I have three Linux in VMware. One victim, one attacker and one in the middle as a router.
The router is for detecting attacks.
In the router, using the Python socket, the packets sent from the attacker to the victim can be analyzed to see if it is an attack or not.
conn = socket.socket(socket.AF_PACKET, socket.SOCK_RAW, socket.ntohs(3))
while True:
raw_data, addr = conn.recvfrom(65535)
# get packet length or size
packet_length = len(raw_data)
Some of parameters must be obtained from the packets. Some are easily obtained, such as: Destination Port and…
But i cant calculate this parameters :
-Minimum size of packet in backward direction
-Standard deviation size of packet in backward direction
-Total bytes used for headers in the backward direction
-Average size of packet
Please help
Dear Hassan Mohammadi ,
TCP is the protocol that guarantees we can have a reliable communication channel over an unreliable network. When we send data from a node to another, packets can be lost, they can arrive out of order, the network can be congested or the receiver node can be overloaded. When we are writing an application, though, we usually don’t need to deal with this complexity, we just write some data to a socket and TCP makes sure the packets are delivered correctly to the receiver node. Another important service that TCP provides is what is called Flow Control. Let’s talk about what that means and how TCP does its magic.
https://www.brianstorti.com/tcp-flow-control/
Regards,
Shafagat
I suggest you do this in the GNS3 tool and use the Wireshark tool to analyze the packets sent so that your scenario is close to reality.
Hi Hassan,
Try with Welford's online algorithm, you have a sample python implementation here: https://en.wikipedia.org/wiki/Algorithms_for_calculating_variance
Good luck!
- Badges
- Science topic
- Similar topics
- Computer Communications (Networks)
- Simulators