Site Navigation

FreeBSD Manual Pages

   man apropos
 
   All Sections 1 - General Commands 2 - System Calls 3 - Subroutines 4 - Special Files 5 - File Formats 6 - Games 7 - Macros and Conventions 8 - Maintenance Commands 9 - Kernel Interface n - New Commands FreeBSD 16.0-CURRENT FreeBSD 15.0-RELEASE FreeBSD 15.0-RELEASE and Ports FreeBSD 15.0-STABLE FreeBSD 14.3-RELEASE FreeBSD 14.3-RELEASE and Ports FreeBSD 14.3-STABLE FreeBSD 14.2-RELEASE FreeBSD 14.2-RELEASE and Ports FreeBSD 14.1-RELEASE FreeBSD 14.1-RELEASE and Ports FreeBSD 14.0-RELEASE FreeBSD 14.0-RELEASE and Ports FreeBSD 13.5-RELEASE FreeBSD 13.5-RELEASE and Ports FreeBSD 13.5-STABLE FreeBSD 13.4-RELEASE FreeBSD 13.4-RELEASE and Ports FreeBSD 13.3-RELEASE FreeBSD 13.3-RELEASE and Ports FreeBSD 13.2-RELEASE FreeBSD 13.2-RELEASE and Ports FreeBSD 13.1-RELEASE FreeBSD 13.1-RELEASE and Ports FreeBSD 13.0-RELEASE FreeBSD 13.0-RELEASE and Ports FreeBSD 12.4-RELEASE FreeBSD 12.4-RELEASE and Ports FreeBSD 12.3-RELEASE FreeBSD 12.3-RELEASE and Ports FreeBSD 12.2-RELEASE FreeBSD 12.2-RELEASE and Ports FreeBSD 12.1-RELEASE FreeBSD 12.1-RELEASE and Ports FreeBSD 12.0-RELEASE FreeBSD 12.0-RELEASE and Ports FreeBSD 11.4-RELEASE FreeBSD 11.4-RELEASE and Ports FreeBSD 11.3-RELEASE FreeBSD 11.3-RELEASE and Ports FreeBSD 11.2-RELEASE FreeBSD 11.2-RELEASE and Ports FreeBSD 11.1-RELEASE FreeBSD 11.1-RELEASE and Ports FreeBSD 11.0-RELEASE FreeBSD 11.0-RELEASE and Ports FreeBSD 10.4-RELEASE FreeBSD 10.4-RELEASE and Ports FreeBSD 10.3-RELEASE FreeBSD 10.3-RELEASE and Ports FreeBSD 10.2-RELEASE FreeBSD 10.2-RELEASE and Ports FreeBSD 10.1-RELEASE FreeBSD 10.1-RELEASE and Ports FreeBSD 10.0-RELEASE FreeBSD 10.0-RELEASE and Ports FreeBSD 9.3-RELEASE FreeBSD 9.3-RELEASE and Ports FreeBSD 9.2-RELEASE FreeBSD 9.2-RELEASE and Ports FreeBSD 9.1-RELEASE FreeBSD 9.1-RELEASE and Ports FreeBSD 9.0-RELEASE FreeBSD 9.0-RELEASE and Ports FreeBSD 8.4-RELEASE FreeBSD 8.4-RELEASE and Ports FreeBSD 8.3-RELEASE FreeBSD 8.3-RELEASE and Ports FreeBSD 8.2-RELEASE FreeBSD 8.2-RELEASE and Ports FreeBSD 8.1-RELEASE FreeBSD 8.1-RELEASE and Ports FreeBSD 8.0-RELEASE FreeBSD 8.0-RELEASE and Ports FreeBSD 7.4-RELEASE FreeBSD 7.4-RELEASE and Ports FreeBSD 7.3-RELEASE FreeBSD 7.3-RELEASE and Ports FreeBSD 7.2-RELEASE FreeBSD 7.2-RELEASE and Ports FreeBSD 7.1-RELEASE FreeBSD 7.1-RELEASE and Ports FreeBSD 7.0-RELEASE FreeBSD 