Hiroshi Ota, profile picture
Uploaded byHiroshi Ota
PDF, PPTX1,744 views

Run Run Trema Test

The document discusses the use of Trema, an OpenFlow controller programming framework in Ruby, for creating and testing networks. It provides detailed instructions for building a test environment using Vagrant and Open vSwitch, as well as guidelines for running tests including packet transmission and server reachability. The document emphasizes the effectiveness of using test frameworks for both testing environments and real networks.

Embed presentation

Download as PDF, PPTX
1 Trema Test @otahi 2015-12-12 Tremaday #8 Run Run る ん る ん る ん る ん
2 Self Introduction ● @otahi – A network engineer? ● Trying to be an SDN engineer ● Charged in (mainly) DC internal network – Programmer? ● Almost Weekends and early mornings only – Favorite language ● Ruby
3 Trema and Test “Trema is an OpenFlow controller programming framework that provides everything needed to create OpenFlow controllers in Ruby. It provides a high-level OpenFlow library and also a network emulator that can create OpenFlow-based networks for testing on your PC. This self- contained environment helps streamlines the entire process of development and testing.” https://github.com/trema/trema
4 Problems? ● How can I test my OFC? – You can test your OFC with Trema and test frameworks like Serverspec and Infrataster. ● Do I need to create test cases for each environment of a testing network and a real network? – No. You can use common test cases for both.
5 Environment ● You can build a test environment with Trema and a few commands VM vhost1 192.168.8.4 vhost2 192.168.8.5 nshost1 192.168.8.6 nshost2 192.168.8.7 OFC Trema OFS Open vSwitch eth0 DHCP/NAT Simple Hub brsimple_hub 192.168.8.2 sshd sshd
6 Build Environment 1/2 ● You can build a test environemnt as follows ● Required – Vagrant, Virtual Box, Rsync $ git clone https://github.com/otahi/trema-netns-test.git $ cd trema-netns-test $ vagrant up $ vagrant ssh $ cd trema $ ./bin/trema run simple_hub.rb -c simple_hub.conf -d $ sudo ip addr replace 192.168.8.2/24 dev brsimple_hub $ ./bin/trema netns nshost1 /usr/sbin/sshd $ ./bin/trema netns nshost2 /usr/sbin/sshd
7 Build Environment 2/2 vswitch('simple_hub') { dpid 0x1 } vhost('vhost1') { ip '192.168.8.4' } vhost('vhost2') { ip '192.168.8.5' } netns('nshost1') { ip '192.168.8.6' netmask '255.255.255.0' route net: '0.0.0.0', gateway: '192.168.8.1' } netns('nshost2') { ip '192.168.8.7' netmask '255.255.255.0' route net: '0.0.0.0', gateway: '192.168.8.1' } link 'simple_hub', 'vhost1' link 'simple_hub', 'vhost2' link 'simple_hub', 'nshost1' link 'simple_hub', 'nshost2' ● You can build a test environment with this conf.
8 Built Environment 1/2 $ ifconfig | grep -e 'Link encap' -e 'inet addr' brsimple_hub Link encap:Ethernet HWaddr 0a:63:71:69:eb:49 inet addr:192.168.8.2 Bcast:0.0.0.0 Mask:255.255.255.0 eth0 Link encap:Ethernet HWaddr 08:00:27:40:7d:2a inet addr:10.0.2.15 Bcast:10.0.2.255 Mask:255.255.255.0 lo Link encap:Local Loopback inet addr:127.0.0.1 Mask:255.0.0.0 simple_hub_1 Link encap:Ethernet HWaddr ea:dc:33:ae:50:7a simple_hub_2 Link encap:Ethernet HWaddr 42:a3:f2:5c:2f:24 simple_hub_3 Link encap:Ethernet HWaddr 22:1a:4f:18:74:d4 simple_hub_4 Link encap:Ethernet HWaddr 92:e8:04:ae:55:2b vhost1 Link encap:Ethernet HWaddr f2:96:47:32:e8:b6 vhost2 Link encap:Ethernet HWaddr 9a:32:02:e3:e9:b9 $
9 Built Environment 2/2 $ sudo ovs-vsctl show ac87c935-cd2f-4e74-80f2-4a6954d059e4 Bridge brsimple_hub Controller "tcp:127.0.0.1:6653" is_connected: true fail_mode: secure Port brsimple_hub Interface brsimple_hub type: internal Port "simple_hub_3" Interface "simple_hub_3" Port "simple_hub_2" Interface "simple_hub_2" Port "simple_hub_1" Interface "simple_hub_1" Port "simple_hub_4" Interface "simple_hub_4" ovs_version: "2.0.2" $
