Diferència entre revisions de la pàgina «A2. Eines bàsiques. Instal·lació, configuració i comprovació»
De Wiki IES Marianao. Departament Informàtica
(→Eines entorns Linux) |
(→iwconfig | iw) |
||
| (Hi ha 3 revisions intermèdies del mateix usuari que no es mostren) | |||
| Línia 103: | Línia 103: | ||
<html><pre><code class="basic"> | <html><pre><code class="basic"> | ||
| − | $ iwconfig | + | $ sudo iwconfig wlp2s0 |
| + | wlp2s0 IEEE 802.11 ESSID:"eduroam" | ||
| + | Mode:Managed Frequency:2.412 GHz Access Point: 1C:28:AF:C6:7F:00 | ||
| + | Bit Rate=72 Mb/s Tx-Power=23 dBm | ||
| + | Retry short limit:7 RTS thr:off Fragment thr:off | ||
| + | Encryption key:off | ||
| + | Power Management:off | ||
| + | Link Quality=44/70 Signal level=-66 dBm | ||
| + | Rx invalid nwid:0 Rx invalid crypt:0 Rx invalid frag:0 | ||
| + | Tx excessive retries:0 Invalid misc:0 Missed beacon:0 | ||
| + | |||
</code></pre></html> | </code></pre></html> | ||
<html><pre><code class="basic"> | <html><pre><code class="basic"> | ||
| − | $ iw dev | + | $ sudo iw dev |
| + | phy#0 | ||
| + | Interface wlp2s0 | ||
| + | ifindex 3 | ||
| + | wdev 0x1 | ||
| + | addr 44:1c:a8:9e:10:8f | ||
| + | ssid eduroam | ||
| + | type managed | ||
| + | txpower 23.00 dBm | ||
</code></pre></html> | </code></pre></html> | ||
<html><pre><code class="basic"> | <html><pre><code class="basic"> | ||
| − | $ iw phy | + | $ sudo iw phy |
| + | Wiphy phy0 | ||
| + | wiphy index: 0 | ||
| + | max # scan SSIDs: 1 | ||
| + | max scan IEs length: 0 bytes | ||
| + | max # sched scan SSIDs: 0 | ||
| + | max # match sets: 0 | ||
| + | Retry short limit: 7 | ||
| + | Retry long limit: 4 | ||
| + | Coverage class: 0 (up to 0m) | ||
| + | Supported Ciphers: | ||
| + | * WEP40 (00-0f-ac:1) | ||
| + | * WEP104 (00-0f-ac:5) | ||
| + | * TKIP (00-0f-ac:2) | ||
| + | * CCMP-128 (00-0f-ac:4) | ||
| + | * CMAC (00-0f-ac:6) | ||
| + | Available Antennas: TX 0 RX 0 | ||
| + | Supported interface modes: | ||
| + | * IBSS | ||
| + | * managed | ||
| + | Band 1: | ||
| + | Bitrates (non-HT): | ||
| + | * 1.0 Mbps | ||
| + | * 2.0 Mbps (short preamble supported) | ||
| + | * 5.5 Mbps (short preamble supported) | ||
| + | * 11.0 Mbps (short preamble supported) | ||
| + | * 6.0 Mbps | ||
| + | * 9.0 Mbps | ||
| + | * 12.0 Mbps | ||
| + | * 18.0 Mbps | ||
| + | * 24.0 Mbps | ||
| + | * 36.0 Mbps | ||
| + | * 48.0 Mbps | ||
| + | * 54.0 Mbps | ||
| + | Frequencies: | ||
| + | * 2412 MHz [1] (20.0 dBm) | ||
| + | * 2417 MHz [2] (20.0 dBm) | ||
| + | * 2422 MHz [3] (20.0 dBm) | ||
| + | * 2427 MHz [4] (20.0 dBm) | ||
| + | * 2432 MHz [5] (20.0 dBm) | ||
| + | * 2437 MHz [6] (20.0 dBm) | ||
| + | * 2442 MHz [7] (20.0 dBm) | ||
| + | * 2447 MHz [8] (20.0 dBm) | ||
| + | * 2452 MHz [9] (20.0 dBm) | ||
| + | * 2457 MHz [10] (20.0 dBm) | ||
| + | * 2462 MHz [11] (20.0 dBm) | ||
| + | * 2467 MHz [12] (20.0 dBm) | ||
| + | * 2472 MHz [13] (20.0 dBm) | ||
| + | * 2484 MHz [14] (disabled) | ||
| + | Band 2: | ||
| + | Bitrates (non-HT): | ||
