Доброго дня.
Есть такая железка DGS-1210-52MP_FL. Стоит прошивка 2.008.b03.
Ему присвоен адрес 10.10.8.25.
При подключении у нему определенных компов, какие именно я нашел, наблюдаются потери.
Ответ от 10.10.8.25: число байт=32 время=3076мс TTL=64
Ответ от 10.10.8.25: число байт=32 время=3096мс TTL=64
Ответ от 10.10.8.25: число байт=32 время=3085мс TTL=64
Ответ от 10.10.8.25: число байт=32 время=3112мс TTL=64
Превышен интервал ожидания для запроса.
Превышен интервал ожидания для запроса.
Превышен интервал ожидания для запроса.
Превышен интервал ожидания для запроса.
При учете, что принтер, который подключен через него
Ответ от 10.10.8.105: число байт=32 время<1мс TTL=64
Ответ от 10.10.8.105: число байт=32 время<1мс TTL=64
Ответ от 10.10.8.105: число байт=32 время<1мс TTL=64
Ответ от 10.10.8.105: число байт=32 время=1мс TTL=64
Ответ от 10.10.8.105: число байт=32 время<1мс TTL=64

Вланов пока нет, в будущем планирую.
На одном порту есть ПОЕ телефония, с ней проблем нет
На свитче настроены
config traffic control 1-48 broadcast enable multicast enable unicast disable action drop threshold 64 countdown 5 time_interval 5
create access_profile profile_id 1 profile_name bad_mcast ip destination_ip_mask 255.255.255.255 udp
config access_profile profile_id 1 add access_id 2 ip destination_ip 224.0.0.252 udp port 1-48 deny
config access_profile profile_id 1 add access_id 3 ip destination_ip 224.0.0.251 udp port 1-48 deny
config access_profile profile_id 1 add access_id 4 ip destination_ip 239.192.152.143 udp port 1-48 deny
config access_profile profile_id 1 add access_id 5 ip destination_ip 239.255.255.250 udp port 1-48 deny
config access_profile profile_id 1 add access_id 6 ip destination_ip 224.0.0.252 udp port 1-48 deny
config access_profile profile_id 1 add access_id 7 ip destination_ip 224.0.0.253 udp port 1-48 deny

Если 4 порта выключить, то коммутатор опять становится доступным для управления.
Эти 4 ПК были проверены на вирусы и в них отключен IPv6 и NetBios. Только на одном ПК пользователь имеет право что то устанавливать.
При этом ошибок на данных портах нет, загрузка процессора коммутатора около 25%, загрузка портов - не более 1%.
Что может быть ?

Вот полный конфиг
#------------------------------------------------------------------------
# DGS-1210-52MP Gigabit Ethernet Switch Configuration
#
# Firmware: Build 2.00.008.B03
# Copyright(C) 2019 D-Link Corporation. All rights reserved.
#------------------------------------------------------------------------
command-start

# Port
config ports 1-12,14-52 speed auto
config ports 49-52 medium_type fiber speed auto
config ports 1-12,14-52 state enable
config ports 13 state disable
config ports 49-52 medium_type fiber state enable
config ports 1-52 flow_control disable
config ports 49-52 medium_type fiber flow_control disable
config ports 1-52 learning enable
config ports 49-52 medium_type fiber learning enable
config ports 1-52 mdix auto
config ports 1-52 capability_advertised 10_half 10_full 100_half 100_full 1000_full
config ports 1-52 description ""
config ports 49-52 medium_type fiber description ""
# LA
config link_aggregation algorithm mac_source_dest
config link_aggregation state disable
config lacp port_priority 1-52 128 timeout long
config lacp_ports 1-52 mode active
# SNMP
enable snmp
config snmp engineID 80:00:00:ab:03:c4:e9:0a:9d:8d:70
disable community_encryption
create snmp user "ReadOnly" "ReadOnly" v1
create snmp user "ReadOnly" "ReadOnly" v2c
create snmp user "ReadWrite" "ReadWrite" v1
create snmp user "ReadWrite" "ReadWrite" v2c
create snmp group "ReadOnly" v1 read_view "ReadWrite" notify_view "ReadWrite"
create snmp group "ReadOnly" v2c read_view "ReadWrite" notify_view "ReadWrite"
create snmp group "ReadWrite" v1 read_view "ReadWrite" write_view "ReadWrite" notify_view "ReadWrite"
create snmp group "ReadWrite" v2c read_view "ReadWrite" write_view "ReadWrite" notify_view "ReadWrite"