6.4-RELEASE FreeBSD 6.4-RELEASE and Ports FreeBSD 6.3-RELEASE FreeBSD 6.3-RELEASE and Ports FreeBSD 6.2-RELEASE FreeBSD 6.1-RELEASE FreeBSD 6.0-RELEASE FreeBSD 6.0-RELEASE and Ports FreeBSD 5.5-RELEASE FreeBSD 5.5-RELEASE and Ports FreeBSD 5.4-RELEASE FreeBSD 5.4-RELEASE and Ports FreeBSD 5.3-RELEASE FreeBSD 5.3-RELEASE and Ports FreeBSD 5.2.1-RELEASE FreeBSD 5.2.1-RELEASE and Ports FreeBSD 5.2-RELEASE FreeBSD 5.2-RELEASE and Ports FreeBSD 5.1-RELEASE FreeBSD 5.0-RELEASE FreeBSD 4.11-RELEASE FreeBSD 4.11-RELEASE and Ports FreeBSD 4.10-RELEASE FreeBSD 4.10-RELEASE and Ports FreeBSD 4.9-RELEASE FreeBSD 4.9-RELEASE and Ports FreeBSD 4.8-RELEASE FreeBSD 4.8-RELEASE and Ports FreeBSD 4.7-RELEASE FreeBSD 4.6.2-RELEASE FreeBSD 4.6.2-RELEASE and Ports FreeBSD 4.6-RELEASE FreeBSD 4.6-RELEASE and Ports FreeBSD 4.5-RELEASE FreeBSD 4.5-RELEASE and Ports FreeBSD 4.4-RELEASE FreeBSD 4.3-RELEASE FreeBSD 4.3-RELEASE and Ports FreeBSD 4.2-RELEASE FreeBSD 4.2-RELEASE and Ports FreeBSD 4.1.1-RELEASE FreeBSD 4.1.1-RELEASE and Ports FreeBSD 4.1-RELEASE FreeBSD 4.0-RELEASE FreeBSD 3.5.1-RELEASE FreeBSD 3.5.1-RELEASE and Ports FreeBSD 3.5-RELEASE and Ports FreeBSD 3.4-RELEASE FreeBSD 3.4-RELEASE and Ports FreeBSD 3.3-RELEASE FreeBSD 3.2-RELEASE FreeBSD 3.1-RELEASE FreeBSD 3.0-RELEASE FreeBSD 2.2.8-RELEASE FreeBSD 2.2.8-RELEASE and Ports FreeBSD 2.2.7-RELEASE FreeBSD 2.2.6-RELEASE FreeBSD 2.2.5-RELEASE FreeBSD 2.2.2-RELEASE FreeBSD 2.2.1-RELEASE FreeBSD 2.1.7.1-RELEASE FreeBSD 2.1.6.1-RELEASE FreeBSD 2.1.5-RELEASE FreeBSD 2.1.0-RELEASE FreeBSD 2.0.5-RELEASE FreeBSD 2.0-RELEASE FreeBSD 1.1.5.1-RELEASE FreeBSD 1.1-RELEASE FreeBSD 1.0-RELEASE FreeBSD Ports 15.0 FreeBSD Ports 14.3 FreeBSD Ports 14.3.quarterly FreeBSD Ports 14.2 FreeBSD Ports 14.1 FreeBSD Ports 14.0 FreeBSD Ports 13.5 FreeBSD Ports 13.4 FreeBSD Ports 13.3 FreeBSD Ports 13.2 FreeBSD Ports 13.1 FreeBSD Ports 13.0 FreeBSD Ports 12.4 FreeBSD Ports 12.3 FreeBSD Ports 12.2 FreeBSD Ports 12.1 FreeBSD Ports 12.0 FreeBSD Ports 11.4 FreeBSD Ports 11.3 FreeBSD Ports 11.2 FreeBSD Ports 11.1 FreeBSD Ports 11.0 FreeBSD Ports 10.4 FreeBSD Ports 10.3 FreeBSD Ports 10.2 FreeBSD Ports 10.1 FreeBSD Ports 10.0 FreeBSD Ports 9.3 FreeBSD Ports 9.2 FreeBSD Ports 9.1 FreeBSD Ports 9.0 FreeBSD Ports 8.4 FreeBSD Ports 8.3 FreeBSD Ports 8.2 FreeBSD Ports 8.1 FreeBSD Ports 8.0 FreeBSD Ports 7.4 FreeBSD Ports 7.3 