Re: Assigning different IPs for different Virtual Users from the same Machine

[Michal Kostrzewa <m....@pentacomp.com.pl>]

What about IP aliasing - you can define multiple IP's to one network
interface. Then you could ask jMeter to send request from particular IP
(without any modification of TCP header). With that, webservers could do
a reverse lookup. But now there is no possibility in jMeter to choose
the IP requests are sent from (AFAIK).

Peter: sending from different IP's can be useful, when you're testing
load balanced web serwers for example. Load balance algorithms can rely
on source IP information.

best regards,
Michal Kostrzewa



W liście z wto, 06-04-2004, godz. 15:57, peter lin pisze: 
>  unfortunately, the only reliable way to make it appear one JMeter is 10 different IP addresses is to modify the TCP header.
>  
> Even if you change the HTTPHeader, if the webserver uses reverse lookup, it will figure out it is the same machine. Your best option is to use 10 machines to hit the same server. Is there a particular reason the single signon uses the IP address?  I ask because users behind a NAT will appear to the be the same user, unless you use something more reliable to determine it is an unique visitor. For example, some use MAC address.
>  
> That's probably not the answer you're looking for, but testing single sign-on application can be tricky, since security is inherently an issue. For a single sign-on to be good, it has to make it hard or impractical to spoof. Otherwise the single sign-on wouldn't be worth anything.
>  
> peter lin
> 
> 
> Eda Srinivasareddy <ed...@yahoo.com> wrote:
> Hi All
> 
> My web application reads the IP of the client machine from which a particular request came to it using httpServletRequest.getRemoteAddr(). Lets think that there are 10 users accessing this application from 10 different machines. Thereby the application reads 10 different IP addresses corresponding to these 10 different users.
> 
> My actual problem is simulating these 10 users from the JMeter. When I am using 10 users from the JMeter, all the 10 users are sending the same IP, there by only the last user is accessing the application and the remaining are not accessing the application i.e. they are logged out as the Single Sign On is enabled.
> 
> So is there any way I can assign 10 different IPs for 10 Users by changing some classes of JMeter? 
> 
> Please give me suggestions in achieving this functionality.
> 
> Thanks & Regards
> Eda
> 
> 
> ---------------------------------
> Do you Yahoo!?
> Yahoo! Small Business $15K Web Design Giveaway - Enter today
> 
> ---------------------------------
> Do you Yahoo!?
> Yahoo! Small Business $15K Web Design Giveaway - Enter today


---------------------------------------------------------------------
To unsubscribe, e-mail: jmeter-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: jmeter-user-help@jakarta.apache.org

Re: Assigning different IPs for different Virtual Users from the same Machine

[peter lin <jm...@yahoo.com>]

LOL bad joke.

you're right on the DDos, Smurf and Synflood. Jmeter
is already a pretty good tool for flooding a webserver
:))

peter

--- Michal Kostrzewa <M....@pentacomp.com.pl>
wrote:
> Dnia �ro 7. kwietnia 2004 19:50, peter lin napisa�:
> > way cool!
> >
> > now I just script kiddies don't get the bright
> idea they can use jmeter for
> > DDOS.
> 
> Heh :) Peter, watch out, there are cases, where a
> people were syn flooded just 
> for calling "(h/cr)ackers" as "script kiddies" :)))
> (have you read it? 
> http://grc.com/dos/grcdos.htm, quite interesting I
> think :))
> 
> Also please note, you cannot perform the classic syn
> flood with just jmeter 
> making use of ip aliasing. To do this you have to
> spoof source IP to 
> non-reachable IP. Of course other ways of ddos could
> be possible :))))) We 
> can assume that it's some form of "stress testing"
> :)))
> 
> best regards,
> Michal Kostrzewa
> 
> -- 
> To become a Jedi, use Emacs you have to.
> 
> 
>
---------------------------------------------------------------------
> To unsubscribe, e-mail:
> jmeter-user-unsubscribe@jakarta.apache.org
> For additional commands, e-mail:
> jmeter-user-help@jakarta.apache.org
> 


__________________________________
Do you Yahoo!?
Yahoo! Small Business $15K Web Design Giveaway 
http://promotions.yahoo.com/design_giveaway/

---------------------------------------------------------------------
To unsubscribe, e-mail: jmeter-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: jmeter-user-help@jakarta.apache.org

Re: Assigning different IPs for different Virtual Users from the same Machine

[Michal Kostrzewa <M....@pentacomp.com.pl>]

Dnia śro 7. kwietnia 2004 19:50, peter lin napisał:
> way cool!
>
> now I just script kiddies don't get the bright idea they can use jmeter for
> DDOS.