10 Test target ● The test target is very simple hub. class SimpleHub < Trema::Controller def switch_ready(dpid) send_flow_mod_add( dpid, match: Match.new, actions: SendOutPort.new(:flood) ) end end
11 Run Tests 1. Tests with vhosts 1.Tests with packet counter 2. Tests with netns hosts 1.Tests with ping command 2. Tests with test frameworks 3. Tests your real network
12 Run Test with vhost ● Send packet ● Check packet counter $ ./bin/trema send_packets --source vhost1 --dest vhost2 --npackets 10 $ ./bin/trema show_stats vhost2 Packets received: 192.168.8.2 -> 192.168.8.3 = 10 packets $
13 Run Test with netns 1/2 ● Ping!! $./bin/trema netns nshost1 -- ping -c1 192.168.8.7 PING 192.168.8.7 (192.168.8.7) 56(84) bytes of data. 64 bytes from 192.168.8.7: icmp_seq=1 ttl=64 time=0.989 ms --- 192.168.8.7 ping statistics --- 1 packets transmitted, 1 received, 0% packet loss, time 0ms rtt min/avg/max/mdev = 0.989/0.989/0.989/0.000 ms $ – `trema netns nshost1` runs a shell ● available – `trema netns nshost1 command` runs a command ● available from version 0.9.0
14 Run Test with netns 2/2 ● Send packet ● Check captured packet $ ssh 192.168.8.6 nc -zv 192.168.8.7 80 nc: connect to 192.168.8.7 port 80 (tcp) failed: Connection refused $ $ ssh -t 192.168.8.7 sudo tcpdump -n port 80 tcpdump: verbose output suppressed, use -v or -vv for full protocol decode listening on nshost2, link-type EN10MB (Ethernet), capture size 65535 bytes 23:49:53.373696 IP 192.168.8.6.56359 > 192.168.8.7.80: Flags [S], seq 2713544332, win 29200, options [mss 1460,sackOK,TS val 1613252 ecr 0,nop,wscale 6], length 0 23:49:53.373753 IP 192.168.8.7.80 > 192.168.8.6.56359: Flags [R.], seq 0, ack 2713544333, win 0, length 0 ^C 2 packets captured 2 packets received by filter 0 packets dropped by kernel Connection to 192.168.8.7 closed. $
15 Use Test Framework 1/4 ● Serverspec describe interface('nshost1') do it { should exist } end describe host('192.168.8.7') do it { should be_reachable } end
16 Use Test Framework 2/4 ● Serverspec $ bundle exec rake spec:192.168.8.6 Interface "nshost1" should exist Host "192.168.8.7" should be reachable Finished in 1.5 seconds (files took 0.28661 seconds to load) 2 examples, 0 failures $
17 Use Test Framework 3/4 ● Infrataster describe server(:'192.168.8.6') do describe firewall(server(:'192.168.8.7')) do it { is_expected.to be_reachable } it { is_expected.to be_reachable.dest_port(80) } it { is_expected.to be_reachable.tcp.dest_port(80) } end end
18 Use Test Framework 4/4 ● Infrataster $ bundle exec rake spec:simple_hub server '192.168.8.6' via firewall should reach to server '192.168.8.7' should reach to server '192.168.8.7' dest_port: 80 should reach to server '192.168.8.7' tcp dest_port: 80 Finished in 5.47 seconds (files took 0.53734 seconds to load) 3 examples, 0 failures $
19 Real Network Test ● You can apply your netns test cases to real network tests. $ bundle exec rake spec:192.168.8.6 Interface "nshost1" should exist Host "192.168.8.7" should be reachable Finished in 1.5 seconds (files took 0.28661 seconds to load) 2 examples, 0 failures $ $ bundle exec rake spec:simple_hub server '192.168.8.6' via firewall should reach to server '192.168.8.7' should reach to server '192.168.8.7' dest_port: 80 should reach to server '192.168.8.7' tcp dest_port: 80 Finished in 5.47 seconds (files took 0.53734 seconds to load) 3 examples, 0 failures $
20 Conclusion ● You can create and test your OFC with Trema. ● You can create tests effectively with test frameworks. ● You can run common tests for both environment of a testing network and a real network. See also: https://github.com/otahi/trema-netns-test/
21 Thank you!

