18:18:36
|
#ping 172.16.3.1
PING 172.16.3.1 (172.16.3.1) 56(84) bytes of data. ^C --- 172.16.3.1 ping statistics --- 6 packets transmitted, 0 received, 100% packet loss, time 5039ms |
| /l3/users/eb/2009/linux6/root :1 :2 :3 :4 :5 :6 :7 :8 :9 :10 :11 :12 :13 :14 :15 :16 :17 :18 :19 :20 :21 :22 :23 :24 :25 :26 :27 :28 :29 :30 :31 :32 :33 :34 :35 :36 :37 :38 :39 :40 |
|
|
#ip ro
172.16.3.1 dev tun1 proto kernel scope link src 172.16.3.2 192.168.103.0/24 dev eth0.103 proto kernel scope link src 192.168.103.1 192.168.15.0/24 dev eth0 proto kernel scope link src 192.168.15.6 192.168.203.0/24 dev eth0.203 proto kernel scope link src 192.168.203.2 default via 172.16.3.1 dev tun1 |
|
#ping 172.16.3.1
PING 172.16.3.1 (172.16.3.1) 56(84) bytes of data. ^C --- 172.16.3.1 ping statistics --- 6 packets transmitted, 0 received, 100% packet loss, time 5039ms |
|
#ping 172.16.3.1
PING 172.16.3.1 (172.16.3.1) 56(84) bytes of data. ^[[A^C --- 172.16.3.1 ping statistics --- 17 packets transmitted, 0 received, 100% packet loss, time 16127ms |
|
#ping 192.168.204.2
PING 192.168.204.2 (192.168.204.2) 56(84) bytes of data. ^C --- 192.168.204.2 ping statistics --- 3 packets transmitted, 0 received, 100% packet loss, time 2016ms |
|
#ip ro change default via 192.168.203.1
|
|
#ping 172.16.3.1
PING 172.16.3.1 (172.16.3.1) 56(84) bytes of data. ^C --- 172.16.3.1 ping statistics --- 4 packets transmitted, 0 received, 100% packet loss, time 3022ms |
|
#ping 172.16.3.2
PING 172.16.3.2 (172.16.3.2) 56(84) bytes of data. 64 bytes from 172.16.3.2: icmp_seq=1 ttl=64 time=0.029 ms 64 bytes from 172.16.3.2: icmp_seq=2 ttl=64 time=0.009 ms 64 bytes from 172.16.3.2: icmp_seq=3 ttl=64 time=0.011 ms ^C --- 172.16.3.2 ping statistics --- 3 packets transmitted, 3 received, 0% packet loss, time 1998ms rtt min/avg/max/mdev = 0.009/0.016/0.029/0.009 ms |
|
#ping 172.16.3.2
PING 172.16.3.2 (172.16.3.2) 56(84) bytes of data. 64 bytes from 172.16.3.2: icmp_seq=1 ttl=64 time=0.017 ms 64 bytes from 172.16.3.2: icmp_seq=2 ttl=64 time=0.009 ms 64 bytes from 172.16.3.2: icmp_seq=3 ttl=64 time=0.008 ms ^C --- 172.16.3.2 ping statistics --- 3 packets transmitted, 3 received, 0% packet loss, time 1998ms rtt min/avg/max/mdev = 0.008/0.011/0.017/0.004 ms |
|
#tail -f /var/log/daemon.log
Jun 3 18:24:31 linux6 ovpn-client[27217]: NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables Jun 3 18:24:31 linux6 ovpn-client[27217]: /usr/sbin/openvpn-vulnkey -q linux7.key Jun 3 18:24:31 linux6 ovpn-client[27217]: TUN/TAP device tun1 opened Jun 3 18:24:31 linux6 ovpn-client[27217]: /sbin/ifconfig tun1 172.16.3.2 pointopoint 172.16.3.1 mtu 1500 Jun 3 18:24:31 linux6 ovpn-client[27223]: Attempting to establish TCP connection with 192.168.204.2:443 [nonblock] Jun 3 18:24:32 linux6 ovpn-client[27223]: TCP connection established with 192.168.204.2:443 Jun 3 18:24:32 linux6 ovpn-client[27223]: TCPv4_CLIENT link local: [undef] Jun 3 18:24:32 linux6 ovpn-client[27223]: TCPv4_CLIENT link remote: 192.168.204.2:443 Jun 3 18:24:41 linux6 ovpn-client[27223]: Peer Connection Initiated with 192.168.204.2:443 Jun 3 18:24:41 linux6 ovpn-client[27223]: Initialization Sequence Completed ^C |
|
#vi /etc/open
|
|
#vi /etc/openvpn/
|
|
#vi /etc/openvpn/client.conf
--- /tmp/l3-saved-1294.2269.29290 2009-06-03 18:26:26.000000000 +0300 +++ /etc/openvpn/client.conf 2009-06-03 18:27:18.000000000 +0300 @@ -4,5 +4,6 @@ proto tcp-client dev tun ifconfig 172.16.3.2 172.16.3.1 +route 172.16.3.0/24 secret linux7.key remote 192.168.204.2 |
|
#ping 172.16.3.2
PING 172.16.3.2 (172.16.3.2) 56(84) bytes of data. 64 bytes from 172.16.3.2: icmp_seq=1 ttl=64 time=0.018 ms 64 bytes from 172.16.3.2: icmp_seq=2 ttl=64 time=0.009 ms ^C --- 172.16.3.2 ping statistics --- 2 packets transmitted, 2 received, 0% packet loss, time 999ms rtt min/avg/max/mdev = 0.009/0.013/0.018/0.005 ms |
|
#ping 172.16.3.1
PING 172.16.3.1 (172.16.3.1) 56(84) bytes of data. 64 bytes from 172.16.3.1: icmp_seq=1 ttl=64 time=0.896 ms 64 bytes from 172.16.3.1: icmp_seq=2 ttl=64 time=0.326 ms ^C --- 172.16.3.1 ping statistics --- 2 packets transmitted, 2 received, 0% packet loss, time 1001ms rtt min/avg/max/mdev = 0.326/0.611/0.896/0.285 ms |
|
#tail -f /var/log/daemon.log
Jun 3 18:30:53 linux6 ovpn-client[28340]: Peer Connection Initiated with 192.168.204.2:443 Jun 3 18:30:54 linux6 ovpn-client[28340]: event_wait : Interrupted system call (code=4) Jun 3 18:30:54 linux6 ovpn-client[28340]: /sbin/ifconfig tun1 0.0.0.0 Jun 3 18:30:54 linux6 ovpn-client[28340]: SIGTERM[hard,] received, process exiting Jun 3 18:30:55 linux6 ovpn-client[28931]: OpenVPN 2.1_rc15 i486-pc-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] built on May 1 2009 Jun 3 18:30:55 linux6 ovpn-client[28931]: NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables Jun 3 18:30:55 linux6 ovpn-client[28931]: /usr/sbin/openvpn-vulnkey -q linux7.key Jun 3 18:30:55 linux6 ovpn-client[28931]: TUN/TAP device tun1 opened Jun 3 18:30:55 linux6 ovpn-client[28931]: /sbin/ifconfig tun1 172.16.3.2 pointopoint 172.16.3.1 mtu 1500 Jun 3 18:30:55 linux6 ovpn-client[28937]: Attempting to establish TCP connection with 192.168.204.2:443 [nonblock] Jun 3 18:31:05 linux6 ovpn-client[28937]: TCP: connect to 192.168.204.2:443 failed, will try again in 5 seconds: Connection timed out Jun 3 18:31:20 linux6 ovpn-client[28937]: TCP: connect to 192.168.204.2:443 failed, will try again in 5 seconds: Connection timed out ^C |
