-01-01 00:00:26 [6] PPP: ppp0 sent [PADT SESS_ID(0x22f4)]
1970-01-01 00:00:26 [6] PPP: ppp0 sent [PADI SVC_NAME() HOST_UNIQ(0x00e04c1f8f290b05)]
1970-01-01 00:00:26 [6] PPP: ppp0 rcvd [PADO SVC_NAME(menjin.gd) AC_NAME(GZ-XS-BAS-5.MAN.SE800-B2024090601288) AC_MAC(00:30:8
1970-01-01 00:00:26 [6] PPP: ppp0 sent [PADR SVC_NAME() HOST_UNIQ(0x00e04c1f90290b05)]
1970-01-01 00:00:26 [6] PPP: ppp0 rcvd [PADS SESS_ID(0x0bea)]
1970-01-01 00:00:26 [6] PPP: ppp0 sent [LCP CONF_REQ ID(0x12) MRU(1480) MAGIC(0x00005ea7)]
1970-01-01 00:00:26 [6] PPP: ppp0 rcvd [LCP CONF_REQ ID(0x35) MRU(1492) AUTH(PAP) MAGIC(0x6e5da001)]
1970-01-01 00:00:26 [6] PPP: ppp0 sent [LCP CONF_ACK ID(0x35) MRU(1492) AUTH(PAP) MAGIC(0x6e5da001)]
1970-01-01 00:00:26 [6] PPP: ppp0 rcvd [LCP CONF_ACK ID(0x12) MRU(1480) MAGIC(0x00005ea7)]
1970-01-01 00:00:27 [6] PPP: ppp0 sent [PAP ID(0x13) NAME()PWD(hidden]
1970-01-01 00:00:28 [6] PPP: ppp0 sent [PAP ID(0x14) NAME() PWD(hidden]
1970-01-01 00:00:29 [5] DHCPD: Recv REQUEST from 00:E0:4C:1F:8F:29
1970-01-01 00:00:29 [5] DHCPD: Send ACK to 192.168.1.241
1970-01-01 00:00:29 [6] PPP: ppp0 rcvd [PAP ID(0x13) MSG(22106000: Too many sessions for this product! (auth-aua2))]
1970-01-01 00:00:29 [6] PPP: ppp0 sent [LCP TERM_REQ ID(0x15)]
1970-01-01 00:00:29 [6] PPP: ppp0 sent [PADT SESS_ID(0x0bea)]
1970-01-01 00:00:32 [6] PPP: ppp0 sent [LCP TERM_REQ ID(0x16)]
1970-01-01 00:00:32 [6] PPP: ppp0 sent [PADT SESS_ID(0x0bea)]
1970-01-01 00:00:32 [6] PPP: ppp0 sent [PADI SVC_NAME() HOST_UNIQ(0x00e04c1f8f290d30)]
1970-01-01 00:00:32 [6] PPP: ppp0 rcvd [PADO SVC_NAME(menjin.gd) AC_NAME(GZ-XS-BAS-5.MAN.SE800-B2024090601288) AC_MAC(00:30:8
1970-01-01 00:00:32 [6] PPP: ppp0 sent [PADR SVC_NAME() HOST_UNIQ(0x00e04c1f90290d30)]
1970-01-01 00:00:32 [6] PPP: ppp0 rcvd [PADS SESS_ID(0x2c02)]
1970-01-01 00:00:32 [6] PPP: ppp0 sent [LCP CONF_REQ ID(0x17) MRU(1480) MAGIC(0x0000387e)]
1970-01-01 00:00:32 [6] PPP: ppp0 rcvd [LCP CONF_REQ ID(0x0d) MRU(1492) AUTH(PAP) MAGIC(0x60370ee3)]
1970-01-01 00:00:32 [6] PPP: ppp0 sent [LCP CONF_ACK ID(0x0d) MRU(1492) AUTH(PAP) MAGIC(0x60370ee3)]
1970-01-01 00:00:32 [6] PPP: ppp0 rcvd [LCP CONF_ACK ID(0x17) MRU(1480) MAGIC(0x0000387e)]
1970-01-01 00:00:33 [6] PPP: ppp0 sent [PAP ID(0x18) NAME()PWD(hidden]
1970-01-01 00:00:34 [6] PPP: ppp0 sent [PAP ID(0x19) NAME()PWD(hidden]
1970-01-01 00:00:35 [6] PPP: ppp0 rcvd [PAP ID(0x18) MSG(28103012: check user-name in black list. failed!)]
