LANforge-FIRE Cookbook

12. Multiple Thousands of TCP Connections

Goal: Setup and run traffic on multiple thousands of stateful TCP connections.

As of LANforge release version 5.1.4, LANforge-FIRE has the capability to create multiple thousands of TCP connections using only two ports on one Layer-3 connection that can all run simultaneously and in a stateful manner. This feature can be used to test connection state aware devices such as firewalls, stateful packet inspection systems and intrusion detection/prevention systems.

The upper limit of the total number of concurrent connections is determined by the processor speed and total memory available on the system running the LANforge software. In addition, the packet rate and payload size of each connection will also affect performance.

NOTE: If you are attempting to run this test scenario, you will need a LANforge license key that enables the correct number of multi-connections. Please contact us at support@candelatech.com for assistance.

For this example, two physical ports on a single LANforge system are connected together.

Setup the LANforge ports so that they have valid IP addresses and IP masks.

A: Using the LANforge GUI, go to the Port Manager tab.

B: Assign IP addresses and masks to the two ports.

C: Verify the port configuration.

For more information, see the LANforge User's Guide: Ports (Interfaces)

Return to LANforge-FIRE Cookbook

Setup a Layer-3 Multi-Conn TCP connection.

A: Go to the Layer-3 tab, and select the Create button.

B: For Endpoint A, type in a name in the CX Name field, choose a CX Type of LANforge/TCP, choose the correct ports and set the Report Timer to 1000 ms.

C: Set the Min Tx Rate and Max Tx Rate on both Endpoints A and B to 9.6Kbps.
NOTE: Higher speeds and/or bursty transmit rates will require more memory to process per connection.

D: Leave the Min Pkt Size and Max Pkt Size on both Endpoints A and B set to 1024B.
NOTE: Larger packet sizes will use more memory, smaller packet sizes will require more CPU processing time.

E: Leave the TCP Duration set to Forever, unless you want each of the multiple TCP connections to teardown and restart after a specified duration.

F: For Endpoint A, set the Multi-Conn to the desired number of multiple TCP connections.
You can type in any value that your license allows here or choose one from the drop down box. The recommended approach is to create a new Multi-Conn connection for every 5000 connections.

G: For Endpoint B, set the Multi-Conn to one, then select OK to create the connection.
Endpoint B is the "server" side of the TCP connection, therefore it is only necessary to have one Multi-Conn setup on Endpoint B to reply to all of the Endpoint A TCP SYN packets when the 5000 connections are being established.

For more information, see the LANforge User's Guide: Creating & Modifying Cross Connects

Return to LANforge-FIRE Cookbook

Create 5 more Layer-3 Multi-Conn TCP connections.

A: On the Layer-3 tab, highlight the first connection created in the previous step and select Modify.

B: Select the Batch-Create button.

C: Set the Quantity to 5, and set Port Increment A and Port Increment B to 0.

D: Select the Apply button.

E: Verify that six Multi-Conn TCP connections were created.

For more information, see the LANforge User's Guide: Layer-3 Endpoints (FIRE)

Return to LANforge-FIRE Cookbook

Run traffic and verify results.

A: Highlight all six connections.

B: Select the Start button

C: Go to the L3 Endps tab to verify that all 30,000 connections are running.

D: Or, go to the Port Mgr tab, and sniff one of the ports while the Multi-Conn TCP connections are running.
NOTE:You will need a lot of memory to run a Wireshark capture on 30,000 connections. It is probably best to stop all connections, set up the Wireshark capture, start all connections and let them run for 30 seconds to 1 minute before stopping them all, then stop the Wireshark capture and wait for it to process all those packets!

E: After the Wireshark capture is complete, go to Statistics - Conversations to allow Wireshark to analyze the conversations and show that all 30,000 connections were captured. This will take some time to complete depending on the size of the capture.

For more information, see the LANforge User's Guide: Layer-3 Endpoints (FIRE)

Return to LANforge-FIRE Cookbook

Email Candela Technologies at: support@candelatech.com if you have any questions or suggestions.

Candela Technologies, Inc., 2026 Main Street, Suite A, P.O. Box 3285, Ferndale, WA 98248, USA
www.candelatech.com | sales@candelatech.com | +1 360 380 1618

Candela Technologies, 2026 Main Street, Suite A, P.O. Box 3285, Ferndale, WA 98248, USA
www.candelatech.com | sales@candelatech.com | +1 360 380 1618

Last modified: Fri Mar 11 09:54:30 PST 2011

A: Using the LANforge GUI, go to the Port Manager tab.
B: Assign IP addresses and masks to the two ports.
C: Verify the port configuration.

A: Go to the Layer-3 tab, and select the Create button.
B: For Endpoint A, type in a name in the CX Name field, choose a CX Type of LANforge/TCP, choose the correct ports and set the Report Timer to 1000 ms.
C: Set the Min Tx Rate and Max Tx Rate on both Endpoints A and B to 9.6Kbps. NOTE: Higher speeds and/or bursty transmit rates will require more memory to process per connection.
D: Leave the Min Pkt Size and Max Pkt Size on both Endpoints A and B set to 1024B. NOTE: Larger packet sizes will use more memory, smaller packet sizes will require more CPU processing time.
E: Leave the TCP Duration set to Forever, unless you want each of the multiple TCP connections to teardown and restart after a specified duration.
F: For Endpoint A, set the Multi-Conn to the desired number of multiple TCP connections. You can type in any value that your license allows here or choose one from the drop down box. The recommended approach is to create a new Multi-Conn connection for every 5000 connections.
G: For Endpoint B, set the Multi-Conn to one, then select OK to create the connection. Endpoint B is the "server" side of the TCP connection, therefore it is only necessary to have one Multi-Conn setup on Endpoint B to reply to all of the Endpoint A TCP SYN packets when the 5000 connections are being established.

A: On the Layer-3 tab, highlight the first connection created in the previous step and select Modify.
B: Select the Batch-Create button.
C: Set the Quantity to 5, and set Port Increment A and Port Increment B to 0.
D: Select the Apply button.
E: Verify that six Multi-Conn TCP connections were created.

A: Highlight all six connections.
B: Select the Start button
C: Go to the L3 Endps tab to verify that all 30,000 connections are running.
D: Or, go to the Port Mgr tab, and sniff one of the ports while the Multi-Conn TCP connections are running. NOTE:You will need a lot of memory to run a Wireshark capture on 30,000 connections. It is probably best to stop all connections, set up the Wireshark capture, start all connections and let them run for 30 seconds to 1 minute before stopping them all, then stop the Wireshark capture and wait for it to process all those packets!
E: After the Wireshark capture is complete, go to Statistics - Conversations to allow Wireshark to analyze the conversations and show that all 30,000 connections were captured. This will take some time to complete depending on the size of the capture.