The control plane of a routing device is the term for the set of functions that handles incoming traffic that doesn't get forwarded by the forwarding plane. The control plane comprises e.g. device management, routing protocols and security mechanisms. Control Plane Policy (CoPP) testing typically focuses on the stability of the device while performing attacks and tests targeted at the device's control plane.

Some questions to answer

  • Can the device still be managed while it is suffering a DoS attack?
  • Do the OSPF routes stay up when flooded with UDP packets?
  • Is the forwarding rate unaffected while an ARP-attack is ongoing?
  • Is the device properly protected against unauthorized access?
  • Is the device protected against known protocol caveats like a Ping of Death?

Test topics

While verifying the device's routing tables (OSPF, BGP, ISIS, ...), its manageability (SNMP, Telnet, SSH,...) and its forwarding throughput, a number of attacks are performed, e.g.,

  • ARP flood attack
  • SYN flood attack
  • TTL attack
  • Ping of Death attack
  • IPv4/IPv6 PING attack
  • IPv6 LinkLocal attack
  • ARP/Neighbor cache attack
  • ...

Next to testing the current behavior, Excentis can also help you to improve the configurations of your routing devices so that they can perform their control plane functionality in a stable and correct way.

 

Tags: