Linux - CLI笔录
Linux的CLI笔录
- Linux - CLI笔录
- Linux的CLI笔录
- Linux CentOS及Redhat的firewall-cmd使用
- Linux CentOS及Redhat的iptables使用
- Linux的tcpdump使用
- Linux的vim使用
- Linux创建systemctl系统服务
- Linux扫描全部磁盘
- OpenWrt的CLI
- 参考来源
Linux的CLI笔录
Linux CentOS及Redhat的firewall-cmd使用
[root@localhost ~]
docker.xml public.xml public.xml.old
[root@localhost ~]
<?xml version="1.0" encoding="utf-8"?>
<zone><short>Public</short><description>For use in public areas. You do not trust the other computers on networks to not harm your computer. Only selected incoming connections are accepted.</description><port protocol="udp" port="587"/>...firewall-cmd --help
firewall-cmd --list-all-zones
firewall-cmd --list-all
firewall-cmd --zone=public --list-port
firewall-cmd --zone=public --list-services
firewall-cmd --zone=public --list-all
firewall-cmd --state
firewall-cmd --reload
systemctl status firewalld
firewall-cmd --zone=public --add-port=80/tcp --permanent
firewall-cmd --zone=public --add-service=nfs --permanent
firewall-cmd --zone=public --add-rich-rule="rule family="ipv4" source address="X.X.X.0/24" port port="2049" protocol="tcp" accept"firewall-cmd --zone=public --add-rule=xxx
firewall-cmd --zone=public --add-chain=xxx
firewall-cmd --zone=public --remove-xxx=yyy
firewall-cmd --zone=public --remove-rich-rule="xxx"
Linux CentOS及Redhat的iptables使用
iptables --help
iptables -nvL
iptables -t filter -nvL INPUT
iptables -t nat -nvL
systemctl status firewalld
iptables -I INPUT 1 -p tcp --dport 22 -s 1.1.1.0/24 -d 1.1.2.1 -j ACCEPT
iptables -I INPUT 1 -p tcp -m multiport --dport 20:22,111,389,636,2000:2100 -s 1.1.1.0/24 -d 1.1.2.1 -j ACCEPT
iptables -A OUTPUT -p udp --sport 111 -s 1.1.2.1 -d 1.1.1.0/24 -j DROP
iptables -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables -D INPUT 1
iptables -R INPUT 1 -j DROP
iptables -F INPUT
iptables -P INPUT DROP
iptables -P OUTPUT DROP
iptables -P FORWARD DROP
service iptables save
Linux的tcpdump使用
tcpdump -i any host 1.1.1.1 port 80 -X -s0 -nnvvve
Linux的vim使用
vim ~/.vimrc
set cuc
set number
Linux创建systemctl系统服务
systemctl list-units --type=service
[root@nginx ~]
[root@nginx ~]
[root@nginx ~]
[root@nginx ~]
lrwxrwxrwx. 1 root root 74 Sep 19 09:21 /usr/lib/systemd/system/custom.service -> /etc/systemd/system/custom.target.wants/custom.service[root@nginx ~]
-rw-r--r--. 1 root root 306 Jul 24 11:26 /etc/systemd/system/custom.target.wants/custom.service
[root@nginx ~]
[Unit]
Description=desc
Requires=network.service[Service]
ExecStart=/usr/bin/python3 /tmp/custom.py
Type=simple
KillMode=mixed[Install]
WantedBy=multi-user.target
:x
systemctl status custom.service
systemctl is-enabled custom.service
systemctl enable custom.service
Linux扫描全部磁盘
ls /sys/class/scsi_device
for i in `ls /sys/class/scsi_device`;do echo 1 > /sys/class/scsi_device/$i/device/rescan;done
OpenWrt的CLI
vim /etc/rc.d/K15addroute
START=99
STOP=15start() {route add -net 1.1.0.0/16 gw 1.1.1.2 metric 10
}
:xvim /etc/rc.d/S99addroute
START=99
STOP=15start() {route add -net 1.1.0.0/16 gw 1.1.1.2 metric 10
}
:xcd /etc/rc.d/
ll *addroute
lrwxrwxrwx 1 root root 18 Aug 17 2022 K15addroute -> ../init.d/addroute*
lrwxrwxrwx 1 root root 18 Aug 17 2022 S99addroute -> ../init.d/addroute*
参考来源
- (建议收藏)systemd(systemctl命令)运行服务的配置文件详解
- Linux扩容虚拟磁盘后不显示新增磁盘或扩容后的磁盘大小