Content-type: text/html
Manpage of LTCC
LTCC
Section: Maintenance Commands (8)
Updated: 2003-01-10
Index
Return to Main Contents
NAME
ltcc - Local Tcp Control Center
SYNOPSIS
ltcc
[-Ihwv] [-i interface] [-b broadcast] [-m netmask] [-l level]
[-k kill timeout] [-s scan timeout] [-S address] [-p port]
[-D address] [-P port]
DESCRIPTION
ltcc
is a simple unix utility to limit tcp traffic in local area
network. It is useful when we cannot set QoS or firewall
on router to limit packet transfer from/to outside our network
segment, and some users take all the transfer by downloading
heavy files.
The sollution is to kill such tcp connection by sending spooffed
packed with
RST
flag set. Firstable
ltcc
sniffes local network for described by options packets. Then prepares
a fake packet with RST flag set and sent it to source host. Source
host, after receiving RST flag set closes connection. This utility is
simple DoS.
OPTIONS
- -I
-
interactive mode
- -h
-
help screen
- -w
-
wait for end of killing (do not fork)
- -v
-
verbose mode (disabled in interactive mode)
- -i interface
-
ethernet interface such as eth0, eth1 (default eth0)
- -b broadcast
-
broadcast address for network listen to. This option is useful in
strange networks where for example two networks are placed at one
side of router at one router's interface. (default
broadcast
value is read from network interface). Useful only in interactive mode.
- -m netmask
-
mask of network to listen to. This option comes pair with -b option see above.
(default netmask is read from interface). Useful only in interactive mode.
- -l level
-
kill level describes what have to match in sniffed packet for RST flag to be
set and spooffed packet to be sent.
0
all the source IP address, source port, destination IP address and
destination port must match.
1
the source IP address, destination address and destination port
must match.
2
only source IP and destination IP must match. That meens that all
connections from source to destination will be reseted.
3
source IP must match and destination port. That meens that all connections
from source IP to any host with match port will be resetet.
4
only source IP must match. That meens that all tcp motion from source IP
will generate
ltcc
kill sending. In theory source host will have been out of tcp network.
- -k timeout
-
kill timeout : time of child process living in seconds. Child process is a process that
sniffs the local network for matching packets and send spooffed RST packets
only for time described in this option. Default it seems to be 10 seconds.
0 meens infinitive kill - the process will generate RST until it receive KILL
signal.
- -s timeout
-
sniff timeout time of sniffing packets in local network. Useful only in interactive mode.
- -S address
-
source IP address (disabled in interactive mode)
- -p port
-
source port (disabled in interactive mode)
- -D address
-
destination IP address (disabled in interactive mode)
- -P port
-
destination port (disabled in interactive mode)
- -t ttl
-
time to live (default random number)
INTERACTIVE MODE
The program can be run in interactive mode. The menu based interface allow simplify
navigating on tcp connections in lan. The options that are available are described below
A
sniff for active connections in LAN
K
kill connection
L
set killing level (look at -l option)
S
set sniff timeout (look at -s option)
T
set kill timeout option (look at -k option)
BUGS REPORTING
pablo@wizard.ae.krakow.pl
COPYRIGHT
GPL.
AUTHOR
The author of
ltcc
is Pawel Prokop (pablo@wizard.ae.krakow.pl)
homepage of this project is : http://prokop.ae.krakow.pl/projects/ltcc
Index
- NAME
-
- SYNOPSIS
-
- DESCRIPTION
-
- OPTIONS
-
- INTERACTIVE MODE
-
- BUGS REPORTING
-
- COPYRIGHT
-
- AUTHOR
-
This document was created by
man2html,
using the manual pages.
Time: 06:35:56 GMT, October 15, 2007