Validate send packet against recived packets

Running Ubuntu.

I have machine A -> machine B (one-way connection from A to B) .
Machine A goal is to forward tcp packets to machine B (it dosnt has tcp connection with machine B. it just forward tcp packets that it get from other machines)
In machine A there are c++ code that collect some tcp packets based on business rules and write them by raw socket to machine B.

I want to do performance test for my code on machine A, so in order to do this
I need to send massive TCP packets to machine A my c++ code will forward them to B.
At the end i will validate that all packets were revived in machine B.
Do you have any recommendation for tools? tools that will simulate massive send and tools that will help in the assertions (can be assert by amount, checksum, any other idea)

I think on upload big file file to A dump the upload traffic and than replay it with tcpreplay (i will create 100 threads that replay the same upload dump in order to have massive tcp stream).
In order to validate i will analyze the tcpdump on the receiver to check if its has the same excepted amount of packets as sent.

This is not about tcp as protocol only generate real tcp packets (as structure) send massive of them and validate by compare payload or amount or any other way.
Any advice?

Best Answer

I have machine A -> machine B (one-way connection from A to B) . I need to send massive TCP packets from A to B and validate that all packets revived. Do you have any recommendation for tools?

I recommend TCP, which ensures reliable, ordered delivery of data.
(You are asking us for a tool to do what the underlying protocol already does.)

Also note that TCP is inherently bidirectional: ACKs have to get sent back from Machine B to machine A. A "one-way connection" is impossible - No ACKs means transmission will stall forever.

I think on upload big file from A to B (do this when they has two-way connection) dump the traffic from A to B and than replay it with tcpreplay (i will create 100 threads that will replay it in order to have massive tcp stream). In order to validate i will analyze the tcpdump on the receiver to check if its has the same excepted amount of packets as sent.

TCP doesn't work that way. The packet count over the wire may be different due to differing window/MTU sizes, dropped-and-retransmitted packets, delayed ACKs (resulting in double transmission of a few packets), etc.

You can't just shove the same data over the wire and expect it to work exactly the same way -- In practice this often works (and is the basis of replay attacks), but TCP is governed by a state machine, and you really need to run through that for each connection.

If you need to generate a large amount of TCP traffic and don't care about the data you should simply start multiple streams sending the data to listeners on the remote system (which presumably can just discard it).

If you care about the data you should do as lasrks suggested and checksum the received data (in its entirety) after it's exited the TCP/IP stack...

Best Answer

Related Solutions

Can i stop tcp handshake by send icmp of unreachable host

Docker Promiscuous Mode – Troubleshooting Partially Working Mode

Related Topic