|
#ping 172.16.3.1
PING 172.16.3.1 (172.16.3.1) 56(84) bytes of data. 64 bytes from 172.16.3.1: icmp_seq=1 ttl=64 time=0.306 ms 64 bytes from 172.16.3.1: icmp_seq=2 ttl=64 time=0.276 ms ^C --- 172.16.3.1 ping statistics --- 2 packets transmitted, 2 received, 0% packet loss, time 999ms rtt min/avg/max/mdev = 0.276/0.291/0.306/0.015 ms |
|
#ping 192.168.204.1
PING 192.168.204.1 (192.168.204.1) 56(84) bytes of data. ^C --- 192.168.204.1 ping statistics --- 2 packets transmitted, 0 received, 100% packet loss, time 1006ms |
|
#ping 192.168.204.7
PING 192.168.204.7 (192.168.204.7) 56(84) bytes of data. From 172.16.3.1 icmp_seq=2 Destination Host Unreachable From 172.16.3.1 icmp_seq=3 Destination Host Unreachable From 172.16.3.1 icmp_seq=4 Destination Host Unreachable ^C --- 192.168.204.7 ping statistics --- 5 packets transmitted, 0 received, +3 errors, 100% packet loss, time 4000ms , pipe 3 |
|
#ping 192.168.204.2
PING 192.168.204.2 (192.168.204.2) 56(84) bytes of data. 64 bytes from 192.168.204.2: icmp_seq=1 ttl=63 time=0.223 ms 64 bytes from 192.168.204.2: icmp_seq=2 ttl=63 time=0.220 ms ^C --- 192.168.204.2 ping statistics --- 2 packets transmitted, 2 received, 0% packet loss, time 1001ms rtt min/avg/max/mdev = 0.220/0.221/0.223/0.014 ms |
|
#ifconfig
eth0 Link encap:Ethernet HWaddr 00:1b:fc:7d:b5:a7
inet addr:192.168.15.6 Bcast:192.168.15.255 Mask:255.255.255.0
inet6 addr: fe80::21b:fcff:fe7d:b5a7/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:102284 errors:0 dropped:0 overruns:0 frame:0
TX packets:79708 errors:0 dropped:0 overruns:0 carrier:2
collisions:0 txqueuelen:1000
RX bytes:67541784 (64.4 MiB) TX bytes:8957493 (8.5 MiB)
eth0.103 Link encap:Ethernet HWaddr 00:1b:fc:7d:b5:a7
inet addr:192.168.103.1 Bcast:192.168.103.255 Mask:255.255.255.0
...
TX packets:886 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:112370 (109.7 KiB) TX bytes:112370 (109.7 KiB)
tun1 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
inet addr:172.16.3.2 P-t-P:172.16.3.1 Mask:255.255.255.255
UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1500 Metric:1
RX packets:67 errors:0 dropped:0 overruns:0 frame:0
TX packets:182 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:100
RX bytes:5740 (5.6 KiB) TX bytes:12560 (12.2 KiB)
|
|
#ping 10.0.35.1
PING 10.0.35.1 (10.0.35.1) 56(84) bytes of data. 64 bytes from 10.0.35.1: icmp_seq=1 ttl=62 time=0.733 ms 64 bytes from 10.0.35.1: icmp_seq=2 ttl=62 time=0.674 ms ^C --- 10.0.35.1 ping statistics --- 2 packets transmitted, 2 received, 0% packet loss, time 999ms rtt min/avg/max/mdev = 0.674/0.703/0.733/0.039 ms |
|
#tracer
traceroute traceroute6.db traceroute-nanog tracert traceroute6 traceroute.db traceroute-nanog.db tracert.db |
|
#traceroute 10.0.35.1
traceroute to 10.0.35.1 (10.0.35.1), 30 hops max, 60 byte packets 1 172.16.3.1 (172.16.3.1) 0.326 ms 0.729 ms 1.052 ms 2 192.168.204.1 (192.168.204.1) 39.941 ms 39.928 ms 39.908 ms 3 10.0.35.1 (10.0.35.1) 1.423 ms 1.405 ms 1.334 ms |
|
#w
18:52:01 up 9:28, 7 users, load average: 0,00, 0,02, 0,02 USER TTY FROM LOGIN@ IDLE JCPU PCPU WHAT root tty1 - 10:49 2:38m 0.02s 0.00s script -f -c bash -q /root/.lilalo//914355551690316015-1244015348.scri user tty8 :0 16:13 9:28m 1:13 0.17s x-session-manager user pts/0 :0.0 16:14 26:25 0.29s 0.28s script -f -c bash -q /home/user/.lilalo//15594185841342314066-12440348 user pts/6 :0.0 17:29 1:16m 0.28s 0.28s script -f -c bash -q /home/user/.lilalo//8587267462839911161-124403938 root pts/12 192.168.103.2 17:48 59:18 0.01s 0.01s script -f -c bash -q /root/.lilalo//17466123344608817-1244040514.scrip user pts/3 :0.0 17:00 0.00s 0.32s 0.28s script -f -c bash -q /home/user/.lilalo//1853713506256609381-124403763 user pts/14 :0.0 18:10 5.00s 0.27s 0.27s script -f -c bash -q /home/user/.lilalo//2176427875238681047-124404182 |
|
#w
18:51:53 up 9:21, 5 users, load average: 0,00, 0,00, 0,00 USER TTY FROM LOGIN@ IDLE JCPU PCPU WHAT user tty7 :0 09:32 9:21m 2:34 0.37s x-session-manag user pts/0 :0.0 09:32 2:02 0.40s 0.31s script -f -c ba user pts/4 :0.0 17:11 1:03m 0.28s 0.28s script -f -c ba root pts/9 linux6.unix.nt 18:10 0.00s 0.00s 0.00s script -f -c ba user pts/8 :0.0 17:52 55:20 0.04s 0.04s ssh root@10.0.3 |
|
#traceroute 192.168.104.8
traceroute to 192.168.104.8 (192.168.104.8), 30 hops max, 60 byte packets 1 192.168.104.8 (192.168.104.8) 0.187 ms 0.165 ms 0.151 ms |
|
#ssh root@10.0.35.100
Host key fingerprint is 69:b5:3e:1a:9a:b7:c3:c3:96:03:c7:b7:b4:69:1d:3b +--[ RSA 2048]----+ | | | | | . | | o . | | .S . | | ..o.o . | | =.+o= o | | oXo=.E | | ooo* . | +-----------------+ root@10.0.35.100's password: Linux linux0 2.6.18-6-xen-686 #1 SMP Sun Feb 10 22:43:13 UTC 2008 i686 The programs included with the Debian GNU/Linux system are free software; the exact distribution terms for each program are described in the individual files in /usr/share/doc/*/copyright. Debian GNU/Linux comes with ABSOLUTELY NO WARRANTY, to the extent permitted by applicable law. Last login: Wed Jun 3 18:33:37 2009 from linux3.unix.nt l3-agent is already running: pid=4804; pidfile=/root/.lilalo/l3-agent.pid |
|
#tail -f /var/log/daemon.log
