| Test Name |
Module |
Synopsis |
| 1 cdrouter_basic_1 |
basic.tcl |
Router responds to ARP Request on LAN interface |
| 2 cdrouter_basic_2 |
basic.tcl |
Router responds to ARP Request on WAN interface |
| 3 cdrouter_basic_10 |
basic.tcl |
Verify LAN DHCP clients receive gateway/DNS configuration from WAN side |
| 4 cdrouter_basic_20 |
basic.tcl |
Outbound packets use specified/cloned source MAC address |
| 5 cdrouter_dhcp_1 |
dhcp-c.tcl |
DHCP client renews lease when current lease expires |
| 6 cdrouter_dhcp_2 |
dhcp-c.tcl |
DHCP client resends DHCPREQUEST packet if server does not respond |
| 7 cdrouter_dhcp_3 |
dhcp-c.tcl |
DHCP client drops back into DISCOVERY mode if original server stops responding |
| 8 cdrouter_dhcp_10 |
dhcp-c.tcl |
DHCP client ignores site-specific DHCP options |
| 9 cdrouter_dhcp_11 |
dhcp-c.tcl |
Verify DHCP client handles server option with length 0 |
| 10 cdrouter_dhcp_20 |
dhcp-c.tcl |
DHCP client ignores DHCP packets with corrupt UDP checksum |
| 11 cdrouter_pppoe_client_1 |
pppoe-c.tcl |
PPPoE client restarts PPPoE Discovery when PPP LCP Echo-Requests fail |
| 12 cdrouter_pppoe_client_10 |
pppoe-c.tcl |
PPPoE client restarts PPPoE Discovery when PPP LCP terminates PPP link |
| 13 cdrouter_pppoe_client_50 |
pppoe-c.tcl |
PPPoE PPP client replies to LCP Echo-Requests |
| 14 cdrouter_pppoe_client_60 |
pppoe-c.tcl |
PPPoE PPP client maintains LCP Magic Number during session |
| 15 cdrouter_pppoe_client_200 |
pppoe-c.tcl |
PPPoE/PPP restarts if PPP authentication fails |
| 16 cdrouter_pppoe_client_210 |
pppoe-c.tcl |
PPPoE/PPP can recover if LCP renegotiation is attempted |
| 17 cdrouter_pppoe_client_230 |
pppoe-c.tcl |
PPPoE/PPP can recover if LCP Echo-Request contains bad length |
| 18 cdrouter_pppoe_client_300 |
pppoe-c.tcl |
PPPoE client recovers if PPPoE server drops PADR from PPPoE client |
| 19 cdrouter_pppoe_client_310 |
pppoe-c.tcl |
PPPoE client returns AC-Cookie in PADR when server sends AC-Cookie in PADO |
| 20 cdrouter_pppoe_client_320 |
pppoe-c.tcl |
PPPoE client maintains Relay-Session-Id during PPPoE session establishment |
| 21 cdrouter_pppoa_client_1 |
pppoa-c.tcl |
PPPoA client restarts PPP when PPP LCP Echo-Request fail |
| 22 cdrouter_pppoa_client_10 |
pppoa-c.tcl |
PPPoA client restarts PPP session when PPP LCP terminates PPP link |
| 23 cdrouter_pppoa_client_50 |
pppoa-c.tcl |
PPPoA PPP client replies to LCP Echo-Requests |
| 24 cdrouter_pppoa_client_60 |
pppoa-c.tcl |
PPPoA PPP client maintains LCP Magic Number during session |
| 25 cdrouter_pppoa_client_200 |
pppoa-c.tcl |
PPPoA/PPP restarts if PPP authentication fails |
| 26 cdrouter_pppoa_client_210 |
pppoa-c.tcl |
PPPoA/PPP can recover if LCP renegotiation is attempted |
| 27 cdrouter_pppoa_client_230 |
pppoa-c.tcl |
PPPoA/PPP can recover if LCP Echo-Request contains bad length |
| 28 cdrouter_pppoa_client_300 |
pppoa-c.tcl |
PPPoA restarts PPP link after detecting mismatched ATM encapsulation |
| 29 cdrouter_pptp_5 |
pptp-c.tcl |
PPTP client restarts PPTP connection when PPTP Echo Requests fail |
| 30 cdrouter_pptp_10 |
pptp-c.tcl |
PPTP client restarts PPTP connection when PPP LCP terminates PPP link |
| 31 cdrouter_pptp_20 |
pptp-c.tcl |
PPTP client restarts PPTP connection when TCP control session is closed |
| 32 cdrouter_pptp_25 |
pptp-c.tcl |
PPTP client restarts PPTP connection when TCP control session is reset |
| 33 cdrouter_pptp_30 |
pptp-c.tcl |
PPTP client initiates new call after a PPTP Call-Disconnect-Notify |
| 34 cdrouter_pptp_50 |
pptp-c.tcl |
PPTP PPP client replies to LCP Echo Requests |
| 35 cdrouter_pptp_60 |
pptp-c.tcl |
PPTP PPP client maintains LCP Magic Number during session |
| 36 cdrouter_pptp_200 |
pptp-c.tcl |
PPTP/PPP restarts if PPP authentication fails |
| 37 cdrouter_pptp_210 |
pptp-c.tcl |
PPTP/PPP can recover if LCP renegotiation is attempted |
| 38 cdrouter_pptp_230 |
pptp-c.tcl |
PPTP/PPP can recover if LCP Echo Request contains bad length |
| 39 cdrouter_l2tp_5 |
l2tp-c.tcl |
L2TP client restarts L2TP connection when L2TP Echo Requests are unanswered |
| 40 cdrouter_l2tp_10 |
l2tp-c.tcl |
L2TP client restarts L2TP connection when PPP LCP terminates PPP link |
| 41 cdrouter_l2tp_20 |
l2tp-c.tcl |
L2TP client initiates new L2TP connection after closing tunnel with StopCCN |
| 42 cdrouter_l2tp_30 |
l2tp-c.tcl |
L2TP client initiates new L2TP tunnel after receiving CDN and StopCCN |
| 43 cdrouter_l2tp_40 |
l2tp-c.tcl |
L2TP client sends HELLO after period of inactivity |
| 44 cdrouter_l2tp_50 |
l2tp-c.tcl |
L2TP PPP client replies to LCP Echo Requests |
| 45 cdrouter_l2tp_60 |
l2tp-c.tcl |
L2TP PPP client maintains LCP Magic Number during session |
| 46 cdrouter_l2tp_200 |
l2tp-c.tcl |
L2TP/PPP restarts if PPP authentication fails |
| 47 cdrouter_l2tp_210 |
l2tp-c.tcl |
L2TP/PPP can recover if LCP renegotiation is attempted |
| 48 cdrouter_l2tp_230 |
l2tp-c.tcl |
L2TP/PPP can recover if LCP Echo Request contains bad length |
| 49 cdrouter_ppp_client_1 |
pppt1-c.tcl |
PPP/T1 client restarts PPP when PPP LCP Echo-Requests fail |
| 50 cdrouter_ppp_client_10 |
pppt1-c.tcl |
PPP/T1 client restarts PPP session when PPP LCP terminates PPP link |
| 51 cdrouter_ppp_client_50 |
pppt1-c.tcl |
PPP/T1 client replies to LCP Echo-Requests |
| 52 cdrouter_ppp_client_60 |
pppt1-c.tcl |
PPP client maintains LCP Magic Number during session |