FreeBSD Ports 7.2 FreeBSD Ports 7.1 FreeBSD Ports 7.0 FreeBSD Ports 6.4 FreeBSD Ports 6.3 FreeBSD Ports 6.2 FreeBSD Ports 6.0 FreeBSD Ports 5.5 FreeBSD Ports 5.4 FreeBSD Ports 5.3 FreeBSD Ports 5.2.1 FreeBSD Ports 5.2 FreeBSD Ports 5.1 FreeBSD Ports 4.11 FreeBSD Ports 4.10 FreeBSD Ports 4.9 FreeBSD Ports 4.8 FreeBSD Ports 4.7 FreeBSD Ports 4.6.2 FreeBSD Ports 4.6 FreeBSD Ports 4.5 FreeBSD Ports 4.3 FreeBSD Ports 4.2 FreeBSD Ports 4.1.1 FreeBSD Ports 3.5.1 FreeBSD Ports 3.5 FreeBSD Ports 3.4 FreeBSD Ports 2.2.8 4.4BSD Lite2 4.3BSD NET/2 4.3BSD Reno 2.11 BSD 2.10 BSD 2.9.1 BSD 2.8 BSD 386BSD 0.1 386BSD 0.0 CentOS 7.9 CentOS 7.8 CentOS 7.7 CentOS 7.6 CentOS 7.5 CentOS 7.4 CentOS 7.3 CentOS 7.2 CentOS 7.1 CentOS 7.0 CentOS 6.10 CentOS 6.9 CentOS 6.8 CentOS 6.7 CentOS 6.6 CentOS 6.5 CentOS 6.4 CentOS 6.3 CentOS 6.2 CentOS 6.1 CentOS 6.0 CentOS 5.11 CentOS 5.10 CentOS 5.9 CentOS 5.8 CentOS 5.7 CentOS 5.6 CentOS 5.5 CentOS 5.4 CentOS 4.8 CentOS 3.9 Darwin 8.0.1/ppc Darwin 7.0.1 Darwin 6.0.2/x86 Darwin 1.4.1/x86 Darwin 1.3.1/x86 Debian 14.0 unstable Debian 13.3.0 Debian 12.13.0 Debian 11.11.0 Debian 10.13.0 Debian 9.13.0 Debian 8.11.1 Debian 7.11.0 Debian 6.0.10 Debian 5.0.10 Debian 4.0.9 Debian 3.1.8 Debian 2.2.7 Debian 2.0.0 Dell UNIX SVR4 2.2 DragonFly 6.4.2 DragonFly 5.8.3 DragonFly 4.8.1 DragonFly 3.8.2 DragonFly 2.10.1 DragonFly 1.12.1 DragonFly 1.0A HP-UX 11.22 HP-UX 11.20 HP-UX 11.11 HP-UX 11.00 HP-UX 10.20 HP-UX 10.10 HP-UX 10.01 HP-UX 9.07 HP-UX 8.07 Inferno 4th Edition IRIX 6.5.30 Linux Slackware 3.1 MACH 2.5/i386 macOS 26.2 macOS 15.7.3 macOS 14.8.3 macOS 13.6.5 macOS 12.7.3 macOS 11.1 macOS 10.15.7 macOS 10.13.6 macOS 10.12.0 Minix 3.3.0 Minix 3.2.1 Minix 3.2.0 Minix 3.1.7 Minix 3.1.6 Minix 3.1.5 Minix 2.0.0 NetBSD 10.1 NetBSD 10.0 NetBSD 9.4 NetBSD 9.3 NetBSD 9.2 NetBSD 9.1 NetBSD 9.0 NetBSD 8.3 NetBSD 8.2 NetBSD 8.1 NetBSD 8.0 NetBSD 7.2 NetBSD 7.1.2 NetBSD 7.1 NetBSD 7.0 NetBSD 6.1.5 NetBSD 6.0 NetBSD 5.2.3 NetBSD 5.2 NetBSD 5.1 NetBSD 5.0 NetBSD 4.0.1 NetBSD 4.0 NetBSD 3.1 NetBSD 3.0 NetBSD 2.1 NetBSD 2.0.2 NetBSD 2.0 NetBSD 1.6.2 NetBSD 1.6.1 NetBSD 1.6 NetBSD 1.5.3 NetBSD 1.5.2 NetBSD 1.5.1 NetBSD 1.5 NetBSD 1.4.3 NetBSD 1.4.2 NetBSD 1.4.1 NetBSD 1.4 NetBSD 1.3.3 NetBSD 1.3.2 NetBSD 1.3.1 NetBSD 1.3 NetBSD 1.2.1 NetBSD 1.2 NetBSD 1.1 NetBSD 1.0 NeXTSTEP 3.3 OpenBSD 7.8 OpenBSD 7.7 OpenBSD 7.6 OpenBSD 7.5 OpenBSD 7.4 OpenBSD 