Jun 3 18:57:32 linux6 ovpn-client[5860]: OpenVPN 2.1_rc15 i486-pc-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] built on May 1 2009 Jun 3 18:57:32 linux6 ovpn-client[5860]: NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables Jun 3 18:57:32 linux6 ovpn-client[5860]: /usr/sbin/openvpn-vulnkey -q linux7.key Jun 3 18:57:33 linux6 ovpn-client[5860]: TUN/TAP device tun1 opened Jun 3 18:57:33 linux6 ovpn-client[5860]: /sbin/ifconfig tun1 172.16.3.2 pointopoint 172.16.3.1 mtu 1500 Jun 3 18:57:33 linux6 ovpn-client[5868]: Attempting to establish TCP connection with 192.168.204.2:443 [nonblock] Jun 3 18:57:34 linux6 ovpn-client[5868]: TCP: connect to 192.168.204.2:443 failed, will try again in 5 seconds: Connection refused Jun 3 18:57:40 linux6 ovpn-client[5868]: TCP connection established with 192.168.204.2:443 Jun 3 18:57:40 linux6 ovpn-client[5868]: TCPv4_CLIENT link local: [undef] Jun 3 18:57:40 linux6 ovpn-client[5868]: TCPv4_CLIENT link remote: 192.168.204.2:443 ... Jun 3 18:58:25 linux6 ovpn-client[5868]: /usr/sbin/openvpn-vulnkey -q linux7.key Jun 3 18:58:25 linux6 ovpn-client[5868]: TUN/TAP device tun1 opened Jun 3 18:58:25 linux6 ovpn-client[5868]: /sbin/ifconfig tun1 172.16.3.2 pointopoint 172.16.3.1 mtu 1500 Jun 3 18:58:25 linux6 ovpn-client[5868]: Attempting to establish TCP connection with 192.168.204.2:443 [nonblock] Jun 3 18:58:26 linux6 ovpn-client[5868]: TCP connection established with 192.168.204.2:443 Jun 3 18:58:26 linux6 ovpn-client[5868]: TCPv4_CLIENT link local: [undef] Jun 3 18:58:26 linux6 ovpn-client[5868]: TCPv4_CLIENT link remote: 192.168.204.2:443 Jun 3 18:58:36 linux6 ovpn-client[5868]: Peer Connection Initiated with 192.168.204.2:443 Jun 3 18:58:37 linux6 ovpn-client[5868]: Initialization Sequence Completed ^C |
|
#tail -f /var/log/daemon.log
Jun 3 19:09:42 linux6 ovpn-client[10802]: /usr/sbin/openvpn-vulnkey -q linux7.key Jun 3 19:09:42 linux6 ovpn-client[10802]: TUN/TAP device tun1 opened Jun 3 19:09:42 linux6 ovpn-client[10802]: /sbin/ifconfig tun1 172.16.3.2 pointopoint 172.16.3.1 mtu 1500 Jun 3 19:09:42 linux6 ovpn-client[10810]: Attempting to establish TCP connection with 192.168.204.2:443 [nonblock] Jun 3 19:09:43 linux6 ovpn-client[10810]: TCP: connect to 192.168.204.2:443 failed, will try again in 5 seconds: Connection refused Jun 3 19:09:49 linux6 ovpn-client[10810]: TCP connection established with 192.168.204.2:443 Jun 3 19:09:49 linux6 ovpn-client[10810]: TCPv4_CLIENT link local: [undef] Jun 3 19:09:49 linux6 ovpn-client[10810]: TCPv4_CLIENT link remote: 192.168.204.2:443 Jun 3 19:09:49 linux6 ovpn-client[10810]: Peer Connection Initiated with 192.168.204.2:443 Jun 3 19:09:50 linux6 ovpn-client[10810]: Initialization Sequence Completed ... Jun 3 19:36:33 linux6 ovpn-client[10810]: /usr/sbin/openvpn-vulnkey -q linux7.key Jun 3 19:36:33 linux6 ovpn-client[10810]: TUN/TAP device tun1 opened Jun 3 19:36:33 linux6 ovpn-client[10810]: /sbin/ifconfig tun1 172.16.3.2 pointopoint 172.16.3.1 mtu 1500 Jun 3 19:36:33 linux6 ovpn-client[10810]: Attempting to establish TCP connection with 192.168.204.2:443 [nonblock] Jun 3 19:36:34 linux6 ovpn-client[10810]: TCP connection established with 192.168.204.2:443 Jun 3 19:36:34 linux6 ovpn-client[10810]: TCPv4_CLIENT link local: [undef] Jun 3 19:36:34 linux6 ovpn-client[10810]: TCPv4_CLIENT link remote: 192.168.204.2:443 Jun 3 19:36:34 linux6 ovpn-client[10810]: Peer Connection Initiated with 192.168.204.2:443 Jun 3 19:36:35 linux6 ovpn-client[10810]: Initialization Sequence Completed ^C |
|
#traceroute 10.0.35.1
traceroute to 10.0.35.1 (10.0.35.1), 30 hops max, 60 byte packets 1 192.168.204.1 (192.168.204.1) 1.364 ms 1.749 ms 1.939 ms 2 10.0.35.1 (10.0.35.1) 0.340 ms 0.328 ms 0.315 ms |
|
#exit
exit Connection to 192.168.15.7 closed. |
|
#traceroute 10.0.35.1
traceroute to 10.0.35.1 (10.0.35.1), 30 hops max, 60 byte packets 1 172.16.3.1 (172.16.3.1) 0.813 ms 1.765 ms 1.766 ms 2 192.168.204.1 (192.168.204.1) 38.665 ms 38.669 ms 38.669 ms 3 10.0.35.1 (10.0.35.1) 1.743 ms 1.749 ms 1.750 ms |
|
#ssh root@192.168.201.1
Connection to 192.168.201.1 closed by remote host. |
|
#tail -f /var/log/daemon.log
Jun 3 20:01:55 linux6 ovpn-client[25118]: NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables Jun 3 20:01:55 linux6 ovpn-client[25118]: /usr/sbin/openvpn-vulnkey -q linux7.key Jun 3 20:01:55 linux6 ovpn-client[25118]: TUN/TAP device tun1 opened Jun 3 20:01:55 linux6 ovpn-client[25118]: /sbin/ifconfig tun1 172.16.3.2 pointopoint 172.16.3.1 mtu 1500 Jun 3 20:01:55 linux6 ovpn-client[25118]: Attempting to establish TCP connection with 192.168.214.2:443 [nonblock] Jun 3 20:01:56 linux6 ovpn-client[25118]: TCP connection established with 192.168.214.2:443 Jun 3 20:01:56 linux6 ovpn-client[25118]: TCPv4_CLIENT link local: [undef] Jun 3 20:01:56 linux6 ovpn-client[25118]: TCPv4_CLIENT link remote: 192.168.214.2:443 Jun 3 20:01:56 linux6 ovpn-client[25118]: Peer Connection Initiated with 192.168.214.2:443 Jun 3 20:01:57 linux6 ovpn-client[25118]: Initialization Sequence Completed ^C |
|
#+q436f+q6b75+q6b64+q6b72+q6b6c+q2332+q2334+q2569+q2a37+q6b31
traceroute to 10.0.35.1 (10.0.35.1), 30 hops max, 60 byte packets 1 (172.16.3.1) 0.709 ms !N 1.392 ms !N 1.395 ms !N |
|
#traceroute 10.0.35.1
traceroute to 10.0.35.1 (10.0.35.1), 30 hops max, 60 byte packets 1 (172.16.3.1) 0.912 ms !N 1.575 ms !N 1.579 ms !N |
|
#ping 172.16.3.1