| 53 cdrouter_ppp_client_200 |
pppt1-c.tcl |
PPP/T1 restarts if PPP authentication fails |
| 54 cdrouter_ppp_client_210 |
pppt1-c.tcl |
PPP/T1 can recover if LCP renegotiation is attempted |
| 55 cdrouter_ppp_client_230 |
pppt1-c.tcl |
PPP/T1 can recover if LCP Echo-Request contains bad length |
| 56 cdrouter_chap_10 |
chap.tcl |
PPP CHAP authentication with various size key lengths |
| 57 cdrouter_chap_20 |
chap.tcl |
Verify PPP client will reauthenticate using CHAP during active connection |
| 58 cdrouter_dhcp_server_1 |
dhcp-s.tcl |
DHCP server returns same IP address when client renews |
| 59 cdrouter_dhcp_server_2 |
dhcp-s.tcl |
DHCP server rejects DHCPREQUESTS with non-offered IP address |
| 60 cdrouter_dhcp_server_100 |
dhcp-s.tcl |
Verify DHCP server accepts DHCP client packets with IPv4 length less than 576 |
| 61 cdrouter_dhcp_server_200 |
dhcp-s.tcl |
DHCP server rejects DHCPREQUESTS with IP address of other clients |
| 62 cdrouter_dhcp_server_300 |
dhcp-s.tcl |
Verify DHCP server ignores site-specific DHCP options |
| 63 cdrouter_dhcp_server_301 |
dhcp-s.tcl |
Verify DHCP server handles client option with length 0 |
| 64 cdrouter_dhcp_server_401 |
dhcp-s.tcl |
DHCP server ignores DHCP packets with an invalid UDP checksum |
| 65 cdrouter_dhcp_server_501 |
dhcp-s.tcl |
Verify DHCP server allows multiple DHCP clients with same name (DHCP option 12) |
| 66 cdrouter_dhcp_server_520 |
dhcp-s.tcl |
Verify DHCP server uses IPv4 broadcast when DHCP client sets broadcast flag |
| 67 cdrouter_dhcp_server_540 |
dhcp-s.tcl |
Verify DHCP server probes IPv4 client address before assigning |
| 68 cdrouter_dhcp_server_600 |
dhcp-s.tcl |
Verify DHCP server returns correct WINS server(s) |
| 69 cdrouter_dhcp_server_700 |
dhcp-s.tcl |
DHCP server responds to unicast and broadcast DHCPINFORM messages |
| 70 cdrouter_dhcp_server_710 |
dhcp-s.tcl |
Verify DHCP server handles clients using V-I Vendor-Specific Information option |
| 71 cdrouter_dhcp_server_720 |
dhcp-s.tcl |
Verify DHCP server handles clients using V-I Vendor Class option |
| 72 cdrouter_nat_1 |
nat.tcl |
Outbound TCP connections use NAPT |
| 73 cdrouter_nat_2 |
nat.tcl |
Outbound UDP connections use NAPT |
| 74 cdrouter_nat_100 |
nat.tcl |
Maximum number of TCP connections with single LAN host |
| 75 cdrouter_nat_101 |
nat.tcl |
NAPT with multiple LAN hosts using the same TCP source port |
| 76 cdrouter_nat_120 |
nat.tcl |
NAPT with a TCP and UDP connection using the same source port |
| 77 cdrouter_nat_130 |
nat.tcl |
Verify NAPT with outbound TCP connections using high and low source ports |
| 78 cdrouter_nat_150 |
nat.tcl |
Verify TCP source port can be reused after a passive close behind NAPT |
| 79 cdrouter_nat_200 |
nat.tcl |
Maximum number of UDP connections with single LAN host |
| 80 cdrouter_nat_201 |
nat.tcl |
NAPT with multiple LAN hosts using the same UDP source port |
| 81 cdrouter_nat_300 |
nat.tcl |
Verify NAPT checks source IP address of inbound UDP packets |
| 82 cdrouter_nat_320 |
nat.tcl |
UDP headers with a checksum equal to 0 should not be modified |
| 83 cdrouter_nat_330 |
nat.tcl |
Outbound TCP connection using IPv4 options |
| 84 cdrouter_nat_340 |
nat.tcl |
Outbound UDP connection using IPv4 options |
| 85 cdrouter_nat_350 |
nat.tcl |
Verify NAPT uses port parity preservation |
| 86 cdrouter_nat_360 |
nat.tcl |
Verify ICMP Destination Unreachable message from WAN does not destroy NAT mapping |
| 87 cdrouter_nat_400 |
nat.tcl |
Verify basic MSS Clamping for TCP sessions |
| 88 cdrouter_nat_401 |
nat.tcl |
Verify MSS Clamping with TCP options from different clients |
| 89 cdrouter_nat_410 |
nat.tcl |
Verify MSS Clamping does not modify smaller MSS values |
| 90 cdrouter_nat_500 |
nat.tcl |
NAT uses single binding for TCP session with same source IP and source port |
| 91 cdrouter_nat_501 |
nat.tcl |
NAT uses single binding for UDP session with same source IP and source port |
| 92 cdrouter_nat_510 |
nat.tcl |
NAT performs hairpin translation for LAN side TCP connections |
| 93 cdrouter_nat_511 |
nat.tcl |
NAT performs hairpin translation for LAN side UDP connections |
| 94 cdrouter_nat_520 |
nat.tcl |
Verify Port-Restricted, Address-Restricted, or Full-Cone NAPT for UDP connections |
| 95 cdrouter_nat_530 |
nat.tcl |
Verify TCP connections using TCP window scale option through NAT |
| 96 cdrouter_nat_timeout_1 |
nat-timeout.tcl |
Verify NAT TCP session timeout after FIN close |
| 97 cdrouter_nat_timeout_2 |
nat-timeout.tcl |
Verify NAT TCP session timeout after RST close |
| 98 cdrouter_nat_timeout_10 |
nat-timeout.tcl |
Verify NAT TCP session timeout for established session |
| 99 cdrouter_nat_timeout_11 |
nat-timeout.tcl |
Verify NAT TCP SYN session timeout |
| 100 cdrouter_nat_timeout_20 |
nat-timeout.tcl |
Verify NAT UDP session timeout |
| 101 cdrouter_nat_timeout_25 |
nat-timeout.tcl |
Verify NAT DNS session timeout |
| 102 cdrouter_nat_timeout_30 |
nat-timeout.tcl |
Verify NAT ICMP session timeout |
| 103 cdrouter_renumber_1 |
renum-dhcp.tcl |
Verify WAN client learns new IP address when WAN server renumbers |
| 104 cdrouter_renumber_2 |
renum-dhcp.tcl |
Verify existing TCP connections can be reestablished after WAN renumber |
| 105 cdrouter_renumber_3 |
renum-dhcp.tcl |
Verify LAN clients learn new DNS server during LAN side renew |
| 106 cdrouter_renumber_4 |
