13:49:13

$sudo apt-get install iproute

Чтение списков пакетов... Готово
Построение дерева зависимостей... Готово
Будут установлены следующие дополнительные пакеты:
  libatm1
Рекомендуемые пакеты:
  iproute-doc
НОВЫЕ пакеты, которые будут установлены:
  iproute libatm1
обновлено 0, установлено 2 новых пакетов, для удаления отмечено 0 пакетов, и 55 пакетов не обновлено.
Необходимо скачать 358kБ архивов.
После распаковки объем занятого дискового пространства возрастёт на 877kB.
Хотите продолжить [Д/н]?

13:49:16

$apt-get ip

E: Неверная операция ip

13:49:36

$apt-cache search ip | grep ^ip

[user@debian1:~]$ apt-cache search ip | less
audiooss - transparent OSS emulation over NAS
aumix - Simple text-based mixer control programd firewall script with DSL/ADSL support
autoclass - automatic classification or clusterings compilers etcBIP'er
autoconf - automatic configure script builderC address) 'Biplanes' and 'BIP'
autoconf2.13 - automatic configure script builder (obsolete version)
autodns-dhcp - Automatic DNS updates for DHCPitork format (documentation)
avahi-autoipd - Avahi IPv4LL network address configuration daemon
avahi-dnsconfd - Avahi DNS configuration toolserverk
avrdude - software for programming Atmel AVR microcontrollersrl support
...
iptotal - monitor for IP traffic, not requiring SNMP
iptraf - Interactive Colorful IP LAN Monitor
iptstate - Top-like state for netfilter/iptables
iputils-arping - Tool to send ICMP echo requests to an ARP address
iputils-ping - Tools to test the reachability of network hosts
iputils-tracepath - Tools to trace the network path to a remote host
ipv6calc - small utility for manipulating IPv6 addresses
ipvsadm - Linux Virtual Server support programs
ipx - utilities to configure the kernel ipx interface
ipython - enhanced interactive Python shell

13:50:12

$sudo apt-get install iproute

[user@debian1:~]$ apt-cache search ip | grep ^ip | less
ip2host - Resolve IPs to hostnames in web server logs
ipband - daemon for subnet bandwidth monitoring with reporting via email
ipcalc - parameter calculator for IPv4 addresses
ipcheck - Dyndns.org client to register your dynamic IP address
ipe - drawing editor for creating figures in PDF or PS formats
iperf - Internet Protocol bandwidth measuring tool
ipfm - a bandwidth analysis tool
ipgrab - Tcpdump-like utility that prints detailed header information
ipip - IP over IP Encapsulation Daemon
...
Получено:1 http://debian.org.ua etch/main libatm1 2.4.1-17 [69,0kB]
Получено:2 http://debian.org.ua etch/main iproute 20061002-3 [289kB]
Получено 358kB за 0s (796kB/c)
Выбор ранее не выбранного пакета libatm1.
(Чтение базы данных... на данный момент установлено 22851 файлов и каталогов.)
Распаковывается пакет libatm1 (из файла .../libatm1_2.4.1-17_i386.deb)...
Выбор ранее не выбранного пакета iproute.
Распаковывается пакет iproute (из файла .../iproute_20061002-3_i386.deb)...
Настраивается пакет libatm1 (2.4.1-17) ...
Настраивается пакет iproute (20061002-3) ...

13:50:18

$sudo ip

Usage: ip [ OPTIONS ] OBJECT { COMMAND | help }
       ip [ -force ] [-batch filename
where  OBJECT := { link | addr | route | rule | neigh | ntable | tunnel |
                   maddr | mroute | monitor | xfrm | moo }
       OPTIONS := { -V[ersion] | -s[tatistics] | -r[esolve] |
                    -f[amily] { inet | inet6 | ipx | dnet | link } |
                    -o[neline] | -t[imestamp] }

13:50:21

$sudo ip r

192.168.16.0/24 dev eth0  proto kernel  scope link  src 192.168.16.1
172.16.0.0/16 dev eth1  proto kernel  scope link  src 172.16.0.1
10.0.0.0/8 dev eth1  proto kernel  scope link  src 10.0.0.1
default via 192.168.16.254 dev eth0

13:50:26

$ip link eth1 set down

Command "eth1" is unknown, try "ip link help".

13:51:26

$ip link set down eth1

SIOCSIFFLAGS: Permission denied

13:51:43

$/sbin/ifconfig

eth0      Link encap:Ethernet  HWaddr 00:16:3E:00:00:01
          inet addr:192.168.16.1  Bcast:192.168.16.255  Mask:255.255.255.0
          inet6 addr: fe80::216:3eff:fe00:1/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:9729 errors:0 dropped:0 overruns:0 frame:0
          TX packets:12190 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:1198250 (1.1 MiB)  TX bytes:2708995 (2.5 MiB)
lo        Link encap:Local Loopback
          inet addr:127.0.0.1  Mask:255.0.0.0
          inet6 addr: ::1/128 Scope:Host
          UP LOOPBACK RUNNING  MTU:16436  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0
          RX bytes:0 (0.0 b)  TX bytes:0 (0.0 b)

13:53:41

$ping 192.168.15.254

PING 192.168.15.254 (192.168.15.254) 56(84) bytes of data.
--- 192.168.15.254 ping statistics ---
4 packets transmitted, 0 received, 100% packet loss, time 3004ms

13:53:55

$sudo route add -net 192.168.15.0 netmask 255.255.255.0 gw 10.0.35.1

SIOCADDRT: Network is unreachable

13:54:18

$ssh 192.168.16.254

13:54:34

$sudo route -n

Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
192.168.16.0    0.0.0.0         255.255.255.0   U     0      0        0 eth0
0.0.0.0         192.168.16.254  0.0.0.0         UG    0      0        0 eth0