PING 172.16.3.1 (172.16.3.1) 56(84) bytes of data. 64 bytes from 172.16.3.1: icmp_seq=1 ttl=64 time=0.542 ms 64 bytes from 172.16.3.1: icmp_seq=2 ttl=64 time=0.275 ms 64 bytes from 172.16.3.1: icmp_seq=3 ttl=64 time=0.277 ms ^C --- 172.16.3.1 ping statistics --- 3 packets transmitted, 3 received, 0% packet loss, time 1998ms rtt min/avg/max/mdev = 0.275/0.364/0.542/0.127 ms |
|
#ping 172.16.3.1
PING 172.16.3.1 (172.16.3.1) 56(84) bytes of data. 64 bytes from 172.16.3.1: icmp_seq=1 ttl=64 time=0.520 ms 64 bytes from 172.16.3.1: icmp_seq=2 ttl=64 time=0.333 ms ^C --- 172.16.3.1 ping statistics --- 2 packets transmitted, 2 received, 0% packet loss, time 999ms rtt min/avg/max/mdev = 0.333/0.426/0.520/0.095 ms |
|
#traceroute 10.0.35.1
traceroute to 10.0.35.1 (10.0.35.1), 30 hops max, 60 byte packets ^C |
|
#ping 10.0.35.1
PING 10.0.35.1 (10.0.35.1) 56(84) bytes of data. ^C --- 10.0.35.1 ping statistics --- 3 packets transmitted, 0 received, 100% packet loss, time 2016ms |
|
#ping 172.16.3.1
PING 172.16.3.1 (172.16.3.1) 56(84) bytes of data. 64 bytes from 172.16.3.1: icmp_seq=1 ttl=64 time=0.517 ms 64 bytes from 172.16.3.1: icmp_seq=2 ttl=64 time=0.285 ms 64 bytes from 172.16.3.1: icmp_seq=3 ttl=64 time=0.276 ms 64 bytes from 172.16.3.1: icmp_seq=4 ttl=64 time=0.282 ms 64 bytes from 172.16.3.1: icmp_seq=5 ttl=64 time=0.304 ms 64 bytes from 172.16.3.1: icmp_seq=6 ttl=64 time=0.276 ms 64 bytes from 172.16.3.1: icmp_seq=7 ttl=64 time=0.285 ms 64 bytes from 172.16.3.1: icmp_seq=8 ttl=64 time=0.275 ms 64 bytes from 172.16.3.1: icmp_seq=9 ttl=64 time=0.348 ms ... 64 bytes from 172.16.3.1: icmp_seq=17 ttl=64 time=0.313 ms 64 bytes from 172.16.3.1: icmp_seq=18 ttl=64 time=0.281 ms 64 bytes from 172.16.3.1: icmp_seq=19 ttl=64 time=0.359 ms 64 bytes from 172.16.3.1: icmp_seq=20 ttl=64 time=0.274 ms 64 bytes from 172.16.3.1: icmp_seq=21 ttl=64 time=0.277 ms 64 bytes from 172.16.3.1: icmp_seq=22 ttl=64 time=0.285 ms ^C --- 172.16.3.1 ping statistics --- 22 packets transmitted, 22 received, 0% packet loss, time 21000ms rtt min/avg/max/mdev = 0.273/0.300/0.517/0.055 ms |
|
#ping 10.0.35.1
PING 10.0.35.1 (10.0.35.1) 56(84) bytes of data. ^C --- 10.0.35.1 ping statistics --- 7 packets transmitted, 0 received, 100% packet loss, time 6046ms |
|
#ping 10.0.35.1
PING 10.0.35.1 (10.0.35.1) 56(84) bytes of data. ^C --- 10.0.35.1 ping statistics --- 2 packets transmitted, 0 received, 100% packet loss, time 999ms |
|
#ping 172.16.3.1
PING 172.16.3.1 (172.16.3.1) 56(84) bytes of data. 64 bytes from 172.16.3.1: icmp_seq=1 ttl=64 time=0.308 ms 64 bytes from 172.16.3.1: icmp_seq=2 ttl=64 time=0.274 ms 64 bytes from 172.16.3.1: icmp_seq=3 ttl=64 time=0.280 ms 64 bytes from 172.16.3.1: icmp_seq=4 ttl=64 time=0.276 ms ^C --- 172.16.3.1 ping statistics --- 4 packets transmitted, 4 received, 0% packet loss, time 2998ms rtt min/avg/max/mdev = 0.274/0.284/0.308/0.021 ms |
|
#ping 172.16.3.1
64 bytes from 172.16.3.1: icmp_seq=720 ttl=64 time=0.283 ms 64 bytes from 172.16.3.1: icmp_seq=721 ttl=64 time=0.289 ms 64 bytes from 172.16.3.1: icmp_seq=722 ttl=64 time=0.300 ms 64 bytes from 172.16.3.1: icmp_seq=723 ttl=64 time=0.283 ms 64 bytes from 172.16.3.1: icmp_seq=724 ttl=64 time=0.276 ms 64 bytes from 172.16.3.1: icmp_seq=725 ttl=64 time=0.281 ms 64 bytes from 172.16.3.1: icmp_seq=726 ttl=64 time=0.377 ms 64 bytes from 172.16.3.1: icmp_seq=727 ttl=64 time=0.395 ms 64 bytes from 172.16.3.1: icmp_seq=728 ttl=64 time=0.314 ms 64 bytes from 172.16.3.1: icmp_seq=729 ttl=64 time=0.283 ms ... 64 bytes from 172.16.3.1: icmp_seq=859 ttl=64 time=0.278 ms 64 bytes from 172.16.3.1: icmp_seq=860 ttl=64 time=1.74 ms 64 bytes from 172.16.3.1: icmp_seq=861 ttl=64 time=0.281 ms 64 bytes from 172.16.3.1: icmp_seq=862 ttl=64 time=0.273 ms 64 bytes from 172.16.3.1: icmp_seq=863 ttl=64 time=0.282 ms 64 bytes from 172.16.3.1: icmp_seq=864 ttl=64 time=0.278 ms 64 bytes from 172.16.3.1: icmp_seq=865 ttl=64 time=0.291 ms 64 bytes from 172.16.3.1: icmp_seq=866 ttl=64 time=0.352 ms 64 bytes from 172.16.3.1: icmp_seq=867 ttl=64 time=0.339 ms 64 bytes from 172.16.3.1: icmp_seq=868 ttl=64 time=0.296 ms |
|
#ssh root@10.0.35.100
Host key fingerprint is 69:b5:3e:1a:9a:b7:c3:c3:96:03:c7:b7:b4:69:1d:3b +--[ RSA 2048]----+ | | | | | . | | o . | | .S . | | ..o.o . | | =.+o= o | | oXo=.E | | ooo* . | +-----------------+ root@10.0.35.100's password: Linux linux0 2.6.18-6-xen-686 #1 SMP Sun Feb 10 22:43:13 UTC 2008 i686 The programs included with the Debian GNU/Linux system are free software; the exact distribution terms for each program are described in the individual files in /usr/share/doc/*/copyright. Debian GNU/Linux comes with ABSOLUTELY NO WARRANTY, to the extent permitted by applicable law. Last login: Wed Jun 3 19:09:06 2009 from 192.168.205.2 l3-agent is already running: pid=4804; pidfile=/root/.lilalo/l3-agent.pid |
|
#/etc/init.d/openvpn start
Starting virtual private network daemon: client. |
|
#screen -x
|
|
#ifconfig
eth0 Link encap:Ethernet HWaddr 00:1b:fc:7d:b5:a7
inet addr:192.168.15.6 Bcast:192.168.15.255 Mask:255.255.255.0
inet6 addr: fe80::21b:fcff:fe7d:b5a7/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:447 errors:0 dropped:0 overruns:0 frame:0
TX packets:260 errors:0 dropped:0 overruns:0 carrier:2
collisions:0 txqueuelen:1000
RX bytes:35070 (34.2 KiB) TX bytes:19398 (18.9 KiB)
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
...