| + | * 6.0 Mbps | ||
| + | * 9.0 Mbps | ||
| + | * 12.0 Mbps | ||
| + | * 18.0 Mbps | ||
| + | * 24.0 Mbps | ||
| + | * 36.0 Mbps | ||
| + | * 48.0 Mbps | ||
| + | * 54.0 Mbps | ||
| + | Frequencies: | ||
| + | * 5170 MHz [34] (23.0 dBm) | ||
| + | * 5180 MHz [36] (23.0 dBm) | ||
| + | * 5190 MHz [38] (23.0 dBm) | ||
| + | * 5200 MHz [40] (23.0 dBm) | ||
| + | * 5210 MHz [42] (23.0 dBm) | ||
| + | * 5220 MHz [44] (23.0 dBm) | ||
| + | * 5230 MHz [46] (23.0 dBm) | ||
| + | * 5240 MHz [48] (23.0 dBm) | ||
| + | * 5260 MHz [52] (20.0 dBm) (radar detection) | ||
| + | * 5280 MHz [56] (20.0 dBm) (radar detection) | ||
| + | * 5300 MHz [60] (20.0 dBm) (radar detection) | ||
| + | * 5320 MHz [64] (20.0 dBm) (radar detection) | ||
| + | * 5500 MHz [100] (26.0 dBm) (radar detection) | ||
| + | * 5520 MHz [104] (26.0 dBm) (radar detection) | ||
| + | * 5540 MHz [108] (26.0 dBm) (radar detection) | ||
| + | * 5560 MHz [112] (26.0 dBm) (radar detection) | ||
| + | * 5580 MHz [116] (26.0 dBm) (radar detection) | ||
| + | * 5600 MHz [120] (26.0 dBm) (radar detection) | ||
| + | * 5620 MHz [124] (26.0 dBm) (radar detection) | ||
| + | * 5640 MHz [128] (26.0 dBm) (radar detection) | ||
| + | * 5660 MHz [132] (26.0 dBm) (radar detection) | ||
| + | * 5680 MHz [136] (26.0 dBm) (radar detection) | ||
| + | * 5700 MHz [140] (26.0 dBm) (radar detection) | ||
| + | * 5745 MHz [149] (13.0 dBm) | ||
| + | * 5765 MHz [153] (13.0 dBm) | ||
| + | * 5785 MHz [157] (13.0 dBm) | ||
| + | * 5805 MHz [161] (13.0 dBm) | ||
| + | * 5825 MHz [165] (13.0 dBm) | ||
| + | * 5920 MHz [184] (disabled) | ||
| + | * 5940 MHz [188] (disabled) | ||
| + | * 5960 MHz [2] (23.0 dBm) | ||
| + | * 5980 MHz [6] (23.0 dBm) | ||
| + | * 6000 MHz [10] (23.0 dBm) | ||
| + | * 6020 MHz [14] (23.0 dBm) | ||
| + | * 6040 MHz [18] (23.0 dBm) | ||
| + | * 6060 MHz [22] (23.0 dBm) | ||
| + | * 6080 MHz [26] (23.0 dBm) | ||
| + | Supported commands: | ||
| + | * set_interface | ||
| + | * new_key | ||
| + | * join_ibss | ||
| + | * set_pmksa | ||
| + | * del_pmksa | ||
| + | * flush_pmksa | ||
| + | * connect | ||
| + | * disconnect | ||
| + | software interface modes (can always be added): | ||
| + | interface combinations are not supported | ||
| + | Device supports scan flush. | ||
| + | max # scan plans: 1 | ||
| + | max scan plan interval: -1 | ||
| + | max scan plan iterations: 0 | ||
| + | Supported extended features: | ||
</code></pre></html> | </code></pre></html> | ||
| − | |||
| − | |||
=== ifconfig === | === ifconfig === | ||
| Línia 277: | Línia 405: | ||
=== nslookup === | === nslookup === | ||
| + | |||
| + | Permet realitzar consultes de domini | ||
<html><pre><code class="basic"> | <html><pre><code class="basic"> | ||
| + | $ nslookup -query=ns institutmarianao.cat | ||
| + | Server: 127.0.0.53 | ||
| + | Address: 127.0.0.53#53 | ||
| + | |||
| + | Non-authoritative answer: | ||
| + | institutmarianao.cat nameserver = ns-es.1and1-dns.biz. | ||
| + | institutmarianao.cat nameserver = ns-es.1and1-dns.org. | ||