7.3 OpenBSD 7.2 OpenBSD 7.1 OpenBSD 7.0 OpenBSD 6.9 OpenBSD 6.8 OpenBSD 6.7 OpenBSD 6.6 OpenBSD 6.5 OpenBSD 6.4 OpenBSD 6.3 OpenBSD 6.2 OpenBSD 6.1 OpenBSD 6.0 OpenBSD 5.9 OpenBSD 5.8 OpenBSD 5.7 OpenBSD 5.6 OpenBSD 5.5 OpenBSD 5.4 OpenBSD 5.3 OpenBSD 5.2 OpenBSD 5.1 OpenBSD 5.0 OpenBSD 4.9 OpenBSD 4.8 OpenBSD 4.7 OpenBSD 4.6 OpenBSD 4.5 OpenBSD 4.4 OpenBSD 4.3 OpenBSD 4.2 OpenBSD 4.1 OpenBSD 4.0 OpenBSD 3.9 OpenBSD 3.8 OpenBSD 3.7 OpenBSD 3.6 OpenBSD 3.5 OpenBSD 3.4 OpenBSD 3.3 OpenBSD 3.2 OpenBSD 3.1 OpenBSD 3.0 OpenBSD 2.9 OpenBSD 2.8 OpenBSD 2.7 OpenBSD 2.6 OpenBSD 2.5 OpenBSD 2.4 OpenBSD 2.3 OpenBSD 2.2 OpenBSD 2.1 OpenBSD 2.0 OpenDarwin 7.2.1 OpenDarwin 6.6.2/x86 OpenDarwin 6.6.1/x86 OpenDarwin 20030208pre4/ppc OpenIndiana 2024.10 OpenIndiana 2022.10 OpenIndiana 2020.10 OpenIndiana 2017.10 OpenIndiana 2015.10 OpenIndiana 2013.08 OpenSolaris 2010.03 OpenSolaris 2009.06 OpenStep 4.2 openSUSE 42.3 openSUSE 42.2 openSUSE 42.1 openSUSE 16.0 openSUSE 15.6 openSUSE 15.5 openSUSE 15.4 openSUSE 15.3 openSUSE 15.2 openSUSE 15.1 openSUSE 15.0 openSUSE 13.2 openSUSE 13.1 openSUSE 11.4 openSUSE 11.3 openSUSE 11.2 openSUSE 10.3 openSUSE 10.2 OSF1 V5.1/alpha OSF1 V4.0/alpha OSF1 V1.0/mips Plan 9 Red Hat 9.0 Red Hat 8.0 Red Hat 7.3 Red Hat 7.2 Red Hat 7.1 Red Hat 7.0 Red Hat 6.2 Red Hat 6.1 Red Hat 5.2 Red Hat 5.0 Red Hat 4.2 Rhapsody DR1 Rhapsody DR2 Rocky 10.1 Rocky 10.0 Rocky 9.7 Rocky 9.6 Rocky 9.5 Rocky 9.4 Rocky 9.3 Rocky 9.2 Rocky 9.1 Rocky 9.0 Rocky 8.10 Rocky 8.9 Rocky 8.8 Rocky 8.7 Rocky 8.6 Rocky 8.5 Rocky 8.4 Rocky 8.3 Sun UNIX 0.4 SunOS 5.10 SunOS 5.9 SunOS 5.8 SunOS 5.7 SunOS 5.6 SunOS 5.5.1 SunOS 4.1.3 SuSE 11.3 SuSE 11.2 SuSE 11.1 SuSE 11.0 SuSE 10.3 SuSE 10.2 SuSE 10.1 SuSE 10.0 SuSE 9.3 SuSE 9.2 SuSE 8.2 SuSE 8.1 SuSE 8.0 SuSE 7.3 SuSE 7.2 SuSE 7.1 SuSE 7.0 SuSE 6.4 SuSE 6.3 SuSE 6.1 SuSE 6.0 SuSE 5.3 SuSE 5.2 SuSE 5.0 SuSE 4.3 SuSE ES 10 SP1 Ubuntu 24.04 noble Ubuntu 23.10 mantic Ubuntu 22.04 jammy Ubuntu 20.04 focal Ubuntu 18.04 bionic Ubuntu 16.04 xenial Ubuntu 14.04 trusty ULTRIX 4.2 Ultrix-32 2.0/VAX Unix Seventh Edition X11R7.4 X11R7.3.2 X11R7.2 X11R6.9.0 X11R6.8.2 X11R6.7.0 XFree86 4.8.0 XFree86 4.7.0 XFree86 4.6.0 XFree86 4.5.0 XFree86 4.4.0 XFree86 4.3.0 XFree86 4.2.99.3 XFree86 4.2.0 XFree86 4.1.0 XFree86 4.0.2 XFree86 4.0.1 XFree86 4.0 XFree86 3.3.6 XFree86 3.3 XFree86 2.1 All Architectures html pdf ascii