Heh :) Peter, watch out, there are cases, where a people were syn flooded just 
for calling "(h/cr)ackers" as "script kiddies" :))) (have you read it? 
http://grc.com/dos/grcdos.htm, quite interesting I think :))

Also please note, you cannot perform the classic syn flood with just jmeter 
making use of ip aliasing. To do this you have to spoof source IP to 
non-reachable IP. Of course other ways of ddos could be possible :))))) We 
can assume that it's some form of "stress testing" :)))

best regards,
Michal Kostrzewa

-- 
To become a Jedi, use Emacs you have to.


---------------------------------------------------------------------
To unsubscribe, e-mail: jmeter-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: jmeter-user-help@jakarta.apache.org

Re: Assigning different IPs for different Virtual Users from the same Machine

[peter lin <jm...@yahoo.com>]

way cool!
 
now I just script kiddies don't get the bright idea they can use jmeter for DDOS.
 
peter lin


Michal Kostrzewa <m....@pentacomp.com.pl> wrote:
> so does it mean you're going to implement support for Alias michael ? :)

This time I'll first implement something and then promise I'll do it
:)))) Last time Mike Stover was half a day quicker then I was :)))
(gzipped proxy) :))))))

best regards,
Michal Kostrzewa




---------------------------------------------------------------------
To unsubscribe, e-mail: jmeter-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: jmeter-user-help@jakarta.apache.org


---------------------------------
Do you Yahoo!?
Yahoo! Small Business $15K Web Design Giveaway - Enter today

Re: Assigning different IPs for different Virtual Users from the same Machine

[Michal Kostrzewa <m....@pentacomp.com.pl>]

> so does it mean you're going to implement support for Alias michael ? :)

This time I'll first implement something and then promise I'll do it
:)))) Last time Mike Stover was half a day quicker then I was :)))
(gzipped proxy) :))))))

best regards,
Michal Kostrzewa




---------------------------------------------------------------------
To unsubscribe, e-mail: jmeter-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: jmeter-user-help@jakarta.apache.org

Re: Assigning different IPs for different Virtual Users from the same Machine

[peter lin <jm...@yahoo.com>]

 
fun discussion. I think most hardware load balancers use the IP address, which is also one of the compliants many people have about them.  Atleast if you ask Resonate, which makes software load balancing. I believe Cisco routers can also use session based load balancing, which gets around the performance issues of lots of traffic coming from a specific IP address.
 
so does it mean you're going to implement support for Alias michael ? :)
 
peter lin


Michal Kostrzewa <m....@pentacomp.com.pl> wrote:
> A good single sign-on application shouldn't use just the IP address, so even if you assign multiple IP addresses to a NIC in linux/unix, it wouldn't help

My checkpoint fw relies on the source IP when doing loadbalancing. It
remembers client IP for a few minutes and redirects all the traffic from
this IP to the choosen server. Of course the more jmeter guns the
better, but sometimes the feature of assigning request's IP and ip
aliasing could be practical (to me at least :))))

best regards
Michal Kostrzewa



---------------------------------
Do you Yahoo!?
Yahoo! Small Business $15K Web Design Giveaway - Enter today

Re: Assigning different IPs for different Virtual Users from the same Machine

[Michal Kostrzewa <m....@pentacomp.com.pl>]

> A good single sign-on application shouldn't use just the IP address, so even if you assign multiple IP addresses to a NIC in linux/unix, it wouldn't help

My checkpoint fw relies on the source IP when doing loadbalancing. It
remembers client IP for a few minutes and redirects all the traffic from
this IP to the choosen server. Of course the more jmeter guns the
better, but sometimes the feature of assigning request's IP and ip
aliasing could be practical (to me at least :))))