13:54:37

$ssh 192.168.16.254

user@192.168.16.254's password:
Permission denied, please try again.
user@192.168.16.254's password:
Linux debian 2.6.18.8-xen #1 SMP Wed Nov 5 11:18:00 EET 2008 i686
The programs included with the Debian GNU/Linux system are free software;
the exact distribution terms for each program are described in the
individual files in /usr/share/doc/*/copyright.
Debian GNU/Linux comes with ABSOLUTELY NO WARRANTY, to the extent
permitted by applicable law.
Last login: Mon Aug 10 09:23:19 2009 from debian1.net.nt
...
PING 192.168.15.1 (192.168.15.1) 56(84) bytes of data.
--- 192.168.15.1 ping statistics ---
1 packets transmitted, 0 received, 100% packet loss, time 0ms
user@debian:~$
user@debian:~$
user@debian:~$
user@debian:~$ sudo route delete -net 192.168.15.0 netmask 255.255.255.0 gw 10.0.35.9
user@debian:~$ exit
logout
Connection to 192.168.16.254 closed.

13:57:55

$sudo route -n

Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
192.168.16.0    0.0.0.0         255.255.255.0   U     0      0        0 eth0
0.0.0.0         192.168.16.254  0.0.0.0         UG    0      0        0 eth0

13:58:00

$vim /etc/sudoers

13:59:00

$sudo nmap "192.168.16.*" -p 22

# /etc/sudoers
#
# This file MUST be edited with the 'visudo' command as root.
#
# See the man page for details on how to write a sudoers file.
#
Defaults        env_reset
# Host alias specification
# User alias specification
# Cmnd alias specification
# User privilege specification
root    ALL=(ALL) ALL
user    ALL=(ALL) ALL
sudo: nmap: command not found
"/etc/sudoers" [только для чтения] 18L, 320C

14:00:05

$sudo apt-get install nmap

Чтение списков пакетов... Готово
Построение дерева зависимостей... Готово
Будут установлены следующие дополнительные пакеты:
libpcre3
НОВЫЕ пакеты, которые будут установлены:
libpcre3 nmap
обновлено 0, установлено 2 новых пакетов, для удаления отмечено 0 пакетов, и 55 пакетов не обновлено.
Необходимо скачать 932kБ архивов.
После распаковки объем занятого дискового пространства возрастёт на 2863kB.
Хотите продолжить [Д/н]?
Получено:1 http://debian.org.ua etch/main libpcre3 6.7+7.4-4 [197kB]
Получено:2 http://debian.org.ua etch/main nmap 4.11-1 [736kB]
Получено 932kB за 6s (144kB/c)
Выбор ранее не выбранного пакета libpcre3.
(Чтение базы данных... на данный момент установлено 22901 файлов и каталогов.)
Распаковывается пакет libpcre3 (из файла .../libpcre3_6.7+7.4-4_i386.deb)...
Выбор ранее не выбранного пакета nmap.
Распаковывается пакет nmap (из файла .../archives/nmap_4.11-1_i386.deb)...
Настраивается пакет libpcre3 (6.7+7.4-4) ...
Настраивается пакет nmap (4.11-1) ...

14:00:23

$sudo nmap "192.168.16.*" -p 22

Starting Nmap 4.11 ( http://www.insecure.org/nmap/ ) at 2009-08-10 15:00 EEST
caught SIGINT signal, cleaning up

14:00:27

$sudo nmap "192.168.16.*" -p 22 | less

14:02:11

$sudo nmap -P0 192.168.16.21

Starting Nmap 4.11 ( http://www.insecure.org/nmap/ ) at 2009-08-10 15:02 EEST
Interesting ports on 192.168.16.21:
Not shown: 1675 closed ports
PORT     STATE SERVICE
22/tcp   open  ssh
80/tcp   open  http
5902/tcp open  vnc-2
6000/tcp open  X11
6002/tcp open  X11:2
MAC Address: 00:16:4E:00:00:01 (Nokia Danmark A/S)
Nmap finished: 1 IP address (1 host up) scanned in 15.465 seconds

14:02:35

$sudo nmap -O

Starting Nmap 4.11 ( http://www.insecure.org/nmap/ ) at 2009-08-10 15:04 EEST
Interesting ports on 192.168.16.21:
Not shown: 1675 closed ports
PORT     STATE SERVICE
22/tcp   open  ssh
80/tcp   open  http
5902/tcp open  vnc-2
6000/tcp open  X11
6002/tcp open  X11:2
MAC Address: 00:16:4E:00:00:01 (Nokia Danmark A/S)
...
TSeq(Class=TR%IPID=I)
T1(Resp=Y%DF=Y%W=FFFF%ACK=S++%Flags=AS%Ops=MNWNNT)
T2(Resp=N)
T3(Resp=Y%DF=Y%W=FFFF%ACK=S++%Flags=AS%Ops=MNWNNT)
T4(Resp=Y%DF=Y%W=0%ACK=O%Flags=R%Ops=)
T5(Resp=Y%DF=Y%W=0%ACK=S++%Flags=AR%Ops=)
T6(Resp=Y%DF=Y%W=0%ACK=O%Flags=R%Ops=)
T7(Resp=Y%DF=Y%W=0%ACK=S%Flags=AR%Ops=)
PU(Resp=Y%DF=N%TOS=0%IPLEN=38%RIPTL=148%RID=E%RIPCK=E%UCK=E%ULEN=134%DAT=E)
Nmap finished: 1 IP address (1 host up) scanned in 25.863 seconds

