Magana
Sannu duka! Sunana Sasha, kuma ina yin gwajin baya (sabis na Linux da API) sama da shekaru shida. Tunanin labarin ya zo gare ni bayan wani buƙatu daga abokin gwaji don gaya masa abin da zai iya karantawa game da umarnin Linux kafin yin hira. Yawanci, ana buƙatar ɗan takarar injiniyan QA don sanin ƙa'idodi na asali (idan, ba shakka, sun haɗa da aiki tare da Linux), amma ta yaya kuke san waɗanne dokokin da suka cancanci karantawa yayin shirye-shiryen yin hira idan kuna da kaɗan. ko babu kwarewa tare da Linux?
Saboda haka, ko da yake an riga an rubuta wannan game da sau da yawa, har yanzu na yanke shawarar rubuta wani labarin "Linux for beginners" da kuma jera a nan ainihin dokokin da kuke buƙatar sani kafin duk wani hira a cikin sashen (ko kamfani) da ke amfani da Linux. Na yi tunani game da waɗanne umarni da abubuwan amfani da waɗanne sigogin da nake amfani da su sau da yawa, na tattara ra'ayoyin abokan aiki na, na tattara su duka cikin labarin ɗaya. An raba labarin zuwa sassa 3: na farko, taƙaitaccen bayani game da tushen I/O a cikin Linux Terminal, sa'an nan kuma bayyani na mafi mahimman umarni, sa'an nan na uku ya bayyana yadda za a magance matsalolin gama gari a Linux.
Kowane umarni yana da zaɓuɓɓuka da yawa, duka ba za a jera su anan ba. Kuna iya shigar da kullunmutum <umarni>`ko`<umarni> --taimako`don ƙarin koyo game da ƙungiyar.
Alal misali:
[user@testhost ~]$ mkdir --help Usage: mkdir [OPTION]... DIRECTORY... Create the DIRECTORY(ies), if they do not already exist. Mandatory arguments to long options are mandatory for short options too. -m, --mode=MODE set file mode (as in chmod), not a=rwx - umask -p, --parents no error if existing, make parent directories as needed -v, --verbose print a message for each created directory -Z set SELinux security context of each created directory to the default type --context[=CTX] like -Z, or if CTX is specified then set the SELinux or SMACK security context to CTX --help display this help and exit --version output version information and exit GNU coreutils online help: <http://www.gnu.org/software/coreutils/> For complete documentation, run: info coreutils 'mkdir invocation'
Idan umarni ya ɗauki tsayi da yawa don kammalawa, zaku iya ƙare shi ta danna cikin na'ura wasan bidiyo Ctrl + C (ana aika sigina zuwa tsari SAURARA).
Kadan game da fitarwar umarni
Lokacin da tsari ya fara a Linux, ana ƙirƙiri daidaitattun rafukan bayanai guda 3 don wannan tsari: stdin, stdout и stderr. An ƙidaya su 0, 1 da 2 bi da bi. Amma yanzu muna sha'awar stdout kuma, a ɗan ƙarami. stderr. Daga sunayen yana da sauƙi a gane hakan stdout ana amfani da shi don fitar da bayanai, kuma stderr - don nuna saƙonnin kuskure. Ta tsohuwa lokacin gudanar da umarni akan Linux stdout и stderr fitar da duk bayanai zuwa na'ura wasan bidiyo, duk da haka, idan fitarwar umarni babba ne, yana iya dacewa don tura shi zuwa fayil. Ana iya yin wannan, misali, kamar haka:
[user@testhost ~]$ man signal > man_signal
Idan muka fitar da abubuwan da ke cikin fayil ɗin siginar_man, to, za mu ga cewa ya yi kama da abin da zai kasance idan muka kawai gudanar da umurnin `siginar mutum`.
Aiki na turawa'>` kasada zuwa stdout. Kuna iya ƙayyade hanyar turawa stdout a zahiri: `1>`. Hakazalika, zaku iya tantance jujjuyawa stderr:'2>`. Kuna iya haɗa waɗannan ayyukan don haka raba fitowar umarni na yau da kullun da fitowar saƙon kuskure:
[user@testhost ~]$ man signal 1> man_signal 2> man_signal_error_log
Komawa da stdoutkuma stderr cikin fayil guda kamar haka:
[user@testhost ~]$ man signal > man_signal 2>&1
Aiki na turawa'2> & 1` yana nufin turawa stderr zuwa wuri guda kamar yadda aka umarce shi stdout.
Wani kayan aiki mai dacewa don aiki tare da I/O (ko kuma wajen, kayan aiki ne mai dacewa don sadarwa ta hanyar sadarwa) shine bututu (ko mai ɗaukar kaya). Ana amfani da bututu sau da yawa don sadarwa umarni da yawa: stdout ana tura umarni zuwa stdin na gaba, da sauransu a cikin sarkar:
[user@testhost ~]$ ps aux | grep docker | tail -n 2
root 1045894 0.0 0.0 7512 3704 ? Sl 16:04 0:00 docker-containerd-shim -namespace moby -workdir /var/lib/docker/containerd/daemon/io.containerd.runtime.v1.linux/moby/2fbfddaf91c1bb7b9a0a6f788f3505dd7266f1139ad381d5b51ec1f47e1e7b28 -address /var/run/docker/containerd/docker-containerd.sock -containerd-binary /usr/bin/docker-containerd -runtime-root /var/run/docker/runtime-runc
531 1048313 0.0 0.0 110520 2084 pts/2 S+ 16:12 0:00 grep --color=auto docker
Dokokin Linux na asali
pwd
Nuna kundin adireshin (aiki) na yanzu.
[user@testhost ~]$ pwd
/home/user
date
Nuna kwanan wata da lokaci tsarin tsarin.
[user@testhost ~]$ date
Mon Dec 16 13:37:07 UTC 2019
[user@testhost ~]$ date +%s
1576503430
w
Wannan umarnin yana nuna wanda aka shiga cikin tsarin. Bugu da kari, lokacin aiki da LA (matsakaicin kaya) ana kuma nuna su akan allon.
[user@testhost ~]$ w
05:47:17 up 377 days, 17:57, 1 user, load average: 0,00, 0,01, 0,05
USER TTY FROM LOGIN@ IDLE JCPU PCPU WHAT
user pts/0 32.175.94.241 05:47 2.00s 0.01s 0.00s w
ls
Buga abubuwan da ke cikin kundin adireshi. Idan ba ku wuce hanyar ba, za a nuna abubuwan da ke cikin kundin adireshi na yanzu.
[user@testhost ~]$ pwd
/home/user
[user@testhost ~]$ ls
qqq
[user@testhost ~]$ ls /home/user
qqq
[user@testhost ~]$ ls /
bin boot cgroup dev etc home lib lib64 local lost+found media mnt opt proc root run sbin selinux srv swap sys tmp usr var
Da kaina, sau da yawa ina amfani da zaɓuɓɓuka -l (tsarin jeri mai tsawo - fitarwa zuwa ginshiƙi tare da ƙarin bayani game da fayiloli), -t (Rarraba ta hanyar fayil/lokacin gyarawa) da -r (sake rarrabawa - a hade tare da -t fayilolin kwanan nan za su kasance a ƙasa):
[user@testhost ~]$ ls -ltr /
total 4194416
drwxr-xr-x 2 root root 4096 Jan 6 2012 srv
drwxr-xr-x 2 root root 4096 Jan 6 2012 selinux
drwxr-xr-x 2 root root 4096 Jan 6 2012 mnt
drwxr-xr-x 2 root root 4096 Jan 6 2012 media
drwx------ 2 root root 16384 Oct 1 2017 lost+found
drwxr-xr-x 2 root root 4096 Oct 1 2017 local
drwxr-xr-x 13 root root 4096 Oct 1 2017 usr
drwxr-xr-x 11 root root 4096 Apr 10 2018 cgroup
drwxr-xr-x 4 root root 4096 Apr 10 2018 run
-rw------- 1 root root 4294967296 Sep 10 2018 swap
dr-xr-xr-x 10 root root 4096 Dec 13 2018 lib
drwxr-xr-x 6 root root 4096 Mar 7 2019 opt
drwxr-xr-x 20 root root 4096 Mar 19 2019 var
dr-xr-xr-x 10 root root 12288 Apr 9 2019 lib64
dr-xr-xr-x 2 root root 4096 Apr 9 2019 bin
dr-xr-xr-x 4 root root 4096 Apr 9 2019 boot
dr-xr-xr-x 2 root root 12288 Apr 9 2019 sbin
dr-xr-xr-x 3229 root root 0 Jul 2 10:19 proc
drwxr-xr-x 34 root root 4096 Oct 28 13:27 home
drwxr-xr-x 93 root root 4096 Oct 30 16:00 etc
dr-xr-x--- 11 root root 4096 Nov 1 13:02 root
dr-xr-xr-x 13 root root 0 Nov 13 20:28 sys
drwxr-xr-x 16 root root 2740 Nov 26 08:55 dev
drwxrwxrwt 3 root root 4096 Nov 26 08:57 tmp
Akwai sunaye na musamman guda 2:"."Kuma"..". Na farko yana nufin kundin adireshi na yanzu, na biyu kuma yana nufin littafin iyaye. Suna iya zama masu dacewa don amfani a cikin ƙungiyoyi daban-daban, musamman ls:
[user@testhost home]$ pwd
/home
[user@testhost home]$ ls ..
bin boot cgroup dev etc home lib lib64 local lost+found media mnt opt proc root run sbin selinux srv swap sys tmp usr var
[user@testhost home]$ ls ../home/user/
qqq
Hakanan akwai zaɓi mai amfani don nuna ɓoyayyun fayiloli (farawa da ".") - -a:
[user@testhost ~]$ ls -a
. .. 1 .bash_history .bash_logout .bash_profile .bashrc .lesshst man_signal man_signal_error_log .mongorc.js .ssh temp test .viminfo
Hakanan zaka iya amfani da zaɓin -h - fitarwa a cikin tsarin ɗan adam wanda za'a iya karantawa (ku kula da girman fayil):
[user@testhost ~]$ ls -ltrh
total 16K
-rwxrwx--x 1 user user 31 Nov 26 11:09 temp
-rw-rw-r-- 1 user user 6.0K Dec 3 16:02 1
drwxrwxr-x 2 user user 4.0K Dec 4 10:39 test
cd
Canja kundin adireshi na yanzu.
[user@testhost ~]$ pwd
/home/user
[user@testhost ~]$ cd /home/
[user@testhost home]$ pwd
/home
Idan ba ku wuce sunan directory azaman hujja ba, za a yi amfani da canjin yanayi $ HOME, wato littafin tarihin gida. Hakanan yana iya dacewa da amfani da `~` ma'ana ta musamman ce $ HOME:
[user@testhost etc]$ pwd
/etc
[user@testhost etc]$ cd ~/test/
[user@testhost test]$ pwd
/home/user/test
mkdir
Ƙirƙiri directory.
[user@testhost ~]$ mkdir test
[user@testhost ~]$ ls -ltr
total 38184
-rw-rw-r-- 1 user user 39091284 Nov 22 14:14 qqq
drwxrwxr-x 2 user user 4096 Nov 26 10:29 test
Wani lokaci kuna buƙatar ƙirƙirar takamaiman tsarin kundin adireshi: misali, kundin adireshi a cikin kundin adireshi wanda babu shi. Don kaucewa shiga sau da yawa a jere mkdir, za ka iya amfani da zabin -p - yana ba ku damar ƙirƙirar duk kundayen adireshi da suka ɓace a cikin matsayi. Hakanan tare da wannan zaɓi mkdir ba zai dawo da kuskure ba idan kundin adireshi ya wanzu.
[user@testhost ~]$ ls
qqq test
[user@testhost ~]$ mkdir test2/subtest
mkdir: cannot create directory ‘test2/subtest’: No such file or directory
[user@testhost ~]$ mkdir -p test2/subtest
[user@testhost ~]$ ls
qqq test test2
[user@testhost ~]$ ls test2/
subtest
[user@testhost ~]$ mkdir test2/subtest
mkdir: cannot create directory ‘test2/subtest’: File exists
[user@testhost ~]$ mkdir -p test2/subtest
[user@testhost ~]$ ls test2/
subtest
rm
Share fayil.
[user@testhost ~]$ ls
qqq test test2
[user@testhost ~]$ rm qqq
[user@testhost ~]$ ls
test test2
Zaɓi -r yana ba ku damar share kundayen adireshi akai-akai tare da duk abinda ke cikin su, zaɓi -f yana ba ku damar yin watsi da kurakurai lokacin sharewa (misali, game da fayil ɗin da ba ya wanzu). Waɗannan zaɓuɓɓukan suna ba da damar, a kusan magana, tabbataccen gogewa na dukkan tsarin fayiloli da kundayen adireshi (idan mai amfani yana da haƙƙin yin hakan), saboda haka, yakamata a yi amfani da su da taka tsantsan (misali na barkwanci na yau da kullun shine "rm-rf /", a ƙarƙashin wasu yanayi, zai share ku, idan ba tsarin gaba ɗaya ba, to, fayiloli da yawa masu mahimmanci don aikin sa).