More Related Content

PDF
Hands-on ethernet driver
bySUSE Labs Taipei
 
PDF
debugging openstack neutron /w openvswitch
by어형 이
 
PDF
Staging driver sins
byStephen Hemminger
 
PDF
Beginner's Guide to the nmap Scripting Engine - Redspin Engineer, David Shaw
byRedspin, Inc.
 
PDF
netfilter and iptables
byKernel TLV
 
PDF
Performance Analysis Tools for Linux Kernel
bylcplcp1
 
PPTX
Troubleshooting containerized triple o deployment
bySadique Puthen
 
PDF
Node.js Event Loop & EventEmitter
bySimen Li
 
Hands-on ethernet driver
bySUSE Labs Taipei
 
debugging openstack neutron /w openvswitch
by어형 이
 
Staging driver sins
byStephen Hemminger
 
Beginner's Guide to the nmap Scripting Engine - Redspin Engineer, David Shaw
byRedspin, Inc.
 
netfilter and iptables
byKernel TLV
 
Performance Analysis Tools for Linux Kernel
bylcplcp1
 
Troubleshooting containerized triple o deployment
bySadique Puthen
 
Node.js Event Loop & EventEmitter
bySimen Li
 

What's hot

PDF
David container security-with_falco
byLorenzo David
 
PDF
Monitoring with Syslog and EventMachine
byWooga
 
ODP
Linux kernel tracing superpowers in the cloud
byAndrea Righi
 
PDF
Possibility of arbitrary code execution by Step-Oriented Programming
bykozossakai
 
PDF
Tracing MariaDB server with bpftrace - MariaDB Server Fest 2021
byValeriy Kravchuk
 
PDF
How to Root 10 Million Phones with One Exploit
byJiahong Fang
 
PDF
Centralized Logging with syslog
byamiable_indian
 
PDF
Kernel Recipes 2019 - Formal modeling made easy
byAnne Nicolas
 
PDF
BPF Internals (eBPF)
byBrendan Gregg
 
PDF
Reverse engineering Swisscom's Centro Grande Modem
byCyber Security Alliance
 
PDF
Systems@Scale 2021 BPF Performance Getting Started
byBrendan Gregg
 
PDF
Asynchronous Io Programming
byl xf
 
KEY
Distributed app development with nodejs and zeromq
byRuben Tan
 
PPTX
Linux kernel debugging
byHao-Ran Liu
 
PPTX
Bypassing ASLR Exploiting CVE 2015-7545
byKernel TLV
 
PDF
Configuring Syslog by Octavio
byRowell Dionicio
 
PDF
Network Penetration Testing Toolkit - Nmap, Netcat, and Metasploit Basics
byBishop Fox
 
PDF
Linux network stack
byTakuya ASADA
 
PPTX
Troubleshooting common oslo.messaging and RabbitMQ issues
byMichael Klishin
 
PDF
Kernel Recipes 2017: Performance Analysis with BPF
byBrendan Gregg
 
David container security-with_falco
byLorenzo David
 
Monitoring with Syslog and EventMachine
byWooga
 
Linux kernel tracing superpowers in the cloud
byAndrea Righi
 
Possibility of arbitrary code execution by Step-Oriented Programming
bykozossakai
 
Tracing MariaDB server with bpftrace - MariaDB Server Fest 2021
byValeriy Kravchuk
 
