- 论坛徽章:
- 0
|
这应该是tcpreply本身的问题,以下是tcpreply官网的FAQ中的问题
If by server you mean a daemon (Unix) or service (Windows) which listens on a port (a web or mail server would be common examples), then probably not. The biggest issue is that tcpreplay doesn't understand the state of common protocols like TCP. This means it is unable to synchronize Syn/Ack's to create valid TCP sessions.
In theory, ICMP and UDP based protocols should work fine if the MAC and IP addresses are correct. You can fix them using tcprewrite. However, some ICMP and UDP based protocols also carry Layer 3/4 protocol information in the protocol itself (SIP is one example), so if you change the IP addresses, it may not be a valid SIP packet anymore. In such cases, you may want to try using NetDude to edit the payload of the packets.
如果你是想使用这个工具来测试你的IPS或者IDS的话,我可以向你推荐一款比较不错的测试工具。tomahawk
这个链接是我几年前写的关于这个工具安装的
http://blog.chinaunix.net/uid-54114-id-1686314.html
|
|
免费注册
发表于 2012-03-15 21:53