[user@testhost ~]$ ls
test test2
[user@testhost ~]$ ls -ltr test2/
total 4
-rw-rw-r-- 1 user user 0 Nov 26 10:40 temp
drwxrwxr-x 2 user user 4096 Nov 26 10:40 temp_dir
[user@testhost ~]$ rm -rf test2
[user@testhost ~]$ ls
test
cp
Kwafi fayil ko directory.
[user@testhost ~]$ ls
temp test
[user@testhost ~]$ cp temp temp_clone
[user@testhost ~]$ ls
temp temp_clone test
Wannan umarnin kuma yana da zaɓuɓɓuka -r и -f, ana iya amfani da su don tabbatar da cewa an kwafi manyan kundayen adireshi da manyan fayiloli zuwa wani wuri.
mv
Matsar ko sake suna fayil ko directory.
[user@testhost ~]$ ls -ltr
total 4
drwxrwxr-x 2 user user 4096 Nov 26 10:29 test
-rw-rw-r-- 1 user user 0 Nov 26 10:45 temp
-rw-rw-r-- 1 user user 0 Nov 26 10:46 temp_clone
[user@testhost ~]$ ls test
[user@testhost ~]$ mv test test_renamed
[user@testhost ~]$ mv temp_clone test_renamed/
[user@testhost ~]$ ls
temp test_renamed
[user@testhost ~]$ ls test_renamed/
temp_clone
cat
Buga abubuwan da ke cikin fayil (ko fayiloli).
[user@testhost ~]$ cat temp
Content of a file.
Lalalala...
Hakanan yana da kyau a kula da umarni shugaban (fito n layukan farko ko bytes na fayil) da wutsiya (karin ta daga baya).
wutsiya
Karbo n layi na ƙarshe ko bytes na fayil.
[user@testhost ~]$ tail -1 temp
Lalalala...
Zaɓin yana da amfani sosai -f - yana ba ku damar nuna sabbin bayanai a cikin fayil a ainihin lokacin.
Kadan
Wani lokaci fayil ɗin rubutu yana da girma kuma yana da wahala a nuna shi tare da umarnin cat. Sa'an nan za ka iya bude shi ta amfani da umurnin Kadan: fayil ɗin zai fito a sassa; kewayawa ta waɗannan sassa, bincika da sauran ayyuka masu sauƙi suna samuwa.
[user@testhost ~]$ less temp
Yana iya zama dacewa don amfani Kadan da conveyor (bututu):
[user@testhost ~]$ grep "ERROR" /tmp/some.log | less
ps
Hanyoyin jeri.
[user@testhost ~]$ ps
PID TTY TIME CMD
761020 pts/2 00:00:00 bash
809720 pts/2 00:00:00 ps
Ni kaina yawanci ina amfani da zaɓuɓɓukan BSD"da"- Nuna duk matakai a cikin tsarin (tun da za'a iya samun matakai da yawa, na nuna kawai 5 na farko daga cikinsu ta amfani da bututun (tun da za a iya samun matakai da yawa, na nuna kawai XNUMX na farko daga cikinsu ta amfani da bututun mai).bututu) da tawagar shugaban):
[user@testhost ~]$ ps aux | head -5
USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
root 1 0.0 0.0 19692 2600 ? Ss Jul02 0:10 /sbin/init
root 2 0.0 0.0 0 0 ? S Jul02 0:03 [kthreadd]
root 4 0.0 0.0 0 0 ? I< Jul02 0:00 [kworker/0:0H]
root 6 0.0 0.0 0 0 ? I< Jul02 0:00 [mm_percpu_wq]
Mutane da yawa kuma suna amfani da zaɓuɓɓukan BSD"axjf", wanda ke ba ku damar nuna bishiyar tsari (a nan na cire wani ɓangare na fitarwa don nunawa):
[user@testhost ~]$ ps axjf
PPID PID PGID SID TTY TPGID STAT UID TIME COMMAND
0 2 0 0 ? -1 S 0 0:03 [kthreadd]
2 4 0 0 ? -1 I< 0 0:00 _ [kworker/0:0H]
2 6 0 0 ? -1 I< 0 0:00 _ [mm_percpu_wq]
2 7 0 0 ? -1 S 0 4:08 _ [ksoftirqd/0]
...
...
...
1 4293 4293 4293 tty6 4293 Ss+ 0 0:00 /sbin/mingetty /dev/tty6
1 532967 532964 532964 ? -1 Sl 495 0:00 /opt/td-agent/embedded/bin/ruby /usr/sbin/td-agent --log /var/log/td-agent/td-agent.log --use-v1-config --group td-agent --daemon /var/run/td-agent/td-agent.pid
532967 532970 532964 532964 ? -1 Sl 495 803:06 _ /opt/td-agent/embedded/bin/ruby /usr/sbin/td-agent --log /var/log/td-agent/td-agent.log --use-v1-config --group td-agent --daemon /var/run/td-agent/td-agent.pid
1 537162 533357 532322 ? -1 Sl 0 5067:43 /usr/bin/dockerd --default-ulimit nofile=262144:262144 --dns=172.17.0.1
537162 537177 537177 537177 ? -1 Ssl 0 4649:28 _ docker-containerd --config /var/run/docker/containerd/containerd.toml
537177 537579 537579 537177 ? -1 Sl 0 4:48 | _ docker-containerd-shim -namespace moby -workdir /var/lib/docker/containerd/daemon/io.containerd.runtime.v1.linux/moby/0ee89b20deb3cf08648cd92e1f3e3c661ccffef7a0971
537579 537642 537642 537642 ? -1 Ss 1000 32:11 | | _ /usr/bin/python /usr/bin/supervisord -c /etc/supervisord/api.conf
537642 539764 539764 537642 ? -1 S 1000 0:00 | | _ sh -c echo "READY"; while read -r line; do echo "$line"; supervisorctl shutdown; done
537642 539767 539767 537642 ? -1 S 1000 5:09 | | _ php-fpm: master process (/etc/php73/php-fpm.conf)
539767 783097 539767 537642 ? -1 S 1000 0:00 | | | _ php-fpm: pool test
539767 783131 539767 537642 ? -1 S 1000 0:00 | | | _ php-fpm: pool test
539767 783185 539767 537642 ? -1 S 1000 0:00 | | | _ php-fpm: pool test
...
...
...
Wannan umarnin yana da zaɓuɓɓuka daban-daban da yawa, don haka idan kuna amfani da shi sosai, ina ba da shawarar ku karanta takaddun. Ga mafi yawan lokuta, ya isa kawai sani "ps aux".
kashe
Aika sigina zuwa tsari. Ta hanyar tsoho ana aika siginar LOKACIN NUFI, wanda ya ƙare aikin.