| + | institutmarianao.cat nameserver = ns-es.1and1-dns.com. | ||
| + | institutmarianao.cat nameserver = ns-es.1and1-dns.es. | ||
</code></pre></html> | </code></pre></html> | ||
=== dig === | === dig === | ||
| + | |||
| + | També permet realitzar consultes de domini | ||
<html><pre><code class="basic"> | <html><pre><code class="basic"> | ||
| − | < | + | $ dig institutmarianao.cat NS |
| + | |||
| + | ; <<>> DiG 9.18.28-0ubuntu0.20.04.1-Ubuntu <<>> institutmarianao.cat NS | ||
| + | ;; global options: +cmd | ||
| + | ;; Got answer: | ||
| + | ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 44672 | ||
| + | ;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 1 | ||
| + | |||
| + | ;; OPT PSEUDOSECTION: | ||
| + | ; EDNS: version: 0, flags:; udp: 65494 | ||
| + | ;; QUESTION SECTION: | ||
| + | ;institutmarianao.cat. IN NS | ||
| + | ;; ANSWER SECTION: | ||
| + | institutmarianao.cat. 7134 IN NS ns-es.1and1-dns.es. | ||
| + | institutmarianao.cat. 7134 IN NS ns-es.1and1-dns.com. | ||
| + | institutmarianao.cat. 7134 IN NS ns-es.1and1-dns.org. | ||
| + | institutmarianao.cat. 7134 IN NS ns-es.1and1-dns.biz. | ||
| + | ;; Query time: 0 msec | ||
| + | ;; SERVER: 127.0.0.53#53(127.0.0.53) (UDP) | ||
| + | ;; WHEN: Fri Sep 20 16:20:03 CEST 2024 | ||
| + | ;; MSG SIZE rcvd: 180 | ||
| + | </code></pre></html> | ||
== Recollida de dades == | == Recollida de dades == | ||
| Línia 294: | Línia 456: | ||
=== tcpdump === | === tcpdump === | ||
| − | + | Captura les comunicacions de xarxa d'un host ('''Sniffer'''). | |
| + | |||
| + | L'ajuda de tcpdump es divideix en dues entrades del manual de linux: | ||
| + | * '''man tcpdump''': opcions de l'eina per definir com es mostren les dades capturades | ||
| + | * '''man pcap-filter''': informació de la sintaxis dels filtres de captura | ||
| + | |||
| + | https://mediawiki.institutmarianao.cat/index.php?title=Tcpdump_i_WireShark_(Ethereal) tcpdump | ||
<html><pre><code class="basic"> | <html><pre><code class="basic"> | ||
| + | $sudo tcpdump -i enp2s0 -n -e dst host 192.168.8.4 and port 22 | ||
</code></pre></html> | </code></pre></html> | ||
| Línia 302: | Línia 471: | ||
=== nmap === | === nmap === | ||
| + | Permet escanejar i recollir informació de dispositius remots | ||
| − | + | https://mediawiki.institutmarianao.cat/index.php?title=Nmap nmap | |
| + | https://nmap.org/man/es/ | ||
<html><pre><code class="basic"> | <html><pre><code class="basic"> | ||
| + | $sudo nmap -sT -p T:1-1024 192.168.8.2 | ||
</code></pre></html> | </code></pre></html> | ||
| − | |||
| − | |||
== Accés remot i transferència d'arxius == | == Accés remot i transferència d'arxius == | ||
=== telnet === | === telnet === | ||
| + | |||
| + | Connexió remota | ||
<html><pre><code class="basic"> | <html><pre><code class="basic"> | ||
| + | $ telnet route-views.routeviews.org | ||
| + | Trying 128.223.51.103... | ||
| + | Connected to route-views.routeviews.org. | ||
| + | Escape character is '^]'. | ||
| + | |||
| + | [...] | ||
| + | |||
