What happens if a traceroute with the same TTL/hop limit is received from two different source addresses? How will they react?
Marek Küthe
adb11fa02c
Fix typo in README.md
|
3 weeks ago | |
|---|---|---|
| .woodpecker | 1 month ago | |
| debian | 1 month ago | |
| src | 1 month ago | |
| systemd | 1 month ago | |
| tests | 1 month ago | |
| .clang-format | 1 month ago | |
| .clang-format-include | 1 month ago | |
| .clang-tidy | 1 month ago | |
| .gitignore | 1 month ago | |
| BUILDING.md | 1 month ago | |
| CHANGELOG.md | 1 month ago | |
| CONTRIBUTING.md | 1 month ago | |
| LICENSE | 2 months ago | |
| Makefile | 1 month ago | |
| README.md | 3 weeks ago | |
| SECURITY.md | 1 month ago | |
| meson.build | 1 month ago | |
| meson_options.txt | 1 month ago | |
| topology.drawio | 1 month ago | |
| topology.png | 1 month ago |
README.md
Crazy traceroute
What happens if a traceroute with the same TTL/hop limit is received from two different source addresses? How will they react?
crazytrace is a network simulation program that can be used to see how different ping and traceroute implementations react when the sender address is different than expected.
And what the hell does crazytrace do now? Simply explained.
When a network packet is used, it passes through several devices (also known as routers) on its journey to its destination. There are "traceroute" programs to determine these devices and thus the path that the packet takes. These usually query the path several times. What would happen if a certain device has two addresses on this path with which it responds? To see how the programs behave in this case, crazytrace simulates such a device (or several, depending on the configuration). This is achieved by creating a virtual Ethernet adapter behind which the simulated device or the simulated devices are located.
Building
See BUILDING.md.
Contributing
See CONTRIBUTING.md.
Security
See SECURITY.md.
How it works?
crazytrace uses several libraries and tricks to create a virtual TAP adapter behind which the simulated network is hidden.
- libtuntap: This library is used to create and close the TAP device.
- libtins: This library is used for packet parsing and crafting.
- yaml-cpp: This library is used to read the configuration file in YAML format.
- Boost.log: This library is used as a logger. Various log levels can be set in the configuration file.
- Boost.Asio: This library is used to communicate with the socket of the TAP device and to receive and send several packets simultaneously (asynchronously).
Here is how the program works:
- reading the configuration file
- setting the log level
- output of the libtuntap version
- output of the configuration
- creation of the TAP device
- initialization of the network simulator
- starting the network simulator
The following is how the network simulator works when a packet is received:
- reading the packet with tins
- reading the packet into a NodeRequest
- generate a NodeReply using the configuration
- check whether a reply should be sent 4a. If no, abort
- if yes, create a NodeReply package using libtins
- write the packet to the socket of the TAP device
Configuration file
The following is a example configuration file:
---
log_level: info
device_name: crazytrace
post_up_commands:
- ip route add fd00::/64 dev crazytrace via fe80::b1:4fff:fe7e:9dc3
nodes:
- mac: 02:B1:4F:7E:9D:C3
addresses: [fe80::b1:4fff:fe7e:9dc3]
hoplimit: 255
nodes:
- addresses: [fd00::1]
nodes:
- addresses: [fd00::21, fd00::22, fd00::23]
nodes:
- addresses: [fd00::3]
- mac: 02:B1:4F:7E:9D:C4
addresses: [fe80::b1:4fff:fe7e:9dc4]
This would generate the following topology:
The log level can have one of the following values:
tracedebuginfowarningerrorfatal
For production, "info" or lower is recommended.
The device name is the name of the TAP interface that crazytrace creates.
The post-up commands are a series of commands that are executed by the command processor of the operating system after the TAP interface has been created. These commands are executed with the same rights as crazytrace. They receive no input. Their output is ignored. crazytrace aborts if one of the commands has not been successfully completed.
A list of nodes then appears in the configuration file. These can have the following attributes:
mac: The nodes in the first level must have a MAC address. crazytrace acts as if these nodes were directly on the TAP interface. All child nodes of these are behind them, so that no MAC address is required for communication.addresses: A list of IP addresses that the node should have. It responds to all of them and replies with a random one.hoplimit: Hop limit with which the response is to be sent. ICMP NDP packets are always sent with a hop limit of 255. If no hop limit is specified, a hop limit of 64 is used.nodes: A list of nodes (which are structured in the same way) which are behind the current one in the simulated network.
The configuration is written in YAML.
Which MAC addresses can I use without any problems?
The following belong to the locally administered range and can be used without any problems:
x2-xx-xx-xx-xx-xx
x6-xx-xx-xx-xx-xx
xA-xx-xx-xx-xx-xx
xE-xx-xx-xx-xx-xx
How do I start crazytrace?
crazytrace is configured via a configuration file. The path to this file is given as the first (and only) argument.
# /path/to/crazytrace /path/to/config.yaml
Notes for myself
Create a new release
To create a new release the following is necessary:
- Create a changelog entry
- Create a changelog entry for the Debian package
- Update the SECURITY.md
- Create a new git tag