Packet Generation under Linux? 19
Marcus Vollmer writes "I am looking for packet generation tools, or suggestions on how to
go about writing one. I need to be able to generate ip packets with specific characteristics and send them to a network appliance, in order to simulate possible scenarios. For example, one appliance we want to test performs layer 7 operations, we want to be able to test splitting requests and responses up across multiple frames, force retransmits, and send different responses back. (eg. if the first request was split over 3 frames, we might want to send a reset and have the client retransmit using only 2 frames). I doubt there are any existing tools to do this, but we were thinking of writing a series of tools using netfilter, and placing a linux box between the
client and the appliance running these filters to alter the packets. If there are existing tools to do this thats great, if not, any pointers and resources would be great. There is a good article in the Linux Journal (Feb and March issues), along with the information at netfilter.org, but we would be interested in hearing any ideas and suggestions from the slashdot community."
SendIP (Score:5, Informative)
http://www.earth.li/projectpurple/progs/sen
Nemesis is also pretty good. There are a variety of "human IP stack" type tools available. I can also reccommend the Net::RawIP PERL module, if you are PERL literate.
You will find LCRZO useful (Score:5, Informative)
Quoting from Laurent's website:
Lcrzo is a network library, for network administrators and network hackers.
Its objective is to easily create network programs. This library provides network functionnalities for Ethernet, IP, UDP, TCP, ICMP, ARP and RARP protocols. It supports spoofing, sniffing, client and server creation. Furthermore, lcrzo contains high level functions dealing with data storage and handling. Using all these functions, you can quickly create a network test program.
The library lcrzo provides
+ network functionnalities
- address conversion
- packet encoding/decoding/printing
- spoofing
- real/virtual UDP/TCP clients/servers
- sniffing
- device(network board) dealing
- etc.
+ and general functionnalities
- data conversion
- chained list
- IPC
- etc.
Check CPAN (Score:5, Informative)
LibNet, the packet assembly library (Score:5, Informative)
Don't let Steve Gibson hear you! (Score:3, Funny)
Re:Don't let Steve Gibson hear you! (Score:2)
Man that guy is full of himself. His site was booted of the Internet by the "next generation DOS". He claims that the next generation of DOS is the Distributed Reflection DOS. Just because he hasn't seen one before doesen't make it new, or the next generation. It isen't even that great as the attackers needs almost as much bandwidth as the target.
libnet and libpcap (Score:2, Informative)
This has to be the best place to start: libnet homepage [packetfactory.net]. This pagehas all the info and links you need.
How to Rewrite Packets? (Score:2, Interesting)
Where can I find information on such a task?
Re:How to Rewrite Packets? (Score:1)
Re:How to Rewrite Packets? (Score:2)
You can use iptables with PREROUTING, to rewrite the destination ip.
Maybe you can even change more things with it (?), but I'm not sure about that.
Nemesis (Score:1)
which can generate "raw" packets of nearly any
flavour. I am sure it runs under Linux, too.