[user@testhost ~]$ ps ux
USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
531 1027147 0.0 0.0 119956 4260 ? S 14:51 0:00 sshd: user@pts/1
531 1027149 0.0 0.0 115408 3396 pts/1 Ss 14:51 0:00 -bash
531 1027170 0.0 0.0 119956 4136 ? R 14:51 0:00 sshd: user@pts/2
531 1027180 0.0 0.0 115408 3564 pts/2 Ss 14:51 0:00 -bash
531 1033727 0.0 0.0 107960 708 pts/1 S+ 15:17 0:00 sleep 300
531 1033752 0.0 0.0 117264 2604 pts/2 R+ 15:17 0:00 ps ux
[user@testhost ~]$ kill 1033727
[user@testhost ~]$ ps ux
USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
531 1027147 0.0 0.0 119956 4260 ? S 14:51 0:00 sshd: user@pts/1
531 1027149 0.0 0.0 115408 3396 pts/1 Ss+ 14:51 0:00 -bash
531 1027170 0.0 0.0 119956 4136 ? R 14:51 0:00 sshd: user@pts/2
531 1027180 0.0 0.0 115408 3564 pts/2 Ss 14:51 0:00 -bash
531 1033808 0.0 0.0 117268 2492 pts/2 R+ 15:17 0:00 ps ux
Tun da tsari na iya samun masu sarrafa sigina, kashe ba koyaushe yana haifar da sakamakon da ake tsammani ba - kammala aikin nan take. Don "kashe" tsari tabbas, kuna buƙatar aika sigina zuwa tsarin SIGKILL. Koyaya, wannan na iya haifar da asarar bayanai (misali, idan tsarin yana buƙatar adana wasu bayanai zuwa faifai kafin ƙarewa), don haka kuna buƙatar amfani da wannan umarni tare da taka tsantsan. Lambar sigina SIGKILL - 9, don haka gajeriyar sigar umarnin tayi kama da haka:
[user@testhost ~]$ ps ux | grep sleep
531 1034930 0.0 0.0 107960 636 pts/1 S+ 15:21 0:00 sleep 300
531 1034953 0.0 0.0 110516 2104 pts/2 S+ 15:21 0:00 grep --color=auto sleep
[user@testhost ~]$ kill -9 1034930
[user@testhost ~]$ ps ux | grep sleep
531 1035004 0.0 0.0 110516 2092 pts/2 S+ 15:22 0:00 grep --color=auto sleep
Baya ga wadanda aka ambata LOKACIN NUFI и SIGKILL Akwai ƙarin sigina daban-daban; ana iya samun jerin su cikin sauƙi akan Intanet. Kuma kar a manta cewa sigina SIGKILL и NA GABA ba za a iya shiga ko watsi da shi ba.
ping
Aika fakitin ICMP zuwa mai masaukin baki ECHO_REQUEST.
[user@testhost ~]$ ping google.com
PING google.com (172.217.15.78) 56(84) bytes of data.
64 bytes from iad23s63-in-f14.1e100.net (172.217.15.78): icmp_seq=1 ttl=47 time=1.85 ms
64 bytes from iad23s63-in-f14.1e100.net (172.217.15.78): icmp_seq=2 ttl=47 time=1.48 ms
64 bytes from iad23s63-in-f14.1e100.net (172.217.15.78): icmp_seq=3 ttl=47 time=1.45 ms
64 bytes from iad23s63-in-f14.1e100.net (172.217.15.78): icmp_seq=4 ttl=47 time=1.46 ms
64 bytes from iad23s63-in-f14.1e100.net (172.217.15.78): icmp_seq=5 ttl=47 time=1.45 ms
^C
--- google.com ping statistics ---
5 packets transmitted, 5 received, 0% packet loss, time 4006ms
rtt min/avg/max/mdev = 1.453/1.541/1.850/0.156 ms
da default ping yana aiki har sai an ƙare shi da hannu. Don haka zaɓin na iya zama da amfani -c - adadin fakiti bayan aikawa ping zai kammala da kanta. Wani zabin da nake amfani da shi a wasu lokuta shine -i, tazara tsakanin aika fakiti.
[user@testhost ~]$ ping -c 3 -i 5 google.com
PING google.com (172.217.5.238) 56(84) bytes of data.
64 bytes from iad30s07-in-f238.1e100.net (172.217.5.238): icmp_seq=1 ttl=47 time=1.55 ms
64 bytes from iad30s07-in-f14.1e100.net (172.217.5.238): icmp_seq=2 ttl=47 time=1.17 ms
64 bytes from iad30s07-in-f14.1e100.net (172.217.5.238): icmp_seq=3 ttl=47 time=1.16 ms
--- google.com ping statistics ---
3 packets transmitted, 3 received, 0% packet loss, time 10006ms
rtt min/avg/max/mdev = 1.162/1.295/1.551/0.181 ms
ssh
BudeSSH SSH abokin ciniki yana ba ku damar haɗi zuwa mai watsa shiri mai nisa.
MacBook-Pro-User:~ user$ ssh [email protected]
Last login: Tue Nov 26 11:27:39 2019 from another_host
[user@testhost ~]$ hostname
testhost
Akwai nuances da yawa a cikin amfani da SSH, kuma wannan abokin ciniki kuma yana da adadi mai yawa na iya aiki, don haka idan kuna so (ko buƙata) kuna iya karantawa game da shi. .
scp
Kwafi fayiloli tsakanin runduna (don wannan amfani ssh).
[user@testhost ~]$ pwd
/home/user
[user@testhost ~]$ ls
temp test_renamed
[user@testhost ~]$ exit
logout
Connection to 11.11.22.22 closed.
MacBook-Pro-Aleksandr:~ user$ scp [email protected]:/home/user/temp Downloads/
temp 100% 31 0.2KB/s 00:00
MacBook-Pro-Aleksandr:~ user$ cat Downloads/temp
Content of a file.
Lalalala...
rsync
Hakanan zaka iya amfani da su don daidaita kundayen adireshi tsakanin runduna rsync (-a - Yanayin adana kayan tarihi, yana ba ku damar kwafin duk abubuwan da ke cikin littafin "kamar yadda yake", -v - fitarwa zuwa na'ura mai ba da hanya tsakanin hanyoyin sadarwa na ƙarin bayani):
MacBook-Pro-User:~ user$ ls Downloads/user
ls: Downloads/user: No such file or directory
MacBook-Pro-User:~ user$ rsync -av user@testhost:/home/user Downloads
receiving file list ... done
user/
user/.bash_history
user/.bash_logout
user/.bash_profile
user/.bashrc
user/.lesshst
user/.mongorc.js
user/.viminfo
user/1
user/man_signal
user/man_signal_error_log
user/temp
user/.ssh/
user/.ssh/authorized_keys
user/test/
user/test/created_today
user/test/temp_clone
sent 346 bytes received 29210 bytes 11822.40 bytes/sec
total size is 28079 speedup is 0.95
MacBook-Pro-User:~ user$ ls -a Downloads/user
. .bash_history .bash_profile .lesshst .ssh 1 man_signal_error_log test
.. .bash_logout .bashrc .mongorc.js .viminfo man_signal temp
Kira
Nuna layin rubutu.