| + | User Access Verification | ||
| + | |||
| + | Username: rviews | ||
| + | route-views> | ||
</code></pre></html> | </code></pre></html> | ||
=== ftp/sftp === | === ftp/sftp === | ||
| + | |||
| + | Transferència d'arxius | ||
<html><pre><code class="basic"> | <html><pre><code class="basic"> | ||
| + | $ ftp ftp.rediris.es | ||
| + | Connected to ftp.rediris.es. | ||
| + | 220- Bienvenido al servicio de replicas de RedIRIS. | ||
| + | 220- Welcome to the RedIRIS mirror service. | ||
| + | 220 Only anonymous FTP is allowed here | ||
| + | Name (ftp.rediris.es:cfgs): anonymous | ||
| + | 230- RedIRIS - Red Académica y de Investigación Española | ||
| + | 230- RedIRIS - Spanish National Research Network | ||
| + | 230- | ||
| + | 230- ftp://ftp.rediris.es -=- http://ftp.rediris.es | ||
| + | 230 Anonymous user logged in | ||
| + | Remote system type is UNIX. | ||
| + | Using binary mode to transfer files. | ||
| + | ftp> dir | ||
| + | 200 PORT command successful | ||
| + | 150 Connecting to port 15855 | ||
| + | drwxr-xr-x 4 14 50 4096 Sep 20 2017 . | ||
| + | drwxr-xr-x 4 14 50 4096 Sep 20 2017 .. | ||
| + | lrwxrwxrwx 1 14 50 23 Jun 8 2017 debian -> sites/debian.org/debian | ||
| + | lrwxrwxrwx 1 14 50 26 Jul 18 2017 debian-cd -> sites/debian.org/debian-cd | ||
| + | drwxr-xr-x 2 14 50 8192 Jun 26 2021 mirror | ||
| + | drwxrwxr-x 61 14 50 8192 Apr 25 2023 sites | ||
| + | -rw-r--r-- 1 14 50 93 Jun 8 2017 welcome.msg | ||
| + | 226-Options: -a -l | ||
| + | 226 7 matches total | ||
| + | ftp> | ||
</code></pre></html> | </code></pre></html> | ||
=== ssh / scp === | === ssh / scp === | ||
| + | |||
| + | Connexió remota i transferència d'arxius xifrada. | ||
<html><pre><code class="basic"> | <html><pre><code class="basic"> | ||
| + | $ ssh -p 222 admin@192.168.8.2 | ||
| + | Password: | ||
| + | Last login: Thu Sep 12 18:05:30 2024 from debian-lap.marianao.local | ||
| + | |||
| + | ************ Welcome to NethServer ************ | ||
| + | |||
| + | This is a NethServer installation. | ||
| + | |||
| + | Before editing configuration files, be aware | ||
| + | of the automatic events and templates system. | ||
| + | |||
| + | |||
| + | http://docs.nethserver.org | ||
| + | |||
| + | *********************************************** | ||
| + | [admin@nethserver ~]$ | ||
</code></pre></html> | </code></pre></html> | ||
| − | |||
== Fitxers i serveis == | == Fitxers i serveis == | ||
Revisió de 19:56, 2 oct 2024
tornar M7 - Planificació i administració de xarxes
Contingut
Eines entorns Linux
Comprovació i connectivitat
ping
Utilitza el protocol ICMP per comprovar la connectivitat amb equips remots
$ ping -c 2 192.168.1.1
PING 192.168.1.1 (192.168.1.1) 56(84) bytes of data.
64 bytes from 192.168.1.1: icmp_seq=1 ttl=64 time=2.27 ms
64 bytes from 192.168.1.1: icmp_seq=2 ttl=64 time=1.77 ms
--- 192.168.1.1 ping statistics ---
2 packets transmitted, 2 received, 0% packet loss, time 1001ms
rtt min/avg/max/mdev = 1.766/2.016/2.266/0.250 ms
traceroute | tracepath