How to Root 10 Million Phones with One Exploit
byJiahong Fang
 
Centralized Logging with syslog
byamiable_indian
 
Kernel Recipes 2019 - Formal modeling made easy
byAnne Nicolas
 
BPF Internals (eBPF)
byBrendan Gregg
 
Reverse engineering Swisscom's Centro Grande Modem
byCyber Security Alliance
 
Systems@Scale 2021 BPF Performance Getting Started
byBrendan Gregg
 
Asynchronous Io Programming
byl xf
 
Distributed app development with nodejs and zeromq
byRuben Tan
 
Linux kernel debugging
byHao-Ran Liu
 
Bypassing ASLR Exploiting CVE 2015-7545
byKernel TLV
 
Configuring Syslog by Octavio
byRowell Dionicio
 
Network Penetration Testing Toolkit - Nmap, Netcat, and Metasploit Basics
byBishop Fox
 
Linux network stack
byTakuya ASADA
 
Troubleshooting common oslo.messaging and RabbitMQ issues
byMichael Klishin
 
Kernel Recipes 2017: Performance Analysis with BPF
byBrendan Gregg
 

Viewers also liked

PDF
ΑΣΚΗΣΗ ΣΤΗΝ ΦΥΣΗ
bygymnasiovelou
 
PDF
Td Wealth Monthly Perspectives - 2016-08 - The Politics of it All
byNader Nasr, CFP®, CIM®
 
DOCX
Correo electronico
byKarianamawcinitt
 
PDF
ΖΥΓΙΕΣ ΚΑΙ ΚΟΜΠΑΝΙΕΣ
bygymnasiovelou
 
PDF
Φύση και άσκηση - Αλιεία
bygymnasiovelou
 
PDF
Nomina 2
byKarianamawcinitt
 
PDF
Autismo-programa-de-educacao-individualizada-PEI
byRosane Domingues
 
DOCX
Shot list and call sheet being done over holidays
byBlast127
 
PDF
Η ΛΙΜΝΗ ΣΤΥΜΦΑΛΙΑ
bygymnasiovelou
 
DOCX
Indi now flat plans front page
byBlast127
 
PDF
Η ψυχαγωγία στη λίμνη της Στυμφαλίας σήμερα
bygymnasiovelou
 
DOCX
Contents page
byBlast127
 
PDF
Prueba de relación de hojas nombres
byKarianamawcinitt
 
PDF
Prueba de relación de hojas nombres
byKarianamawcinitt
 
PDF
Libro15 19 kjmv grafica
byKarianamawcinitt
 
DOCX
Contents page
byBlast127
 
PDF
Peso y estatura
byKarianamawcinitt
 
DOCX
Certificate for iv
bypriyanaka19
 
PDF
Έκθεση δράσεων (τέχνη και γεωμετρία)
bygymnasiovelou
 
PDF
Kariana m.
byKarianamawcinitt
 
ΑΣΚΗΣΗ ΣΤΗΝ ΦΥΣΗ
bygymnasiovelou
 
Td Wealth Monthly Perspectives - 2016-08 - The Politics of it All
byNader Nasr, CFP®, CIM®
 