create snmp view "ReadWrite" 1 mask 1 view_type included
create snmp community "private" "ReadWrite"
create snmp community "public" "ReadOnly"
config snmp traps address_binding state enable
config snmp traps stp_new_root state enable
config snmp traps stp_topo_change state enable
config snmp traps authenticate state enable
config snmp traps coldstart state enable
config snmp traps warmstart state enable
config snmp traps linkchange ports 1-52 state enable
config snmp traps firmware_upgrade state enable
config snmp traps port_security_violation state enable
config snmp traps lbd state enable
config snmp traps duplicate_ip_detected state enable
config snmp traps traffic_control type both state enable
config snmp traps dos_prevention state enable
config snmp traps flood_fdb state enable
config snmp traps poe_onoff state enable
config snmp traps poe_error state enable
config snmp traps poe_over_budget state enable
# AsymmetricVlan
disable asymmetric_vlan
# Vlan
config vlan vlanid 1 delete 1-52
config vlan vlanid 1 add untagged 1-52
config vlan vlanid 1 name "default"
config port_vlan 1-52 pvid 1
enable pvid auto_assign
# 802.1x
disable 802.1x
config 802.1x radius_acct state disable
config 802.1x auth_protocol local
config 802.1x auth_mode port_based
config 802.1x auth_parameter ports 1-52 direction both port_control force_auth quiet_period 60 tx_period 30 supp_timeout 30
config 802.1x auth_parameter ports 1-52 server_timeout 30 max_req 2 reauth_period 3600 enable_reauth disable
config 802.1x fwd_pdu system enable
# RMON
disable rmon
# Mirror
disable mirror
# Jumbo Frame
disable jumbo_frame
# Syslog
disable syslog
config log_save_timing time_interval 30
config log_save_timing on_demand
# Web
enable web 80
# PowerSaving
config power_saving mode length_detection disable
config power_saving mode led disable
config power_saving mode port disable
config power_saving mode hibernation disable
# Telnet
enable telnet 23
# SSH
enable ssh 22
# Sntp
config sntp primary 10.10.8.3
disable sntp
config sntp poll-interval 30
config time_zone operator + hour 3 minute 0
config dst disable
# Qinq
disable qinq
config qinq inner_tpid 0x8100
config qinq ports 1-52 role nni outer_tpid 0x88a8 missdrop disable
# ISM
disable igmp_snooping multicast_vlan
disable mld_snooping multicast_vlan
# Port Security
config port_security 1-52 admin_state disable max_learning_addr 32 lock_address_mode DeleteOnTimeout
# Mac Notify
disable mac_notification
# Traffic Control
config traffic control 1-48 broadcast enable
config traffic control 1-48 multicast enable
config traffic control 1-48 action shutdown threshold 64 time_interval 5 countdown 5
config traffic control 49-52 action drop
config traffic control auto_recover_time 0
# AAC
disable authen_policy
config authen parameter response_timeout 30
config authen parameter attempt 3
config authen_login default method local none
config authen_enable default method local none
config authen application telnet login default
config authen application http login default
config authen application console login default
config authen application ssh login default
config authen application telnet enable default
config authen application http enable default
config authen application console enable default
config authen application ssh enable default
# QOS
config dscp_mapping dscp_value 0-63 class 0
config 802.1p default_priority 1-52 priority 0
config qos mode 802.1p
config scheduling_mechanism strict
# DHCP Relay
disable dhcp_local_relay
config dhcp_local_relay vlan vlanid 1 state disable
config dhcp_relay vlan vlanid 1 state disable
disable dhcp_relay
config dhcp_relay hops 4
config dhcp_relay time 0
config dhcp_relay option_82 state enable
config dhcp_relay option_82 check disable
config dhcp_relay option_82 policy replace
config dhcp_relay option_82 remote_id default