1970-01-01 00:00:35 [6] PPP: ppp0 sent [LCP TERM_REQ ID(0x1a)]
1970-01-01 00:00:35 [6] PPP: ppp0 sent [PADT SESS_ID(0x2c02)]
1970-01-01 00:00:36 [6] PPP: ppp0 sent [LCP TERM_REQ ID(0x1b)]
1970-01-01 00:00:36 [6] PPP: ppp0 sent [PADT SESS_ID(0x2c02)]
1970-01-01 00:00:36 [6] PPP: ppp0 sent [PADI SVC_NAME() HOST_UNIQ(0x00e04c1f8f290ef1)]
1970-01-01 00:00:36 [6] PPP: ppp0 rcvd [PADO SVC_NAME(menjin.gd) AC_NAME(GZ-XS-BAS-5.MAN.SE800-B2024090601288) AC_MAC(00:30:8
1970-01-01 00:00:36 [6] PPP: ppp0 sent [PADR SVC_NAME() HOST_UNIQ(0x00e04c1f90290ef1)]
1970-01-01 00:00:36 [6] PPP: ppp0 rcvd [PADS SESS_ID(0x21ee)]
1970-01-01 00:00:36 [6] PPP: ppp0 sent [LCP CONF_REQ ID(0x1c) MRU(1480) MAGIC(0x0000422f)]
1970-01-01 00:00:36 [6] PPP: ppp0 rcvd [LCP CONF_REQ ID(0x90) MRU(1492) AUTH(PAP) MAGIC(0x092e4ef4)]
1970-01-01 00:00:36 [6] PPP: ppp0 sent [LCP CONF_ACK ID(0x90) MRU(1492) AUTH(PAP) MAGIC(0x092e4ef4)]
1970-01-01 00:00:36 [6] PPP: ppp0 rcvd [LCP CONF_ACK ID(0x1c) MRU(1480) MAGIC(0x0000422f)]
1970-01-01 00:00:37 [5] DHCPD: Recv REQUEST from 00:E0:4C:1F:8F:29
1970-01-01 00:00:37 [5] DHCPD: Send ACK to 192.168.1.241
1970-01-01 00:00:37 [6] PPP: ppp0 sent [PAP ID(0x1d) NAME()PWD(hidden]
1970-01-01 00:00:38 [6] PPP: ppp0 sent [PAP ID(0x1e) NAME()PWD(hidden]
1970-01-01 00:00:39 [6] PPP: ppp0 rcvd [PAP ID(0x1d) MSG(28103012: check user-name in black list. failed!)]
1970-01-01 00:00:39 [6] PPP: ppp0 sent [LCP TERM_REQ ID(0x1f)]
1970-01-01 00:00:39 [6] PPP: ppp0 sent [PADT SESS_ID(0x21ee)]
我們從里面提取到這樣的信息:
1970-01-01 00:00:21 [6] PPP: ppp0 rcvd [PAP ID(0x09) MSG(22106000: Too many sessions for this product! (auth-aub2))]
1970-01-01 00:00:25 [6] PPP: ppp0 rcvd [PAP ID(0x0e) MSG(28103012: check user-name in black list. failed!)]
1970-01-01 00:00:29 [6] PPP: ppp0 rcvd [PAP ID(0x13) MSG(22106000: Too many sessions for this product! (auth-aua2))]
1970-01-01 00:00:35 [6] PPP: ppp0 rcvd [PAP ID(0x18) MSG(28103012: check user-name in black list. failed!)]
1970-01-01 00:00:39 [6] PPP: ppp0 rcvd [PAP ID(0x1d) MSG(28103012: check user-name in black list. failed!)]
從中我們知道了兩條信息:
Too many sessions for this product!
這個設(shè)備的sessions數(shù)太多了
check user-name in black list. failed!
用戶名在黑名單,失敗
為什么會出現(xiàn)這情況呢?