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:0 (0.0 B) TX bytes:0 (0.0 B)
tun0 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
inet addr:172.16.3.2 P-t-P:172.16.3.1 Mask:255.255.255.255
UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:100
RX bytes:0 (0.0 B) TX bytes:0 (0.0 B)
|
|
#tail -f /etc/open
openal/ openoffice/ openvpn/ |
|
#tail -f /var/lo
local/ lock/ log/ |
|
#tail -f /var/log/
apt/ dmesg.2.gz lpr.log syslog.3.gz auth.log dmesg.3.gz lpr.log.1.gz syslog.4.gz auth.log.1.gz dmesg.4.gz mail.err syslog.5.gz boot dpkg.log mail.info syslog.6.gz bootstrap.log dpkg.log.1 mail.info.1.gz syslog.7.gz btmp exim4/ mail.log temperature btmp.1 faillog mail.log.1.gz user.log ConsoleKit/ fontconfig.log mail.warn user.log.1.gz daemon.log fsck/ messages wtmp daemon.log.1.gz gdm/ messages.1.gz wtmp.1 debug kern.log news/ Xorg.0.log debug.1.gz kern.log.1.gz pycentral.log Xorg.0.log.old dmesg lastlog syslog dmesg.0 lp-acct syslog.1.gz dmesg.1.gz lp-errs syslog.2.gz |
|
#ip ro
172.16.3.1 dev tun0 proto kernel scope link src 172.16.3.2 192.168.214.2 via 192.168.15.254 dev eth0 192.168.15.0/24 dev eth0 proto kernel scope link src 192.168.15.6 default via 172.16.3.1 dev tun0 |
|
#/etc/init.d/open
openbsd-inetd openvpn |
|
#/etc/init.d/openvpn stop
Stopping virtual private network daemon: client. |
|
#if
if ifconfig ifdown ifup |
|
#ifconfig
eth0 Link encap:Ethernet HWaddr 00:1b:fc:7d:b5:a7
inet addr:192.168.15.6 Bcast:192.168.15.255 Mask:255.255.255.0
inet6 addr: fe80::21b:fcff:fe7d:b5a7/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:501 errors:0 dropped:0 overruns:0 frame:0
TX packets:308 errors:0 dropped:0 overruns:0 carrier:2
collisions:0 txqueuelen:1000
RX bytes:41539 (40.5 KiB) TX bytes:23714 (23.1 KiB)
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:0 (0.0 B) TX bytes:0 (0.0 B)
|
|
#ping 10.0.35.1
PING 10.0.35.1 (10.0.35.1) 56(84) bytes of data. 64 bytes from 10.0.35.1: icmp_seq=1 ttl=63 time=0.225 ms 64 bytes from 10.0.35.1: icmp_seq=2 ttl=63 time=0.232 ms 64 bytes from 10.0.35.1: icmp_seq=3 ttl=63 time=0.221 ms ^C^[[A64 bytes from 10.0.35.1: icmp_seq=4 ttl=63 time=0.219 ms 64 bytes from 10.0.35.1: icmp_seq=5 ttl=63 time=0.222 ms ^C --- 10.0.35.1 ping statistics --- 5 packets transmitted, 5 received, 0% packet loss, time 3999ms rtt min/avg/max/mdev = 0.219/0.223/0.232/0.019 ms |
|
#ping 10.0.35.100
PING 10.0.35.100 (10.0.35.100) 56(84) bytes of data. 64 bytes from 10.0.35.100: icmp_seq=1 ttl=62 time=3.61 ms 64 bytes from 10.0.35.100: icmp_seq=2 ttl=62 time=0.219 ms ^C --- 10.0.35.100 ping statistics --- 2 packets transmitted, 2 received, 0% packet loss, time 1001ms rtt min/avg/max/mdev = 0.219/1.915/3.612/1.697 ms |
|
#ip ro
192.168.15.0/24 dev eth0 proto kernel scope link src 192.168.15.6 default via 192.168.15.254 dev eth0 |
|
#cat /etc/network/interfaces
# Used by ifup(8) and ifdown(8). See the interfaces(5) manpage or
# /usr/share/doc/ifupdown/examples for more information.
auto lo eth0
iface lo inet loopback
iface eth0 inet static
address 192.168.15.6
netmask 255.255.255.0
network 192.168.15.0
broadcast 192.168.15.255
gateway 192.168.15.254
|
|
#ssh root@10.0.35.100
Host key fingerprint is 69:b5:3e:1a:9a:b7:c3:c3:96:03:c7:b7:b4:69:1d:3b +--[ RSA 2048]----+ | | | | | . | | o . | | .S . | | ..o.o . | | =.+o= o | | oXo=.E | | ooo* . | +-----------------+ root@10.0.35.100's password: Linux linux0 2.6.18-6-xen-686 #1 SMP Sun Feb 10 22:43:13 UTC 2008 i686 The programs included with the Debian GNU/Linux system are free software; the exact distribution terms for each program are described in the individual files in /usr/share/doc/*/copyright. Debian GNU/Linux comes with ABSOLUTELY NO WARRANTY, to the extent permitted by applicable law. Last login: Thu Jun 4 10:11:35 2009 from 192.168.201.2 l3-agent is already running: pid=4804; pidfile=/root/.lilalo/l3-agent.pid |
|
#ssh root@10.0.35.100
Host key fingerprint is 69:b5:3e:1a:9a:b7:c3:c3:96:03:c7:b7:b4:69:1d:3b +--[ RSA 2048]----+ | | | | | . | | o . | | .S . | | ..o.o . | | =.+o= o | | oXo=.E | | ooo* . | +-----------------+ root@10.0.35.100's password: Linux linux0 2.6.18-6-xen-686 #1 SMP Sun Feb 10 22:43:13 UTC 2008 i686 The programs included with the Debian GNU/Linux system are free software; the exact distribution terms for each program are described in the individual files in /usr/share/doc/*/copyright. Debian GNU/Linux comes with ABSOLUTELY NO WARRANTY, to the extent permitted by applicable law. Last login: Thu Jun 4 10:12:53 2009 from linux6.unix.nt l3-agent is already running: pid=4804; pidfile=/root/.lilalo/l3-agent.pid |
|
#ssh quiz@10.0.35.100