14:04:52

$ssh 192.168.16.254

user@192.168.16.254's password:
Linux debian 2.6.18.8-xen #1 SMP Wed Nov 5 11:18:00 EET 2008 i686
The programs included with the Debian GNU/Linux system are free software;
the exact distribution terms for each program are described in the
individual files in /usr/share/doc/*/copyright.
Debian GNU/Linux comes with ABSOLUTELY NO WARRANTY, to the extent
permitted by applicable law.
Last login: Mon Aug 10 11:54:58 2009 from debian1.net.nt
user@debian:~$ sudo less /var/log/daemon.log
Aug 10 00:01:26 debian named[7626]: client 192.168.16.24#52802: RFC 1918 response from Internet for 1.54.168.192.in-addr.arpa
...
64 bytes from 192.168.16.55: icmp_seq=1 ttl=128 time=0.336 ms
--- 192.168.16.55 ping statistics ---
1 packets transmitted, 1 received, 0% packet loss, time 0ms
rtt min/avg/max/mdev = 0.336/0.336/0.336/0.000 ms
user@debian:~$
user@debian:~$
user@debian:~$
user@debian:~$ exit
logout
Connection to 192.168.16.254 closed.

14:05:56

$sudo nmap -O 192.168.16.55

Starting Nmap 4.11 ( http://www.insecure.org/nmap/ ) at 2009-08-10 15:05 EEST
Interesting ports on 192.168.16.55:
Not shown: 1670 closed ports
PORT     STATE SERVICE
21/tcp   open  ftp
25/tcp   open  smtp
80/tcp   open  http
135/tcp  open  msrpc
139/tcp  open  netbios-ssn
443/tcp  open  https
445/tcp  open  microsoft-ds
1025/tcp open  NFS-or-IIS
3389/tcp open  ms-term-serv
5900/tcp open  vnc
MAC Address: 00:1E:8C:64:2A:66 (Unknown)
Device type: general purpose
Running: Microsoft Windows 2003/.NET|NT/2K/XP
OS details: Microsoft Windows 2003 Server or XP SP2
Nmap finished: 1 IP address (1 host up) scanned in 2.262 seconds

14:06:01

$sudo nmap -O 192.168.16.55

14:07:33

$ping -s 65535 192.168.16.55

Error: packet size 65535 is too large. Maximum is 65507

14:07:43

$ping -f

PING 192.168.16.55 (192.168.16.55) 65507(65535) bytes of data.
ping: cannot flood; minimal interval, allowed for user, is 200ms

14:07:58

$sudo

PING 192.168.16.55 (192.168.16.55) 65507(65535) bytes of data.
..
.
.
.^[[1;5.^[[.....................................................................................................................................................................................................................................................................................................................................................................................................
--- 192.168.16.55 ping statistics ---
8710 packets transmitted, 4427 received, 49% packet loss, time 105752ms
rtt min/avg/max/mdev = 11.511/13.410/130.264/13.034 ms, pipe 12, ipg/ewma 12.142/127.547 ms

14:09:52

$sudo ping -f -s 65507 192.168.16.55

14:10:38

$traceroute -n google.com

traceroute: Warning: google.com has multiple addresses; using 74.125.67.100
traceroute to google.com (74.125.67.100), 30 hops max, 40 byte packets
 1  192.168.16.254  1.233 ms  0.149 ms  0.065 ms
 2  192.168.200.2  0.521 ms  0.457 ms  0.426 ms
 3  192.168.100.1  1.337 ms  1.135 ms  1.135 ms
 4  193.200.68.189  3.430 ms  3.349 ms  3.082 ms
 5  193.200.69.241  3.634 ms  3.665 ms  4.175 ms
 6  62.149.4.25  4.411 ms  4.466 ms  4.346 ms
 7  62.149.2.100  4.030 ms  4.263 ms  3.833 ms
 8  195.35.65.34  4.327 ms  5.231 ms  3.947 ms
 9  88.81.240.166  4.079 ms  4.957 ms  4.662 ms
10  209.85.241.54  5.027 ms  4.887 ms  4.698 ms
11  72.14.239.14  27.547 ms  27.499 ms  28.036 ms
12  72.14.232.102  48.011 ms  43.028 ms  42.916 ms
13  209.85.248.182  54.029 ms  50.755 ms  50.323 ms
14  72.14.233.62  56.505 ms  60.697 ms  56.286 ms
15  209.85.250.54  152.350 ms  122.292 ms  122.955 ms
16  209.85.251.9  141.119 ms  143.524 ms  146.895 ms
17  72.14.239.127  142.997 ms 72.14.239.131  142.208 ms  143.038 ms
18  209.85.255.194  144.824 ms  143.799 ms  143.838 ms
19  74.125.67.100  142.440 ms  142.393 ms  141.888 ms