disable dhcpv6_relay
config dhcpv6_relay hop_count 4
config dhcpv6_relay option_37 state disable
config dhcpv6_relay option_37 check disable
config dhcpv6_relay option_37 remote_id default
# PPPoE
config pppoe circuit_id_insertion state disable
# Bandwidth control
config bandwidth_control 1-52 tx_rate no_limit rx_rate no_limit
# SafeGuard
config safeguard_engine state enable
# MULTI FILTER
config multicast filter 1-52 forward
config max_mcast_group ports 1-52 ipv4 max_group 32
config max_mcast_group ports 1-52 ipv6 max_group 32
config limited_multicast_addr ports 1-52 ipv4 access permit
config limited_multicast_addr ports 1-52 ipv6 access permit
# IGS
enable igmp_snooping forward_mcrouter_only
disable igmp_snooping
config igmp_snooping rate_limit state enable rate 20
config igmp_snooping data_driven_learning max_learned_entry 1024
config igmp_snooping v3_src_filter state disable
config igmp_snooping vlanid 1 state disable
config igmp_snooping vlanid 1 fast_leave disable
config igmp_snooping vlanid 1 host_timeout 260
config igmp_snooping vlanid 1 router_timeout 250
config igmp_snooping vlanid 1 leave_timer 2
config igmp_snooping vlanid 1 proxy_reporting state disable
config igmp_snooping vlanid 1 report_suppression enable
config igmp_snooping vlanid 1 proxy_reporting source_ip 0.0.0.0
config igmp_snooping querier vlanid 1 query_interval 125
config igmp_snooping querier vlanid 1 max_response_time 10
config igmp_snooping querier vlanid 1 robustness_variable 2
config igmp_snooping querier vlanid 1 last_member_query_interval 2
config igmp_snooping querier vlanid 1 state disable
config igmp_snooping querier vlanid 1 querier_version 3
config igmp_snooping data_driven_learning vlanid 1 state disable
config igmp_snooping data_driven_learning vlanid 1 aged_out disable
config igmp_snooping data_driven_learning vlanid 1 expiry_time 260
# Mld
disable mld_snooping
enable mld_snooping forward_mcrouter_only
config mld_snooping data_driven_learning max_learned_entry 1024
config mld_snooping v3_src_filter state disable
config mld_snooping vlanid 1 state disable
config mld_snooping vlanid 1 fast_leave disable
config mld_snooping vlanid 1 host_timeout 260
config mld_snooping vlanid 1 router_timeout 250
config mld_snooping vlanid 1 leave_timer 2
config mld_snooping vlanid 1 report_suppression 1
config mld_snooping querier vlanid 1 query_interval 125
config mld_snooping querier vlanid 1 max_response_time 10
config mld_snooping querier vlanid 1 robustness_variable 2
config mld_snooping querier vlanid 1 last_listener_query_interval 2
config mld_snooping querier vlanid 1 state disable
config mld_snooping querier vlanid 1 version 2
config mld_snooping data_driven_learning vlanid 1 state disable
config mld_snooping data_driven_learning vlanid 1 aged_out disable
config mld_snooping data_driven_learning vlanid 1 expiry_time 260
# OAM
config ethernet_oam ports 1-52 mode active state disable received_remote_loopback ignore
config ethernet_oam ports 1-52 link_monitor error_symbol threshold 1 window 1000 notify_state enable
config ethernet_oam ports 1-52 link_monitor error_frame threshold 1 window 1000 notify_state enable
config ethernet_oam ports 1-52 link_monitor error_frame_seconds threshold 1 window 60000 notify_state enable
config ethernet_oam ports 1-52 link_monitor error_frame_period threshold 1 window 1488100 notify_state enable
config ethernet_oam ports 1-52 critical_link_event critical_event notify_state enable
config ethernet_oam remote-loopback port 1-52 count 10 packet 64 pattern f0f0f0f0 wait-time 5
# DULD
config duld ports 1-52 state disable mode normal discovery_time 5
# TrafficSegment
config traffic_segmentation 1-52 forward_list 1-52
# IGMPAuth
config igmp access_authentication port 1-52 disable
# Dac
disable autoconfig
config autoconfig timeout 50
# System
config syslogintimeout 5
config fdb aging_time 300
config arp_aging time 5