home | help

---

UDP6(1)			    General Commands Manual		       UDP6(1)

NAME
       udp6 - A	security assessment tool for UDP/IPv6 implementations

SYNOPSIS
       udp6   -i   INTERFACE   [-S   LINK_SRC_ADDR]   [-D  LINK-DST-ADDR]  [-s
       SRC_ADDR[/LEN]]	[-d  DST_ADDR]	[-A  HOP_LIMIT]	 [-y  FRAG_SIZE]   [-u
       DST_OPT_HDR_SIZE]  [-U  DST_OPT_U_HDR_SIZE]  [-H	 HBH_OPT_HDR_SIZE] [-P
       PAYLOAD_SIZE] [-o SRC_PORT] [-a DST_PORT] [-Z DATA]  [-j	 PREFIX[/LEN]]
       [-k  PREFIX[/LEN]]  [-J LINK_ADDR] [-K LINK_ADDR] [-b PREFIX[/LEN]] [-g
       PREFIX[/LEN]] [-B LINK_ADDR] [-G	LINK_ADDR] [-F N_SOURCES] [-T N_PORTS]
       [-L] [-l] [-p PROBE_MODE] [-z SECONDS] [-r RATE]	[-v] [-h]

DESCRIPTION
       udp6 allows the assessment of IPv6 implementations with	respect	 to  a
       variety	of  attack  vectors  based on UDP/IPv6 datagrams. This tool is
       part of the SI6 Networks' IPv6 Toolkit: a security assessment and trou-
       bleshooting toolkit for the IPv6	protocols.

       udp6 tool has two modes of operation: active and	listening.  In	active
       mode,  the  tool	attacks	a specific target, while in listening mode the
       tool listens to UDP traffic on the local	network, and launches  an  at-
       tack  in	 response  to such traffic. Active mode	is employed if an IPv6
       Destination Address is specified. Listening mode	 is  employed  if  the
       "-L" option (or its long	counterpart "--listen")	is set.	If both	an at-
       tack  target  and the "-L" option are specified,	the attack is launched
       against the specified target, and then the tool enters  listening  mode
       to respond incoming packets with	UDP datagrams.

       udp6  supports  filtering  of  incoming	packets	 based on the Ethernet
       Source Address, the Ethernet Destination	Address, the IPv6  Source  Ad-
       dress,  and  the	IPv6 Destination Address.  There are two types of fil-
       ters: "block filters" and "accept filters". If any  "block  filter"  is
       specified,  and	the  incoming packet matches any of those filters, the
       message is discarded (and thus no UDP datagrams are sent	in  response).
       If  any	"accept	 filter" is specified, incoming	packets	must match the
       specified filters in order for the tool to respond with UDP datagrams.

OPTIONS
       udp6 takes itS parameters as command-line options. Each of the  options
       can be specified	with a short name (one character preceded with the hy-
       phen  character,	 as  e.g. "-i")	or with	a long name (a string preceded
       with two	hyphen characters, as e.g. "--interface").

       If the tool is instructed to e.g. flood the victim with	UDP  datagrams
       from different sources ("--flood-sources" option), multiple packets may
       need to be generated.

       udp6  supports IPv6 Extension Headers, including	the IPv6 Fragmentation
       Header, which might be of use to	circumvent  layer-2  filtering	and/or
       Network	Intrusion  Detection  Systems  (NIDS). However,	IPv6 extension
       headers are not employed	by default, and	 must  be  explicitly  enabled
       with the	corresponding options.

       -i INTERFACE, --interface INTERFACE
	      This  option  specifies the network interface that the tool will
	      use. The network interface must be  specified  (i.e.,  the  tool
	      does not select any network interface "by	default").

       -S SRC_LINK_ADDR, --src-link-address SRC_LINK_ADDR

	      This option specifies the	link-layer Source Address of the probe
	      packets.	If  left unspecified, the link-layer Source Address of
	      the packets is set to the	real link-layer	address	of the network
	      interface. Note: this option is meaningful only when the	under-
	      lying link-layer technology is Ethernet.