14:12:01

$traceroute

traceroute: Warning: google.com has multiple addresses; using 74.125.45.100
traceroute to google.com (74.125.45.100), 30 hops max, 40 byte packets
 1  debian (192.168.16.254)  1.329 ms  0.091 ms  0.149 ms
 2  192.168.200.2 (192.168.200.2)  0.566 ms  0.497 ms  0.479 ms
 3  192.168.100.1 (192.168.100.1)  1.167 ms  1.110 ms  1.117 ms
 4  193.200.68.189 (193.200.68.189)  3.405 ms  4.243 ms  3.354 ms
 5  193.200.69.241 (193.200.69.241)  3.766 ms  3.283 ms  3.793 ms
 6  mgline-ua-ll-gw.colocall.com (62.149.4.25)  4.081 ms  4.308 ms  7.047 ms
 7  cthulhu.colocall.net (62.149.2.100)  5.570 ms  4.700 ms  5.031 ms
 8  topnet-10G-gw.ix.net.ua (195.35.65.34)  4.051 ms  9.869 ms  5.285 ms
 9  ar3-ge-uk-topnet.google.com (88.81.240.166)  37.373 ms  5.003 ms  4.649 ms
10  209.85.241.54 (209.85.241.54)  5.625 ms  4.456 ms  5.814 ms
11  72.14.239.14 (72.14.239.14)  51.006 ms  47.465 ms  29.092 ms
12  72.14.232.102 (72.14.232.102)  43.035 ms  44.703 ms  91.261 ms
13  209.85.248.182 (209.85.248.182)  49.635 ms  50.250 ms  50.410 ms
14  72.14.233.62 (72.14.233.62)  55.697 ms  56.385 ms  62.146 ms
15  209.85.250.54 (209.85.250.54)  122.851 ms  122.586 ms  130.216 ms
16  209.85.251.9 (209.85.251.9)  141.559 ms  141.452 ms  141.850 ms
17  72.14.232.213 (72.14.232.213)  142.369 ms 72.14.232.215 (72.14.232.215)  142.207 ms  144.533 ms
18  209.85.253.137 (209.85.253.137)  150.855 ms 209.85.253.141 (209.85.253.141)  151.323 ms 209.85.253.137 (209.85.253.137)  179.847 ms
19  yx-in-f100.google.com (74.125.45.100)  142.635 ms  147.502 ms  167.267 ms

14:12:20

$ssh 10.0.17.100

The authenticity of host '10.0.17.100 (10.0.17.100)' can't be established.
RSA key fingerprint is bd:1d:69:d6:81:e2:e1:84:90:bd:80:55:21:a9:e2:0e.
Are you sure you want to continue connecting (yes/no)? yes

14:39:41

$ssh 10.0.17.100 -l clint

Connection to 10.0.17.100 closed.

/dev/ttypa

14:41:52

$screen -x

/dev/ttyp0

14:43:24

$screen -x

/dev/ttyp4

14:44:13

$sudo apt-get install ipcalc

Password:
Чтение списков пакетов... Готово
Построение дерева зависимостей... Готово
НОВЫЕ пакеты, которые будут установлены:
  ipcalc
обновлено 0, установлено 1 новых пакетов, для удаления отмечено 0 пакетов, и 55 пакетов не обновлено.
Необходимо скачать 26,4kБ архивов.
После распаковки объем занятого дискового пространства возрастёт на 131kB.
Получено:1 http://debian.org.ua etch/main ipcalc 0.41-1 [26,4kB]
Получено 26,4kB за 2s (9758B/c)
Выбор ранее не выбранного пакета ipcalc.
(Чтение базы данных... на данный момент установлено 22934 файлов и каталогов.)
Распаковывается пакет ipcalc (из файла .../archives/ipcalc_0.41-1_all.deb)...
Настраивается пакет ipcalc (0.41-1) ...

14:57:40

$ipcalc 192.168.18.0/24 /27

Address:   192.168.18.0         11000000.10101000.00010010. 00000000
Netmask:   255.255.255.0 = 24   11111111.11111111.11111111. 00000000
Wildcard:  0.0.0.255            00000000.00000000.00000000. 11111111
=>
Network:   192.168.18.0/24      11000000.10101000.00010010. 00000000
HostMin:   192.168.18.1         11000000.10101000.00010010. 00000001
HostMax:   192.168.18.254       11000000.10101000.00010010. 11111110
Broadcast: 192.168.18.255       11000000.10101000.00010010. 11111111
Hosts/Net: 254                   Class C, Private Internet
Subnets after transition from /24 to /27
...
Broadcast: 192.168.18.223       11000000.10101000.00010010.110 11111
Hosts/Net: 30                    Class C, Private Internet
 8.
Network:   192.168.18.224/27    11000000.10101000.00010010.111 00000
HostMin:   192.168.18.225       11000000.10101000.00010010.111 00001
HostMax:   192.168.18.254       11000000.10101000.00010010.111 11110
Broadcast: 192.168.18.255       11000000.10101000.00010010.111 11111
Hosts/Net: 30                    Class C, Private Internet
Subnets:   8
Hosts:     240

14:57:59

$ipcalc 192.168.18.0/24 /27 | less

14:58:34

$ipcalc 192.168.18.0/24 /27 | less

/dev/ttypc

15:08:04

$[user@debian1:~]$

bash: [user@debian1:~]$: command not found

15:08:10

$[user@debian1:~]$

bash: [user@debian1:~]$: command not found

15:08:11

$[user@debian1:~]$

bash: [user@debian1:~]$: command not found

15:08:14

$[user@debian1:~]$

bash: [user@debian1:~]$: command not found

15:08:23

$[user@debian1:~]$

bash: [user@debian1:~]$: command not found

15:08:23

$[user@debian1:~]$

bash: [user@debian1:~]$: command not found

15:08:23

$[user@debian1:~]$

bash: [user@debian1:~]$: command not found

15:08:30

$[user@debian1:~]$

bash: [user@debian1:~]$: command not found

15:08:30

$[user@debian1:~]$

bash: [user@debian1:~]$: command not found

15:08:30

$screen -x

15:13:48

$ifconfig -a

bash: ifconfig: command not found

15:14:20

$sudo ifconfig -a

Password:
eth0      Link encap:Ethernet  HWaddr 00:16:3E:00:00:01
          inet addr:192.168.16.1  Bcast:192.168.16.255  Mask:255.255.255.0
          inet6 addr: fe80::216:3eff:fe00:1/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:263400 errors:0 dropped:0 overruns:0 frame:0
          TX packets:467829 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:302932352 (288.8 MiB)  TX bytes:603017082 (575.0 MiB)
eth1      Link encap:Ethernet  HWaddr 00:16:3E:EE:01:01
...
          RX packets:3 errors:0 dropped:0 overruns:0 frame:0
          TX packets:3 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0
          RX bytes:128 (128.0 b)  TX bytes:128 (128.0 b)
sit0      Link encap:IPv6-in-IPv4
          NOARP  MTU:1480  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0
          RX bytes:0 (0.0 b)  TX bytes:0 (0.0 b)