renum-dhcp.tcl |
Verify LAN clients learn new longer domain name during LAN side renew |
| 107 cdrouter_renumber_5 |
renum-dhcp.tcl |
Verify LAN clients learn new shorter domain name during LAN side renew |
| 108 cdrouter_renumber_6 |
renum-dhcp.tcl |
Verify WAN side switches to new gateway after renumber |
| 109 cdrouter_renumber_50 |
renum-dhcp.tcl |
Verify LAN clients learn additional DNS servers |
| 110 cdrouter_renum_pppoe_1 |
renum-pppoe.tcl |
Verify WAN PPPoE client learns new IP address when WAN server renumbers |
| 111 cdrouter_renum_pppoe_2 |
renum-pppoe.tcl |
Verify existing TCP connections can be reestablished after WAN renumber |
| 112 cdrouter_renum_pppoe_3 |
renum-pppoe.tcl |
Verify LAN clients learn new DNS server during LAN side renew |
| 113 cdrouter_renum_pppoe_6 |
renum-pppoe.tcl |
Verify WAN side switches to new gateway after renumber |
| 114 cdrouter_renum_pppoe_50 |
renum-pppoe.tcl |
Verify LAN clients learn additional DNS server |
| 115 cdrouter_renum_pppoa_1 |
renum-pppoa.tcl |
Verify WAN PPPoA client learns new IP address when WAN server renumbers |
| 116 cdrouter_renum_pppoa_2 |
renum-pppoa.tcl |
Verify existing TCP connections can be reestablished after WAN renumber |
| 117 cdrouter_renum_pppoa_3 |
renum-pppoa.tcl |
Verify LAN clients learn new DNS server during LAN side renew |
| 118 cdrouter_renum_pppoa_6 |
renum-pppoa.tcl |
Verify WAN side switches to new gateway after renumber |
| 119 cdrouter_renum_pppoa_50 |
renum-pppoa.tcl |
Verify LAN clients learn additional DNS server |
| 120 cdrouter_renum_pptp_1 |
renum-pptp.tcl |
Verify WAN PPTP client learns new IP address when WAN server renumbers |
| 121 cdrouter_renum_pptp_2 |
renum-pptp.tcl |
Verify existing TCP connections can be reestablished after WAN renumber |
| 122 cdrouter_renum_pptp_3 |
renum-pptp.tcl |
Verify LAN clients learn new DNS server during LAN side renew |
| 123 cdrouter_renum_pptp_6 |
renum-pptp.tcl |
Verify WAN side switches to new gateway after renumber |
| 124 cdrouter_renum_pptp_50 |
renum-pptp.tcl |
Verify LAN clients learn additional DNS server |
| 125 cdrouter_renum_l2tp_1 |
renum-l2tp.tcl |
Verify WAN L2TP client learns new IP address when WAN server renumbers |
| 126 cdrouter_renum_l2tp_2 |
renum-l2tp.tcl |
Verify existing TCP connections can be reestablished after WAN renumber |
| 127 cdrouter_renum_l2tp_3 |
renum-l2tp.tcl |
Verify LAN clients learn new DNS server during LAN side renew |
| 128 cdrouter_renum_l2tp_6 |
renum-l2tp.tcl |
Verify WAN side switches to new gateway after renumber |
| 129 cdrouter_renum_l2tp_50 |
renum-l2tp.tcl |
Verify LAN clients learn additional DNS server |
| 130 cdrouter_icmp_1 |
icmp.tcl |
Verify ICMP Echo Requests (ping) work through router |
| 131 cdrouter_icmp_2 |
icmp.tcl |
Verify ICMP Echo Requests from multiple LAN clients work through router |
| 132 cdrouter_icmp_5 |
icmp.tcl |
Verify ICMP Echo Requests to router's LAN side IP address from the LAN |
| 133 cdrouter_icmp_6 |
icmp.tcl |
Verify ICMP Echo Requests to router's WAN side IP address from the LAN |
| 134 cdrouter_icmp_10 |
icmp.tcl |
Verify ICMP Time Exceeded packet is sent when incoming TTL is 1 |
| 135 cdrouter_icmp_11 |
icmp.tcl |
Verify NAT translates IP address in ICMP Time Exceeded packet |
| 136 cdrouter_icmp_12 |
icmp.tcl |
Verify NAT translates IP address in ICMP Destination Unreachable |
| 137 cdrouter_icmp_20 |
icmp.tcl |
Verify router supports Path MTU Discovery over WAN interface |
| 138 cdrouter_firewall_1 |
firewall.tcl |
Inbound TCP connections to public side HTTP port are blocked |
| 139 cdrouter_firewall_2 |
firewall.tcl |
Inbound TCP connections to LAN hosts are blocked |
| 140 cdrouter_firewall_10 |
firewall.tcl |
DHCP server ignores DHCP client request from the WAN |
| 141 cdrouter_firewall_12 |
firewall.tcl |
DNS requests from the WAN are ignored by DNS proxy or relay |
| 142 cdrouter_firewall_100 |
firewall.tcl |
Perform TCP port scan test on router's public WAN IP address |
| 143 cdrouter_firewall_101 |
firewall.tcl |
Perform UDP port scan test on router's public WAN IP address |
| 144 cdrouter_firewall_110 |
firewall.tcl |
Perform TCP fragmentation port scan test on router's public WAN IP address |
| 145 cdrouter_firewall_301 |
firewall.tcl |
Verify firewall blocks/accepts piggyback TCP SYN connections from WAN |
| 146 cdrouter_app_2 |
apps.tcl |
Verify router supports the active mode FTP PORT command |
| 147 cdrouter_app_3 |
apps.tcl |
Multiple FTP connections using the same source port |
| 148 cdrouter_app_10 |
apps.tcl |
Connections opened for FTP PORT command check for correct IPv4 address |
| 149 cdrouter_app_11 |
apps.tcl |
Verify FTP PORT command succeeds when TCP segment is retransmitted |
| 150 cdrouter_app_12 |
apps.tcl |
Verify FTP PORT translation stays the same when TCP segment is retransmitted |
| 151 cdrouter_app_14 |
apps.tcl |
Verify router closes public ports opened with the FTP PORT command |
| 152 cdrouter_app_15 |
apps.tcl |
Verify router supports the active mode FTP EPRT command |
| 153 cdrouter_app_16 |
apps.tcl |
Verify translation of EPRT command accepts non default delimiters |
| 154 cdrouter_app_20 |
apps.tcl |
Verify DNS queries to router are forwarded to real DNS server |
| 155 cdrouter_app_21 |
apps.tcl |
Verify DNS queries sent to primary DNS server |
| 156 cdrouter_app_22 |
apps.tcl |
Verify DNS queries sent to backup DNS server |