       -D DST_LINK_ADDR, --dst-link-address DST_LINK_ADDR

	      This  option specifies the link-layer Destination	Address	of the
	      probe packets. By	default, the link-layer	Destination Address is
	      automatically set	to the link-layer address of  the  destination
	      host  (for on-link destinations) or to the link-layer address of
	      the first-hop router. Note: this option is meaningful only  when
	      the underlying link-layer	technology is Ethernet.

       -s SRC_ADDR, --src-address SRC_ADDR

	      This  option  specifies the IPv6 source address (or IPv6 prefix)
	      to be used for the Source	Address	of the attack packets. If  the
	      "-F"  ("--flood-sources")	 option	 is specified, this option in-
	      cludes an	IPv6 prefix, from which	random addresses are selected.
	      See the description of the "-F" option for  further  information
	      on how the "-s" option is	processed in that specific case.

	      Note:  When operating in "listening" mode, the Source Address is
	      automatically set	to the Destination  Address  of	 the  incoming
	      packet.

       -d DST_ADDR, --dst-address DST_ADDR

	      This  option  specifies the IPv6 Destination Address of the vic-
	      tim. It can be left unspecified only if the "-L" option  is  se-
	      lected (i.e., if the tool	is to operate in "listening" mode).

	      Note:  When  operating  in "listening" mode, the Destination Ad-
	      dress is automatically set to the	Source Address of the incoming
	      packet.

       -A HOP_LIMIT, --hop-limit HOP_LIMIT

	      This option specifies the	Hop Limit to  be  used	for  the  IPv6
	      packets. It defaults to 255.

       -u HDR_SIZE, --dst-opt-hdr HDR_SIZE

	      This option specifies that a Destination Options header is to be
	      included	in  the	 outgoing packet(s). The extension header size
	      must be specified	as an argument to this option (the  header  is
	      filled with padding options). Multiple Destination Options head-
	      ers may be specified by means of multiple	"-u" options.

       -U HDR_SIZE, --dst-opt-u-hdr HDR_SIZE

	      This  option  specifies  a  Destination Options header to	be in-
	      cluded in	the "unfragmentable part" of the  outgoing  packet(s).
	      The  header size must be specified as an argument	to this	option
	      (the header is filled with padding options).  Multiple  Destina-
	      tion  Options headers may	be specified by	means of multiple "-U"
	      options.

       -H HDR_SIZE, --hbh-opt-hdr HDR_SIZE

	      This option specifies that a Hop-by-Hop Options header is	to  be
	      included	in  the	 outgoing  packet(s).  The header size must be
	      specified	as an argument to this option (the  header  is	filled
	      with  padding  options). Multiple	Hop-by-Hop Options headers may
	      be specified by means of multiple	"-H" options.

       -y FRAG_SIZE, --frag-hdr	FRAG_SIZE

	      This option specifies that the resulting packet  must  be	 frag-
	      mented.  The  fragment  size must	be specified as	an argument to
	      this option.

       -P PAYLOAD_SIZE,	--payload-size PAYLOAD_SIZE

	      This options specifies the size of the UDP payload. It  defaults
	      to 0 (i.e., empty	UDP datagrams).

       -o SRC_PORT, --src-port SRC_PORT

	      This option specifies the	UDP Source Port.

       -a DST_PORT, --dst-port DST_PORT

	      This option specifies the	UDP Destination	Port.

       -Z DATA,	--data DATA

	      This  option  is	used to	specify	the UDP	payload. It will typi-
	      cally include an application-layer  request.  Note:  the	string
	      used  for	 the  DATA  parameter  can  contain  the "\r" and "\n"
	      C-style escape senquenced	for representing "carriage return" and
	      "line feed" (respectively).

	      As an example, this option could be employed to send an HTTP re-
	      quest if set as '--data "GET / HTTP/1.0\r\n\r\n"'.

       -j SRC_ADDR, --block-src	SRC_ADDR

	      This option sets a block filter for the incoming packets,	 based
	      on  their	IPv6 Source Address. It	allows the specification of an
	      IPv6 prefix in the form "-j  prefix/prefixlen".  If  the	prefix
	      length  is  not specified, a prefix length of "/128" is selected
	      (i.e., the option	assumes	that a	single	IPv6  address,	rather
	      than an IPv6 prefix, has been specified).