Printa la ruta que segueixen els paquets fins arribar a equips remots. Utilitza el camp TTL dels paquets IP
$ traceroute -n 8.8.8.8
traceroute to 8.8.8.8 (8.8.8.8), 30 hops max, 60 byte packets
1 192.168.1.1 2.208 ms 1.652 ms 1.546 ms
2 10.0.3.108 1.947 ms 2.206 ms 1.345 ms
3 172.16.11.97 1.708 ms 1.505 ms 1.642 ms
4 10.220.98.238 1.822 ms 1.743 ms 1.732 ms
5 * * *
6 81.196.118.208 17.104 ms * 16.975 ms
7 91.232.81.211 17.084 ms 74.125.119.226 17.231 ms 91.232.81.211 17.062 ms
8 192.178.110.85 14.710 ms 142.250.213.243 17.113 ms 192.178.110.151 18.154 ms
9 142.250.46.165 13.865 ms 74.125.253.203 18.217 ms 74.125.37.87 13.547 ms
10 8.8.8.8 17.808 ms 14.490 ms 13.861 ms
Informació i adreçament
arp
Consulta i gestiona la taula arp de l'equip
$ sudo arp -n
Address HWtype HWaddress Flags Mask Iface
192.168.1.21 (incomplete) enp2s0
192.168.1.1 ether 64:6e:60:25:fd:00 C enp2s0
192.168.1.20 (incomplete) enp2s0
ethtool
Consulta els paràmetres Ethernet d'una interfície
$ sudo ethtool enp2s0
Settings for enp2s0:
Supported ports: [ TP MII ]
Supported link modes: 10baseT/Half 10baseT/Full
100baseT/Half 100baseT/Full
1000baseT/Full
Supported pause frame use: Symmetric Receive-only
Supports auto-negotiation: Yes
Supported FEC modes: Not reported
Advertised link modes: 10baseT/Half 10baseT/Full
100baseT/Half 100baseT/Full
1000baseT/Full
Advertised pause frame use: Symmetric Receive-only
Advertised auto-negotiation: Yes
Advertised FEC modes: Not reported
Link partner advertised link modes: 10baseT/Half 10baseT/Full
100baseT/Half 100baseT/Full
1000baseT/Half 1000baseT/Full
Link partner advertised pause frame use: No
Link partner advertised auto-negotiation: Yes
Link partner advertised FEC modes: Not reported
Speed: 1000Mb/s
Duplex: Full
Auto-negotiation: on
master-slave cfg: preferred slave
master-slave status: slave
Port: Twisted Pair
PHYAD: 0
Transceiver: external
MDI-X: Unknown
Supports Wake-on: pumbg
Wake-on: d
Link detected: yes
iwconfig | iw
Consulta la informació d'una interfície WiFi
$ sudo iwconfig wlp2s0
wlp2s0 IEEE 802.11 ESSID:"eduroam"
Mode:Managed Frequency:2.412 GHz Access Point: 1C:28:AF:C6:7F:00
Bit Rate=72 Mb/s Tx-Power=23 dBm
Retry short limit:7 RTS thr:off Fragment thr:off
Encryption key:off
Power Management:off
Link Quality=44/70 Signal level=-66 dBm
Rx invalid nwid:0 Rx invalid crypt:0 Rx invalid frag:0
Tx excessive retries:0 Invalid misc:0 Missed beacon:0
$ sudo iw dev
phy#0
Interface wlp2s0
ifindex 3
wdev 0x1
addr 44:1c:a8:9e:10:8f
ssid eduroam
type managed
txpower 23.00 dBm
$ sudo iw phy
Wiphy phy0
wiphy index: 0
max # scan SSIDs: 1
max scan IEs length: 0 bytes
max # sched scan SSIDs: 0
max # match sets: 0
Retry short limit: 7
Retry long limit: 4
Coverage class: 0 (up to 0m)
Supported Ciphers:
* WEP40 (00-0f-ac:1)
* WEP104 (00-0f-ac:5)
* TKIP (00-0f-ac:2)
* CCMP-128 (00-0f-ac:4)
* CMAC (00-0f-ac:6)
Available Antennas: TX 0 RX 0
Supported interface modes:
* IBSS
* managed
Band 1:
Bitrates (non-HT):
* 1.0 Mbps
* 2.0 Mbps (short preamble supported)
* 5.5 Mbps (short preamble supported)
