


NEMESIS-TCP(1)					   NEMESIS-TCP(1)


NAME
       nemesis-tcp - TCP Protocol (The Nemesis Project)

SYNOPSIS
       nemesis-tcp  [-v?]  [-a ack-number ] [-d Ethernet-device ]
       [-D destination-IP-address ] [-f TCP-flags ] [-F	 fragmen-
       tation-offset  ] [-I IP-ID ] [-M destination-MAC-address ]
       [-o TCP-options-file ] [-O IP-options-file ] [-P	 payload-
       file  ]	[-s sequence-number ] [-S source-IP-address ] [-t
       IP-TOS ] [-T IP-TTL ] [-u urgent-pointer ] [-w window-size
       ] [-x source-port ] [-y destination-port ]

DESCRIPTION
       The  Nemesis  Project  is  designed  to be a command line-
       based, portable human IP stack for UNIX like systems.  The
       suite  is  broken  down	by protocol, and should allow for
       useful scripting of injected packet  streams  from  simple
       shell scripts.

       nemesis-tcp  provides an interface to craft and inject TCP
       packets allowing the user to specify any portion of a  TCP
       packet  as  well	 as  lower-level  IP  packet information.
       nemesis-tcp

TCP Options
       -a Acknowledgement-Number
	      Specify  the  acknowledgement-number  (ACK  number)
	      within the TCP header.

       -f TCP flags (-fS/-fA/-fR/-fP/-fF/-fU)
	      Specify the TCP flags:

	      -fS (SYN)
	      -fA (ACK)
	      -fR (RST)
	      -fP (PSH)
	      -fF (FIN)
	      -fU (URG)

	      within  the  TCP	header.	 Flags can be combined in
	      the form '-fPA'.


       -o TCP-options-file
	      This will cause nemesis-dns to  use  the	specified
	      TCP-options-file	as  the options when building the
	      TCP header for the injectect packet.   TCP  options
	      can  be  up to 40 bytes in length.  The TCP options
	      file  must  be  created  manually	 based	upon  the
	      desired options.	TCP options can also be read from
	      stdin by	specifying  '-o	 -'  instead  of  a  TCP-
	      options-file.





			 12 December 2002			1





NEMESIS-TCP(1)					   NEMESIS-TCP(1)


       -s  sequence-number
	      Specify  the sequence-number within the TCP header.

       -u urgent-pointer-offset
	      Specify the urgent-pointer-offset	 within	 the  TCP
	      header.

       -v verbose-mode
	      Display the injected packet in human readable form.
	      Use twice to see a hexdump of the injected  packet.

       -w window-size
	      Specify the window-size within the TCP header.

       -x source-port
	      Specify  the  source-port	 packet	 within	 the  TCP
	      header.

       -y destination port
	      Specify the destintion-port within the TCP  header.

IP OPTIONS
       -D destination-IP-address
	      Specify  the  destination-IP-address  within the IP
	      header.

       -F fragmentation-offset
	      Specify  the  fragmentation-offset  within  the  IP
	      header.

       -I IP-ID
	      Specify the IP-ID within the IP header.

       -O IP-options-file
	      This  will  cause	 nemesis-dns to use the specified
	      IP-options-file as the options when building the IP
	      header for the injectect packet.	IP options can be
	      up to 40 bytes in length.	 The IP options file must
	      be created manually based upon the desired options.
	      IP options can also be read from stdin by	 specify-
	      ing '-O -' instead of an IP-options-file.

       -S source-IP-address
	      Specify the source-IP-address within the IP header.

       -t IP-TOS
	      Specify the IP-type-of-service (TOS) within the  IP
	      header.  Valid type of service values:

	      2	 (Minimize monetary cost)
	      4	 (Maximize reliability)
	      8	 (Maximize throughput)
	      24 (Minimize delay)




			 12 December 2002			2





NEMESIS-TCP(1)					   NEMESIS-TCP(1)


	      Note: type of service values cannot be combined.

       -T IP-TTL
	      Specify  the  IP-time-to-live  (TTL)  within the IP
	      header.

DATA LINK OPTIONS
       -d Ethernet-device
	      Specify the name of the Ethernet-device to use (eg.
	      ne0, fxp0, eth0).

       -H source-MAC-address
	      Specify the source-MAC-address (XX:XX:XX:XX:XX:XX).

       -M destination-MAC-address
	      Specify	      the	   defination-MAC-address
	      (XX:XX:XX:XX:XX:XX).

DIAGNOSTICS
       Nemesis-tcp  returns 0 on a successful exit, 1 if it exits
       on an error.

BUGS
       Send  concise  and  clearly   written   bug   reports   to
       jeff@snort.org

AUTHOR
       Jeff Nathan <jeff@snorg.org>

       Originally developed by Mark Grimes <mark@stateful.net>

SEE ALSO
       nemesis-arp(1), nemesis-dns(1), nemesis-ethernet(1), neme-
       sis-icmp(1),  nemesis-igmp(1),	nemesis-ip(1),	 nemesis-
       ospf(1), nemesis-rip(1), nemesis-udp(1)






















			 12 December 2002			3