config command_prompt "default"
enable clipaging
enable reset button
# ddp
disable ddp
config ddp report_timer never
config ddp report state enable
config ddp ports 1-52 state enable
# Stp
disable stp
config stp version rstp
config stp maxage 20
config stp hellotime 2
config stp forwarddelay 15
config stp txholdcount 6
config stp maxhops 20
config stp fbpdu enable
config stp ports 1-52 externalcost auto edge auto restricted_tcn false restricted_role false p2p auto state enable priority 128 fbpdu enable hellotime 2
config stp mst_config_id revision_level 0 name C4:E9:0A:9D:8D:70
config stp priority 32768 instance_id 0
config stp mst_ports 1-52 instance_id 0 internalCost auto priority 128
config stp nni_bpdu_addr dot1d
# LBD
enable loopdetect
config loopdetect mode portbase
config loopdetect interval_time 2 lbd_recover_time 60
config loopdetect ports 1-48 state enable
config loopdetect ports 49-52 state disable
# IP
config ipif System vlan default
config ipif System ipaddress 10.10.8.25/255.255.248.0
config dhcp_client retry_time 7
config ipif System dhcp_option12 state disable
config ipif System dhcp_option12 hostname "DGS-1210-52MP"
config ipif System ipv6 state disable
config ipv6 nd ns ipif System retrans_time 1
config ipif System dhcpv6_client disable
enable ipv6 nd flooding
disable ipif_ipv6_link_local_auto System
create iproute default 10.10.10.10 1
# LLDP
disable lldp
config lldp message_tx_hold_multiplier 4
config lldp tx_delay 2
config lldp reinit_delay 2
config lldp message_tx_interval 30
config lldp ports 1-52 power_pse_tlv disable
# ACL
create access_profile ethernet ethernet_type profile_id 4
create access_profile ip destination_ip_mask 255.255.255.255 udp profile_id 1
create access_profile ip tcp dst_port_mask 0xffff profile_id 5
create access_profile ip udp src_port_mask 0xffff profile_id 6
create access_profile ipv6 udp src_port_mask 0xffff profile_id 7
create access_profile ip tcp dst_port_mask 0xffff profile_id 8
create access_profile ip udp dst_port_mask 0xffff profile_id 9
config access_profile profile_id 4 add access_id 41 ethernet ethernet_type 0x8863 port 1-52 deny
config access_profile profile_id 4 add access_id 42 ethernet ethernet_type 0x8137 port 1-52 deny
config access_profile profile_id 1 add access_id 2 ip destination_ip 224.0.0.252 udp port 1-48 deny
config access_profile profile_id 1 add access_id 3 ip destination_ip 224.0.0.251 udp port 1-48 deny
config access_profile profile_id 1 add access_id 4 ip destination_ip 239.192.152.143 udp port 1-48 deny
config access_profile profile_id 1 add access_id 5 ip destination_ip 239.255.255.250 udp port 1-48 deny
config access_profile profile_id 1 add access_id 6 ip destination_ip 224.0.0.252 udp port 1-48 deny
config access_profile profile_id 1 add access_id 7 ip destination_ip 224.0.0.253 udp port 1-48 deny
config access_profile profile_id 6 add access_id 61 ip udp src_port 67 port 1-48 deny
config access_profile profile_id 7 add access_id 62 ipv6 udp src_port 547 port 1-48 deny
config access_profile profile_id 8 add access_id 81 ip tcp dst_port 445 port 1-48 deny
config access_profile profile_id 8 add access_id 84 ip tcp dst_port 135 port 1-48 deny
config access_profile profile_id 8 add access_id 86 ip tcp dst_port 137 port 1-48 deny
config access_profile profile_id 8 add access_id 87 ip tcp dst_port 138 port 1-48 deny
config access_profile profile_id 8 add access_id 88 ip tcp dst_port 139 port 1-48 deny
config access_profile profile_id 9 add access_id 91 ip udp dst_port 137 port 1-52 deny
config access_profile profile_id 9 add access_id 92 ip udp dst_port 138 port 1-52 deny
config access_profile profile_id 9 add access_id 94 ip udp dst_port 135 port 1-52 deny
config access_profile profile_id 9 add access_id 95 ip udp dst_port 445 port 1-52 deny
config access_profile profile_id 9 add access_id 96 ip udp dst_port 1900 port 1-52 deny