* 11.0 Mbps (short preamble supported)
* 6.0 Mbps
* 9.0 Mbps
* 12.0 Mbps
* 18.0 Mbps
* 24.0 Mbps
* 36.0 Mbps
* 48.0 Mbps
* 54.0 Mbps
Frequencies:
* 2412 MHz [1] (20.0 dBm)
* 2417 MHz [2] (20.0 dBm)
* 2422 MHz [3] (20.0 dBm)
* 2427 MHz [4] (20.0 dBm)
* 2432 MHz [5] (20.0 dBm)
* 2437 MHz [6] (20.0 dBm)
* 2442 MHz [7] (20.0 dBm)
* 2447 MHz [8] (20.0 dBm)
* 2452 MHz [9] (20.0 dBm)
* 2457 MHz [10] (20.0 dBm)
* 2462 MHz [11] (20.0 dBm)
* 2467 MHz [12] (20.0 dBm)
* 2472 MHz [13] (20.0 dBm)
* 2484 MHz [14] (disabled)
Band 2:
Bitrates (non-HT):
* 6.0 Mbps
* 9.0 Mbps
* 12.0 Mbps
* 18.0 Mbps
* 24.0 Mbps
* 36.0 Mbps
* 48.0 Mbps
* 54.0 Mbps
Frequencies:
* 5170 MHz [34] (23.0 dBm)
* 5180 MHz [36] (23.0 dBm)
* 5190 MHz [38] (23.0 dBm)
* 5200 MHz [40] (23.0 dBm)
* 5210 MHz [42] (23.0 dBm)
* 5220 MHz [44] (23.0 dBm)
* 5230 MHz [46] (23.0 dBm)
* 5240 MHz [48] (23.0 dBm)
* 5260 MHz [52] (20.0 dBm) (radar detection)
* 5280 MHz [56] (20.0 dBm) (radar detection)
* 5300 MHz [60] (20.0 dBm) (radar detection)
* 5320 MHz [64] (20.0 dBm) (radar detection)
* 5500 MHz [100] (26.0 dBm) (radar detection)
* 5520 MHz [104] (26.0 dBm) (radar detection)
* 5540 MHz [108] (26.0 dBm) (radar detection)
* 5560 MHz [112] (26.0 dBm) (radar detection)
* 5580 MHz [116] (26.0 dBm) (radar detection)
* 5600 MHz [120] (26.0 dBm) (radar detection)
* 5620 MHz [124] (26.0 dBm) (radar detection)
* 5640 MHz [128] (26.0 dBm) (radar detection)
* 5660 MHz [132] (26.0 dBm) (radar detection)
* 5680 MHz [136] (26.0 dBm) (radar detection)
* 5700 MHz [140] (26.0 dBm) (radar detection)
* 5745 MHz [149] (13.0 dBm)
* 5765 MHz [153] (13.0 dBm)
* 5785 MHz [157] (13.0 dBm)
* 5805 MHz [161] (13.0 dBm)
* 5825 MHz [165] (13.0 dBm)
* 5920 MHz [184] (disabled)
* 5940 MHz [188] (disabled)
* 5960 MHz [2] (23.0 dBm)
* 5980 MHz [6] (23.0 dBm)
* 6000 MHz [10] (23.0 dBm)
* 6020 MHz [14] (23.0 dBm)
* 6040 MHz [18] (23.0 dBm)
* 6060 MHz [22] (23.0 dBm)
* 6080 MHz [26] (23.0 dBm)
Supported commands:
* set_interface
* new_key
* join_ibss
* set_pmksa
* del_pmksa
* flush_pmksa
* connect
* disconnect
software interface modes (can always be added):
interface combinations are not supported
Device supports scan flush.
max # scan plans: 1
max scan plan interval: -1
max scan plan iterations: 0
Supported extended features:
ifconfig
Consulta i configura l'adreçament IP de les interfícies de xarxa. Es troba disponible al paquet net-tools.
$ sudo ifconfig enp2s0
enp2s0: flags=4163 mtu 1500
inet 192.168.1.137 netmask 255.255.255.0 broadcast 192.168.1.255
inet6 2a0c:5a84:c40f:c800:4727:68bb:8d05:6999 prefixlen 64 scopeid 0x0
inet6 fe80::201:6cff:fed2:cca6 prefixlen 64 scopeid 0x20
inet6 2a0c:5a84:c40f:c800:201:6cff:fed2:cca6 prefixlen 64 scopeid 0x0
ether 00:01:6c:d2:cc:a6 txqueuelen 1000 (Ethernet)
RX packets 24945 bytes 19127846 (18.2 MiB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 18461 bytes 7344974 (7.0 MiB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
ip
Nova eina que reemplaça d'altres com per exemple ifconfig, arp o route.