Correo electronico
byKarianamawcinitt
 
ΖΥΓΙΕΣ ΚΑΙ ΚΟΜΠΑΝΙΕΣ
bygymnasiovelou
 
Φύση και άσκηση - Αλιεία
bygymnasiovelou
 
Nomina 2
byKarianamawcinitt
 
Autismo-programa-de-educacao-individualizada-PEI
byRosane Domingues
 
Shot list and call sheet being done over holidays
byBlast127
 
Η ΛΙΜΝΗ ΣΤΥΜΦΑΛΙΑ
bygymnasiovelou
 
Indi now flat plans front page
byBlast127
 
Η ψυχαγωγία στη λίμνη της Στυμφαλίας σήμερα
bygymnasiovelou
 
Contents page
byBlast127
 
Prueba de relación de hojas nombres
byKarianamawcinitt
 
Prueba de relación de hojas nombres
byKarianamawcinitt
 
Libro15 19 kjmv grafica
byKarianamawcinitt
 
Contents page
byBlast127
 
Peso y estatura
byKarianamawcinitt
 
Certificate for iv
bypriyanaka19
 
Έκθεση δράσεων (τέχνη και γεωμετρία)
bygymnasiovelou
 
Kariana m.
byKarianamawcinitt
 

Similar to Run Run Trema Test

PDF
Network Test Automation - Net Ops Coding 2015
byHiroshi Ota
 
PDF
Network Test Automation 2015-04-23 #npstudy
byHiroshi Ota
 
ODP
Integrating Linux routing with FusionCLI™
byStephen Hemminger
 
PDF
CCNA Syllabus pdf
byHub4Tech.com
 
PDF
LibOS as a regression test framework for Linux networking #netdev1.1
byHajime Tazaki
 
ODP
Testing Wi-Fi with OSS Tools
byAll Things Open
 
PDF
Ibm flex system and pure flex system network implementation with cisco systems
byEdgar Jara
 
PDF
Direct Code Execution - LinuxCon Japan 2014
byHajime Tazaki
 
PPTX
BEST REST in OpenStack
byVikram G Hosakote
 
PDF
PLNOG 13: Piotr Głaska: Quality of service monitoring in IP networks
byPROIDEA
 
PDF
Network Automation (Bay Area Juniper Networks Meetup)
byAlejandro Salinas
 
PDF
Reproducible Network Research With High-­Fidelity Emulation
byamranharoon2
 
PPTX
Networking Project(FINAL)
byPriyojit Das
 
PDF
Cisco Certified Network Associate (200-125)
bypoojatrivedi39
 
PDF
Open stack pike-devstack-tutorial
byEueung Mulyana
 
PDF
Deploying IBM Flex System into a Cisco Network
byIBM India Smarter Computing
 
PDF
CCNA Syllabus
byKavitha Reddy
 
PDF
Junos Intermediate Routing Detailed Lab Guide 12th Juniper Networks
bydecqogw888
 
PDF
Openstack InstallGuide.pdf
byRahulSharma985175
 
PPTX
Developing production OpenFlow controller with Trema
byYasunobu Chiba
 
Network Test Automation - Net Ops Coding 2015
byHiroshi Ota
 
Network Test Automation 2015-04-23 #npstudy
byHiroshi Ota
 
Integrating Linux routing with FusionCLI™
byStephen Hemminger
 
CCNA Syllabus pdf
byHub4Tech.com
 
LibOS as a regression test framework for Linux networking #netdev1.1
byHajime Tazaki
 
Testing Wi-Fi with OSS Tools
byAll Things Open
 
Ibm flex system and pure flex system network implementation with cisco systems
byEdgar Jara
 
Direct Code Execution - LinuxCon Japan 2014
byHajime Tazaki
 
BEST REST in OpenStack
byVikram G Hosakote
 
PLNOG 13: Piotr Głaska: Quality of service monitoring in IP networks
byPROIDEA
 
Network Automation (Bay Area Juniper Networks Meetup)
byAlejandro Salinas
 
Reproducible Network Research With High-­Fidelity Emulation
byamranharoon2
 
Networking Project(FINAL)
byPriyojit Das
 
Cisco Certified Network Associate (200-125)
bypoojatrivedi39
 
Open stack pike-devstack-tutorial
byEueung Mulyana
 
Deploying IBM Flex System into a Cisco Network
byIBM India Smarter Computing
 
CCNA Syllabus
byKavitha Reddy
 
Junos Intermediate Routing Detailed Lab Guide 12th Juniper Networks
bydecqogw888
 
Openstack InstallGuide.pdf
byRahulSharma985175
 
Developing production OpenFlow controller with Trema
byYasunobu Chiba
 

Recently uploaded

PDF
Supercharge Your Copilot-Driven Collaboration with Microsoft 365 Agents SDK
byAntti Koskela
 
PDF
AI and Zero Trust: What it takes to do it right
byMark Simos
 
PDF
Rustici Software: eLearning standards in the age of AI
byRustici Software
 
PDF
UiPath Automation Developer Associate Training Series 2026 - Session 2
byDianaGray10
 
PDF
Safer’s Picks: The 5 FME Transformers You Didn’t Know You Needed
bySafe Software
 