| 157 cdrouter_app_25 |
apps.tcl |
Verify DNS relay on router fails over to backup DNS server |
| 158 cdrouter_app_30 |
apps.tcl |
Verify DNS queries sent directly to a 3rd party DNS server |
| 159 cdrouter_app_100 |
apps.tcl |
Verify router supports wrapping of TCP sequence number for FTP transfers |
| 160 cdrouter_app_110 |
apps.tcl |
Verify HTTPS session through the router |
| 161 cdrouter_app_120 |
apps.tcl |
Verify SMTP session through the router |
| 162 cdrouter_app_122 |
apps.tcl |
Verify POP3 session through the router |
| 163 cdrouter_app_124 |
apps.tcl |
Verify TFTP session through the router |
| 164 cdrouter_app_126 |
apps.tcl |
Verify NTP session through the router |
| 165 cdrouter_app_130 |
apps.tcl |
Verify STUN session through the router |
| 166 cdrouter_app_131 |
apps.tcl |
Verify authenticated STUN session through the router |
| 167 cdrouter_app_200 |
apps.tcl |
Verify router translates outbound H.323/Q.931 SETUP messages |
| 168 cdrouter_app_205 |
apps.tcl |
Verify router translates outbound H.245 Open Logical Channel Requests |
| 169 cdrouter_app_207 |
apps.tcl |
Verify router translates outbound H.245 Open Logical Channel Ack Response |
| 170 cdrouter_app_220 |
apps.tcl |
Verify router translates inbound H.323/Q.931 Setup messages |
| 171 cdrouter_app_225 |
apps.tcl |
Verify router translates inbound H.323/Q.931 Connect messages |
| 172 cdrouter_app_227 |
apps.tcl |
Verify router translates inbound H.245 Open Logical Channel Ack Response |
| 173 cdrouter_app_302 |
apps.tcl |
Verify router translates MSN File Transfer Invite messages |
| 174 cdrouter_app_305 |
apps.tcl |
Verify router translates MSN Voice Invite messages |
| 175 cdrouter_app_310 |
apps.tcl |
Verify router does not modify MSN fields related to NAT detection |
| 176 cdrouter_rtsp_1 |
apps.tcl |
Verify basic RTSP session with UDP transport |
| 177 cdrouter_rtsp_2 |
apps.tcl |
Verify basic RTSP session with UDP transport for multiple LAN hosts |
| 178 cdrouter_rtsp_10 |
apps.tcl |
Verify RTSP transport is translated in both outbound and inbound directions |
| 179 cdrouter_rtsp_20 |
apps.tcl |
Verify RTSP port mapping is deleted after TEARDOWN and TCP close |
| 180 cdrouter_rtsp_21 |
apps.tcl |
Verify RTSP port mapping is deleted after TEARDOWN and without TCP close |
| 181 cdrouter_rtsp_22 |
apps.tcl |
Verify RTSP port mappings still work when TCP connection is closed |
| 182 cdrouter_rtsp_30 |
apps.tcl |
Verify IPv4 destination in client transport SETUP is translated to public IP |
| 183 cdrouter_rtsp_50 |
apps.tcl |
Verify RTSP ALG supports persistent TCP connections |
| 184 cdrouter_ipsecpt_1 |
ipsecpt.tcl |
Verify IKE packets pass through router on UDP port 500 |
| 185 cdrouter_ipsecpt_2 |
ipsecpt.tcl |
Verify tunnel mode IPSEC packets pass through router |
| 186 cdrouter_ipsecpt_3 |
ipsecpt.tcl |
Fragmented tunnel mode IPSEC packets are forwarded between LAN and WAN |
| 187 cdrouter_ipsecpt_30 |
ipsecpt.tcl |
Verify unknown IPv4 protocol types using the pass through mechanism |
| 188 cdrouter_ipsecpt_100 |
ipsecpt.tcl |
Verify the maximum number of IPSEC pass through connections for a single LAN host |
| 189 cdrouter_ipsecpt_110 |
ipsecpt.tcl |
Verify IPSEC pass through with multiple LAN clients using same VPN server |
| 190 cdrouter_ipsecpt_120 |
ipsecpt.tcl |
Verify IKE with multiple LAN clients using same VPN server |
| 191 cdrouter_ipsecpt_200 |
ipsecpt.tcl |
IPSEC pass through without NAT-T based IPSEC client |
| 192 cdrouter_ipsecpt_210 |
ipsecpt.tcl |
IPSEC pass through with NAT-T based IPSEC client |
| 193 cdrouter_forward_1 |
forward.tcl |
Verify IPv4 TTL is decremented for forwarded packets |
| 194 cdrouter_forward_2 |
forward.tcl |
Verify packet is not forwarded when IPv4 TTL is 1 |
| 195 cdrouter_forward_3 |
forward.tcl |
Verify packet can be forwarded back through incoming LAN interface |
| 196 cdrouter_forward_4 |
forward.tcl |
Verify packet is not forwarded if IPv4 checksum is corrupt |
| 197 cdrouter_forward_10 |
forward.tcl |
Forward UDP packets with various packet lengths (LAN to WAN) |
| 198 cdrouter_forward_11 |
forward.tcl |
Forward UDP packets with various packet lengths (WAN to LAN) |
| 199 cdrouter_forward_20 |
forward.tcl |
No packets are forwarded if WAN lease expires |
| 200 cdrouter_rip_1 |
rip.tcl |
Verify router sends RIPv1/v2 update on LAN side |
| 201 cdrouter_rip_2 |
rip.tcl |
Verify router learns new RIP routes from LAN side RIP router (v1 or v2) |
| 202 cdrouter_rip_5 |
rip.tcl |
Verify router responds to RIP requests on LAN interface |
| 203 cdrouter_rip_10 |
rip.tcl |
Verify router selects RIP route with lowest metric (v1 or v2) |
| 204 cdrouter_rip_12 |
rip.tcl |
Verify router ignores routes with a metric of 16 |
| 205 cdrouter_rip_20 |
rip.tcl |
Verify router uses split horizon or poison reverse for learned RIP routes |
| 206 cdrouter_rip_30 |
rip.tcl |
Verify router annouces default route on LAN side |
| 207 cdrouter_rip_100 |
rip.tcl |
Verify the maximum number of RIP routes supported |
| 208 cdrouter_rip_200 |
rip.tcl |
Verify router learns new RIP routes from WAN side RIP router (v1 or v2) |
| 209 cdrouter_scale_1 |
scaling.tcl |
Verify all DHCP clients are operational |
| 210 cdrouter_scale_2 |
scaling.tcl |
Verify all DHCP clients with multiple TCP connections |
| 211 cdrouter_scale_3 |
scaling.tcl |