-----------------------------------------------------------------[41/41]----- Вы хотите полностью ограничить доступ компьютера с доменным именем node1 во внешнюю сеть; Вы хотите сделать так, чтобы его пакеты во внешнюю сеть просто терялись, и никакой информации почему они потерялись и где не было. В то же время по всем остальным сетям, которые маршрутизируются на шлюзе его трафик должен передаваться безболезненно. Шлюз подключен к интернет через интерфейс eth1. Какую команду вы будете использовать? 1. iptables -A FORWARD -f node1 -t internet -j DROP 2. iptables -A FORWARD -f node1 -t eth1 -j DROP ... 5. iptables -A FORWARD -s node1 -o eth1 -j REJECT 6. iptables -A FORWARD -s node1 -t internet -j DROP 7. iptables -A FORWARD -f node1 -t eth1 -j DROP 8. iptables -A FORWARD -s node1 -o eth1 -j DROP 9. iptables -A FORWARD -s node1 -i eth0 -j REJECT 10. iptables -A FORWARD -f node1 -o eth1 -j REJECT --------------------------------------------------------------------------- 8 Your score: 21 Connection to 10.0.35.100 closed. |
|
#w
12:29:07 up 2:23, 5 users, load average: 0,41, 0,18, 0,11 USER TTY FROM LOGIN@ IDLE JCPU PCPU WHAT root tty1 - 10:09 2:20m 0.02s 0.00s script -f -c ba user tty7 :0 10:05 2:23m 1:39 0.34s x-session-manag user pts/0 :0.0 10:05 0.00s 0.28s 0.28s script -f -c ba user pts/2 :0.0 12:08 12:07 0.28s 0.28s script -f -c ba user pts/7 :0.0 10:22 37.00s 0.33s 0.29s script -f -c ba |
|
#vi /etc/default/openvpn
--- /tmp/l3-saved-9427.1559.10072 2009-06-04 10:23:02.000000000 +0300 +++ /etc/default/openvpn 2009-06-04 10:23:57.000000000 +0300 @@ -6,7 +6,7 @@ # names of the VPNs. If empty, "all" is assumed. # #AUTOSTART="all" -#AUTOSTART="none" +AUTOSTART="none" #AUTOSTART="home office" # # Refresh interval (in seconds) of default status files |
|
#ip ro
192.168.204.2 via 192.168.15.254 dev eth0 172.16.3.1 dev tun0 proto kernel scope link src 172.16.3.2 192.168.15.0/24 dev eth0 proto kernel scope link src 192.168.15.6 default via 172.16.3.1 dev tun0 |
|
#cat /etc/network/interfaces
# Used by ifup(8) and ifdown(8). See the interfaces(5) manpage or
# /usr/share/doc/ifupdown/examples for more information.
auto lo eth0
iface lo inet loopback
iface eth0 inet static
address 192.168.15.6
netmask 255.255.255.0
network 192.168.15.0
broadcast 192.168.15.255
gateway 192.168.15.254
|
|
#iptables
iptables v1.4.3.2: no command specified Try `iptables -h' or 'iptables --help' for more information. |
|
#iptables -h
iptables v1.4.3.2
Usage: iptables -[AD] chain rule-specification [options]
iptables -I chain [rulenum] rule-specification [options]
iptables -R chain rulenum rule-specification [options]
iptables -D chain rulenum [options]
iptables -[LS] [chain [rulenum]] [options]
iptables -[FZ] [chain] [options]
iptables -[NX] chain
iptables -E old-chain-name new-chain-name
iptables -P chain target [options]
...
[!] --out-interface -o output name[+]
network interface name ([+] for wildcard)
--table -t table table to manipulate (default: `filter')
--verbose -v verbose mode
--line-numbers print line numbers when listing
--exact -x expand numbers (display exact values)
[!] --fragment -f match second or further fragments only
--modprobe=<command> try to insert modules using this command
--set-counters PKTS BYTES set the counter during insert/append
[!] --version -V print package version.
|
|
#кÑÐroute
Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 192.168.204.2 192.168.15.254 255.255.255.255 UGH 0 0 0 eth0 172.16.3.1 * 255.255.255.255 UH 0 0 0 tun0 192.168.15.0 * 255.255.255.0 U 0 0 0 eth0 default 172.16.3.1 0.0.0.0 UG 0 0 0 tun0 |
|
#ssh root@192.168.15.254
Connection to 192.168.15.254 closed by remote host. |
|
#host ya.ru
ya.ru A 213.180.204.8 |
|
#host eb.co.ua
eb.co.ua A record currently not present |
|
#host eset.com
eset.com A 72.3.254.86 |
|
#host 212.109.52.50
Name: ll-50.52.109.212.sovam.net.ua Address: 212.109.52.50 |
|
#dig ya.ru
; <<>> DiG 9.6.0-P1 <<>> ya.ru ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 37468 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2 ;; QUESTION SECTION: ;ya.ru. IN A ;; ANSWER SECTION: ya.ru. 3032 IN A 213.180.204.8 ;; AUTHORITY SECTION: ya.ru. 3032 IN NS ns1.yandex.ru. ya.ru. 3032 IN NS ns5.yandex.ru. ;; ADDITIONAL SECTION: ns1.yandex.ru. 175303 IN A 213.180.193.1 ns5.yandex.ru. 175303 IN A 213.180.204.1 ;; Query time: 7 msec ;; SERVER: 10.0.35.1#53(10.0.35.1) ;; WHEN: Thu Jun 4 10:47:31 2009 ;; MSG SIZE rcvd: 114 |
|
#mii-tool
eth0: negotiated 1000baseT-FD flow-control, link ok |
|
#ifconfig
eth0 Link encap:Ethernet HWaddr 00:1b:fc:7d:b5:a7
inet addr:192.168.15.6 Bcast:192.168.15.255 Mask:255.255.255.0
inet6 addr: fe80::21b:fcff:fe7d:b5a7/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:10726 errors:0 dropped:0 overruns:0 frame:0
TX packets:9020 errors:0 dropped:0 overruns:0 carrier:2
collisions:0 txqueuelen:1000
RX bytes:8059529 (7.6 MiB) TX bytes:1772565 (1.6 MiB)
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
...