[user@testhost ~]$ echo "Hello"
Hello
Zaɓuɓɓuka masu daraja a nan -n - kar a haɗa layin tare da hutun layi a ƙarshen, kuma -e - ba da damar tserewa fassarar ta amfani da "".
[user@testhost ~]$ echo "tHellon"
tHellon
[user@testhost ~]$ echo -n "tHellon"
tHellon[user@testhost ~]$
[user@testhost ~]$ echo -ne "tHellon"
Hello
Hakanan zaka iya nuna ƙimar masu canji ta amfani da wannan umarni. Misali, a cikin Linux lambar fita na umarnin da aka kammala na ƙarshe ana adana shi a cikin maɓalli na musamman $?, kuma ta wannan hanyar zaku iya gano ainihin kuskuren da ya faru a cikin aikace-aikacen da ke gudana na ƙarshe:
[user@testhost ~]$ ls # ошибки не будет
1 man_signal man_signal_error_log temp test
[user@testhost ~]$ echo $? # получим 0 — ошибки не было
0
[user@testhost ~]$ ls qwerty # будет ошибка
ls: cannot access qwerty: No such file or directory
[user@testhost ~]$ echo $? # получим 2 — Misuse of shell builtins (according to Bash documentation)
2
[user@testhost ~]$ echo $? # последний echo отработал без ошибок, получим 0
0
telnet
Abokin ciniki don ƙa'idar TELNET. An yi amfani da shi don sadarwa tare da wani mai masaukin baki.
[user@testhost ~]$ telnet example.com 80
Trying 93.184.216.34...
Connected to example.com.
Escape character is '^]'.
GET / HTTP/1.1
Host: example.com
HTTP/1.1 200 OK
Cache-Control: max-age=604800
Content-Type: text/html; charset=UTF-8
Date: Tue, 26 Nov 2019 11:59:18 GMT
Etag: "3147526947+gzip+ident"
Expires: Tue, 03 Dec 2019 11:59:18 GMT
Last-Modified: Thu, 17 Oct 2019 07:18:26 GMT
Server: ECS (dcb/7F3B)
Vary: Accept-Encoding
X-Cache: HIT
Content-Length: 1256
... здесь было тело ответа, которое я вырезал руками ...
Idan kuna buƙatar amfani da ƙa'idar TLS (bari in tunatar da ku cewa SSL ta daɗe da tsufa), to telnet bai dace da waɗannan dalilai ba. Amma abokin ciniki zai zo openssl:
Misali na amfani da openssl tare da fitar da amsa ga buƙatar GET
[user@testhost ~]$ openssl s_client -connect example.com:443
CONNECTED(00000003)
depth=2 C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root CA
verify return:1
depth=1 C = US, O = DigiCert Inc, CN = DigiCert SHA2 Secure Server CA
verify return:1
depth=0 C = US, ST = California, L = Los Angeles, O = Internet Corporation for Assigned Names and Numbers, OU = Technology, CN = www.example.org
verify return:1
---
Certificate chain
0 s:/C=US/ST=California/L=Los Angeles/O=Internet Corporation for Assigned Names and Numbers/OU=Technology/CN=www.example.org
i:/C=US/O=DigiCert Inc/CN=DigiCert SHA2 Secure Server CA
1 s:/C=US/O=DigiCert Inc/CN=DigiCert SHA2 Secure Server CA
i:/C=US/O=DigiCert Inc/OU=www.digicert.com/CN=DigiCert Global Root CA
2 s:/C=US/O=DigiCert Inc/OU=www.digicert.com/CN=DigiCert Global Root CA
i:/C=US/O=DigiCert Inc/OU=www.digicert.com/CN=DigiCert Global Root CA
---
Server certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
subject=/C=US/ST=California/L=Los Angeles/O=Internet Corporation for Assigned Names and Numbers/OU=Technology/CN=www.example.org
issuer=/C=US/O=DigiCert Inc/CN=DigiCert SHA2 Secure Server CA
---
No client certificate CA names sent
Peer signing digest: SHA256
Server Temp Key: ECDH, P-256, 256 bits
---
SSL handshake has read 4643 bytes and written 415 bytes
---
New, TLSv1/SSLv3, Cipher is ECDHE-RSA-AES128-GCM-SHA256
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
Protocol : TLSv1.2
Cipher : ECDHE-RSA-AES128-GCM-SHA256
Session-ID: 91950DC50FADB57BF026D2661E6CFAA1F522E5CA60D2310E106EE0E0FD6E70BD
Session-ID-ctx:
Master-Key: 704E9145253EEB4E9DC47E3DC6725D296D4A470EA296D54F71D65E74EAC09EB096EA1305CBEDD9E7020B8F72FD2B68A5
Key-Arg : None
Krb5 Principal: None
PSK identity: None
PSK identity hint: None
TLS session ticket lifetime hint: 7200 (seconds)
TLS session ticket:
0000 - 68 84 4e 77 be e3 f5 00-49 c5 44 40 53 4d b9 61 [email protected]
0010 - c9 fe df e4 05 51 d0 53-ae cf 89 4c b6 ef 6c 9e .....Q.S...L..l.
0020 - fe 12 9a f0 e8 e5 4e 87-42 89 ac af ca e5 4a 85 ......N.B.....J.
0030 - 38 08 26 e3 22 89 08 b5-62 c0 8b 7e b8 05 d3 54 8.&."...b..~...T
0040 - 8c 24 91 a7 b4 4f 79 ad-36 59 7c 69 2d e5 7f 62 .$...Oy.6Y|i-..b
0050 - f6 73 a3 8b 92 63 c1 e3-df 78 ba 8c 5a cc 82 50 .s...c...x..Z..P
0060 - 33 4e 13 4b 10 e4 97 31-cc b4 13 65 45 60 3e 13 3N.K...1...eE`>.
0070 - ac 9e b1 bb 4b 18 d9 16-ea ce f0 9b 5b 0c 8b bf ....K.......[...
0080 - fd 78 74 a0 1a ef c2 15-2a 0a 14 8d d1 3f 52 7a .xt.....*....?Rz
0090 - 12 6b c7 81 15 c4 c4 af-7e df c2 20 a8 dd 4b 93 .k......~.. ..K.