Verify all DHCP clients with single UDP connection |
| 212 cdrouter_scale_10 |
scaling.tcl |
No duplicate IP addresses are assigned when DHCP address pool is exhausted |
| 213 cdrouter_scale_15 |
scaling.tcl |
Verify all DHCP clients can create an IPSEC tunnel |
| 214 cdrouter_scale_20 |
scaling.tcl |
Verify all DHCP clients can create a PPTP tunnel |
| 215 cdrouter_scale_30 |
scaling.tcl |
Verify all DHCP clients can create a L2TP/IPSEC tunnel |
| 216 cdrouter_scale_40 |
scaling.tcl |
Verify all DHCP clients can create a L2TP/IPSEC tunnel with NAT-T |
| 217 cdrouter_vservice_10 |
vservice.tcl |
Verify each configured TCP virtual service |
| 218 cdrouter_vservice_20 |
vservice.tcl |
Verify each configured UDP virtual service |
| 219 cdrouter_vservice_30 |
vservice.tcl |
Verify TCP virtual services are reachable from the LAN side |
| 220 cdrouter_vservice_40 |
vservice.tcl |
Verify UDP virtual services are reachable from the LAN side |
| 221 cdrouter_urlfilter_10 |
url-filter.tcl |
Verify HTTP GETs to filtered URLs are blocked |
| 222 cdrouter_urlfilter_12 |
url-filter.tcl |
Verify HTTP GETs to filtered URLs are blocked without DNS lookups |
| 223 cdrouter_urlfilter_15 |
url-filter.tcl |
Verify HTTP HEADs to filtered URLs are blocked |
| 224 cdrouter_urlfilter_20 |
url-filter.tcl |
Verify HTTP POSTs to filtered URLs are blocked |
| 225 cdrouter_urlfilter_30 |
url-filter.tcl |
Verify URL filtering does not look at Cookie data |
| 226 cdrouter_urlfilter_40 |
url-filter.tcl |
Verify HTTPS GETs to filtered URLs are blocked |
| 227 cdrouter_tport_10 |
triggerp.tcl |
Verify basic case for each configured trigger port application |
| 228 cdrouter_tport_30 |
triggerp.tcl |
Verify multiple LAN hosts can use trigger ports after mappings are aged out |
| 229 cdrouter_ssdp_1 |
upnp.tcl |
Verify UPnP router responds to SSDP Discovery Requests on LAN |
| 230 cdrouter_ssdp_2 |
upnp.tcl |
Verify UPnP router does not respond to SSDP Discovery Requests on WAN |
| 231 cdrouter_ssdp_3 |
upnp.tcl |
Verify UPnP router supports discovery of required IGD devices and services |
| 232 cdrouter_upnp_10 |
upnp.tcl |
Verify XML description of IGD root device can be parsed |
| 233 cdrouter_upnp_12 |
upnp.tcl |
Verify XML descriptions can not be loaded from the WAN side of router |
| 234 cdrouter_upnp_20 |
upnp.tcl |
Verify XML description for WANIPConnection or WANPPPConnection service can be parsed |
| 235 cdrouter_upnp_25 |
upnp.tcl |
Verify router responds to UPnP Query for ConnectionStatus |
| 236 cdrouter_upnp_30 |
upnp.tcl |
Verify UPnP GetExternalIPAddress Action returns WAN IP address |
| 237 cdrouter_upnp_31 |
upnp.tcl |
Verify UPnP GetStatusInfo Action returns correct ConnectionStatus information |
| 238 cdrouter_upnp_32 |
upnp.tcl |
Verify UPnP GetStatusInfo Action returns increasing Uptime value |
| 239 cdrouter_upnp_35 |
upnp.tcl |
Add/delete dynamic UPnP TCP port mapping for wildcard IP source address |
| 240 cdrouter_upnp_36 |
upnp.tcl |
Add/delete dynamic UPnP TCP port mapping for specific IP source address |
| 241 cdrouter_upnp_40 |
upnp.tcl |
Add/delete dynamic UPnP UDP port mapping for wildcard IP source address |
| 242 cdrouter_upnp_41 |
upnp.tcl |
Add/delete dynamic UPnP UDP port mapping for specific IP source address |
| 243 cdrouter_upnp_45 |
upnp.tcl |
Verify UPnP Router rejects new port mappings that conflict |
| 244 cdrouter_upnp_50 |
upnp.tcl |
Verify dynamic UPnP port mapping is deleted when lease expires |
| 245 cdrouter_upnp_100 |
upnp.tcl |
Maximum number of UPnP TCP dynamic port mappings |
| 246 cdrouter_upnp_200 |
upnp.tcl |
Verify UPnP clients can subscribe/unsubcribe to events for WANIPConnection or WANPPPConnection |
| 247 cdrouter_upnp_201 |
upnp.tcl |
Verify UPnP clients can subscribe to events with infinite subscription time |
| 248 cdrouter_upnp_202 |
upnp.tcl |
Verify UPnP clients can renew NOTIFY events for WANIPConnection or WANPPPConnection |
| 249 cdrouter_upnp_203 |
upnp.tcl |
Verify router sends UPnP NOTIFY events for ConnectionStatus |
| 250 cdrouter_upnp_204 |
upnp.tcl |
Verify router sends UPnP NOTIFY events with updated ExternalIPAddress |
| 251 cdrouter_upnp_210 |
upnp.tcl |
Verify router stops sending NOTIFY events when subscription expires |
| 252 cdrouter_upnp_220 |
upnp.tcl |
Verify the maximum number of UPnP event subscriptions that can be created |
| 253 cdrouter_pptppt_1 |
pptp-pt.tcl |
PPTP control session can be established at port 1723 |
| 254 cdrouter_pptppt_2 |
pptp-pt.tcl |
Tunneled PPTP data packets pass through router (PPP over GRE) |
| 255 cdrouter_pptppt_100 |
pptp-pt.tcl |
Verify the max number of PPTP pass through connections for a single LAN host |
| 256 cdrouter_l2tppt_1 |
l2tp-pt.tcl |
Verify L2TP session passes through router |
| 257 cdrouter_l2tppt_2 |
l2tp-pt.tcl |
Verify L2TP over IPSEC session passes through router |
| 258 cdrouter_l2tppt_10 |
l2tp-pt.tcl |
Verify L2TP over IPSEC with NAT-T passes through router |
| 259 cdrouter_eapol_1 |
eapol.tcl |
Authenticator sends EAPOL packets to supplicant's unicast MAC address |
| 260 cdrouter_eapol_2 |
eapol.tcl |
Basic case of authenticator initiated authentication |
| 261 cdrouter_eapol_3 |
eapol.tcl |
Basic case of supplicant initiated authentication |
| 262 cdrouter_eapol_6 |
eapol.tcl |
Authenticator sends EAP Failure after supplicant sends EAPOL-Logoff |
| 263 cdrouter_eapol_8 |