自己也在后來跟運營商問了才知道一些事情,原來運營商將自己這線路的PPPOE服務(wù)器遷移到別的地方了,所以原來的PPPOE服務(wù)器沒有自己的賬號信息,然后新配來的PPPOE服務(wù)器還在調(diào)試,就出現(xiàn)了第一條信息,而第二條信息是PPPOE服務(wù)器設(shè)置了MAC線路綁定,所以才出現(xiàn)第二條問題出現(xiàn),只能在機房釋放MAC地址才能正常撥號
我們拿回以前某些網(wǎng)友提出的一些問題回來
http://itbbs.pconline.com.cn/network/50434823.html 路由器撥號出問題
http://itbbs.pconline.com.cn/network/50434972.html 無線路由不停掉線。各種方法解決不能,來請教大神?。?!
在第一個帖子里面,日志是這樣的。。。
1 2011-04-01 00:01:18 system pppoe_shutdown(ppp0)
2 2011-04-01 00:01:18 system pppoe_fsm_down(ppp0)
3 2011-04-01 00:01:18 system pppoe_osl_ppp_close(ppp0): close completedly.
4 2011-04-01 00:01:18 system pppoe_main(ppp0):Exit
5 2011-04-01 00:01:19 system pppoe_init(ppp0)
6 2011-04-01 00:01:19 system pppoe_fsm_up(ppp0)
7 2011-04-01 00:01:19 system ppp0 send PADI
8 2011-04-01 00:01:22 system ppp0 send PADI
9 2011-04-01 00:01:27 system ppp0 send PADI
10 2011-04-01 00:01:36 system ppp0 send PADI
其中出現(xiàn)最多的是這一條:
10 2011-04-01 00:01:36 system ppp0 send PADI
這樣我們就知道了到底是怎么回事,可能出現(xiàn)的原因如下:
1:貓故障
2:PPPOE服務(wù)器檢測發(fā)現(xiàn)路由
3:網(wǎng)絡(luò)里面存在多臺PPPOE服務(wù)器,無法找到對應(yīng)PPPOE服務(wù)器
4:其他原因
而另外一帖中,日志是這樣的。。。
其中里面有這樣的關(guān)鍵提示:
0days, 00:00:11, PPP IPCP: TX CONFIGURE_REQUEST.
0days, 00:00:11, PPP IPCP: RX CONFIGURE_ACK.
0days, 00:00:11, PPP: ppp0 set localIp 6546604d dstIp 65466001 mtu 1480
0days, 00:11:12, PPP SM: do not RX PACKET.
0days, 00:11:12, PPP LCP: TX TERMINATION_REQUEST.
0days, 00:11:13, PPPOE: TX PADT.
0days, 00:11:24, PPP LCP: TX TERMINATION_REQUEST.
0days, 00:11:24, PPPOE: TX PADT.
0days, 00:11:24, try special dail type: 0
0days, 00:11:24, PPPOE: TX PADI.
0days, 00:11:26, PPPOE SM: retry.
0days, 00:11:26, PPPOE: TX PADI.
0days, 00:11:28, PPPOE SM: retry.
0days, 00:11:12, PPP SM: do not RX PACKET.
在IPCP處理操作當(dāng)中出現(xiàn)無法收到回應(yīng)包是不正常的情況,出現(xiàn)這情況的原因也是跟上述有關(guān)