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:0 (0.0 B) TX bytes:0 (0.0 B)
tun0 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
inet addr:172.16.3.2 P-t-P:172.16.3.1 Mask:255.255.255.255
UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1500 Metric:1
RX packets:7742 errors:0 dropped:0 overruns:0 frame:0
TX packets:6768 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:100
RX bytes:6956217 (6.6 MiB) TX bytes:852599 (832.6 KiB)
|
|
#mii-tool
eth0: negotiated 1000baseT-FD flow-control, link ok |
|
#dig mail.ru
; <<>> DiG 9.6.0-P1 <<>> mail.ru ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 52021 ;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 6, ADDITIONAL: 0 ;; QUESTION SECTION: ;mail.ru. IN A ;; ANSWER SECTION: mail.ru. 2949 IN A 194.67.57.20 mail.ru. 2949 IN A 194.67.57.26 ... mail.ru. 2636 IN NS ns5.mail.ru. mail.ru. 2636 IN NS ns4.mail.ru. mail.ru. 2636 IN NS ns.mail.ru. mail.ru. 2636 IN NS ns3.mail.ru. mail.ru. 2636 IN NS ns1.mail.ru. mail.ru. 2636 IN NS ns2.mail.ru. ;; Query time: 1 msec ;; SERVER: 10.0.35.1#53(10.0.35.1) ;; WHEN: Thu Jun 4 10:56:25 2009 ;; MSG SIZE rcvd: 196 |
|
#dig mail.ru -mx
add 0xb8fb6b60 size 20 file openssl_link.c line 139 mctx 0xb8f7cbc8 add 0xb8fb6b80 size 31 file openssl_link.c line 139 mctx 0xb8f7cbc8 add 0xb8fb6ba8 size 20 file openssl_link.c line 139 mctx 0xb8f7cbc8 add 0xb8fb6bc8 size 48 file openssl_link.c line 139 mctx 0xb8f7cbc8 del 0xb8fb6ba8 size 20 file openssl_link.c line 146 mctx 0xb8f7cbc8 add 0xb8fb6ba8 size 20 file openssl_link.c line 139 mctx 0xb8f7cbc8 add 0xb8fb6c00 size 20 file openssl_link.c line 139 mctx 0xb8f7cbc8 add 0xb8fb6c20 size 25 file openssl_link.c line 139 mctx 0xb8f7cbc8 add 0xb8fb6c40 size 20 file openssl_link.c line 139 mctx 0xb8f7cbc8 add 0xb8fb6c60 size 20 file openssl_link.c line 139 mctx 0xb8f7cbc8 ... del 0xb8fb5fc8 size 20 file openssl_link.c line 146 mctx 0xb8f7cbc8 del 0xb8fb6178 size 20 file openssl_link.c line 146 mctx 0xb8f7cbc8 del 0xb8fb4fd8 size 20 file openssl_link.c line 146 mctx 0xb8f7cbc8 del 0xb8fb5680 size 20 file openssl_link.c line 146 mctx 0xb8f7cbc8 del 0xb8fb6100 size 20 file openssl_link.c line 146 mctx 0xb8f7cbc8 del 0xb8fb64c0 size 20 file openssl_link.c line 146 mctx 0xb8f7cbc8 del 0xb8fb62d0 size 20 file openssl_link.c line 146 mctx 0xb8f7cbc8 del 0xb8fb5920 size 20 file openssl_link.c line 146 mctx 0xb8f7cbc8 del 0xb8fb4e50 size 20 file openssl_link.c line 146 mctx 0xb8f7cbc8 del 0xb8fb4f58 size 20 file openssl_link.c line 146 mctx 0xb8f7cbc8 |
|
#dig mail.ru mx
; <<>> DiG 9.6.0-P1 <<>> mail.ru mx ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 39195 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 6, ADDITIONAL: 1 ;; QUESTION SECTION: ;mail.ru. IN MX ;; ANSWER SECTION: mail.ru. 3587 IN MX 10 mxs.mail.ru. ;; AUTHORITY SECTION: ... mail.ru. 2609 IN NS ns1.mail.ru. mail.ru. 2609 IN NS ns2.mail.ru. mail.ru. 2609 IN NS ns4.mail.ru. mail.ru. 2609 IN NS ns5.mail.ru. ;; ADDITIONAL SECTION: mxs.mail.ru. 3587 IN A 94.100.176.20 ;; Query time: 1 msec ;; SERVER: 10.0.35.1#53(10.0.35.1) ;; WHEN: Thu Jun 4 10:56:52 2009 ;; MSG SIZE rcvd: 168 |
|
#dig ua
; <<>> DiG 9.6.0-P1 <<>> ua ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 13722 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0 ;; QUESTION SECTION: ;ua. IN A ;; AUTHORITY SECTION: ua. 10784 IN SOA updates-denied.kolo.net. domain-master.nic.net.ua. 2009060401 7205 3602 3024000 21600 ;; Query time: 0 msec ;; SERVER: 10.0.35.1#53(10.0.35.1) ;; WHEN: Thu Jun 4 10:58:09 2009 ;; MSG SIZE rcvd: 101 |
|
#dig ua mx
; <<>> DiG 9.6.0-P1 <<>> ua mx ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 13533 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 10, ADDITIONAL: 4 ;; QUESTION SECTION: ;ua. IN MX ;; ANSWER SECTION: ua. 172789 IN MX 10 mr.kolo.net. ;; AUTHORITY SECTION: ... ua. 172777 IN NS pch.ns.ua. ;; ADDITIONAL SECTION: ns2.nic.fr. 109145 IN A 192.93.0.4 ns2.nic.fr. 109145 IN AAAA 2001:660:3005:1::1:2 sunic.sunet.se. 5362 IN A 192.36.125.2 sunic.sunet.se. 5362 IN AAAA 2001:6b0:7::2 ;; Query time: 1 msec ;; SERVER: 10.0.35.1#53(10.0.35.1) ;; WHEN: Thu Jun 4 10:58:16 2009 ;; MSG SIZE rcvd: 358 |
|
#dig ua ns
; <<>> DiG 9.6.0-P1 <<>> ua ns ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 41411 ;; flags: qr rd ra; QUERY: 1, ANSWER: 10, AUTHORITY: 0, ADDITIONAL: 4 ;; QUESTION SECTION: ;ua. IN NS ;; ANSWER SECTION: ua. 172753 IN NS he1.ns.ua. ua. 172753 IN NS ns.uu.net. ... ua. 172753 IN NS ho1.ns.ua. ;; ADDITIONAL SECTION: ns2.nic.fr. 109121 IN A 192.93.0.4 ns2.nic.fr. 109121 IN AAAA 2001:660:3005:1::1:2 sunic.sunet.se. 5338 IN A 192.36.125.2 sunic.sunet.se. 5338 IN AAAA 2001:6b0:7::2 ;; Query time: 1 msec ;; SERVER: 10.0.35.1#53(10.0.35.1) ;; WHEN: Thu Jun 4 10:58:41 2009 ;; MSG SIZE rcvd: 334 |
|
#dig kz ns
; <<>> DiG 9.6.0-P1 <<>> kz ns ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 58594 ;; flags: qr rd ra; QUERY: 1, ANSWER: 7, AUTHORITY: 0, ADDITIONAL: 3 ;; QUESTION SECTION: ;kz. IN NS ;; ANSWER SECTION: kz. 86381 IN NS auth00.ns.uu.net. kz. 86381 IN NS ns.ricc.kz. ... kz. 86381 IN NS ns.ru.net. kz. 86381 IN NS ns.nic.kz. ;; ADDITIONAL SECTION: ns.ru.net. 9645 IN A 193.124.22.65 ns.spb.ru. 34638 IN A 193.124.83.69 auth00.ns.uu.net. 75946 IN A 198.6.1.65 ;; Query time: 1 msec ;; SERVER: 10.0.35.1#53(10.0.35.1) ;; WHEN: Thu Jun 4 10:58:51 2009 ;; MSG SIZE rcvd: 233 |
|
#dig tj ns
; <<>> DiG 9.6.0-P1 <<>> tj ns ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 28519 ;; flags: qr rd ra; QUERY: 1, ANSWER: 5, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;tj. IN NS ;; ANSWER SECTION: tj. 172783 IN NS ns-tj.ripe.net. tj. 172783 IN NS ns1.nic.tj. tj. 172783 IN NS tjmirror.eastera.tj. tj. 172783 IN NS ns2.tojikiston.com. tj. 172783 IN NS phloem.uoregon.edu. ;; Query time: 0 msec ;; SERVER: 10.0.35.1#53(10.0.35.1) ;; WHEN: Thu Jun 4 10:59:05 2009 ;; MSG SIZE rcvd: 165 |
|
#dig co ns
; <<>> DiG 9.6.0-P1 <<>> co ns ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 13930 ;; flags: qr rd ra; QUERY: 1, ANSWER: 7, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;co. IN NS ;; ANSWER SECTION: co. 43200 IN NS saell.cc.columbia.edu. co. 43200 IN NS ns2.nic.co. co. 43200 IN NS ns5.nic.co. co. 43200 IN NS ns3.nic.co. co. 43200 IN NS ns1.nic.co. co. 43200 IN NS ns4.nic.co. co. 43200 IN NS mintaka.uniandes.edu.co. ;; Query time: 249 msec ;; SERVER: 10.0.35.1#53(10.0.35.1) ;; WHEN: Thu Jun 4 10:59:45 2009 ;; MSG SIZE rcvd: 184 |
|
#dig ua ns