15:14:50

$cat /etc/network/interfaces

auto lo eth0 eth1
iface lo inet loopback
iface  eth0 inet static
         address 192.168.16.1
         netmask 255.255.255.0
         gateway 192.168.16.254
iface eth1 inet static
        address 172.16.0.1
        netmask 255.255.0.0
#       up logger -p emerg TEST

15:15:42

$ifconfig eth1 192.168.18.1 netmask 255.255.255.224

bash: ifconfig: command not found

15:17:45

$sodo ifconfig eth1 192.168.18.1 netmask 255.255.255.224

bash: sodo: command not found

15:17:56

$sudo ifconfig eth1 192.168.18.1 netmask 255.255.255.224

15:18:04

$ifconfig -a

bash: ifconfig: command not found

15:18:32

$sudo ifconfig -a

eth0      Link encap:Ethernet  HWaddr 00:16:3E:00:00:01
          inet addr:192.168.16.1  Bcast:192.168.16.255  Mask:255.255.255.0
          inet6 addr: fe80::216:3eff:fe00:1/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:263831 errors:0 dropped:0 overruns:0 frame:0
          TX packets:468460 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:302965137 (288.9 MiB)  TX bytes:603113343 (575.1 MiB)
eth1      Link encap:Ethernet  HWaddr 00:16:3E:EE:01:01
          inet addr:192.168.18.1  Bcast:192.168.18.31  Mask:255.255.255.224
...
          RX packets:3 errors:0 dropped:0 overruns:0 frame:0
          TX packets:3 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0
          RX bytes:128 (128.0 b)  TX bytes:128 (128.0 b)
sit0      Link encap:IPv6-in-IPv4
          NOARP  MTU:1480  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0
          RX bytes:0 (0.0 b)  TX bytes:0 (0.0 b)

/dev/ttyp4

15:39:49

$ssh 192.168.16.9

The authenticity of host '192.168.16.9 (192.168.16.9)' can't be established.
RSA key fingerprint is 51:5b:32:d8:70:19:6d:04:c7:b4:11:49:13:74:dc:bc.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added '192.168.16.9' (RSA) to the list of known hosts.
user@192.168.16.9's password:
Linux debiant 2.6.18-5-xen-686 #1 SMP Fri Jun 1 05:05:24 UTC 2007 i686
The programs included with the Debian GNU/Linux system are free software;
the exact distribution terms for each program are described in the
individual files in /usr/share/doc/*/copyright.
Debian GNU/Linux comes with ABSOLUTELY NO WARRANTY, to the extent
permitted by applicable law.
Last login: Mon Aug 10 16:26:16 2009 from 192.168.16.8
l3-agent is already running: pid=1269; pidfile=/home/user/.lilalo/l3-agent.pid

15:40:40

$sudo route -n

Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
192.168.18.96   0.0.0.0         255.255.255.224 U     0      0        0 eth2
192.168.18.64   0.0.0.0         255.255.255.224 U     0      0        0 eth1
192.168.16.0    0.0.0.0         255.255.255.0   U     0      0        0 eth0
0.0.0.0         192.168.18.65   0.0.0.0         UG    0      0        0 eth1

/dev/ttyp6

15:40:41

$screen -x

/dev/ttyp4

15:40:47

15:40:51

$echo 192.168.18.65

192.168.18.65

15:40:54

$sudo

Usage: inet_route [-vF] del {-host|-net} Target[/prefix] [gw Gw] [metric M] [[dev] If]
       inet_route [-vF] add {-host|-net} Target[/prefix] [gw Gw] [metric M]
                              [netmask N] [mss Mss] [window W] [irtt I]
                              [mod] [dyn] [reinstate] [[dev] If]
       inet_route [-vF] add {-host|-net} Target[/prefix] [metric M] reject
       inet_route [-FC] flush      NOT supported

15:41:10

$sudo route delete default

15:41:12

$sudo route add default gw 192.168.16.254

/dev/ttypa

15:41:13

$screen -x

/dev/ttyp4

15:41:40

$sudo route delete default

[user@debian9:~]$ sudo apt-get install tcpdump
Чтение списков пакетов... Готово
Построение дерева зависимостей... Готово
Будут установлены следующие дополнительные пакеты:
libpcap0.8
НОВЫЕ пакеты, которые будут установлены:
libpcap0.8 tcpdump
обновлено 0, установлено 2 новых пакетов, для удаления отмечено 0 пакетов, и 55 пакетов не обновлено.
Необходимо скачать 392kБ архивов.
После распаковки объем занятого дискового пространства возрастёт на 877kB.
Хотите продолжить [Д/н]?
Получено:1 http://debian.org.ua etch/main libpcap0.8 0.9.5-1 [89,5kB]
Получено:2 http://debian.org.ua etch/main tcpdump 3.9.5-2etch1 [303kB]
Получено 392kB за 0s (7661kB/c)
Выбор ранее не выбранного пакета libpcap0.8.
(Чтение базы данных... на данный момент установлено 22620 файлов и каталогов.)
Распаковывается пакет libpcap0.8 (из файла .../libpcap0.8_0.9.5-1_i386.deb)...
Выбор ранее не выбранного пакета tcpdump.
Распаковывается пакет tcpdump (из файла .../tcpdump_3.9.5-2etch1_i386.deb)...
Настраивается пакет libpcap0.8 (0.9.5-1) ...
Настраивается пакет tcpdump (3.9.5-2etch1) ...