eapol.tcl |
Authenticator sends EAP Failure if identity is unknown |
| 264 cdrouter_eapol_9 |
eapol.tcl |
Authenticator sends EAP Failure if authentication challenge fails |
| 265 cdrouter_eapol_20 |
eapol.tcl |
Authenticator retransmits EAP Identity Request if no response is received |
| 266 cdrouter_eapol_21 |
eapol.tcl |
Authenticator increases EAP identifier for each retransmitted identity request |
| 267 cdrouter_eapol_23 |
eapol.tcl |
Authenticator ignores EAP Identity Responses with unknown id field |
| 268 cdrouter_eapol_24 |
eapol.tcl |
Authenticator enters the held state after authentication is rejected |
| 269 cdrouter_eapol_100 |
eapol.tcl |
No packets are forwarded/processed when port is in unauthorized state |
| 270 cdrouter_eapol_105 |
eapol.tcl |
Inbound traffic is blocked when port is in unauthorized state |
| 271 cdrouter_eapol_110 |
eapol.tcl |
Packets are forwarded during reauthentication if port is in authenticated state |
| 272 cdrouter_eapol_112 |
eapol.tcl |
Port is placed in unauthenticated state if reauthentication fails (bad identity) |
| 273 cdrouter_eapol_113 |
eapol.tcl |
Port is placed in unauthorized state if reauthentication fails (bad auth) |
| 274 cdrouter_eapol_115 |
eapol.tcl |
Port is unauthorized after more than reAuthMax reauthentication attempts |
| 275 cdrouter_eapol_117 |
eapol.tcl |
EAP Success packets from supplicant do not authorize port |
| 276 cdrouter_eapol_130 |
eapol.tcl |
Authenticator initiates reauthentication with supplicant every reAuthPeriod |
| 277 cdrouter_eapol_140 |
eapol.tcl |
Port is placed in unauthorized state if 802.11 layer is reinitialized |
| 278 cdrouter_eapol_300 |
eapol.tcl |
Verify supplicant can login using all configured Identities |
| 279 cdrouter_eapol_500 |
eapol.tcl |
Authenticator handles EAP Start flood DoS attack |
| 280 cdrouter_eapol_501 |
eapol.tcl |
Authenticator handles EAP Logoff flood DoS attack |
| 281 cdrouter_eapol_502 |
eapol.tcl |
Authenticator handles EAP-of-Death DoS attack |
| 282 cdrouter_eapol_503 |
eapol.tcl |
Back-end flood DoS attack |
| 283 cdrouter_eapmd5_10 |
eap-md5.tcl |
Authenticator sends EAP Failure if MD5 Challenge Response is invalid |
| 284 cdrouter_eapmd5_20 |
eap-md5.tcl |
Authenticator sends EAP Failure if no response to EAP MD5 Challenge Request is received |
| 285 cdrouter_eapmd5_23 |
eap-md5.tcl |
Authenticator ignores EAP MD5 Responses with unknown id field |
| 286 cdrouter_eapmd5_500 |
eap-md5.tcl |
Authenticator handles EAP MD5 Challenge Request DoS attack |
| 287 cdrouter_eaptls_10 |
eap-tls.tcl |
Authenticator sends EAP Failure when TLS client fails to authenticate server |
| 288 cdrouter_eaptls_12 |
eap-tls.tcl |
Authenticator sends EAP Failure when TLS server fails to authenticate client |
| 289 cdrouter_eaptls_20 |
eap-tls.tcl |
Authenticator sends EAP Failure if no response to EAP-TLS Start request is received |
| 290 cdrouter_eaptls_23 |
eap-tls.tcl |
Authenticator ignores EAP-TLS Response with unknown id field |
| 291 cdrouter_eaptls_40 |
eap-tls.tcl |
Backend sends TLS Alert if supplicant fails server TLS authentication |
| 292 cdrouter_eaptls_115 |
eap-tls.tcl |
Port becomes unauthorized after reAuthMax attempts if TLS session times out |
| 293 cdrouter_eaptls_300 |
eap-tls.tcl |
EAP-TLS authenticator/backend ignores duplicate EAP-TLS packets |
| 294 cdrouter_eaptls_400 |
eap-tls.tcl |
EAP-TLS authentication using small EAP Fragment sizes |
| 295 cdrouter_eaptls_410 |
eap-tls.tcl |
EAP-TLS backend accepts EAP packets without EAP-TLS Message Length field |
| 296 cdrouter_eaptls_500 |
eap-tls.tcl |
Authenticator handles EAP-TLS bad length DoS attack |
| 297 cdrouter_wep_1 |
eap-wep.tcl |
Authenticator sends EAPOL-Key packet for unicast key after EAP-Success |
| 298 cdrouter_wep_5 |
eap-wep.tcl |
Verify old WEP keys no longer work after new WEP key is generated |
| 299 cdrouter_wep_10 |
eap-wep.tcl |
Verify the Replay Counter increases for each EAPOL-Key packet |
| 300 eapradius_1 |
eap-radius.tcl |
Verify authenticator sends EAP-Success after receiving Access-Accept |
| 301 eapradius_2 |
eap-radius.tcl |
Verify authenticator sends EAP-Failure after Access-Reject |
| 302 eapradius_5 |
eap-radius.tcl |
Validate common RADIUS attributes sent from authenticator |
| 303 eapradius_6 |
eap-radius.tcl |
Verify authentication fails if RADIUS secret is invalid |
| 304 eapradius_7 |
eap-radius.tcl |
Verify authentication fails if Message-Authenticator attribute is invalid |
| 305 eapradius_8 |
eap-radius.tcl |
Verify ID and authenticator are unique for each new Access-Request |
| 306 eapradius_9 |
eap-radius.tcl |
Verify authenticator sends EAP-Failure when no response from RADIUS in unauthenticated state |
| 307 eapradius_10 |
eap-radius.tcl |
Verify authenticator can reassemble EAP packets from many RADIUS eapMessage attributes |
| 308 eapradius_12 |
eap-radius.tcl |
Verify authenticator ignores RADIUS messages with invalid attribute list |
| 309 eapradius_14 |
eap-radius.tcl |
Verify authenticator ignores RADIUS messages without a Message-Authenticator attribute |
| 310 eapradius_20 |
eap-radius.tcl |
Verify authenticator sends canned EAP-Failure message when Access-Reject is received |
| 311 eapradius_21 |
eap-radius.tcl |
Verify authenticator sends canned EAP-Success message when Access-Accept is received |
| 312 cdrouter_pppoept_1 |