PDF
Analyze and Preserve Logs - RHCSA (RH134).pdf
byLinuxCert Guru
 
PPTX
NTG - Data Center Management System Software
byMustafa Kuğu
 
PDF
CI CD Observability, Metrics and DORA - Shifting Left and Cleaning Up! - Febr...
byPeter Souter
 
PDF
Configure and Manage Systemd Timers- RHCSA (RH134).pdf
byLinuxCert Guru
 
PPTX
Working Session — Build a Document Understanding Automation Using an OOTB ML ...
byDianaGray10
 
PDF
Mount File Systems using UUID and Label - RHCSA (RH134).pdf
byLinuxCert Guru
 
PDF
Traditional-Security-Models-No-Longer-Work.pptx (1).pdf
byOhhproJunction
 
PDF
The Manifesto for AI-enabled Governance !
byYannis Charalabidis
 
PDF
Title Installing Windows, Linux, MacOS.pdf
byGeraldAbadajos
 
PPTX
apidays Paris 2025 | Integration is Feminist: Building Peace in Distributed S...
byapidays
 
PPTX
Retrieval Augmented Generation- The Synergistic Power of Prompt Engineering
bySemantic SEO BD
 
PPTX
Beyond the Algorithm: Designing Human-Centric Public Service with AI
byAlan Dix
 
PDF
UiPath Automation Developer Associate Training Series 2026 - Session 1
byDianaGray10
 
PDF
Advanced SELinux Management - RHCSA (RH134).pdf
byLinuxCert Guru
 
PDF
GenerationAI Paris 2025 | City of Light (COL)
byapidays
 
Supercharge Your Copilot-Driven Collaboration with Microsoft 365 Agents SDK
byAntti Koskela
 
AI and Zero Trust: What it takes to do it right
byMark Simos
 
Rustici Software: eLearning standards in the age of AI
byRustici Software
 
UiPath Automation Developer Associate Training Series 2026 - Session 2
byDianaGray10
 
Safer’s Picks: The 5 FME Transformers You Didn’t Know You Needed
bySafe Software
 
Analyze and Preserve Logs - RHCSA (RH134).pdf
byLinuxCert Guru
 
NTG - Data Center Management System Software
byMustafa Kuğu
 
CI CD Observability, Metrics and DORA - Shifting Left and Cleaning Up! - Febr...
byPeter Souter
 
Configure and Manage Systemd Timers- RHCSA (RH134).pdf
byLinuxCert Guru
 
Working Session — Build a Document Understanding Automation Using an OOTB ML ...
byDianaGray10
 
Mount File Systems using UUID and Label - RHCSA (RH134).pdf
byLinuxCert Guru
 
Traditional-Security-Models-No-Longer-Work.pptx (1).pdf
byOhhproJunction
 
The Manifesto for AI-enabled Governance !
byYannis Charalabidis
 
Title Installing Windows, Linux, MacOS.pdf
byGeraldAbadajos
 
apidays Paris 2025 | Integration is Feminist: Building Peace in Distributed S...
byapidays
 
Retrieval Augmented Generation- The Synergistic Power of Prompt Engineering
bySemantic SEO BD
 
Beyond the Algorithm: Designing Human-Centric Public Service with AI
byAlan Dix
 
UiPath Automation Developer Associate Training Series 2026 - Session 1
byDianaGray10
 