; <<>> DiG 9.6.0-P1 <<>> ua ns ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 8180 ;; flags: qr rd ra; QUERY: 1, ANSWER: 10, AUTHORITY: 0, ADDITIONAL: 4 ;; QUESTION SECTION: ;ua. IN NS ;; ANSWER SECTION: ua. 172681 IN NS pch.ns.ua. ua. 172681 IN NS sunic.sunet.se. ... ua. 172681 IN NS ns.uu.net. ;; ADDITIONAL SECTION: ns2.nic.fr. 109049 IN A 192.93.0.4 ns2.nic.fr. 109049 IN AAAA 2001:660:3005:1::1:2 sunic.sunet.se. 5266 IN A 192.36.125.2 sunic.sunet.se. 5266 IN AAAA 2001:6b0:7::2 ;; Query time: 1 msec ;; SERVER: 10.0.35.1#53(10.0.35.1) ;; WHEN: Thu Jun 4 10:59:53 2009 ;; MSG SIZE rcvd: 334 |
|
#whois 82.198.22.10
% This is the RIPE Whois query server #3. % The objects are in RPSL format. % % The RIPE Database is subject to Terms and Conditions. % See http://www.ripe.net/db/support/db-terms-conditions.pdf % Note: This output has been filtered. % To receive output for a database update, use the "-B" flag. % Information related to '82.198.22.0 - 82.198.22.255' inetnum: 82.198.22.0 - 82.198.22.255 netname: Eastera-TJ ... origin: AS30721 mnt-by: SATGATE-MNT source: RIPE # Filtered % Information related to '82.198.0.0/19AS30721' route: 82.198.0.0/19 descr: SATGATE-AGGR-ROUTE origin: AS30721 mnt-by: SATGATE-MNT mnt-routes: SATGATE-MNT source: RIPE # Filtered |
# Used by ifup(8) and ifdown(8). See the interfaces(5) manpage or
# /usr/share/doc/ifupdown/examples for more information.
auto lo eth0
iface lo inet loopback
iface eth0 inet static
address 192.168.15.6
netmask 255.255.255.0
network 192.168.15.0
broadcast 192.168.15.255
gateway 192.168.15.254
| Время первой команды журнала | 18:17:18 2009- 6- 3 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Время последней команды журнала | 10:59:53 2009- 6- 4 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Количество командных строк в журнале | 101 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Процент команд с ненулевым кодом завершения, % | 13.86 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Процент синтаксически неверно набранных команд, % | 0.99 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Суммарное время работы с терминалом *, час | 3.33 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Количество командных строк в единицу времени, команда/мин | 0.51 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Частота использования команд |
|
В журнал автоматически попадают все команды, данные в любом терминале системы.
Для того чтобы убедиться, что журнал на текущем терминале ведётся, и команды записываются, дайте команду w. В поле WHAT, соответствующем текущему терминалу, должна быть указана программа script.
Команды, при наборе которых были допущены синтаксические ошибки, выводятся перечёркнутым текстом:
$ l s-l bash: l: command not found |
Если код завершения команды равен нулю, команда была выполнена без ошибок. Команды, код завершения которых отличен от нуля, выделяются цветом.
$ test 5 -lt 4 |
Команды, ход выполнения которых был прерван пользователем, выделяются цветом.
$ find / -name abc find: /home/devi-orig/.gnome2: Keine Berechtigung find: /home/devi-orig/.gnome2_private: Keine Berechtigung find: /home/devi-orig/.nautilus/metafiles: Keine Berechtigung find: /home/devi-orig/.metacity: Keine Berechtigung find: /home/devi-orig/.inkscape: Keine Berechtigung ^C |
Команды, выполненные с привилегиями суперпользователя, выделяются слева красной чертой.
# id uid=0(root) gid=0(root) Gruppen=0(root) |
Изменения, внесённые в текстовый файл с помощью редактора, запоминаются и показываются в журнале в формате ed. Строки, начинающиеся символом "<", удалены, а строки, начинающиеся символом ">" -- добавлены.
$ vi ~/.bashrc
|
Для того чтобы изменить файл в соответствии с показанными в диффшоте изменениями, можно воспользоваться командой patch. Нужно скопировать изменения, запустить программу patch, указав в качестве её аргумента файл, к которому применяются изменения, и всавить скопированный текст:
$ patch ~/.bashrc |
Для того чтобы получить краткую справочную информацию о команде, нужно подвести к ней мышь. Во всплывающей подсказке появится краткое описание команды.
Если справочная информация о команде есть, команда выделяется голубым фоном, например: vi. Если справочная информация отсутствует, команда выделяется розовым фоном, например: notepad.exe. Справочная информация может отсутствовать в том случае, если (1) команда введена неверно; (2) если распознавание команды LiLaLo выполнено неверно; (3) если информация о команде неизвестна LiLaLo. Последнее возможно для редких команд.
Большие, в особенности многострочные, всплывающие подсказки лучше всего показываются браузерами KDE Konqueror, Apple Safari и Microsoft Internet Explorer. В браузерах Mozilla и Firefox они отображаются не полностью, а вместо перевода строки выводится специальный символ.
Время ввода команды, показанное в журнале, соответствует времени начала ввода командной строки, которое равно тому моменту, когда на терминале появилось приглашение интерпретатора
Имя терминала, на котором была введена команда, показано в специальном блоке. Этот блок показывается только в том случае, если терминал текущей команды отличается от терминала предыдущей.
Вывод не интересующих вас в настоящий момент элементов журнала, таких как время, имя терминала и других, можно отключить. Для этого нужно воспользоваться формой управления журналом вверху страницы.
Небольшие комментарии к командам можно вставлять прямо из командной строки. Комментарий вводится прямо в командную строку, после символов #^ или #v. Символы ^ и v показывают направление выбора команды, к которой относится комментарий: ^ - к предыдущей, v - к следующей. Например, если в командной строке было введено:
$ whoami
user
$ #^ Интересно, кто я?в журнале это будет выглядеть так:
$ whoami
user
| Интересно, кто я? |
Если комментарий содержит несколько строк, его можно вставить в журнал следующим образом:
$ whoami
user
$ cat > /dev/null #^ Интересно, кто я?
Программа whoami выводит имя пользователя, под которым мы зарегистрировались в системе. - Она не может ответить на вопрос о нашем назначении в этом мире.В журнале это будет выглядеть так:
$ whoami user
|
Комментарии, не относящиеся непосредственно ни к какой из команд, добавляются точно таким же способом, только вместо симолов #^ или #v нужно использовать символы #=
1
2
3
4
Группы команд, выполненных на разных терминалах, разделяются специальной линией.
Под этой линией в правом углу показано имя терминала, на котором выполнялись команды.
Для того чтобы посмотреть команды только одного сенса,
нужно щёкнуть по этому названию.
LiLaLo (L3) расшифровывается как Live Lab Log.
Программа разработана для повышения эффективности обучения Unix/Linux-системам.
(c) Игорь Чубин, 2004-2008