config access_profile profile_id 9 add access_id 97 ip udp dst_port 5000 port 1-52 deny
config access_profile profile_id 9 add access_id 98 ip udp dst_port 2869 port 1-52 deny
# Trust Host
disable trusted_host
# CMDLOG
disable command logging
# FloodFDB
disable flood_fdb
config flood_fdb log disable
# PoE
config poe system power_limit 370 power_disconnect_method deny_low_priority_port legacy_pd disable
config poe ports 1-48 state enable delay_power_detect disable priority Normal power_limit Auto
# Dos
config dos_prevention dos_type land_attack blat_attack tcp_null_scan tcp_xmascan tcp_synfin tcp_syn_srcport_less_1024 ping_death_attack tcp_tiny_frag_attack action drop state enable
# VoiceVlan
disable voice_vlan
config voice_vlan priority 5
config voice_vlan aging_time 1
config voice_vlan log state disable
config voice_vlan ports 1-52 auto dectection disable
# SmartBind
config address_binding ip_mac ports 1-52 state disable arp_inspection disable ip_inspection disable nd_inspection disable protocol all allow_zeroip disable forward_dhcppkt enable
enable address_binding dhcp_snoop ports 1-52 vlan IPv6
enable address_binding dhcp_snoop ports 1-52 vlan
config address_binding dhcp_snoop max_entry ports 1-52 limit 0
config address_binding dhcp_snoop max_entry ports 1-52 limit 0 IPv6
# asv
disable surveillance_vlan
config surveillance_vlan aging_time 720
config surveillance_vlan priority 5
config surveillance_vlan log state enable
config surveillance_vlan onvif_discover_port 554
config surveillance_vlan ports 1-52 state disable
# DDM
config ddm power_unit mw
config ddm ports 49-52 state disable
config ddm ports 49-52 shutdown none
config ddm ports 49 temperature_threshold high_alarm 95.000 low_alarm -25.000 high_warning 90.000 low_warning -20.000
config ddm ports 49 voltage_threshold high_alarm 3.80 low_alarm 2.80 high_warning 3.70 low_warning 2.90
config ddm ports 49 bias_current_threshold high_alarm 20.0 low_alarm 0.5 high_warning 18.0 low_warning 1.0
config ddm ports 49 tx_power_threshold high_alarm 1.5900 low_alarm 0.1599 high_warning 1.2599 low_warning 0.2000
config ddm ports 49 rx_power_threshold high_alarm 1.2599 low_alarm 0.0099 high_warning 1.0000 low_warning 0.0126
config ddm ports 50 temperature_threshold high_alarm 95.000 low_alarm -25.000 high_warning 90.000 low_warning -20.000
config ddm ports 50 voltage_threshold high_alarm 3.80 low_alarm 2.80 high_warning 3.70 low_warning 2.90
config ddm ports 50 bias_current_threshold high_alarm 20.0 low_alarm 0.5 high_warning 18.0 low_warning 1.0
config ddm ports 50 tx_power_threshold high_alarm 1.5900 low_alarm 0.1599 high_warning 1.2599 low_warning 0.2000
config ddm ports 50 rx_power_threshold high_alarm 1.2599 low_alarm 0.0099 high_warning 1.0000 low_warning 0.0126
config ddm ports 51 temperature_threshold high_alarm 95.000 low_alarm -25.000 high_warning 90.000 low_warning -20.000
config ddm ports 51 voltage_threshold high_alarm 3.80 low_alarm 2.80 high_warning 3.70 low_warning 2.90
config ddm ports 51 bias_current_threshold high_alarm 20.0 low_alarm 0.5 high_warning 18.0 low_warning 1.0
config ddm ports 51 tx_power_threshold high_alarm 1.5900 low_alarm 0.1599 high_warning 1.2599 low_warning 0.2000
config ddm ports 51 rx_power_threshold high_alarm 1.2599 low_alarm 0.0099 high_warning 1.0000 low_warning 0.0126
config ddm ports 52 temperature_threshold high_alarm 95.000 low_alarm -25.000 high_warning 90.000 low_warning -20.000
config ddm ports 52 voltage_threshold high_alarm 3.80 low_alarm 2.80 high_warning 3.70 low_warning 2.90
config ddm ports 52 bias_current_threshold high_alarm 20.0 low_alarm 0.5 high_warning 18.0 low_warning 1.0
config ddm ports 52 tx_power_threshold high_alarm 1.5900 low_alarm 0.1599 high_warning 1.2599 low_warning 0.2000
config ddm ports 52 rx_power_threshold high_alarm 1.2599 low_alarm 0.0099 high_warning 1.0000 low_warning 0.0126