而后來該網(wǎng)友回應(yīng)是貓故障導(dǎo)致的
當(dāng)然了,部分TP路由是全英文的,有些是部分中文的,如下面的
34 INFO 0047:got a correct dial mode[ NORMAL ], the dial interval is 3 s.
33 INFO 0047:PPP connection succeeded. 59.42.116.176 .
32 INFO 0047:IPCP RX Ack,IP=3B2A74B0;DNS1=CA608621;DNS2=CA608056;
31 INFO 0047:IPCP tx Req,IP=3B2A74B0;DNS1=CA608621;DNS2=CA608056;
30 INFO 0047:IPCP RX Nak,IP=3B2A74B0;DNS1=CA608621;DNS2=CA608056;
29 INFO 0047:IPCP tx Ack,IP=3B2A7401;
28 INFO 0047:IPCP RX Req,IP=3B2A7401;
27 INFO 0047:IPCP tx Req,IP=00000000;DNS1=00000000;DNS2=00000000;
26 INFO 0047:PAP:密碼驗證成功.
25 INFO 0047:PAP tx Req.
24 INFO 0047:PAP IDLE -> REQ.
23 INFO 0046:LCP tx Ack,MRU=05D4;Auth=C023;Magic=020058A1;
22 INFO 0046:LCP RX Req,MRU=05D4;Auth=C023;Magic=020058A1;
21 INFO 0046:LCP RX Ack,MRU=05C8;Magic=00007891;
20 INFO 0046:LCP tx Req,MRU=05C8;Magic=00007891;
19 INFO 0045:LCP RX Ack,MRU=05C8;Magic=00007891;
18 INFO 0045:LCP tx Req,MRU=05C8;Magic=00007891;
17 INFO 0045:LCP RX Ack,MRU=05C8;Magic=00007891;
16 INFO 0045:LCP tx Req,MRU=05C8;Magic=00007891;
15 INFO 0044:LCP RX Ack,MRU=05C8;Magic=00007891;
14 INFO 0044:LCP tx Req,MRU=05C8;Magic=00007891;
13 INFO 0043:LCP RX Ack,MRU=05C8;Magic=00007891;
12 INFO 0043:LCP tx Req,MRU=05C8;Magic=00007891;
11 INFO 0043:接收PADS,Session-ID=0x2E0C,AC-MAC=0018821F75FE.
10 INFO 0043:發(fā)送PADR.
9 INFO 0043:接收PADO,AC-Name=GZ-GY-BAS-2.MAN.ME60,AC-MAC=0018821F75FE.
8 INFO 0043:PPPOE: receive HOST-UNIQUE tag.
7 INFO 0043:The first service name is accepted.
6 INFO 0043:PPPOE_TAG_SVC_NAME=null
5 INFO 0043:發(fā)送PADI,請求建立連接.
4 INFO 0043:PPPoE 開啟按需連接.
3 INFO 0037:DHCPS: 1:0x00e04c236132, 192.168.0.100, ACK in request.
2 INFO 0036:DHCPS: 1:0x00e04c236132, NAK in request.
1 INFO 0004:系統(tǒng)啟動成功.
這個也是正常獲取到WAN口IP地址的,雖然中間夾雜DHCP信息,也不會影響PPPOE撥號過程
除了WAN口方面,防火墻,PPPOE日志也是很多的
比如某用戶飛魚星路由的ARP攻擊
某路由的PPPOE信息
某路由的某用戶并發(fā)數(shù)超出提示
好了,知道日志系統(tǒng)是這么重要,我們在哪里找到呢?
一般路由器都會有日志系統(tǒng)的,一般都在系統(tǒng)狀態(tài)或者是系統(tǒng)管理里面
如果說對別人說不清楚實際情況的,提供日志出來,也許更快地能解決問題。。。
至于有誰會有耐性去看,估計有以前3721助手論壇的安全領(lǐng)域經(jīng)驗人士每天都要看掃描日志的人就好了。。。
http://www.96pc.com/Af/271.html (有耐性去看看以前安全人士做的安全掃描工具掃出來的結(jié)果。。。。)
后記:
在LINUX領(lǐng)域,曾經(jīng)的指導(dǎo)老師跟我們同學(xué)說過,LINUX跟WINDOWS不同,WINDOWS的日志,有提示就最好,而在LINUX,沒提示才是沒問題,一旦有提示,就注定有問題,所以要學(xué)習(xí)LINUX,需要拋開windows這種提示思維,只要LINUX不出提示,那就沒問題了。。。
最后,雖然說寫了這篇文章是否能上頂,是否能為大家提供個什么,但這只能說是為自己畫上了一個句號。以后的日子,我現(xiàn)在能否順順利利,能為大家服務(wù),至今還是個未知數(shù)。。。在群里面,看著版副們很厲害的樣子的情況,自己也覺得已經(jīng)老了,自己也趕不上別人的節(jié)奏,自己的能力也是半桶水,甚至是空杯子一般,對么?估計論壇很多人都對我這樣說的。。。