Menu
What's new
By:
Filters Better Search

Iptable command to cause packet loss

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Can you explain your scenario a bit more.

Also, what do you mean by "per IP address", an IP address on your LAN? Unsolicited traffic from the internet will be dropped by iptables FORWARD chain. That's 100% packet loss for the sender.
 
ColinTaylor said:
Can you explain your scenario a bit more.

Also, what do you mean by "per IP address", an IP address on your LAN? Unsolicited traffic from the internet will be dropped by iptables FORWARD chain. That's 100% packet loss for the sender.
Click to expand...

What I want to do is to randomly drop a percentage of all incoming packets to one of my lan devices, to basically simulate a poor internet connection!
 
I don't think it's possible to do it with iptables on the router because it doesn't have the required modules (statistic or random).
 
HOWTO

Enable the statistic match module in the firmware build configuration
Code: 
vi ~/asuswrt-merlin/release/src-rt-6.x.4708/linux/linux-2.6.36/config_base.6a
OLD LINE: # CONFIG_NETFILTER_XT_MATCH_STATISTIC is not set
NEW LINE: CONFIG_NETFILTER_XT_MATCH_STATISTIC=m

Build the firmware
Code: 
make clean
make {target-platform}

Copy the new kernel module to your router /jffs/bin folder. My routers is RT-AC68U and RT-AC56U, both ARM architectures. Use 'find' command to search for the kernel module, xt_statistic.ko.
Code: 
find ~/asuswrt-merlin -type f -name "xt_statistic.ko"
### here it is:  ~/asuswrt-merlin/release/src/router/arm-uclibc/target/lib/modules/2.6.36.4brcmarm/kernel/net/netfilter/xt_statistic.ko

Now login to the router to install and load the module
Code: 
insmod /jffs/bin/xt_statistic.ko
modprobe xt_statistic

Now this works
Code: 
iptables -A INPUT -m statistic --mode random --probability 0.1 -j DROP
iptables -A OUTPUT -m statistic --mode random --probability 0.1 -j DROP

Undo it when you're done playing around
Code: 
iptables -D INPUT -m statistic --mode random --probability 0.1 -j DROP
iptables -D OUTPUT -m statistic --mode random --probability 0.1 -j DROP


Download: http://www.megafileupload.com/21Eh/xt_statistic_asuswrt-merlin-378.53-arm.rar
MD5: 1bbd3bfc76be38b3a1903d11ffb420bb
 
Last edited:
You must log in or register to reply here.

Similar threads

RamGuy
Strange packet loss with IPv6 going through my Asus RT-AX88U running 3004.388.4
Replies
7
Views
1K
RamGuy
RamGuy
intArray
MoCa Packet Loss with TP-Link Equipment
Replies
0
Views
184
intArray
intArray
SkierInAvon
Asus Merlin - iptables command (not working?)
Replies
8
Views
588
SkierInAvon
SkierInAvon
MattBoothDev
Curious packet loss when connecting my modem to a switch
Replies
11
Views
654
Crimliar
Crimliar
G
ASUS XT8 MESH Dropped Packets
Replies
4
Views
398
Gally
G
Similar threads
Thread starter Title Forum Replies Date
U IPtable entries not saving? Asuswrt-Merlin 9
U multiple entries using ‘arp-scan’ but not reflected in ‘arp’ command Asuswrt-Merlin 3
W wl command equivalent on newer ASUS models AX5700 - RT-AX86U pro? Asuswrt-Merlin 4
SkierInAvon Asus Merlin - iptables command (not working?) Asuswrt-Merlin 8
CaptnDanLKW Simple Route Add Command Asuswrt-Merlin 9
XIYO Is there an option like inadyn --continue-on-error "command"? Asuswrt-Merlin 2
H WireGuard VPN PreUp Option to Run Command Before Client Connects? Asuswrt-Merlin 3
A whats the command to enable routing to my secondary wan? Asuswrt-Merlin 3
HOgi Manage WLAN-MAC-Filter list via command line (ssh) in a file? Asuswrt-Merlin 3
A Start/stop OpenVPN instances from the command line? Asuswrt-Merlin 3

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 678 (members: 35, guests: 643)
Top