Advanced SELinux Management - RHCSA (RH134).pdf
byLinuxCert Guru
 
GenerationAI Paris 2025 | City of Light (COL)
byapidays
 

Run Run Trema Test

  • 1.
    1 Trema Test @otahi 2015-12-12 Tremaday #8 RunRun る ん る ん る ん る ん
  • 2.
    2 Self Introduction ● @otahi –A network engineer? ● Trying to be an SDN engineer ● Charged in (mainly) DC internal network – Programmer? ● Almost Weekends and early mornings only – Favorite language ● Ruby
  • 3.
    3 Trema and Test “Tremais an OpenFlow controller programming framework that provides everything needed to create OpenFlow controllers in Ruby. It provides a high-level OpenFlow library and also a network emulator that can create OpenFlow-based networks for testing on your PC. This self- contained environment helps streamlines the entire process of development and testing.” https://github.com/trema/trema
  • 4.
    4 Problems? ● How canI test my OFC? – You can test your OFC with Trema and test frameworks like Serverspec and Infrataster. ● Do I need to create test cases for each environment of a testing network and a real network? – No. You can use common test cases for both.
  • 5.
    5 Environment ● You canbuild a test environment with Trema and a few commands VM vhost1 192.168.8.4 vhost2 192.168.8.5 nshost1 192.168.8.6 nshost2 192.168.8.7 OFC Trema OFS Open vSwitch eth0 DHCP/NAT Simple Hub brsimple_hub 192.168.8.2 sshd sshd
  • 6.
    6 Build Environment 1/2 ●You can build a test environemnt as follows ● Required – Vagrant, Virtual Box, Rsync $ git clone https://github.com/otahi/trema-netns-test.git $ cd trema-netns-test $ vagrant up $ vagrant ssh $ cd trema $ ./bin/trema run simple_hub.rb -c simple_hub.conf -d $ sudo ip addr replace 192.168.8.2/24 dev brsimple_hub $ ./bin/trema netns nshost1 /usr/sbin/sshd $ ./bin/trema netns nshost2 /usr/sbin/sshd
  • 7.
    7 Build Environment 2/2 vswitch('simple_hub'){ dpid 0x1 } vhost('vhost1') { ip '192.168.8.4' } vhost('vhost2') { ip '192.168.8.5' } netns('nshost1') { ip '192.168.8.6' netmask '255.255.255.0' route net: '0.0.0.0', gateway: '192.168.8.1' } netns('nshost2') { ip '192.168.8.7' netmask '255.255.255.0' route net: '0.0.0.0', gateway: '192.168.8.1' } link 'simple_hub', 'vhost1' link 'simple_hub', 'vhost2' link 'simple_hub', 'nshost1' link 'simple_hub', 'nshost2' ● You can build a test environment with this conf.
  • 8.
    8 Built Environment 1/2 $ifconfig | grep -e 'Link encap' -e 'inet addr' brsimple_hub Link encap:Ethernet HWaddr 0a:63:71:69:eb:49 inet addr:192.168.8.2 Bcast:0.0.0.0 Mask:255.255.255.0 eth0 Link encap:Ethernet HWaddr 08:00:27:40:7d:2a inet addr:10.0.2.15 Bcast:10.0.2.255 Mask:255.255.255.0 lo Link encap:Local Loopback inet addr:127.0.0.1 Mask:255.0.0.0 simple_hub_1 Link encap:Ethernet HWaddr ea:dc:33:ae:50:7a simple_hub_2 Link encap:Ethernet HWaddr 42:a3:f2:5c:2f:24 simple_hub_3 Link encap:Ethernet HWaddr 22:1a:4f:18:74:d4 simple_hub_4 Link encap:Ethernet HWaddr 92:e8:04:ae:55:2b vhost1 Link encap:Ethernet HWaddr f2:96:47:32:e8:b6 vhost2 Link encap:Ethernet HWaddr 9a:32:02:e3:e9:b9 $
  • 9.
    9 Built Environment 2/2 $sudo ovs-vsctl show ac87c935-cd2f-4e74-80f2-4a6954d059e4 Bridge brsimple_hub Controller "tcp:127.0.0.1:6653" is_connected: true fail_mode: secure Port brsimple_hub Interface brsimple_hub type: internal Port "simple_hub_3" Interface "simple_hub_3" Port "simple_hub_2" Interface "simple_hub_2" Port "simple_hub_1" Interface "simple_hub_1" Port "simple_hub_4" Interface "simple_hub_4" ovs_version: "2.0.2" $
  • 10.
    10 Test target ● Thetest target is very simple hub. class SimpleHub < Trema::Controller def switch_ready(dpid) send_flow_mod_add( dpid, match: Match.new, actions: SendOutPort.new(:flood) ) end end