Permet abreviar les opcions, així per exemple "ip address" es pot executar com "ip a"
Per exemple per consultar l'adreçament IP d'una interfície
$ ip address show enp2s0
2: enp2s0: mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
link/ether 00:01:6c:d2:cc:a6 brd ff:ff:ff:ff:ff:ff
inet 192.168.1.137/24 brd 192.168.1.255 scope global dynamic enp2s0
valid_lft 80925sec preferred_lft 80925sec
inet6 2a0c:5a84:c40f:c800:4727:68bb:8d05:6999/64 scope global temporary dynamic
valid_lft 599324sec preferred_lft 80405sec
inet6 2a0c:5a84:c40f:c800:201:6cff:fed2:cca6/64 scope global mngtmpaddr noprefixroute
valid_lft forever preferred_lft forever
inet6 fe80::201:6cff:fed2:cca6/64 scope link noprefixroute
valid_lft forever preferred_lft forever
Per consultar només la informació d'enllaç (MAC)
$ ip link
1: lo: mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
2: enp2s0: mtu 1500 qdisc pfifo_fast state UP mode DEFAULT group default qlen 1000
link/ether 00:01:6c:d2:cc:a6 brd ff:ff:ff:ff:ff:ff
3: virbr1: mtu 1500 qdisc noqueue state DOWN mode DEFAULT group default qlen 1000
link/ether 52:54:00:f8:9e:d5 brd ff:ff:ff:ff:ff:ff
4: virbr0: mtu 1500 qdisc noqueue state DOWN mode DEFAULT group default qlen 1000
link/ether 52:54:00:4d:7c:f0 brd ff:ff:ff:ff:ff:ff
route
Consulta i gestiona la taula de ruta de l'equip
$ sudo route -n
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
0.0.0.0 192.168.1.1 0.0.0.0 UG 0 0 0 enp2s0
0.0.0.0 192.168.1.1 0.0.0.0 UG 100 0 0 enp2s0
192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0 enp2s0
192.168.10.0 0.0.0.0 255.255.255.0 U 0 0 0 virbr1
192.168.122.0 0.0.0.0 255.255.255.0 U 0 0 0 virbr0
netstat
Consulta informació i estadístiques de les comunicacions de xarxa de l'equip
Per exemple connexions TCP sobre IPv4
$ netstat -nt -4
Active Internet connections (w/o servers)
Proto Recv-Q Send-Q Local Address Foreign Address State
tcp 0 0 192.168.1.137:54798 87.106.143.229:443 ESTABLISHED
tcp 0 0 192.168.1.137:54554 34.107.243.93:443 ESTABLISHED
tcp 0 0 192.168.1.137:33110 74.120.9.237:443 ESTABLISHED
Ports en mode escolta (listening) UDP sobre IPv4. Serveis UDP de l'equip
$ sudo netstat -nlu -p -4
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
udp 0 0 192.168.1.137:53 0.0.0.0:* 1485/named
udp 0 0 192.168.1.137:53 0.0.0.0:* 1485/named
udp 0 0 192.168.1.137:53 0.0.0.0:* 1485/named
udp 0 0 192.168.1.137:53 0.0.0.0:* 1485/named
udp 0 0 127.0.0.1:53 0.0.0.0:* 1485/named
udp 0 0 127.0.0.1:53 0.0.0.0:* 1485/named
udp 0 0 127.0.0.1:53 0.0.0.0:* 1485/named
udp 0 0 127.0.0.1:53 0.0.0.0:* 1485/named
udp 0 0 127.0.0.53:53 0.0.0.0:* 667/systemd-resolve
udp 0 0 0.0.0.0:67 0.0.0.0:* 2243/dnsmasq
udp 0 0 0.0.0.0:67 0.0.0.0:* 2192/dnsmasq
udp 0 0 0.0.0.0:68 0.0.0.0:* 1326/dhclient
udp 0 0 0.0.0.0:69 0.0.0.0:* 1562/in.tftpd
udp 0 0 0.0.0.0:111 0.0.0.0:* 1/init
udp 0 0 192.168.1.255:137 0.0.0.0:* 1487/nmbd
udp 0 0 192.168.1.137:137 0.0.0.0:* 1487/nmbd
udp 0 0 0.0.0.0:137 0.0.0.0:* 1487/nmbd
udp 0 0 192.168.1.255:138 0.0.0.0:* 1487/nmbd
udp 0 0 192.168.1.137:138 0.0.0.0:* 1487/nmbd
udp 0 0 0.0.0.0:138 0.0.0.0:* 1487/nmbd
udp 0 0 0.0.0.0:631 0.0.0.0:* 1704/cups-browsed
udp 0 0 0.0.0.0:50077 0.0.0.0:* 705/avahi-daemon: r
udp 0 0 0.0.0.0:42420 0.0.0.0:* 4722/pcloud
udp 0 0 0.0.0.0:5353 0.0.0.0:* 705/avahi-daemon: r
udp 0 0 0.0.0.0:5355 0.0.0.0:* 667/systemd-resolve
Estadístiques UDP sobre IPv4
$ sudo netstat -su -4
IcmpMsg:
InType0: 12
InType3: 19
InType11: 77
OutType3: 2
OutType8: 43
Udp:
623 packets received
0 packets to unknown port received
0 packet receive errors
497 packets sent
0 receive buffer errors
0 send buffer errors
IgnoredMulti: 10
UdpLite:
IpExt:
InMcastPkts: 104
OutMcastPkts: 107
InBcastPkts: 199
OutBcastPkts: 185
InOctets: 5640736
OutOctets: 783409
InMcastOctets: 14320
OutMcastOctets: 14413
InBcastOctets: 34983
OutBcastOctets: 30151
InNoECTPkts: 6138
Domini
nslookup
Permet realitzar consultes de domini
$ nslookup -query=ns institutmarianao.cat
Server: 127.0.0.53
Address: 127.0.0.53#53
Non-authoritative answer:
institutmarianao.cat nameserver = ns-es.1and1-dns.biz.