15:41:42

$sudo route add default gw 192.168.18.65

15:41:48

$sudo tcpdump -i eth2 -n icmp

tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on eth2, link-type EN10MB (Ethernet), capture size 96 bytes
0 packets captured
0 packets received by filter
0 packets dropped by kernel

15:42:41

$ssh 192.168.16.22

The authenticity of host '192.168.16.22 (192.168.16.22)' can't be established.
DSA key fingerprint is 13:3f:fb:2a:53:62:8e:f8:0e:c7:3a:c9:10:99:b6:25.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added '192.168.16.22' (DSA) to the list of known hosts.
Password:
Last login: Mon Aug 10 15:38:49 2009
Copyright (c) 1980, 1983, 1986, 1988, 1990, 1991, 1993, 1994
        The Regents of the University of California.  All rights reserved.
FreeBSD 6.3-RELEASE (SMP) #0: Wed Jan 16 04:45:45 UTC 2008
Welcome to FreeBSD!
...
   along with the mailing lists, can be searched by going to
   http://www.FreeBSD.org/search/.  If the doc distribution has
   been installed, they're also available formatted in /usr/share/doc.
If you still have a question or problem, please take the output of
`uname -a', along with any relevant error messages, and email it
as a question to the questions@FreeBSD.org mailing list.  If you are
unfamiliar with FreeBSD's directory layout, please refer to the hier(7)
manual page.  If you are not familiar with manual pages, type `man man'.
You may also use sysinstall(8) to re-enter the installation and
configuration utility.  Edit /etc/motd to change this login announcement.

15:43:17

#[user@fbsd2:~]$

[user@fbsd2:~]$

15:43:18

#[user@fbsd2:~]$

15:44:01

#[user@fbsd2:~]$ sudo tcpdump -i re2 -n icmp

[user@fbsd2:~]$ sudo tcpdump -i re1 -n icmp
Password:
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on re1, link-type EN10MB (Ethernet), capture size 96 bytes
16:43:41.990922 IP 192.168.18.157 > 213.180.204.8: ICMP echo request, id 57617, seq 120, length 64
16:43:43.793001 IP 192.168.18.157 > 213.180.204.8: ICMP echo request, id 57617, seq 121, length 64
16:43:45.592599 IP 192.168.18.157 > 213.180.204.8: ICMP echo request, id 57617, seq 122, length 64
16:43:47.392792 IP 192.168.18.157 > 213.180.204.8: ICMP echo request, id 57617, seq 123, length 64
16:43:49.198752 IP 192.168.18.157 > 213.180.204.8: ICMP echo request, id 57617, seq 124, length 64
16:43:50.995991 IP 192.168.18.157 > 213.180.204.8: ICMP echo request, id 57617, seq 125, length 64
...
^C
11 packets captured
16 packets received by filter
0 packets dropped by kernel
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on re2, link-type EN10MB (Ethernet), capture size 96 bytes
^C
0 packets captured
0 packets received by filter
0 packets dropped by kernel

15:45:02

#[user@fbsd2:~]$ sudo sysctl net.inet.ip.forwarding=1

[user@fbsd2:~]$ sudo sysctl -a | grep forward
kern.smp.forward_signal_enabled: 1
kern.smp.forward_roundrobin_enabled: 1
net.inet.ip.forwarding: 0
net.inet.ip.fastforwarding: 0
net.inet6.ip6.forwarding: 0
net.inet.ip.forwarding: 0 -> 1

15:45:36

#[user@fbsd2:~]$ exit

[user@fbsd2:~]$ sudo tcpdump -i re2 -n icmp
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on re2, link-type EN10MB (Ethernet), capture size 96 bytes
^C
0 packets captured
0 packets received by filter
0 packets dropped by kernel
exit
Connection to 192.168.16.22 closed.

15:46:06

$ping 192.168.18.126

[user@debian9:~]$ sudo tcpdump -i eth2 -n icmp
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on eth2, link-type EN10MB (Ethernet), capture size 96 bytes
0 packets captured
0 packets received by filter
0 packets dropped by kernel
PING 192.168.18.126 (192.168.18.126) 56(84) bytes of data.
64 bytes from 192.168.18.126: icmp_seq=1 ttl=64 time=14.9 ms
64 bytes from 192.168.18.126: icmp_seq=2 ttl=64 time=6.10 ms
--- 192.168.18.126 ping statistics ---
2 packets transmitted, 2 received, 0% packet loss, time 999ms
rtt min/avg/max/mdev = 6.108/10.513/14.918/4.405 ms

15:46:51

$ssh 192.168.16.22

[user@debian9:~]$ sudo tcpdump -i eth2 -n icmp
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on eth2, link-type EN10MB (Ethernet), capture size 96 bytes
0 packets captured
0 packets received by filter
0 packets dropped by kernel
Password:
Last login: Mon Aug 10 16:43:15 2009 from 192.168.16.9
Copyright (c) 1980, 1983, 1986, 1988, 1990, 1991, 1993, 1994
        The Regents of the University of California.  All rights reserved.
...
   http://www.FreeBSD.org/search/.  If the doc distribution has
   been installed, they're also available formatted in /usr/share/doc.
If you still have a question or problem, please take the output of
`uname -a', along with any relevant error messages, and email it
as a question to the questions@FreeBSD.org mailing list.  If you are
unfamiliar with FreeBSD's directory layout, please refer to the hier(7)
manual page.  If you are not familiar with manual pages, type `man man'.
You may also use sysinstall(8) to re-enter the installation and
configuration utility.  Edit /etc/motd to change this login announcement.
Removing stale pidfile