Start Time: 1574769867
Timeout : 300 (sec)
Verify return code: 0 (ok)
---
GET / HTTP/1.1
Host: example.com
HTTP/1.1 200 OK
Cache-Control: max-age=604800
Content-Type: text/html; charset=UTF-8
Date: Tue, 26 Nov 2019 12:04:38 GMT
Etag: "3147526947+ident"
Expires: Tue, 03 Dec 2019 12:04:38 GMT
Last-Modified: Thu, 17 Oct 2019 07:18:26 GMT
Server: ECS (dcb/7EC8)
Vary: Accept-Encoding
X-Cache: HIT
Content-Length: 1256
<!doctype html>
<html>
<head>
<title>Example Domain</title>
<meta charset="utf-8" />
<meta http-equiv="Content-type" content="text/html; charset=utf-8" />
<meta name="viewport" content="width=device-width, initial-scale=1" />
<style type="text/css">
body {
background-color: #f0f0f2;
margin: 0;
padding: 0;
font-family: -apple-system, system-ui, BlinkMacSystemFont, "Segoe UI", "Open Sans", "Helvetica Neue", Helvetica, Arial, sans-serif;
}
div {
width: 600px;
margin: 5em auto;
padding: 2em;
background-color: #fdfdff;
border-radius: 0.5em;
box-shadow: 2px 3px 7px 2px rgba(0,0,0,0.02);
}
a:link, a:visited {
color: #38488f;
text-decoration: none;
}
@media (max-width: 700px) {
div {
margin: 0 auto;
width: auto;
}
}
</style>
</head>
<body>
<div>
<h1>Example Domain</h1>
<p>This domain is for use in illustrative examples in documents. You may use this
domain in literature without prior coordination or asking for permission.</p>
<p><a href="https://www.iana.org/domains/example">More information...</a></p>
</div>
</body>
</html>
Magance matsalolin gama gari a cikin Linux
Canja mai fayil
Kuna iya canza mai fayil ko kundin adireshi ta amfani da umarnin chown:
[user@testhost ~]$ chown user:user temp
[user@testhost ~]$ ls -l temp
-rw-rw-r-- 1 user user 31 Nov 26 11:09 temp
Dole ne a ba da siga ga wannan umarni ga sabon mai shi da ƙungiyar (na zaɓi), wanda hanji ya raba. Hakanan, lokacin canza mai mallakar kundin adireshi, zaɓin na iya zama da amfani -R - to, masu mallakar za su canza don duk abubuwan da ke cikin kundin adireshi.
Canja izinin fayil
Ana iya magance wannan matsalar ta amfani da umarnin chmod. A matsayin misali, zan ba da izinin saitin “an ba mai shi damar karantawa, rubutawa da aiwatarwa, an bar ƙungiyar ta karanta da rubutu, ba a bar kowa da komai ba”:
[user@testhost ~]$ ls -l temp
-rw-rw-r-- 1 user user 31 Nov 26 11:09 temp
[user@testhost ~]$ chmod 760 temp
[user@testhost ~]$ ls -l temp
-rwxrw---- 1 user user 31 Nov 26 11:09 temp
Na farko 7 (wannan shi ne 0b111 a cikin bit wakilci) a cikin siga yana nufin "dukkan hakkoki ga mai shi", na biyu 6 (wannan shi ne 0b110 a cikin bit wakilci) yana nufin "karanta da rubuta", kuma 0 yana nufin kome ba ga sauran. . Bitmask ya ƙunshi rago uku: mafi ƙarancin mahimmanci ("dama") bit shine alhakin aiwatarwa, na gaba ("tsakiyar") bit shine don rubutu, kuma mafi mahimmanci ("hagu") bit shine don karantawa.
Hakanan zaka iya saita izini ta amfani da haruffa na musamman (mnemonic syntax). Misali, misalin mai zuwa yana fara cire haƙƙin aiwatarwa ga mai amfani na yanzu sannan ya canza su baya:
[user@testhost ~]$ ls -l temp
-rwxrw---- 1 user user 31 Nov 26 11:09 temp
[user@testhost ~]$ chmod -x temp
[user@testhost ~]$ ls -l temp
-rw-rw---- 1 user user 31 Nov 26 11:09 temp
[user@testhost ~]$ chmod +x temp
[user@testhost ~]$ ls -l temp
-rwxrwx--x 1 user user 31 Nov 26 11:09 temp
Wannan umarni yana da amfani da yawa, don haka ina ba ku shawara ku karanta ƙarin game da shi (musamman game da ma'anar mnemonic, misali, ).
Buga abubuwan da ke cikin fayil na binary
Ana iya yin wannan ta amfani da kayan aiki hexdump. A ƙasa akwai misalan amfaninsa.
[user@testhost ~]$ cat temp
Content of a file.
Lalalala...
[user@testhost ~]$ hexdump -c temp
0000000 C o n t e n t o f a f i l
0000010 e . n L a l a l a l a . . . n
000001f
[user@testhost ~]$ hexdump -x temp
0000000 6f43 746e 6e65 2074 666f 6120 6620 6c69
0000010 2e65 4c0a 6c61 6c61 6c61 2e61 2e2e 000a
000001f
[user@testhost ~]$ hexdump -C temp
00000000 43 6f 6e 74 65 6e 74 20 6f 66 20 61 20 66 69 6c |Content of a fil|
00000010 65 2e 0a 4c 61 6c 61 6c 61 6c 61 2e 2e 2e 0a |e..Lalalala....|
0000001f
Amfani da wannan kayan aiki, za ka iya fitar da bayanai a wasu Formats, amma wadannan su ne mafi sau da yawa da amfani zažužžukan don amfani da shi.
Bincika fayiloli
Kuna iya samun fayil ta ɓangaren sunansa a cikin bishiyar directory ta amfani da umarnin samu:
[user@testhost ~]$ find test_dir/ -name "*le*"
test_dir/file_1
test_dir/file_2
test_dir/subdir/file_3
Hakanan akwai wasu zaɓuɓɓukan bincike da masu tacewa. Misali, wannan shine yadda zaku iya nemo fayiloli a cikin babban fayil gwajinhalitta fiye da kwanaki 5 da suka wuce:
[user@testhost ~]$ ls -ltr test
total 0
-rw-rw-r-- 1 user user 0 Nov 26 10:46 temp_clone
-rw-rw-r-- 1 user user 0 Dec 4 10:39 created_today
[user@testhost ~]$ find test/ -type f -ctime +5
test/temp_clone
Bincika rubutu a cikin fayiloli
Ƙungiyar za ta taimake ka ka jimre da wannan aikin grep. Yana da amfani da yawa, mafi sauƙi an ba da shi a nan a matsayin misali.
