> > Is there any method to drop network connection via Dtrace (or other > > methods) on Solaris 11.X? > > I'm not aware of any destructive action in DTrace that would directly > disrupt network traffic, at least on illumos. With some effort, it may > be possible to use other destructive actions (such as copyout) to make > it so that userland software does not send or receive data to/from a > particular socket, but that would not necessarily have the same effect. > At one point there was work pending in illumos to make uregs[] writable, > which would make this easier, but it does not seem to have been > integrated. If any networking-related actions exist in the Oracle > Solaris Dynamic Tracing system, your Oracle support representative > should be able to tell you all about them.
I'm not an Oracle support representative, but I can confirm that there are no networking-related DTrace actions in Solaris 11. > On illumos systems, you could set up a temporary filter using ipf that > would cause any TCP traffic to a given port to return a RST packet and > effectively close the connection. See http://illumos.org/man/5/ipfilter > for a starting point on packet filtering. This could be done in a > system() action if you want to trigger it from DTrace, but note that > such actions are taken asynchronously with respect to probe firing. If > you are not using illumos, you will need to determine whether this > functionality is available on your system and obtain appropriate > documentation from Oracle instead. Yes, this should also work on Solaris 11. Happy Holidays, Mr. Mayor :-) -- meem ------------------------------------------- dtrace-discuss Archives: https://www.listbox.com/member/archive/184261/=now RSS Feed: https://www.listbox.com/member/archive/rss/184261/25769126-e243886f Modify Your Subscription: https://www.listbox.com/member/?member_id=25769126&id_secret=25769126-8d47a7b2 Powered by Listbox: http://www.listbox.com
