1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Help with a network device!!!

Discussion in 'Networking Issues' started by sapehr, Oct 20, 2008.

  1. sapehr

    sapehr Addicted to LI Member

    Hello,

    Could you please help to select which type of device do I need to accomplish my task? (maybe brand, special firmware, etc)

    First, this test will run in a LAN environment, no ISP, etc, all the connections are using 100 Mbps Ethernet, except the connection between the computer number 1 and the device number 4, because the computer has a 10 Mbps NIC.

    The device number 5 is an unmanaged switch and it is connected to two more computers. One of the computers will try to attack to the computer number 1 with flooding the network using an specific port (TCP), this is made with a program called IPLOAD. The other computer needs to be connected to the computer number 1 and remain connected during the flooding.

    Due to the 10 Mbps connection, this connection failed.

    Which device do I need to accomplish this test? The only thing that I can change or program is the device number 4 (switch, router, etc)


    I have read some other threads talking about QoS, but as far as I know, it only works with WAN connections. And also for this, I think that I have two options, one is two split directly the bandwith between the device number 1 and number 4, a half for the computer 2 and another half for the computer number 3. Or prioritaze the packets from the computer that must be connected with the computer number one.

    Computers number 2 and 3 wil use the same tcp port, so its not possible to close it, because the two connections to the computer number 1 must be always established.

    I create a small schema, if you have any suggestion to solve this I will appreciate it very much.

    Thank you,
     

    Attached Files:

  2. wthess

    wthess Addicted to LI Member

    The whole point behind an IPFlood attack is to overload networked devices. It's going to bring the connection down or slow it to a crawl. There really is no way around it and QOS may or may not solve your problem.

    QOS can be configured for LAN side or WAN side, depending completely upon the capabilities of your router. On some routers, you can configure QOS by physical switch port, by application, by tcpip port, or even by device using MAC or IP address. Even still, if you flood a device, it could bring the network down anyway, regardless of QOS.

    I suppose my primary question is why do you even want to run an IPFlood attack?
     

Share This Page