- This project reprecate
pingofinetutils-2.0 - It takes a simple IPV4 as parameters
- address and hostname
- It manages Fully Qualified Domain Name (FQDN) without DNS resolution
-
Supports
-vand-?optionsoption details -v, --verbose verbose output -?, --help give this help list
-
Supports
-c,-s,--ttloptionsoption details -c, --count=NUMBER stop after sending NUMBER packets -s, --size=NUMBER ping NUMBER data octets -t, --ttl=N specify N as time-to-live
-
Compilation
make -
Run docker
make buildmake exec
-
Internet Controle Message Protocol (ICMP) RFC792
-
Requirements for Internet Hosts -- Communication Layers RFC1122
! Under ssh environment, these changes will make the connection unstable. Highly recommended to run directly on the machine.
- Reset
sudo tc qdisc del dev enp0s3 root
-
How
sudo tc qdisc add dev enp0s3 root netem delay 1000ms -
Expect: change in triptime
$> ping google.com ... 64 bytes from 142.250.179.110: icmp_seq=2 ttl=63 time=1008,595 ms 64 bytes from 142.250.179.110: icmp_seq=3 ttl=63 time=1008,336 ms ...
-
How
sudo tc qdisc add dev enp0s3 root netem loss 50% -
Expect: change in summary
$> ping google.com
-
How
sudo tc qdisc add dev enp0s3 root netem corrupt 50% -
Expect
$> ping google.com ... 64 bytes from 142.250.179.110: icmp_seq=7 ttl=63 time=8,070 ms 64 bytes from 142.250.179.110: icmp_seq=10 ttl=63 time=7,956 ms 64 bytes from 142.250.179.110: icmp_seq=11 ttl=63 time=7,912 ms --- google.com ping statistics --- 12 packets transmitted, 10 packets received, 16% packet loss round-trip min/avg/max/stddev = 7,434/8,106/9,049/0,426 ms
Create fakepid.c
#include <sys/types.h>
#include <stdio.h>
pid_t getpid(void)
{
printf("--- PID replaceed with 4242 ---\n");
return 4242;
}- Compile and create a shared object file
lib_fakepid.so
gcc -shared fakepid.c -o lib_fakepid.so
- Replace getpid with fake one (! Does not work without
sudo!)
sudo LD_PRELOAD=./lib_fakepid.so ping google.com
-
How
sudo LD_PRELOAD=./lib_fakepid.so ping google.comsudo LD_PRELOAD=./lib_fakepid.so ping google.com -
Expect: Duplication detection
$> sudo LD_PRELOAD=./lib_fakepid.so ping google.com ... 64 bytes from 142.250.179.110: icmp_seq=0 ttl=63 time=7,476 ms (DUP!) 64 bytes from 142.250.179.110: icmp_seq=4 ttl=63 time=8,242 ms 64 bytes from 142.250.179.110: icmp_seq=1 ttl=63 time=7,581 ms (DUP!) 64 bytes from 142.250.179.110: icmp_seq=5 ttl=63 time=8,101 ms ... --- google.com ping statistics --- 8 packets transmitted, 8 packets received, +4 duplicates, 0% packet loss
$> sudo LD_PRELOAD=./lib_fakepid.so ping google.com ... 64 bytes from 142.250.179.110: icmp_seq=4 ttl=63 time=8,128 ms 64 bytes from 142.250.179.110: icmp_seq=1 ttl=63 time=7,925 ms 64 bytes from 142.250.179.110: icmp_seq=5 ttl=63 time=7,988 ms 64 bytes from 142.250.179.110: icmp_seq=2 ttl=63 time=8,697 ms 4 packets transmitted, 7 packets received, -- somebody is printing forged packets!
-
How
sudo LD_PRELOAD=./lib_fakepid.so ping google.comsudo LD_PRELOAD=./lib_fakepid.so ping localhost -
Expect: Both packets are captured, Duplication detection
$> sudo LD_PRELOAD=./lib_fakepid.so ping localhost ... 64 bytes from 142.250.179.110: icmp_seq=0 ttl=63 time=7,209 ms (DUP!) 64 bytes from 127.0.0.1: icmp_seq=3 ttl=64 time=0,115 ms 64 bytes from 142.250.179.110: icmp_seq=1 ttl=63 time=7,698 ms (DUP!) 64 bytes from 127.0.0.1: icmp_seq=4 ttl=64 time=0,114 ms