       -k DST_ADDR, --block-dst	DST_ADDR

	      This  option sets	a block	filter for the incoming	packets, based
	      on their IPv6 Destination	Address. It allows  the	 specification
	      of an IPv6 prefix	in the form "-k	prefix/prefixlen". If the pre-
	      fix  length  is  not specified, a	prefix length of "/128"	is se-
	      lected (i.e., the	option assumes that  a	single	IPv6  address,
	      rather than an IPv6 prefix, has been specified).

       -J LINK_ADDR, --block-link-src LINK_ADDR

	      This  option sets	a block	filter for the incoming	packets, based
	      on their link-layer Source Address. The option must be  followed
	      by a link-layer address (currently, only Ethernet	is supported).

       -K LINK_ADDR, --block-link-dst LINK_ADDR

	      This  option sets	a block	filter for the incoming	packets, based
	      on their link-layer Destination Address. The option must be fol-
	      lowed by a link-layer address (currently,	only Ethernet is  sup-
	      ported).

       -b SRC_ADDR, --accept-src SRC_ADDR

	      This  option  sets  an  accept  filter for the incoming packets,
	      based on their IPv6 Source Address. It allows the	 specification
	      of an IPv6 prefix	in the form "-b	prefix/prefixlen". If the pre-
	      fix  length  is  not specified, a	prefix length of "/128"	is se-
	      lected (i.e., the	option assumes that  a	single	IPv6  address,
	      rather than an IPv6 prefix, has been specified).

       -g DST_ADDR, --accept-dst DST_ADDR

	      This option sets a accept	filter for the incoming	packets, based
	      on  their	 IPv6 Destination Address. It allows the specification
	      of an IPv6 prefix	in the form "-g	prefix/prefixlen". If the pre-
	      fix length is not	specified, a prefix length of  "/128"  is  se-
	      lected  (i.e.,  the  option  assumes that	a single IPv6 address,
	      rather than an IPv6 prefix, has been specified).

       -B LINK_ADDR, --accept-link-src LINK_ADDR

	      This option sets an accept  filter  for  the  incoming  packets,
	      based  on	 their	link-layer  Source Address. The	option must be
	      followed by a link-layer address (currently,  only  Ethernet  is
	      supported).

       -G LINK_ADDR, --accept-link-dst LINK_ADDR

	      This  option  sets  an  accept  filter for the incoming packets,
	      based on their link-layer	Destination Address. The  option  must
	      be followed by a link-layer address (currently, only Ethernet is
	      supported).

       -F N_SOURCES, --flood-sources N_SOURCES

	      This  option  instructs  the tool	to send	multiple UDP datagrams
	      with different Source Addresses. The number of different	source
	      addresses	 is  specified	as  "-F	number". The Source Address of
	      each UDP datagram	is randomly selected from the prefix specified
	      by the "-s" option. If the "-F" option is	specified but the "-s"
	      option is	left unspecified, the Source Address of	the packets is
	      randomly selected	from the prefix	::/0.

       -T N_PORTS, --flood-ports N_PORTS

	      This option instructs the	tool to	send  multiple	UDP  datagrams
	      with  different  Source Ports. The Source	Port of	each UDP data-
	      gram is randomly selected	 from  the  whole  port	 number	 space
	      (0-65535).

       -l, --loop

	      This  option  instructs the udp6 tool to send periodic UDP data-
	      grams to the victim node.	The amount of time  to	pause  between
	      sending  UDP datagrams can be specified by means of the "-z" op-
	      tion, and	defaults to 1 second. Note that	this option cannot  be
	      set in conjunction with the "-L" ("--listen") option.

       -z, --sleep

	      This  option specifies the amount	of time	to pause between send-
	      ing UDP datagrams	(when the "--loop" option is set). If left un-
	      specified, it defaults to	1 second.

       -r RATE,	--rate-limit RATE

	      This option specifies the	rate limit to use  when	 performing  a
	      remote  address  scan.  "RATE"  should be	specified as "xbps" or
	      "xpps" (with "x" being an	unsigned integer), for rate-limits  in
	      bits per second or packets per second, respectively.

       -L, --listen

	      This  instructs the udp6 tool to operate in listening mode (pos-
	      sibly after attacking a given node). Note	that this option  can-
	      not be used in conjunction with the "-l" ("--loop") option.

       -p PROBE_MODE, --probe-mode PROBE_MODE

	      This  option instructs th	too to operate in probe	mode. The spe-
	      cific probe mode is specified as	an  argument  to  this	option
	      (currently, only "script"	mode is	supported). In probe mode, the
	      udp6  sends probe	datagrams, and waits for response packets. The
	      response packets are decoded based on the	selected probe mode.

