e-mail address: omnetmanual@gmail.com

Phone number: +91 9444856435
DEFENDER

How to implement icmp attack in OMNeT++

To implement an ICMP attack in OMNeT++ has requires to includes mimicking a situation where one or more attacker nodes send a flood of ICMP packets like ICMP Echo Requests, commonly known as ping requests to overwhelm a target system, distracting its normal operation. The given below is a step-by-step procedure to implement an ICMP flood attack in OMNeT++:

Step-by-Step Implementations:

  1. Set up OMNeT++ and INET Framework
  • Make surethat OMNeT++ and the INET framework are installed and configured on the system. The INET framework offers required modules for mimicking numerous network protocols, with ICMP.
  1. Define the Network Topology
  • In a .ned file to define the network. This topology will contain the attacker node(s), the target node or server, and any middle network devices like routers.

Example:

network IcmpAttackNetwork

{

submodules:

attacker: StandardHost;

target: StandardHost;

router: Router;

connections:

attacker.ethg++ <–> Eth10G <–> router.ethg++;

router.ethg++ <–> Eth10G <–> target.ethg++;

}

  1. Configure the Attacker Node to Perform the ICMP Attack
  • The attacker node should be configured to send a large volume of ICMP Echo Requests to the target node. We can use the PingApp module offered by the INET framework, or make a custom module for more developed behaviour.

Option A: Using PingApp for ICMP Flood

  • Configure PingApp to send ICMP Echo Requests (ping) continuously at a high rate.

Example configuration in omnetpp.ini:

*.attacker.numApps = 1

*.attacker.app[0].typename = “PingApp”

*.attacker.app[0].destAddr = “target”

*.attacker.app[0].startTime = 1s

*.attacker.app[0].sendInterval = 0.01s  # Very high frequency

*.attacker.app[0].count = -1  # Unlimited pings

*.attacker.app[0].packetLength = 64B  # ICMP packet size

  • destAddr identifies the IP address or host name of the target.
  • sendInterval defines how often pings are sent. A short interval mimics a flood.
  • count = -1 make sure continuous pinging without stopping.
  • packetLength sets the size of each ICMP packet.

Option B: Creating a Custom ICMP Flood Module

  • For more control over the attack, we can make a custom C++ module to generate ICMP packets directly.

Example C++ code for a custom ICMP flood module:

class IcmpFlood : public cSimpleModule

{

protected:

virtual void initialize() override;

virtual void handleMessage(cMessage *msg) override;

void sendIcmpFlood();

};

void IcmpFlood::initialize()

{

// Schedule the first ICMP packet send event

scheduleAt(simTime() + par(“startTime”), new cMessage(“icmpFlood”));

}

void IcmpFlood::handleMessage(cMessage *msg)

{

if (msg->isSelfMessage()) {

sendIcmpFlood();

scheduleAt(simTime() + par(“interval”), msg); // Schedule next packet

} else {

delete msg;

}

}

void IcmpFlood::sendIcmpFlood()

{

// Create and send an ICMP packet

auto packet = new cPacket(“ICMPFloodPacket”);

packet->setByteLength(par(“packetSize”));

// Set destination, protocol, etc.

send(packet, “out”);

}

Define_Module(IcmpFlood);

  • This module sends ICMP packets at a defined interval, frequently flooding the target.
  1. Configure the Target Node
  • The target node like a server should be configured to respond to ICMP Echo Requests like ping. Normally, no special configuration is required, as the default behaviour of a node is to reply to ICMP requests.

Example:

*.target.numApps = 1

*.target.app[0].typename = “UdpSink”

*.target.app[0].localPort = -1  # Respond to all incoming ICMP traffic

  1. Run the Simulation
  • Compile and run the OMNeT++ simulation. The attacker node will start flooding the target including ICMP Echo Requests.
  1. Analyse the Results
  • To monitor the network traffic by using OMNeT++’s tools. Focus on the following:
    • Network Load: Check how much traffic is created by the attacker and its impact on the network.
    • Target Behaviour: Monitor how the target node handles the flood—does it become unresponsive or slow down?
    • Packet Loss: Analyse whether any packets are being dropped due to the flood.
  1. Enhancements and Variations
  • Multiple Attackers: Simulate a distributed ICMP flood attack like DDoS by adding more attacker nodes.
  • Defence Mechanisms: Execute and simulate defence mechanisms, like rate limiting or firewalls, to mitigate the ICMP attack.
  • Advanced ICMP Attacks: Improve the simulation to include other kinds of ICMP-based attacks, like Smurf attacks or ICMP redirection.

Example Files

We may create the following files as part of the simulation:

  • IcmpAttackNetwork.ned: Contains the network topology.
  • omnetpp.ini: Encompasses configuration settings for the ICMP flood attack.
  • IcmpFlood.cc: If we create one to custom C++ code for the ICMP flood module.

We are provided details about execution process to ICMP Attack in OMNeT++. We will give further informations for your requirements. Our developers successfully execute the implementation of ICMP attacks within the OMNeT++ tool for your projects. Please contact us to achieve optimal simulation results.

Related Topics