15:46:59

#[user@fbsd2:~]$

[user@fbsd2:~]$

15:46:59

#[user@fbsd2:~]$

15:47:09

#[user@fbsd2:~]$ netstat -rn

[user@fbsd2:~]$ ifconfig
re0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
        options=1b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING>
        inet 192.168.16.22 netmask 0xffffff00 broadcast 192.168.16.255
        ether 00:16:4e:00:00:02
        media: Ethernet autoselect (100baseTX <full-duplex>)
        status: active
re1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
        options=1b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING>
        inet 192.168.18.129 netmask 0xffffff02 broadcast 192.168.18.253
...
192.168.18.96/27   link#3             UC          0        0    re2
192.168.18.97      00:16:3e:00:02:09  UHLW        2       22    re2   1130
192.168.18.157     00:16:4e:00:01:01  UHLW        1       10    re1    850
Internet6:
Destination                       Gateway                       Flags      Netif Expire
::1                               ::1                           UHL         lo0
fe80::%lo0/64                     fe80::1%lo0                   U           lo0
fe80::1%lo0                       link#5                        UHL         lo0
ff01:5::/32                       fe80::1%lo0                   UC          lo0
ff02::%lo0/32                     fe80::1%lo0                   UC          lo0

15:47:42

#[user@fbsd2:~]$ ifconfig

[user@fbsd2:~]$ sudo sysctl -a | grep forward
kern.smp.forward_signal_enabled: 1
kern.smp.forward_roundrobin_enabled: 1
net.inet.ip.forwarding: 1
net.inet.ip.fastforwarding: 0
net.inet6.ip6.forwarding: 0
re0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
        options=1b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING>
        inet 192.168.16.22 netmask 0xffffff00 broadcast 192.168.16.255
        ether 00:16:4e:00:00:02
...
        options=1b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING>
        inet 192.168.18.126 netmask 0xffffffe0 broadcast 192.168.18.127
        ether 00:16:4e:00:02:02
        media: Ethernet autoselect (100baseTX <full-duplex>)
        status: active
plip0: flags=108810<POINTOPOINT,SIMPLEX,MULTICAST,NEEDSGIANT> mtu 1500
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
        inet6 fe80::1%lo0 prefixlen 64 scopeid 0x5
        inet6 ::1 prefixlen 128
        inet 127.0.0.1 netmask 0xff000000

15:49:02

#[user@fbsd2:~]$ ifconfig

[user@fbsd2:~]$ sudo ifconfig re2 192.168.18.126 netmask 255.255.255.224
re0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
        options=1b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING>
        inet 192.168.16.22 netmask 0xffffff00 broadcast 192.168.16.255
        ether 00:16:4e:00:00:02
        media: Ethernet autoselect (100baseTX <full-duplex>)
        status: active
re1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
        options=1b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING>
        inet 192.168.18.129 netmask 0xffffff02 broadcast 192.168.18.253
...
        options=1b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING>
        inet 192.168.18.126 netmask 0xffffffe0 broadcast 192.168.18.127
        ether 00:16:4e:00:02:02
        media: Ethernet autoselect (100baseTX <full-duplex>)
        status: active
plip0: flags=108810<POINTOPOINT,SIMPLEX,MULTICAST,NEEDSGIANT> mtu 1500
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
        inet6 fe80::1%lo0 prefixlen 64 scopeid 0x5
        inet6 ::1 prefixlen 128
        inet 127.0.0.1 netmask 0xff000000

15:49:24

#[user@fbsd2:~]$ ifconfig

[user@fbsd2:~]$ sudo ifconfig re1 192.168.18.129 netmask 255.255.255.224
re0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
        options=1b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING>
        inet 192.168.16.22 netmask 0xffffff00 broadcast 192.168.16.255
        ether 00:16:4e:00:00:02
        media: Ethernet autoselect (100baseTX <full-duplex>)
        status: active
re1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
        options=1b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING>
        inet 192.168.18.129 netmask 0xffffffe0 broadcast 192.168.18.159
...
        options=1b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING>
        inet 192.168.18.126 netmask 0xffffffe0 broadcast 192.168.18.127
        ether 00:16:4e:00:02:02
        media: Ethernet autoselect (100baseTX <full-duplex>)
        status: active
plip0: flags=108810<POINTOPOINT,SIMPLEX,MULTICAST,NEEDSGIANT> mtu 1500
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
        inet6 fe80::1%lo0 prefixlen 64 scopeid 0x5
        inet6 ::1 prefixlen 128
        inet 127.0.0.1 netmask 0xff000000

15:49:32

$sudo tcpdump -i eth2 -n icmp

[user@fbsd2:~]$ exit
exit
Connection to 192.168.16.22 closed.
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on eth2, link-type EN10MB (Ethernet), capture size 96 bytes
0 packets captured
0 packets received by filter
0 packets dropped by kernel

