LVS
lvs-users
Google
 
Web LinuxVirtualServer.org

testing dos defenses

To: lvs-users@xxxxxxxxxxxxxxxxxxxxxx
Subject: testing dos defenses
From: Anush Elangovan <eas@xxxxxxx>
Date: Tue, 30 Jan 2001 14:03:28 -0700 (MST)
Hi,
  I know that testlvs could be used to load an LVS server with TCP SYN
packets, to see how LVS performs under such a load. I would like to know if
there are any methods of generating "legitimate" traffic (read as complete TCP
Handshake) from one more system and to measure the amount of ESTABLISHED
connections that we can get, i.e throughput of legitimate connections.

 This would give us a good idea as to how effective are the DOS Defense
strategies, as we would have a quantitative measure of how many
"legitimate" connections got through with drop_packet enabled, and then with
drop_entry enabled. 

 I am  looking for a tool that can complete about 50-100 TCP handshakes.  Then
we could just launch testlvs simultaneously and see how many real requests get
through. {thought of using connect() but it keeps retrying to connect.}

Looking forward to your replies

Thanks
Anush
  



<Prev in Thread] Current Thread [Next in Thread>