Gremlin Docs Logo
Go to app
Quick Start Guides
AWS Quick Start Guide
Reliability Management (RM) Quick Start Guide
Getting Started
Compatibility
Installing the Gremlin Agent
Authenticating the Gremlin Agent
Configuring the Gremlin Agent
Enabling DNS collection
Platform
Managing the Gremlin Agent
Updating Gremlin
Managing Users and Teams
Configuring Role Based Access Control (RBAC)
User Authentication via SAML and Okta
Integrations
Health Checks
Notifications
Restricting Testing Times
Command Line Interface
Reports
Reliability Management
Services and Dependencies
Detected Risks
Test Suites
Reliability Tests
Reliability Score
Fault Injection
Targets
Experiments
Scenarios
GameDays
Failure Flags
Deploying Failure Flags on AWS Lambda
Deploying Failure Flags on AWS ECS
Deploying Failure Flags on Kubernetes
Deploying Failure Flags on the Istio service mesh via Envoy
Installing the Failure Flags SDK
Running Failure Flags experiments
API Reference
Classes, methods, & attributes
API Keys
Examples
Security
Container security
Release Notes
General
Linux
Integration Agent for Linux
Windows
Chao
Helm
Failure Flags: Lambda Extension
Failure Flags: Sidecar
Resources
Gremlin User Community SlackBlogTutorialsGlossary
Start your 30 day free trial.
START FOR FREE
Docs Home
Fault Injection
Blackhole Experiment

Blackhole Experiment

No items found.

The Blackhole experiment blocks inbound and outbound network traffic. It works by dropping IP packets at the transport layer (Layer 4) of the OSI model. You can specify the types of traffic to impact using additional arguments, including port, hostname, and IP address.

Linux

The Blackhole Gremlin uses existing traffic policing features in the Linux Kernel to drop targeted IP packets.

This Gremlin does not interact with <span class="code-class-custom">iptables</span>, and so it does not interfere with any existing <span class="code-class-custom">iptables</span> rulesets.

This Gremlin requires the <span class="code-class-custom">NET_ADMIN</span> capability, which is enabled for Gremlin by default at installation time. See capabilities(7)

Windows

The Blackhole Gremlin uses the Windows Filtering Platform to drop targeted IP packets.

Options

ParameterFlagRequiredDefault Version Description
IP Addresses -i IP address False 0.0.1 Only impact traffic to these IP addresses. Also accepts CIDR values (i.e. 10.0.0.0/24 ).
Device -d interfaces False Device discovery 0.0.1 Impact traffic over these network interfaces. Comma separated lists and multiple arguments supported. You can define multiple interfaces starting with agent version 2.30.0.
Hostnames -h hostnames False ^api.gremlin.com 0.0.1 Only impact traffic to these hostnames.
Remote Ports -p port numbers False ^53 0.0.1 Impact outgoing and incoming traffic to and from these remote ports. Also accepts port ranges (e.g. 8080-8085 ).
Local Ports -n port numbers False 0.0.1 Impact outgoing and incoming traffic to and from these local ports. Also accepts port ranges (e.g. 8080-8085 ).
Protocol -P {TCP, UDP, ICMP} False all 1.5.3 Only impact a specific protocol.
Providers WebUI and API Only False 0.0.1 External service providers to affect.
Tags WebUI and API Only False 0.0.1 Only impact traffic to hosts running Gremlin clients associated with these tags.
Don't Derive Exclusion Rules -E False False 2.51.1

Alternatively: --no-derived-exclusion-rules.

When this flag is not supplied, Gremlin will exclude its connection to api.gremlin.com, including intermediate proxies. This option disables that behavior.
Length -l int False 60 0.0.1 The length of the experiment ().
Previous
Previous
Targets
Next
Next
On this page
Back to top