15:49:42

#[user@fbsd2:~]$ netstat -rn

[user@debian9:~]$ ssh 192.168.16.22
Password:
Last login: Mon Aug 10 16:46:58 2009 from 192.168.16.9
Copyright (c) 1980, 1983, 1986, 1988, 1990, 1991, 1993, 1994
        The Regents of the University of California.  All rights reserved.
FreeBSD 6.3-RELEASE (SMP) #0: Wed Jan 16 04:45:45 UTC 2008
Welcome to FreeBSD!
Before seeking technical support, please use the following resources:
o  Security advisories and updated errata information for all releases are
   at http://www.FreeBSD.org/releases/ - always consult the ERRATA section
...
192.168.18.97      link#3             UHLW        1        0    re2
192.168.18.128/27  link#2             UC          0        0    re1
192.168.18.157     00:16:4e:00:01:01  UHLW        1       29    re1   1179
Internet6:
Destination                       Gateway                       Flags      Netif Expire
::1                               ::1                           UHL         lo0
fe80::%lo0/64                     fe80::1%lo0                   U           lo0
fe80::1%lo0                       link#5                        UHL         lo0
ff01:5::/32                       fe80::1%lo0                   UC          lo0
ff02::%lo0/32                     fe80::1%lo0                   UC          lo0

15:50:20

#[user@fbsd2:~]$ exit

[user@fbsd2:~]$ sudo route add default 192.168.18.97
add net default: gateway 192.168.18.97
exit
Connection to 192.168.16.22 closed.

15:50:45

$exit

[user@debian9:~]$ sudo tcpdump -i eth2 -n icmp
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on eth2, link-type EN10MB (Ethernet), capture size 96 bytes
16:50:26.059494 IP 192.168.18.157 > 213.180.204.8: ICMP echo request, id 57617, seq 352, length 64
16:50:27.865540 IP 192.168.18.157 > 213.180.204.8: ICMP echo request, id 57617, seq 353, length 64
16:50:29.664262 IP 192.168.18.157 > 213.180.204.8: ICMP echo request, id 57617, seq 354, length 64
16:50:31.466486 IP 192.168.18.157 > 213.180.204.8: ICMP echo request, id 57617, seq 355, length 64
16:50:33.267995 IP 192.168.18.157 > 213.180.204.8: ICMP echo request, id 57617, seq 356, length 64
16:50:35.068375 IP 192.168.18.157 > 213.180.204.8: ICMP echo request, id 57617, seq 357, length 64
16:50:36.430899 IP 192.168.18.157 > 213.180.204.8: ICMP echo request, id 57617, seq 358, length 64
16:50:38.231463 IP 192.168.18.157 > 213.180.204.8: ICMP echo request, id 57617, seq 359, length 64
16:50:40.033485 IP 192.168.18.157 > 213.180.204.8: ICMP echo request, id 57617, seq 360, length 64
16:50:41.835410 IP 192.168.18.157 > 213.180.204.8: ICMP echo request, id 57617, seq 361, length 64
16:50:43.639475 IP 192.168.18.157 > 213.180.204.8: ICMP echo request, id 57617, seq 362, length 64
16:50:45.442419 IP 192.168.18.157 > 213.180.204.8: ICMP echo request, id 57617, seq 363, length 64
12 packets captured
12 packets received by filter
0 packets dropped by kernel
exit
Connection to 192.168.16.9 closed.

15:51:36

$sudo tcpd

tcpd       tcpdchk    tcpdmatch

15:51:36

$sudo tcpd

tcpd       tcpdchk    tcpdmatch

15:51:36

$sudo tcpd

tcpd       tcpdchk    tcpdmatch

15:51:43

$sudo route -n

Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
192.168.18.32   0.0.0.0         255.255.255.224 U     0      0        0 eth2
192.168.18.64   0.0.0.0         255.255.255.224 U     0      0        0 eth1
192.168.16.0    0.0.0.0         255.255.255.0   U     0      0        0 eth0
0.0.0.0         192.168.18.33   0.0.0.0         UG    0      0        0 eth2

15:51:48

$echo 192.168.18.33

192.168.18.33

15:51:54

$sudo route delete default

15:52:02

$sudo route add default gw 192.168.16.254

15:52:25

$sudo route delete default

[user@debian8:~]$ sudo apt-get install tcpdump
Чтение списков пакетов... Готово
Построение дерева зависимостей... Готово
Будут установлены следующие дополнительные пакеты:
libpcap0.8
НОВЫЕ пакеты, которые будут установлены:
libpcap0.8 tcpdump
обновлено 0, установлено 2 новых пакетов, для удаления отмечено 0 пакетов, и 55 пакетов не обновлено.
Необходимо скачать 392kБ архивов.
После распаковки объем занятого дискового пространства возрастёт на 877kB.
Хотите продолжить [Д/н]?
Получено:1 http://debian.org.ua etch/main libpcap0.8 0.9.5-1 [89,5kB]
Получено:2 http://debian.org.ua etch/main tcpdump 3.9.5-2etch1 [303kB]
Получено 392kB за 0s (20,4MB/c)
Выбор ранее не выбранного пакета libpcap0.8.
(Чтение базы данных... на данный момент установлено 23056 файлов и каталогов.)
Распаковывается пакет libpcap0.8 (из файла .../libpcap0.8_0.9.5-1_i386.deb)...
Выбор ранее не выбранного пакета tcpdump.
Распаковывается пакет tcpdump (из файла .../tcpdump_3.9.5-2etch1_i386.deb)...
Настраивается пакет libpcap0.8 (0.9.5-1) ...
Настраивается пакет tcpdump (3.9.5-2etch1) ...

15:52:35

$sudo tcpdump -i eth1 -n icmp

[user@debian8:~]$ sudo route add default gw 192.168.18.33
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on eth1, link-type EN10MB (Ethernet), capture size 96 bytes
0 packets captured
0 packets received by filter
0 packets dropped by kernel

Файлы

Статистика

Справка

О программе

LiLaLo (L3) расшифровывается как Live Lab Log.
Программа разработана для повышения эффективности обучения Unix/Linux-системам.
(c) Игорь Чубин, 2004-2008

Журнал лабораторных работ

Журнал

Понедельник (08/10/09)

Файлы

Статистика

Справка

О программе