  • 11.
    11 Run Tests 1. Testswith vhosts 1.Tests with packet counter 2. Tests with netns hosts 1.Tests with ping command 2. Tests with test frameworks 3. Tests your real network
  • 12.
    12 Run Test withvhost ● Send packet ● Check packet counter $ ./bin/trema send_packets --source vhost1 --dest vhost2 --npackets 10 $ ./bin/trema show_stats vhost2 Packets received: 192.168.8.2 -> 192.168.8.3 = 10 packets $
  • 13.
    13 Run Test withnetns 1/2 ● Ping!! $./bin/trema netns nshost1 -- ping -c1 192.168.8.7 PING 192.168.8.7 (192.168.8.7) 56(84) bytes of data. 64 bytes from 192.168.8.7: icmp_seq=1 ttl=64 time=0.989 ms --- 192.168.8.7 ping statistics --- 1 packets transmitted, 1 received, 0% packet loss, time 0ms rtt min/avg/max/mdev = 0.989/0.989/0.989/0.000 ms $ – `trema netns nshost1` runs a shell ● available – `trema netns nshost1 command` runs a command ● available from version 0.9.0
  • 14.
    14 Run Test withnetns 2/2 ● Send packet ● Check captured packet $ ssh 192.168.8.6 nc -zv 192.168.8.7 80 nc: connect to 192.168.8.7 port 80 (tcp) failed: Connection refused $ $ ssh -t 192.168.8.7 sudo tcpdump -n port 80 tcpdump: verbose output suppressed, use -v or -vv for full protocol decode listening on nshost2, link-type EN10MB (Ethernet), capture size 65535 bytes 23:49:53.373696 IP 192.168.8.6.56359 > 192.168.8.7.80: Flags [S], seq 2713544332, win 29200, options [mss 1460,sackOK,TS val 1613252 ecr 0,nop,wscale 6], length 0 23:49:53.373753 IP 192.168.8.7.80 > 192.168.8.6.56359: Flags [R.], seq 0, ack 2713544333, win 0, length 0 ^C 2 packets captured 2 packets received by filter 0 packets dropped by kernel Connection to 192.168.8.7 closed. $
  • 15.
    15 Use Test Framework1/4 ● Serverspec describe interface('nshost1') do it { should exist } end describe host('192.168.8.7') do it { should be_reachable } end
  • 16.
    16 Use Test Framework2/4 ● Serverspec $ bundle exec rake spec:192.168.8.6 Interface "nshost1" should exist Host "192.168.8.7" should be reachable Finished in 1.5 seconds (files took 0.28661 seconds to load) 2 examples, 0 failures $
  • 17.
    17 Use Test Framework3/4 ● Infrataster describe server(:'192.168.8.6') do describe firewall(server(:'192.168.8.7')) do it { is_expected.to be_reachable } it { is_expected.to be_reachable.dest_port(80) } it { is_expected.to be_reachable.tcp.dest_port(80) } end end
  • 18.
    18 Use Test Framework4/4 ● Infrataster $ bundle exec rake spec:simple_hub server '192.168.8.6' via firewall should reach to server '192.168.8.7' should reach to server '192.168.8.7' dest_port: 80 should reach to server '192.168.8.7' tcp dest_port: 80 Finished in 5.47 seconds (files took 0.53734 seconds to load) 3 examples, 0 failures $
  • 19.
    19 Real Network Test ●You can apply your netns test cases to real network tests. $ bundle exec rake spec:192.168.8.6 Interface "nshost1" should exist Host "192.168.8.7" should be reachable Finished in 1.5 seconds (files took 0.28661 seconds to load) 2 examples, 0 failures $ $ bundle exec rake spec:simple_hub server '192.168.8.6' via firewall should reach to server '192.168.8.7' should reach to server '192.168.8.7' dest_port: 80 should reach to server '192.168.8.7' tcp dest_port: 80 Finished in 5.47 seconds (files took 0.53734 seconds to load) 3 examples, 0 failures $
  • 20.
    20 Conclusion ● You cancreate and test your OFC with Trema. ● You can create tests effectively with test frameworks. ● You can run common tests for both environment of a testing network and a real network. See also: https://github.com/otahi/trema-netns-test/
  • 21.