	      In the "script" probe mode, the tool decodes  UDP	 datagrams  as
	      follows:

		   RESPONSE:RESPONSE_TYPE:RESPONSE_DECODE...

	      Where  the string	RESPONSE is fixed, and RESPONSE_TYPE indicates
	      the response received. As	of this	version	of the tool, the  fol-
	      lowing RESPONSE_TYPE values are supported:

		 + UDP6: Indicates that	the tool received a UDP/IPv6 packet
		 + TIMEOUT: Indicates that the tool received no	response

	      Possibe output lines of the tool are:

		  RESPONSE:TIMEOUT:
		  RESPONSE:UDP6:

	      Note:  Future versions of	the tool will also decode ICMPv6 error
	      messages,	and will include additional data regarding the	incom-
	      ing UDP datagrams	(e.g., payload size).

       -v, --verbose

	      This option instructs the	udp6 tool to be	verbose.  When the op-
	      tion is set twice, the tool is "very verbose", and the tool also
	      informs  which  packets have been	accepted or discarded as a re-
	      sult of applying the specified filters.

       -h, --help

	      Print help information for the udp6 tool.

EXAMPLES
       The following sections illustrate typical use cases of the udp6 tool.

       Example #1

       # udp6 -s fc00:1::/64 -d	fc00:1::1 -a 22	-F 100 -l -z 1 -v

       In this example the udp6	tool is	essentially  employed  to  flood  port
       number  22 of the host fc00:1::1. The tool sends	UDP datagrams from the
       prefix fc00:1::/64 (as specified	by the "-s" option) to port 22 (speci-
       fied by the "-a"	option)	at the destination address  fc00:1::1  (speci-
       fied by the "-d"	option). The tool sends	UDP datagrams from 100 differ-
       ent  addresses  (as  specified by the "-F" option) every	one second (as
       specified by the	"-l" and "-z" options).	The tool will be  verbose  (as
       specified by the	"-v" option).

       Example #3

       # udp6 -d fc00:1::1 -a 80 -l -r 1pps -v --data "GET / HTTP/1.0\r\n\r\n"

       Flood the target	system (fc00:1::1) with	UDP datagrams at a rate	of one
       packet  per second. Each	UDP datagram will contain (in the payload) the
       string specified	via the	"--data" option.

       Example #4

       # udp6 -i eth0 -d fc00:1::1 -a 80 -L  -s	 fc00:1::/112  -l  -r  1000pps
       --udp-flags  auto  -v  --data "GET / HTTP/1.0\r\n\r\n" --flood-ports 10
       --window-mode close

       Flood the target	node (fc00:1::1) with UDP connections (on port 80). On
       each connection that is established, an HTTP request is sent,  and  the
       UDP  window  is immediately closed. For each forged IPv6	source address
       ten different UDP source	ports are randomized. The bandwidth of the at-
       tack is limited to 1000 pps.

       Example #5

       # udp6 -d fc00:1::1 -a 80 --udp-flags A --dst-opt-hdr 8	--payload-size
       50 --probe-mode script

       Send a probe UDP	datagram to UDP	port 80	at fc00:1::1. The probe	packet
       consists	 of  an	 IPv6  packet  with  a Destination Options header of 8
       bytes, and an IPv6 payload consisting of	a UDP datagram	with  the  ACK
       bit set,	and 50 data bytes. The probe mode is "script".

AUTHOR
       The  udp6 tool and the corresponding manual pages were produced by Fer-
       nando Gont <fgont@si6networks.com> for SI6 Networks <http://www.si6net-
       works.com>.

COPYRIGHT
       Copyright (c) 2011-2013 Fernando	Gont.

       Permission is granted to	copy, distribute and/or	modify	this  document
       under  the  terms of the	GNU Free Documentation License,	Version	1.3 or
       any later version published by the Free Software	 Foundation;  with  no
       Invariant  Sections,  no	Front-Cover Texts, and no Back-Cover Texts.  A
       copy  of	 the   license	 is   available	  at   <http://www.gnu.org/li-
       censes/fdl.html>.

								       UDP6(1)

---

NAME | SYNOPSIS | DESCRIPTION | OPTIONS | EXAMPLES | AUTHOR | COPYRIGHT

Want to link to this manual page? Use this URL:
<https://man.freebsd.org/cgi/man.cgi?query=udp6&sektion=1&manpath=FreeBSD+Ports+15.0>

home | help

---

Legal Notices | © 1995-2026 The FreeBSD Project. All rights reserved.

Contact