best regards
Michal Kostrzewa

> 
> 
> Michal Kostrzewa <m....@pentacomp.com.pl> wrote:
> What about IP aliasing - you can define multiple IP's to one network
> interface. Then you could ask jMeter to send request from particular IP
> (without any modification of TCP header). With that, webservers could do
> a reverse lookup. But now there is no possibility in jMeter to choose
> the IP requests are sent from (AFAIK).
> 
> Peter: sending from different IP's can be useful, when you're testing
> load balanced web serwers for example. Load balance algorithms can rely
> on source IP information.
> 
> best regards,
> Michal Kostrzewa
> 
> 
> 
> W licie z wto, 06-04-2004, godz. 15:57, peter lin pisze: 
> > unfortunately, the only reliable way to make it appear one JMeter is 10 different IP addresses is to modify the TCP header.
> > 
> > Even if you change the HTTPHeader, if the webserver uses reverse lookup, it will figure out it is the same machine. Your best option is to use 10 machines to hit the same server. Is there a particular reason the single signon uses the IP address? I ask because users behind a NAT will appear to the be the same user, unless you use something more reliable to determine it is an unique visitor. For example, some use MAC address.
> > 
> > That's probably not the answer you're looking for, but testing single sign-on application can be tricky, since security is inherently an issue. For a single sign-on to be good, it has to make it hard or impractical to spoof. Otherwise the single sign-on wouldn't be worth anything.
> > 
> > peter lin
> > 
> > 
> > Eda Srinivasareddy wrote:
> > Hi All
> > 
> > My web application reads the IP of the client machine from which a particular request came to it using httpServletRequest.getRemoteAddr(). Lets think that there are 10 users accessing this application from 10 different machines. Thereby the application reads 10 different IP addresses corresponding to these 10 different users.
> > 
> > My actual problem is simulating these 10 users from the JMeter. When I am using 10 users from the JMeter, all the 10 users are sending the same IP, there by only the last user is accessing the application and the remaining are not accessing the application i.e. they are logged out as the Single Sign On is enabled.
> > 
> > So is there any way I can assign 10 different IPs for 10 Users by changing some classes of JMeter? 
> > 
> > Please give me suggestions in achieving this functionality.
> > 
> > Thanks & Regards
> > Eda
> > 
> > 
> > ---------------------------------
> > Do you Yahoo!?
> > Yahoo! Small Business $15K Web Design Giveaway - Enter today
> > 
> > ---------------------------------
> > Do you Yahoo!?
> > Yahoo! Small Business $15K Web Design Giveaway - Enter today
> 
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: jmeter-user-unsubscribe@jakarta.apache.org
> For additional commands, e-mail: jmeter-user-help@jakarta.apache.org
> 
> 
> ---------------------------------
> Do you Yahoo!?
> Yahoo! Small Business $15K Web Design Giveaway - Enter today


---------------------------------------------------------------------
To unsubscribe, e-mail: jmeter-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: jmeter-user-help@jakarta.apache.org

Re: Assigning different IPs for different Virtual Users from the same Machine

[peter lin <jm...@yahoo.com>]

 
I guess I'm spoiled :)  Usually I have atleast 2 machines to run load tests, or I use my own development environment of 4 servers.  I definitely see value of being able to test out load balancers like Tomcat5 or hardware load balancer like Cisco LocalDirectory.
 
using IP alias or spoofing to test single sign-on to me doesn't feel practical. A good single sign-on application shouldn't use just the IP address, so even if you assign multiple IP addresses to a NIC in linux/unix, it wouldn't help.  Some tests are just easier to perform with more hardware :)
 
which is why I have my own dev environment.
 
peter


Michal Kostrzewa <m....@pentacomp.com.pl> wrote:
What about IP aliasing - you can define multiple IP's to one network
interface. Then you could ask jMeter to send request from particular IP
(without any modification of TCP header). With that, webservers could do
a reverse lookup. But now there is no possibility in jMeter to choose
the IP requests are sent from (AFAIK).

Peter: sending from different IP's can be useful, when you're testing
load balanced web serwers for example. Load balance algorithms can rely
on source IP information.

best regards,
Michal Kostrzewa



W li�cie z wto, 06-04-2004, godz. 15:57, peter lin pisze: 
> unfortunately, the only reliable way to make it appear one JMeter is 10 different IP addresses is to modify the TCP header.
> 
> Even if you change the HTTPHeader, if the webserver uses reverse lookup, it will figure out it is the same machine. Your best option is to use 10 machines to hit the same server. Is there a particular reason the single signon uses the IP address? I ask because users behind a NAT will appear to the be the same user, unless you use something more reliable to determine it is an unique visitor. For example, some use MAC address.
> 
> That's probably not the answer you're looking for, but testing single sign-on application can be tricky, since security is inherently an issue. For a single sign-on to be good, it has to make it hard or impractical to spoof. Otherwise the single sign-on wouldn't be worth anything.
> 
> peter lin
> 
> 
> Eda Srinivasareddy wrote:
> Hi All
> 
> My web application reads the IP of the client machine from which a particular request came to it using httpServletRequest.getRemoteAddr(). Lets think that there are 10 users accessing this application from 10 different machines. Thereby the application reads 10 different IP addresses corresponding to these 10 different users.
> 
> My actual problem is simulating these 10 users from the JMeter. When I am using 10 users from the JMeter, all the 10 users are sending the same IP, there by only the last user is accessing the application and the remaining are not accessing the application i.e. they are logged out as the Single Sign On is enabled.
> 
> So is there any way I can assign 10 different IPs for 10 Users by changing some classes of JMeter? 
> 
> Please give me suggestions in achieving this functionality.
> 
> Thanks & Regards
> Eda
> 
> 
> ---------------------------------
> Do you Yahoo!?
> Yahoo! Small Business $15K Web Design Giveaway - Enter today
> 
> ---------------------------------
> Do you Yahoo!?
> Yahoo! Small Business $15K Web Design Giveaway - Enter today


---------------------------------------------------------------------
To unsubscribe, e-mail: jmeter-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: jmeter-user-help@jakarta.apache.org


---------------------------------
Do you Yahoo!?
Yahoo! Small Business $15K Web Design Giveaway - Enter today