institutmarianao.cat nameserver = ns-es.1and1-dns.org.
institutmarianao.cat nameserver = ns-es.1and1-dns.com.
institutmarianao.cat nameserver = ns-es.1and1-dns.es.
dig
També permet realitzar consultes de domini
$ dig institutmarianao.cat NS
; <<>> DiG 9.18.28-0ubuntu0.20.04.1-Ubuntu <<>> institutmarianao.cat NS
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 44672
;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;institutmarianao.cat. IN NS
;; ANSWER SECTION:
institutmarianao.cat. 7134 IN NS ns-es.1and1-dns.es.
institutmarianao.cat. 7134 IN NS ns-es.1and1-dns.com.
institutmarianao.cat. 7134 IN NS ns-es.1and1-dns.org.
institutmarianao.cat. 7134 IN NS ns-es.1and1-dns.biz.
;; Query time: 0 msec
;; SERVER: 127.0.0.53#53(127.0.0.53) (UDP)
;; WHEN: Fri Sep 20 16:20:03 CEST 2024
;; MSG SIZE rcvd: 180
Recollida de dades
tcpdump
Captura les comunicacions de xarxa d'un host (Sniffer).
L'ajuda de tcpdump es divideix en dues entrades del manual de linux:
- man tcpdump: opcions de l'eina per definir com es mostren les dades capturades
- man pcap-filter: informació de la sintaxis dels filtres de captura
https://mediawiki.institutmarianao.cat/index.php?title=Tcpdump_i_WireShark_(Ethereal) tcpdump
$sudo tcpdump -i enp2s0 -n -e dst host 192.168.8.4 and port 22
nmap
Permet escanejar i recollir informació de dispositius remots
https://mediawiki.institutmarianao.cat/index.php?title=Nmap nmap https://nmap.org/man/es/
$sudo nmap -sT -p T:1-1024 192.168.8.2
Accés remot i transferència d'arxius
telnet
Connexió remota
$ telnet route-views.routeviews.org
Trying 128.223.51.103...
Connected to route-views.routeviews.org.
Escape character is '^]'.
[...]
User Access Verification
Username: rviews
route-views>
ftp/sftp
Transferència d'arxius
$ ftp ftp.rediris.es
Connected to ftp.rediris.es.
220- Bienvenido al servicio de replicas de RedIRIS.
220- Welcome to the RedIRIS mirror service.
220 Only anonymous FTP is allowed here
Name (ftp.rediris.es:cfgs): anonymous
230- RedIRIS - Red Académica y de Investigación Española
230- RedIRIS - Spanish National Research Network
230-
230- ftp://ftp.rediris.es -=- http://ftp.rediris.es
230 Anonymous user logged in
Remote system type is UNIX.
Using binary mode to transfer files.
ftp> dir
200 PORT command successful
150 Connecting to port 15855
drwxr-xr-x 4 14 50 4096 Sep 20 2017 .
drwxr-xr-x 4 14 50 4096 Sep 20 2017 ..
lrwxrwxrwx 1 14 50 23 Jun 8 2017 debian -> sites/debian.org/debian
lrwxrwxrwx 1 14 50 26 Jul 18 2017 debian-cd -> sites/debian.org/debian-cd
drwxr-xr-x 2 14 50 8192 Jun 26 2021 mirror
drwxrwxr-x 61 14 50 8192 Apr 25 2023 sites
-rw-r--r-- 1 14 50 93 Jun 8 2017 welcome.msg
226-Options: -a -l
226 7 matches total
ftp>
ssh / scp
Connexió remota i transferència d'arxius xifrada.
$ ssh -p 222 admin@192.168.8.2
Password:
Last login: Thu Sep 12 18:05:30 2024 from debian-lap.marianao.local
************ Welcome to NethServer ************
This is a NethServer installation.
Before editing configuration files, be aware
of the automatic events and templates system.
http://docs.nethserver.org
***********************************************
[admin@nethserver ~]$
Fitxers i serveis
Gestió de xarxa sistemes Debian
/etc/network/interfaces
/etc/init.d/networking
Gestió de xarxa sistemes Red Hat
Gestió de xarxa netplan
Resolució de noms
/etc/hostname /etc/hosts /etc/resolv.conf
