countertrace 1.0
Sponsored Links
countertrace 1.0 Ranking & Summary
File size:
0.012 MB
Platform:
Any Platform
License:
GPL (GNU General Public License)
Price:
Downloads:
1325
Date added:
2006-03-10
Publisher:
Michael C Toren
countertrace 1.0 description
countertrace project is a userland, iptables QUEUE target handler for Linux 2.4 kernels running Netfilter, which attempts to give the illusion that there are multiple, imaginary IP hops between itself and the rest of the world.
The imaginary hops that countertrace projects also have the ability to introduce accumulative, imaginary latency.
How it works:
Netfilter provides a mechanism for passing packets for processing to a userland program, which can examine the packet and determine if it should be permitted through or dropped on the floor. countertrace utilizes this mechanism to drop received packets which have a TTL less than the number of hops its attempting to project, and then generates ICMP time-exceeded messages for those dropped packets with the source address of the bogus hop. If latency is also being simulated, the generated time-exceeded messages are queued for the specified period of time before being sent.
Requirements:
countertrace requires the NetPacket, Time::HiRes, and IPTables::IPv4::IPQueue perl modules, available from CPAN, the Net::RawSock and a Linux 2.4 kernel with iptables (CONFIG_IP_NF_IPTABLES) and QUEUE target (CONFIG_IP_NF_QUEUE) support. If latency is not being simulated, iptables TTL match support (CONFIG_IP_NF_MATCH_TTL) may also be useful.
Configuration:
The countertrace program takes only one command line argument, the name of its configuration file. To get started, the only configuration file command you need to know about is the "hop" command, which takes the form of "hop < address > [latency]". Hops must be added in the order in which they are to be simulated. Latency is accumulative -- at run time, the latency for each hop is determined by calculating the sum of all previously specified latency values. Additional configuration commands are available for specifying how much information is logged for each received packet; see the example-hops-configuration file for more information.
In addition to configuring countertrace itself, iptables must also be configured to pass packets to countertrace for processing using the iptables QUEUE target. If latency is not being simulated, the iptables TTL match support can be used to only pass packets to countertrace which have a TTL less than or equal to the number of hops being simulated. Otherwise, more than likely youll want all received packets to pass through countertrace, so that the latency will appear to be uniform when tracerouting, in addition to when transferring data. However, the danger is that if the countertrace program dies for any reason, iptables will drop any packets which would have been queued for userland processing, rendering the box unreachable to the outside world. To avoid the problem, it may be wise to specify at least one "backdoor" address from which packets will be accepted without passing through countertrace.
For an example startup script, see the example-startup-script.sh file.
The imaginary hops that countertrace projects also have the ability to introduce accumulative, imaginary latency.
How it works:
Netfilter provides a mechanism for passing packets for processing to a userland program, which can examine the packet and determine if it should be permitted through or dropped on the floor. countertrace utilizes this mechanism to drop received packets which have a TTL less than the number of hops its attempting to project, and then generates ICMP time-exceeded messages for those dropped packets with the source address of the bogus hop. If latency is also being simulated, the generated time-exceeded messages are queued for the specified period of time before being sent.
Requirements:
countertrace requires the NetPacket, Time::HiRes, and IPTables::IPv4::IPQueue perl modules, available from CPAN, the Net::RawSock and a Linux 2.4 kernel with iptables (CONFIG_IP_NF_IPTABLES) and QUEUE target (CONFIG_IP_NF_QUEUE) support. If latency is not being simulated, iptables TTL match support (CONFIG_IP_NF_MATCH_TTL) may also be useful.
Configuration:
The countertrace program takes only one command line argument, the name of its configuration file. To get started, the only configuration file command you need to know about is the "hop" command, which takes the form of "hop < address > [latency]". Hops must be added in the order in which they are to be simulated. Latency is accumulative -- at run time, the latency for each hop is determined by calculating the sum of all previously specified latency values. Additional configuration commands are available for specifying how much information is logged for each received packet; see the example-hops-configuration file for more information.
In addition to configuring countertrace itself, iptables must also be configured to pass packets to countertrace for processing using the iptables QUEUE target. If latency is not being simulated, the iptables TTL match support can be used to only pass packets to countertrace which have a TTL less than or equal to the number of hops being simulated. Otherwise, more than likely youll want all received packets to pass through countertrace, so that the latency will appear to be uniform when tracerouting, in addition to when transferring data. However, the danger is that if the countertrace program dies for any reason, iptables will drop any packets which would have been queued for userland processing, rendering the box unreachable to the outside world. To avoid the problem, it may be wise to specify at least one "backdoor" address from which packets will be accepted without passing through countertrace.
For an example startup script, see the example-startup-script.sh file.
countertrace 1.0 Screenshot
countertrace 1.0 Keywords
QUEUE
TTL
Linux 2.4
IP
NF
CONFIG
For Linux 2.4
for linux
countertrace
Iptables
latency
packets
target
userland
countertrace 1.0
Networking
Bookmark countertrace 1.0
countertrace 1.0 Copyright
WareSeeker periodically updates pricing and software information of countertrace 1.0 full version from the publisher, so some information may be slightly out-of-date. You should confirm all information before relying on it. Software piracy is theft, Using crack, password, serial numbers, registration codes, key generators is illegal and prevent future development of countertrace 1.0 Edition. Download links are directly from our publisher sites, torrent files or links from rapidshare.com, yousendit.com or megaupload.com are not allowed
Featured Software
Want to place your software product here?
Please contact us for consideration.
Contact WareSeeker.com
Related Information
cx88 dvb for linux 2.4
remus for linux kernel 2.4 development
linux net4.0 for linux 2.4
packets of salad dressing
latency time
linux 2.4.2
cas latency
seed packets
linux iptables
linux 2.4 operating system
cifs for linux 2.4
packetstorm
iptables tutorial
latency test
pci latency
emergen c packets
queue management
iptables firewall
Related Software
IPAC-NG is the iptables/ipchains based IP accounting package for Linux. Free Download
PacGen is an Ethernet IP TCP/UDP packet generating tool for Linux. Free Download
fwsnort translates snort rules into an equivalent iptables ruleset. Free Download
specter is a user-space logging facility for the Linux netfilter system. Free Download
Etterlog is the log analyzer for logfiles created by ettercap. Free Download
Sasacct fetches traffic stats via ipchains, ipfstat, iptables, pf, Cisco IP accounting, and SNMP. Free Download
DrCutter is a powerful file splitter Free Download
sipscreen project is a Linux iptables QUEUE target handler written in perl for screening incoming SIP phone calls. Free Download
Latest Software
Popular Software
Favourite Software
