Fortinet black logo

Administration Guide

Home FortiTester 7.1.0 Administration Guide

Fuzzing

7.1.0
7.4.0
7.3.2
7.3.0
7.2.3
7.2.2
7.2.1
7.2.0
7.1.0
7.0.0
Copy Link
Copy Doc ID 9217125a-7eda-11ec-a0d0-fa163e15d75b:219021
Download PDF

Fuzzing

Fuzzing cases measure the device's ability to handle invalid IP, TCP, UDP, and ICMP packets, which send invalid fuzzed packets to DUT devices and validate whether the device continues to operate.

To start a Fuzzing test:

  1. Go to Security Testing> Fuzzing to display the test case summary page.
  2. Click + Create New to display the Case Options dialog box.
  3. Configure the network settings and click OK to continue.

  4. Set Specifics > Load: ICMP Options, TCP Options, UDP Options, Generic Options, IP Options.

    ICMP Option

    Enable ICMP—Control switch to enable ICMP protocol.

    ICMP Simuser—The count of simusers sending ICMP packets.

    ICMP Fuzz Fields includes “Bad ICMP Code”, “Bad ICMP Type” with a value from 0 to 100, which means the maximum percentage of packets transmitted has a randomized ICMP fields.
    TCP Option TCP control switch, simuser number and TCP Fuzz Fields.
    UDP Option

    UDP control switch, simuser number and UDP Fuzz Fields.
    Generic Option “Payload Size”, “Seed For The Pseudo-random Number Generator” and “Maximum Number of Simultaneous Corruption”.
    IP Option IP Fuzz Fields.

  5. Set Specifics > Action: Success Criteria.

    This field provides the judgement criteria of fuzzing test, which is succeed only if “Fuzz_Diagnose_Ping_Send” minus “Fuzz_Diagnose_Ping_Recv” is less than or equal to the input number “Ping Diagnose Factor” .

Previous
Next

Fuzzing

Fuzzing cases measure the device's ability to handle invalid IP, TCP, UDP, and ICMP packets, which send invalid fuzzed packets to DUT devices and validate whether the device continues to operate.

To start a Fuzzing test:

  1. Go to Security Testing> Fuzzing to display the test case summary page.
  2. Click + Create New to display the Case Options dialog box.
  3. Configure the network settings and click OK to continue.

  4. Set Specifics > Load: ICMP Options, TCP Options, UDP Options, Generic Options, IP Options.

    ICMP Option

    Enable ICMP—Control switch to enable ICMP protocol.

    ICMP Simuser—The count of simusers sending ICMP packets.

    ICMP Fuzz Fields includes “Bad ICMP Code”, “Bad ICMP Type” with a value from 0 to 100, which means the maximum percentage of packets transmitted has a randomized ICMP fields.
    TCP Option TCP control switch, simuser number and TCP Fuzz Fields.
    UDP Option

    UDP control switch, simuser number and UDP Fuzz Fields.
    Generic Option “Payload Size”, “Seed For The Pseudo-random Number Generator” and “Maximum Number of Simultaneous Corruption”.
    IP Option IP Fuzz Fields.

  5. Set Specifics > Action: Success Criteria.

    This field provides the judgement criteria of fuzzing test, which is succeed only if “Fuzz_Diagnose_Ping_Send” minus “Fuzz_Diagnose_Ping_Recv” is less than or equal to the input number “Ping Diagnose Factor” .

Previous
Next