Processes, ports, other commands

CommandPs

View the process of the system

[Email protected] ~]# Ps-aux

[Email protected] ~]# ps-elf

CommandNetstat

View ports and connection status

[[email protected] ~]# NETSTAT–LNP # View the ports on which the machine is open

[[email protected] ~]# Netstat–an # View the status of native and other host connections

[Email protected] ~]# netstat-an|grep119.29.186.209:80|grep-ic estab # See the number of concurrent, an nginx single-run static Web page can be 2w concurrency is also normal

CommandTcpdump

Grab Bag Tool

[[email protected] ~]# Tcpdump–nn # can view source IP and destination IP

[[email protected] ~]# tcpdump-nn-tcp and port22 # Crawl packets for TCP and port

[[email protected] ~]# tcpdump-nn-w 2.cap # record the captured bag to 2.cap

[[email protected] ~]# tcpdump-r 1.cap # Read the bag you just caught

[[email protected] ~]# tcpdump-nn-c 70-w 3.cap # grab a packet

[[email protected] ~]# tcpdump-nn-c 70-s0-w 3.cap # Crawl Full package

[[email protected] ~]# tcpdump-nn-i eth0 # crawl eth0 NIC Package

CommandTshark

It's also a clutch kit.

The first thing to install is yum install-y Wireshark

[Email protected] ~]# tshark-n-t a-rhttp.request-t fields-e "Frame.time"-E "ip.src"-E "http.host"-e "http.request. Method "-E" Http.request.uri "

# You can see which domain name the source IP accessed, what content was accessed, whether it was a picture or a htnl script

SortSort

Default by ASCII Code Row

-N # row by digit

-R # reverse sort, such as large to small

-T # Separator

-K3 # Take the third row

-U # to repeat

Uniq

to remove repetition, this usage is usually sorted first andthen uniq

-C # Count The number of repetitions,

This article is from the "11736718" blog, please be sure to keep this source http://11746718.blog.51cto.com/11736718/1876220

Processes, ports, other commands