pppoe-pt.tcl |
Verify basic case of PPPoE pass through with LAN PPPoE client |
| 313 cdrouter_pppoept_2 |
pppoe-pt.tcl |
Verify PPPoE packets to unknown MAC address do not use PPPoE pass through |
| 314 cdrouter_esp_1 |
ipsec-esp.tcl |
The ESP header sequence number increases with each new IPSEC ESP packet |
| 315 cdrouter_esp_3 |
ipsec-esp.tcl |
Manual IPSEC keys continue to work after ESP sequence number wraps |
| 316 cdrouter_esp_5 |
ipsec-esp.tcl |
Verify no anti-relay techniques are used with manual IPSEC keys |
| 317 cdrouter_esp_8 |
ipsec-esp.tcl |
Verify inner IPv4 TTL is decremented for IPSEC tunneled packet |
| 318 cdrouter_esp_10 |
ipsec-esp.tcl |
Verify packets with wrong ESP authentication are dropped |
| 319 cdrouter_esp_20 |
ipsec-esp.tcl |
Verify Incoming IP fragments for ESP tunnel are reassembled |
| 320 cdrouter_esp_21 |
ipsec-esp.tcl |
Verify out-of-order IP fragments for ESP tunnel are reassembled |
| 321 cdrouter_esp_22 |
ipsec-esp.tcl |
Verify router fragments large IP packets before sending over IPSEC tunnel |
| 322 cdrouter_esp_100 |
ipsec-esp.tcl |
Verify router supports PMTU discovery for packets sent over IPSEC tunnel |
| 323 cdrouter_esp_101 |
ipsec-esp.tcl |
Verify DF bit from original packet is copied to encapsulation header |
| 324 cdrouter_esp_200 |
ipsec-esp.tcl |
Verify return traffic that does not use IPSEC/ESP is dropped |
| 325 cdrouter_esp_400 |
ipsec-esp.tcl |
Verify all configured IPSEC tunnels are operational |
| 326 cdrouter_dmz_1 |
dmz.tcl |
Inbound TCP connections to public side HTTP port are forwarded to DMZ host |
| 327 cdrouter_dmz_100 |
dmz.tcl |
Inbound TCP packets are sent to DMZ host for all ports |
| 328 cdrouter_dmz_101 |
dmz.tcl |
Inbound UDP packets are sent to DMZ host for all ports |
| 329 cdrouter_dmz_110 |
dmz.tcl |
ICMP Echo packets are forwarded to DMZ host |
| 330 cdrouter_dmz_200 |
dmz.tcl |
Non TCP, UDP, or ICMP protocol types are forwarded to DMZ host |
| 331 cdrouter_mcast_1 |
mcast.tcl |
IGMP packets from LAN are forwarded/proxied to WAN interface |
| 332 cdrouter_mcast_2 |
mcast.tcl |
Verify IPv4 TTL is decremented for multicast packets |
| 333 cdrouter_mcast_11 |
mcast.tcl |
Forward Multicast UDP packets with various packet lengths (LAN to WAN) |
| 334 cdrouter_mcast_12 |
mcast.tcl |
Forward Multicast UDP packets with various packet lengths (WAN to LAN) |
| 335 cdrouter_mcast_20 |
mcast.tcl |
Verify IGMP router periodically sends general IGMP Query on LAN interface |
| 336 cdrouter_mcast_50 |
mcast.tcl |
Multicast streams are not forwarded if no group members exist |
| 337 cdrouter_mcast_51 |
mcast.tcl |
Multicast streams are not forwarded after last member leaves group |
| 338 cdrouter_mcast_52 |
mcast.tcl |
Multicast streams are not forwarded after last member ages out |
| 339 cdrouter_mcast_53 |
mcast.tcl |
IGMP proxy interface answers IGMP general query requests |
| 340 cdrouter_mcast_54 |
mcast.tcl |
IGMP proxy interface answers IGMP specific query requests |
| 341 cdrouter_mcast_60 |
mcast.tcl |
Verify IGMP router sends IGMP Group Specific Query after last member leaves group |
| 342 cdrouter_mcast_70 |
mcast.tcl |
Verify IGMP router sends IGMP Leave after last group member ages out |
| 343 cdrouter_mcast_100 |
mcast.tcl |
Verify the maximum number of multicast groups received on the LAN |
| 344 cdrouter_mcast_110 |
mcast.tcl |
Verify IPTV channel change test scenario 1 (no overlap) |
| 345 cdrouter_mcast_120 |
mcast.tcl |
Verify IPTV channel change test scenario 2 (overlap) |
| 346 cdrouter_mcast_200 |
mcast.tcl |
Verify IGMPv3 membership with source specific ALLOW_NEW_SOURCES/BLOCK_OLD_SOURCES |
| 347 cdrouter_mcast_210 |
mcast.tcl |
Verify IGMPv3 router blocks incoming multicast sources that do not match the source list |
| 348 cdrouter_mcast_220 |
mcast.tcl |
Verify IGMPv3 router blocks incoming sources on a per group basis |
| 349 cdrouter_mcast_230 |
mcast.tcl |
Verify IGMPv3 source specific group with multiple sources |
| 350 cdrouter_mcast_240 |
mcast.tcl |
Verify IGMPv3 general query requests with source specific memberships |
| 351 cdrouter_mcast_250 |
mcast.tcl |
Verify IGMPv3 specific query requests with source specific memberships |
| 352 cdrouter_mcast_260 |
mcast.tcl |
Verify IGMPv3 group and source specific query requests |
| 353 cdrouter_mcast_300 |
mcast.tcl |
Verify IGMPv3 maximum number of multicast groups with multiple group records |
| 354 cdrouter_mcast_310 |
mcast.tcl |
Verify IGMPv3 source specific IPTV channel change test scenario |
| 355 cdrouter_dyndns_1 |
dyndns.tcl |
DynDNS client sends an update request when the WAN IP address changes |
| 356 cdrouter_dyndns_2 |
dyndns.tcl |
DynDNS client does not update if the WAN reestablishes with the same IP address |
| 357 cdrouter_dyndns_10 |
dyndns.tcl |
DynDNS client sends correct parameters in update request |
| 358 cdrouter_dyndns_20 |
dyndns.tcl |
DynDNS client uses DNS to resolve the address of members.dyndns.org |
| 359 cdrouter_dyndns_50 |
dyndns.tcl |
DynDNS client doesn't rely on DNS to determine if an update is necessary |
| 360 cdrouter_dyndns_101 |
dyndns.tcl |
DynDNS client reacts appropriately to error conditions |
| 361 cdrouter_sip_1 |
sip-alg.tcl |
Verify NAT translation of SIP headers during REGISTER |
| 362 cdrouter_sip_2 |
sip-alg.tcl |
Verify NAT translation of short format SIP headers during REGISTER |