[user@testhost ~]$ grep -nr "content" test_dir/
test_dir/file_1:1:test content for file_1
test_dir/file_2:1:test content for file_2
test_dir/subdir/file_3:1:test content for file_3
Ɗaya daga cikin shahararrun hanyoyin amfani da umarnin grep - yin amfani da shi a cikin nau'i-nau'i (bututu):
[user@testhost ~]$ sudo tail -f /var/log/test.log | grep "ERROR"
Zaɓi -v yana ba ku damar yin tasiri grep'da kuma baya - kawai layin da ba su ƙunshi tsarin da aka wuce zuwa ba grep.
Duba fakitin da aka shigar
Babu umarnin duniya, saboda komai ya dogara da rarraba Linux da mai sarrafa kunshin da aka yi amfani da shi. Wataƙila ɗayan waɗannan umarni zai taimake ku:
yum list installed
apt list --installed
zypper se —installed-only
pacman -Qqe
dpkg -l
rpm -qa
Dubi yawan sarari da bishiyar directory ke ɗauka
Ɗaya daga cikin zaɓuɓɓuka don amfani da umarnin du:
[user@testhost ~]$ du -h -d 1 test_dir/
8,0K test_dir/subdir
20K test_dir/
Kuna iya canza ƙimar siga -ddon samun ƙarin bayani game da bishiyar directory. Hakanan zaka iya amfani da umarnin a hade tare da raba:
[user@testhost ~]$ du -h -d 1 test_dir/ | sort -h
8,0K test_dir/subdir
16K test_dir/subdir_2
36K test_dir/
[user@testhost ~]$ du -h -d 1 test_dir/ | sort -h -r
36K test_dir/
16K test_dir/subdir_2
8,0K test_dir/subdir
Zaɓi -h tawagar raba yana ba ku damar tsara masu girma dabam da aka rubuta cikin tsarin ɗan adam wanda za'a iya karantawa (misali, 1K, 2G), zaɓi -r yana ba ku damar daidaita bayanai ta hanyar juyawa.
"Nemo kuma maye gurbin" a cikin fayil, a cikin fayiloli a cikin kundin adireshi
Ana yin wannan aikin ta amfani da kayan aiki sed (ba tuta g a ƙarshe, kawai farkon abin da ya faru na "tsohuwar rubutu" a cikin layi za a maye gurbinsa):
sed -i 's/old-text/new-text/g' input.txt
Kuna iya amfani da shi don fayiloli da yawa lokaci guda:
[user@testhost ~]$ cat test_dir/file_*
test content for file_1
test content for file_2
[user@testhost ~]$ sed -i 's/test/edited/g' test_dir/file_*
[user@testhost ~]$ cat test_dir/file_*
edited content for file_1
edited content for file_2
Zana shafi daga fitarwa
Zai taimaka wajen jimre wa wannan aikin wayyo. Wannan misalin yana nuna shafi na biyu na fitowar umarni `ps ux`:
[user@testhost ~]$ ps ux | awk '{print $2}'
PID
11023
25870
25871
25908
25909
A lokaci guda kuma, dole ne a la'akari da hakan wayyo yana da ayyuka masu yawa, don haka idan kuna buƙatar aiki tare da rubutu akan layin umarni, yakamata ku karanta ƙarin game da wannan umarni.
Nemo adireshin IP ta sunan mai masauki
Ɗaya daga cikin waɗannan umarni zai taimaka da wannan:
[user@testhost ~]$ host ya.ru
ya.ru has address 87.250.250.242
ya.ru has IPv6 address 2a02:6b8::2:242
ya.ru mail is handled by 10 mx.yandex.ru.
[user@testhost ~]$ dig +short ya.ru
87.250.250.242
[user@testhost ~]$ nslookup ya.ru
Server: 8.8.8.8
Address: 8.8.8.8#53
Non-authoritative answer:
Name: ya.ru
Address: 87.250.250.242
Bayanin hanyar sadarwa
Za a iya amfani idanconfig:
[user@testhost ~]$ ifconfig
eth0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
inet 47.89.93.67 netmask 255.255.224.0 broadcast 47.89.95.255
inet6 fd90::302:57ff:fe79:1 prefixlen 64 scopeid 0x20<link>
ether 04:01:57:79:00:01 txqueuelen 1000 (Ethernet)
RX packets 11912135 bytes 9307046034 (8.6 GiB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 14696632 bytes 2809191835 (2.6 GiB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
lo: flags=73<UP,LOOPBACK,RUNNING> mtu 65536
inet 127.0.0.1 netmask 255.0.0.0
inet6 ::1 prefixlen 128 scopeid 0x10<host>
loop txqueuelen 0 (Local Loopback)
RX packets 10 bytes 866 (866.0 B)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 10 bytes 866 (866.0 B)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
Ko watakila ip:
[user@testhost ~]$ ip a
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
link/ether 04:01:57:79:00:01 brd ff:ff:ff:ff:ff:ff
inet 47.89.93.67/19 brd 47.89.95.255 scope global eth0
valid_lft forever preferred_lft forever
inet6 fd90::302:57ff:fe79:1/64 scope link
valid_lft forever preferred_lft forever
3: ip_vti0: <NOARP> mtu 1500 qdisc noop state DOWN group default
link/ipip 0.0.0.0 brd 0.0.0.0
Haka kuma, idan, alal misali, kuna sha'awar IPv4 kawai, to zaku iya ƙara zaɓin -4:
[user@testhost ~]$ ip -4 a
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
inet 47.89.93.67/19 brd 47.89.95.255 scope global eth0
valid_lft forever preferred_lft forever
Duba bude tashoshin jiragen ruwa
Don yin wannan, yi amfani da kayan aiki netstat. Misali, don duba duk tashoshin sauraron TCP da UDP tare da nunin PID na tsarin sauraren tashar akan tashar jiragen ruwa da wakilcin lambobi na tashar, kuna buƙatar amfani da shi tare da zaɓuɓɓuka masu zuwa:
[user@testhost ~]$ netstat -lptnu
Bayanin tsarin
Kuna iya samun wannan bayanin ta amfani da umarnin uname.
[user@testhost ~]$ uname -a
Linux alexander 3.10.0-123.8.1.el7.x86_64 #1 SMP Mon Sep 22 19:06:58 UTC 2014 x86_64 x86_64 x86_64 GNU/Linux
Don fahimtar tsarin da aka samar da fitarwa, kuna iya komawa zuwa taimaka'don wannan umarni:
[user@testhost ~]$ uname --help
Использование: uname [КЛЮЧ]…
Печатает определенные сведения о системе. Если КЛЮЧ не задан,
подразумевается -s.
