Testbed

Network Switches

We used 2 kinds of switches: Intel 460T Ethernet switches for concentrating attacker traffic to routers and Intel 470T Gigabit Ethernet switches for connecting routers and the 460Ts. Each 460T has 24 100Mbit UTP ports and 1 1Gbit fibre port (for connecting to Gbit switches such as a 470T). Each 470T has 6 1Gbit UTP port and 2 1Gbit fibre ports. We had also conducted an experiment on a 3Com SuperStack3 Gigabit Ethernet switch.

Routers

The routers were Dell PowerEdge 1550 1U rack mount servers. Each is configured with: two Intel PentiumIII 1GHz processors, 512MB ECC SDRAM, two 18GB Ultra-3 SCSI 10,000rpm hot plug hard disks, two integrated Intel Pro/100+ 100Mbit Ethernet ports, two Alteon Gigabit NIC. Each server was installed with Redhat 6.2 (with kernel patched to 2.2.17).
We had also experimented with using a conventional PC as router. Each PC IDR is based on the ASUS P3V133 mainboard (using the VIA Apollo Pro133 chipset) and configured with: one Intel PentiumIII 667MHz processor, 256MB PC-133 SDRAM, one Seagate 15GB 5,400rpm hard disk, two 3Com 3C905C-TX-M Etherlink 10/100 PCI NIC. Each PC IDR was also installed with Redhat 6.2 (with kernel patched to 2.2.17).

Attackers

The attackers were no brand PCs. Each attacker is based on the Gigabyte GA-7VMM mATX mainboard (using the VIA KLE133 chipset) and configured with: one AMD Duron 800MHz processor, 128MB PC-133 SDRAM, one Seagate 320413A 20GB 5,400rpm hard disk, one Realtek 8139C based 10/100Mbit NIC. Each attacker was also installed with Redhat 6.2 (with kernel patched to 2.2.17).