| 363 cdrouter_sip_10 |
sip-alg.tcl |
Verify NAT translation of SIP headers during outbound call |
| 364 cdrouter_sip_11 |
sip-alg.tcl |
Verify NAT translation of short format SIP headers during outbound call |
| 365 cdrouter_sip_20 |
sip-alg.tcl |
Verify NAT translation of SIP headers during inbound call |
| 366 cdrouter_sip_21 |
sip-alg.tcl |
Verify NAT translation of short format SIP headers during inbound call |
| 367 cdrouter_sip_30 |
sip-alg.tcl |
Verify NAT translation of SDP headers during outbound call |
| 368 cdrouter_sip_31 |
sip-alg.tcl |
Verify NAT translation of SDP headers during inbound call |
| 369 cdrouter_sip_40 |
sip-alg.tcl |
Verify SIP call with client using source port not equal to 5060 |
| 370 cdrouter_sip_41 |
sip-alg.tcl |
Verify outbound SIP call with client 'Contact' header using different port |
| 371 cdrouter_sip_42 |
sip-alg.tcl |
Verify inbound SIP call with client 'Contact' header using different port |
| 372 cdrouter_sip_43 |
sip-alg.tcl |
Verify outbound SIP calls allow incoming RTP stream when caller uses mute |
| 373 cdrouter_sip_45 |
sip-alg.tcl |
Verify Via header port is used for response instead of UDP source port |
| 374 cdrouter_sip_50 |
sip-alg.tcl |
Verify NAT translation of SDP remains the same on retransmission of INVITE |
| 375 cdrouter_sip_60 |
sip-alg.tcl |
Verify RTP port mapping is deleted when SIP client ends call (BYE) |
| 376 cdrouter_sip_61 |
sip-alg.tcl |
Verify RTP port mapping is deleted when SIP proxy ends call (BYE) |
| 377 cdrouter_sip_62 |
sip-alg.tcl |
Verify RTP port mapping is deleted when SIP client cancels call (CANCEL) |
| 378 cdrouter_sip_63 |
sip-alg.tcl |
Verify RTP port mapping is deleted or not established if call setup fails |
| 379 cdrouter_sip_70 |
sip-alg.tcl |
Verify SIP ALG with various SIP URI formats |
| 380 cdrouter_sip_71 |
sip-alg.tcl |
Verify outbound calls with multiple SIP clients using the same SIP and SDP ports |
| 381 cdrouter_sip_72 |
sip-alg.tcl |
Verify inbound calls with multiple SIP clients using the same SIP and SDP ports |
| 382 cdrouter_sip_73 |
sip-alg.tcl |
Verify outbound calls with multiple SIP clients using corner case port 65535 for SDP |
| 383 cdrouter_sip_80 |
sip-alg.tcl |
Verify outbound SIP calls when server uses early media SDP setup |
| 384 cdrouter_sip_100 |
sip-alg.tcl |
Verify maximum number of simultaneous outbound SIP calls |
| 385 cdrouter_sip_101 |
sip-alg.tcl |
Verify maximum number of simultaneous inbound SIP calls |
| 386 dns_10 |
dns.tcl |
Verify DNS proxy does not cache DNS entry when DNS TTL is 0 |
| 387 dns_11 |
dns.tcl |
Verify DNS proxy returns TTL of 0 when returned DNS TTL is 0 |
| 388 dns_40 |
dns.tcl |
Verify AAAA IPv6 DNS queries to router are forwarded to real DNS server |
| 389 dns_41 |
dns.tcl |
Verify AAAA IPv6 DNS queries can return no address for IPv6 to IPv4 failover |
| 390 dns_45 |
dns.tcl |
Verify DNS failover when non-zero error codes are received in non-authoritative DNS response |
| 391 dns_46 |
dns.tcl |
Verify DNS failover when non-zero error codes are received in authoritative DNS response |
| 392 dns_50 |
dns.tcl |
Verify Reverse DNS queries to router are forwarded to real DNS server |
| 393 dns_51 |
dns.tcl |
Verify Reverse AAAA IPv6 DNS queries to router are forwarded to real DNS server |
| 394 dns_60 |
dns.tcl |
Verify DNS proxy fails over when new primary DNS server is learned |
| 395 dns_70 |
dns.tcl |
Verify DNS lookups with multiple IPv4 responses |
| 396 dns_100 |
dns.tcl |
Verify DNS proxy recovers after DNS server outage |
| 397 dns_110 |
dns.tcl |
Verify DNS queries including the EDNS0 option |
| 398 dns_120 |
dns.tcl |
Verify large DNS responses using EDNS0 option |
| 399 static_1 |
static.tcl |
Verify all LAN static routes with LAN side traffic only |
| 400 static_2 |
static.tcl |
Verify all LAN static routes with LAN to WAN traffic |
| 401 static_10 |
static.tcl |
Verify all WAN static routes |
| 402 static_20 |
static.tcl |
Verify all WAN static routes after WAN ISP address change |
| 403 cdrouter_dos_1 |
dos.tcl |
Send 'ping of death' ICMP request to LAN side of the router |
| 404 cdrouter_dos_10 |
dos.tcl |
Launch LAND attack against router's management port on the LAN |
| 405 cdrouter_dos_20 |
dos.tcl |
Verify that the DUT is not a Smurf reflector (ICMP attack) |
| 406 cdrouter_dos_21 |
dos.tcl |
Verify that the DUT is not a Fraggle reflector (UDP attack) |
| 407 cdrouter_dos_30 |
dos.tcl |
SYN floods an open port on the DUT from spoofed LAN clients |
| 408 cdrouter_dos_31 |
dos.tcl |
SYN floods an open port on the WAN from spoofed Internet addresses |
| 409 cdrouter_dos_32 |
dos.tcl |
ARP floods the DUT's LAN interface |
| 410 cdrouter_dos_33 |
dos.tcl |
Christmas Tree floods the service ports on the WAN from spoofed Internet addresses |
| 411 cdrouter_dos_34 |
dos.tcl |
Floods the WAN interface with anomalous TCP packets |
| 412 xbox_1 |
xbox.tcl |
IP Address Test: Verify DHCP IPv4 address or static IPv4 address |
| 413 xbox_2 |
xbox.tcl |
DNS Test: Verify DNS lookups from LAN client |
| 414 xbox_3 |
xbox.tcl |
MTU Test: Verify IPv4 MTU of 1364 for Xbox LIVE |
| 415 xbox_4 |
xbox.tcl |
ICMP Test: Verify ICMP Destination Unreachable message from WAN does not destroy NAT mapping |
| 416 xbox_5 |
xbox.tcl |
NAT Test: Verify Xbox NAT classification of Open, Moderate, or Strict |