-a, --all напечатать всю информацию, в следующем порядке,
кроме -p и -i, если они неизвестны:
-s, --kernel-name напечатать имя ядра
-n, --nodename напечатать имя машины в сети
-r, --release напечатать номер выпуска операционной системы
-v, --kernel-version напечатать версию ядра
-m, --machine напечатать тип оборудования машины
-p, --processor напечатать тип процессора или «неизвестно»
-i, --hardware-platform напечатать тип аппаратной платформы или «неизвестно»
-o, --operating-system напечатать имя операционной системы
--help показать эту справку и выйти
--version показать информацию о версии и выйти
Bayanin ƙwaƙwalwar ajiya
Don fahimtar adadin RAM da aka mamaye ko kyauta, zaku iya amfani da umarnin free.
[user@testhost ~]$ free -h
total used free shared buff/cache available
Mem: 3,9G 555M 143M 56M 3,2G 3,0G
Swap: 0B 0B 0B
Bayani game da tsarin fayil (sararin faifai kyauta)
tawagar df yana ba ku damar ganin adadin sarari kyauta kuma an shagaltar da ku akan tsarin fayil ɗin da aka ɗora.
[user@testhost ~]$ df -hT
Файловая система Тип Размер Использовано Дост Использовано% Cмонтировано в
/dev/vda1 ext4 79G 21G 55G 27% /
devtmpfs devtmpfs 2,0G 0 2,0G 0% /dev
tmpfs tmpfs 2,0G 0 2,0G 0% /dev/shm
tmpfs tmpfs 2,0G 57M 1,9G 3% /run
tmpfs tmpfs 2,0G 0 2,0G 0% /sys/fs/cgroup
tmpfs tmpfs 396M 0 396M 0% /run/user/1001
Zaɓi -T ya ƙayyade cewa ya kamata a yi la'akari da nau'in tsarin fayil.
Bayani game da ayyuka da ƙididdiga daban-daban akan tsarin
Don yin wannan, yi amfani da umarnin top. Yana da ikon nuna bayanai daban-daban: misali, manyan matakai ta amfani da RAM ko manyan matakai ta amfani da lokacin CPU. Hakanan yana nuna bayanai game da ƙwaƙwalwar ajiya, CPU, lokacin aiki da LA (matsakaicin nauyi).
[user@testhost ~]$ top | head -10
top - 17:19:13 up 154 days, 6:59, 3 users, load average: 0.21, 0.21, 0.27
Tasks: 2169 total, 2 running, 2080 sleeping, 0 stopped, 0 zombie
Cpu(s): 1.7%us, 0.7%sy, 0.0%ni, 97.5%id, 0.0%wa, 0.0%hi, 0.1%si, 0.0%st
Mem: 125889960k total, 82423048k used, 43466912k free, 16026020k buffers
Swap: 0k total, 0k used, 0k free, 31094516k cached
PID USER PR NI VIRT RES SHR S %CPU %MEM TIME+ COMMAND
25282 user 20 0 16988 3936 1964 R 7.3 0.0 0:00.04 top
4264 telegraf 20 0 2740m 240m 22m S 1.8 0.2 23409:39 telegraf
6718 root 20 0 35404 4768 3024 S 1.8 0.0 0:01.49 redis-server
Wannan mai amfani yana da wadataccen aiki, don haka idan kuna buƙatar amfani da shi sau da yawa, yana da kyau ku karanta takaddun sa.
Juji zirga-zirgar hanyar sadarwa
Don katse zirga-zirgar hanyar sadarwa a cikin Linux, ana amfani da abin amfani tppdump. Don zubar da zirga-zirga akan tashar jiragen ruwa 12345, zaku iya amfani da umarni mai zuwa:
[user@testhost ~]$ sudo tcpdump -i any -A port 12345
Zaɓi -A ya ce muna son ganin fitarwa a cikin ASCII (don haka yana da kyau ga ka'idojin rubutu), - i wani yana nuna cewa ba mu da sha'awar hanyar sadarwa ta hanyar sadarwa, tashar jiragen ruwa - wacce tashar jiragen ruwa za a zubar. Maimakon tashar jiragen ruwa iya amfani rundunar, ko hadewa rundunar и tashar jiragen ruwa (mai masaukin baki A da port X). Wani zaɓi mai amfani yana iya zama -n - kar a canza adireshi zuwa sunayen masu masauki a cikin fitarwa.
Idan zirga-zirgar ta binary ne fa? Sannan zabin zai taimake mu -X - bayanan fitarwa a cikin hex da ASCII:
[user@testhost ~]$ sudo tcpdump -i any -X port 12345
Ya kamata a la'akari da cewa a cikin lokuta biyu na amfani da fakitin IP za su fito, don haka a farkon kowannensu za a sami binaryar IP da TCP. Anan akwai fitowar misali don tambayar"123"An aika zuwa uwar garken sauraron akan tashar jiragen ruwa 12345:
[user@testhost ~]$ sudo tcpdump -i any -X port 12345
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on any, link-type LINUX_SLL (Linux cooked), capture size 262144 bytes
14:27:13.224762 IP localhost.49794 > localhost.italk: Flags [P.], seq 2262177478:2262177483, ack 3317210845, win 342, options [nop,nop,TS val 3196604972 ecr 3196590131], length 5
0x0000: 4510 0039 dfb6 4000 4006 5cf6 7f00 0001 E..9..@.@......
0x0010: 7f00 0001 c282 3039 86d6 16c6 c5b8 9edd ......09........
0x0020: 8018 0156 fe2d 0000 0101 080a be88 522c ...V.-........R,
0x0030: be88 1833 3132 330d 0a00 0000 0000 0000 ...3123.........
0x0040: 0000 0000 0000 0000 00 .........
Madadin fitarwa
Tabbas, akwai abubuwa masu ban sha'awa da yawa a cikin Linux waɗanda zaku iya karantawa akan Habré, StackOverflow da sauran rukunin yanar gizo (zan ba ku misali. , wanda kuma ). Masu gudanar da tsarin da DevOps suna amfani da ƙarin umarni da abubuwan amfani don daidaita sabar, amma har ma masu gwadawa ƙila ba su da isasshen umarnin da aka jera. Kila kuna buƙatar bincika daidaiton ɗan lokaci mai wahala tsakanin abokin ciniki da uwar garken, ko aikin uwar garken lokacin da babu sarari diski kyauta. Ba na ma magana game da, alal misali, Docker, wanda kamfanoni da yawa ke amfani da shi a yanzu. Shin zai zama abin sha'awa, a matsayin wani ɓangare na ci gaban wannan labarin, don duba misalai da yawa na amfani da na'urorin wasan bidiyo na Linux daban-daban yayin aiwatar da ayyukan gwaji? Hakanan raba manyan kungiyoyin ku a cikin sharhi :)
source: www.habr.com