Jumat, 21 September 2012

Network Tools

Halo gan ,, kali ini gw akan sedikit nge-share tentang Network Tools yg udh gw praktekkan di kampus ,,, tanpa panjang lebar berikut paparannya :

Dasar Teori
Dalam melakukan tugas-tugas administrasi sistem, administrator sistem mau tidak mau akan banyak berhubungan dengan tools – tools pendukung. Tanpa bantuan tool ini pekerjaan administrasi akan sulit dijalankan.
Network Management
- Etherman
Tool yang berbasis GUI yang menampilkan representasi dari komunikasi – komunikasi ethernet secara real time.
- Tcp wrapper
Berguna untuk mengontrol siapa saja yang mengakses sistem. Dapat memproteksi usaha pelanggaran terhadap sistem
- Xmotd
Dipakai menuliskan atau menampilkan Message of the day, untuk setiap user yang login
- Samba
Memungkinkan melakukan sharing file antar so
- Swatch
program untuk memonitor log
- dig
query server domain
- host
memperoleh informasi nama domain
- nslookup
- tcpdump
mengcapture packet
- traceroute
melakukan trace terhadap rute paket IP dari sistem ke sistem tujuan
- sniffit
tools memberikan informasi detail ttg semua traffic jaringan
- ssl
- nmap
- netstat

Tugas Pendahuluan


1. lspci
lscpi adalah sebuah utility untuk menampilkan informasi semua tentang PCI didalam system dan semua device yang terhubung kepadanya.
Penggunaan lspci ditambah dengan option sebagai berikut :
-v Be verbose
-n Show numeric ID’s
-b Bus-centric view (PCI addresses and IRQ’s instead of those seen by the CPU)
-x Show hex-dump of the standard portion of config space
-xxx Show hex-dump of the whole config space (dangerous; root only)
-s [[]:][][.[]] Show only devices in selected slots
-d []:[] Show only selected devices
-t Show bus tree
-X Show in format suitable for use in XFree86Config
-m Produce machine-readable output
-i Use specified ID database instead of /usr/share/misc/pci.ids
-M Enable `bus mapping’ mode (dangerous; root only)
-P Use specified directory instead of /proc/bus/pci
-H Use direct hardware access ( = 1 or 2)
-F Read configuration data from given file
-G Enable PCI access debugging

2. mii-tool
mii-tool berguna untuk melihat, memanipulasi status interface media-independent. Tool ini juga berguna untuk memeriksa status dari interface network / Media Independent Interface (MII). Kebanyakan adapter Ethernet menggunakan MII untuk autonegotiate link speed dan setting duplex
Option dari mii-tool adalah sebagai berikut :
usage: mii-tool [-VvRrwl] [-A media,... | -F media] [interface ...]
-V, –version display version information
-v, –verbose more verbose output
-R, –reset reset MII to poweron state
-r, –restart restart autonegotiation
-w, –watch monitor for link status changes
-l, –log with -w, write events to syslog
-A, –advertise=media,… advertise only specified media
-F, –force=media force specified media technology
media: 100baseT4, 100baseTx-FD, 100baseTx-HD, 10baseT-FD, 10baseT-HD,
(to advertise both HD and FD) 100baseTx, 10baseT

3. arp
Secara internal ARP melakukan resolusi address dan ARP berhubungan langsung dengan Data Link Layer. ARP mengolah sebuah tabel yang berisi IP-address dan Ethernet Card. Dan tabel ini diisi setelah ARP melakukan request (broadcast) ke seluruh jaringan.
Option dari arp :
-a display (all) hosts in alternative (BSD) style
-s, –set set a new ARP entry
-d, –delete delete a specified entry
-v, –verbose be verbose
-n, –numeric don’t resolve names
-i, –device specify network interface (e.g. eth0)
-D, –use-device read from given device
-A, -p, –protocol specify protocol family
-f, –file read new entries from file or from /etc/ethers

4. ifconfig
Tool ini digunakan untuk mengkonfigurasikan network interface. Dulu digunakan pada saat boot untuk mensetting interface jika diperlukan setelah itu biasanya hanya digunakan ketika debugging atau ketika system membutuhkannya. Jika tidak ada argumen maka ifconfig akan menampilkan status pada interface yang aktif saat itu.
Option dari ifconfig :
ifconfig [-a] [-v] [-s] [[]
]
[add
[/]]
[del
[/]]
[[-]broadcast [
]] [[-]pointopoint [
]]
[netmask
] [dstaddr
] [tunnel
]
[outfill ] [keepalive ]
[hw
] [metric ] [mtu ]
[[-]trailers] [[-]arp] [[-]allmulti]
[multicast] [[-]promisc]
[mem_start ] [io_addr ] [irq ] [media ]
[txqueuelen ]
[[-]dynamic]
[up|down] …
 
5. route
Tool ini digunakan untuk mengatur routing static untuk menjelaskan host atau network melalui interface setelah dikonfigurasi dengan ifconfig. Ketika add dan del digunakan, route memodifikasi table routing. Tanpa option, route akan menampilkan isi dari table routing pada saat itu
Penggunaan route sebagai berikut :
route [-CFvnee]
route [-v] [-A family] add [-net|-host] target [netmask Nm] [gw Gw] [metric N] [mss M]
[window W] [irtt I] [reject] [mod] [dyn] [reinstate] [[dev] If]
route [-v] [-A family] del [-net|-host] target [gw Gw] [netmask Nm] [metric N]
[[dev] If]
route [-V] [--version] [-h] [--help]
 
6. ping
Ping menggunakan protocol ICMP mandatory ECHO_REQUEST datagram untuk mendapatkan ICMP ECHO_RESPONSE dari host atau gateway. Datagram ECHO_REQUEST mempunyai IP dan ICMP header.
Option dari ping sebagai berikut :
ping [ -LRUbdfnqrvVaAB] [ -c count] [ -i interval] [ -l preload] [ -p pattern] [ -s
packetsize] [ -t ttl] [ -w deadline] [ -F flowlabel] [ -I interface] [ -M hint] [
-Q tos] [ -S sndbuf] [ -T timestamp option] [ -W timeout] [ hop ...] destination
 
7. traceroute
Tool yang digunakan untuk memerika jalur paket mencapai host dalam suatu jaringan. Internet adalah sangat besar dan komplek dimana banyak hardware terkoneksi bersama melalui sebuah gateway.
Option dalam traceroute :
traceroute [ -dFIlnrvx ] [ -f first_ttl ] [ -g gateway ]
[ -i iface ] [ -m max_ttl ] [ -p port ]
[ -q nqueries ] [ -s src_addr ] [ -t tos ]
[ -w waittime ] [ -z pausemsecs ]
host [ packetlen ]
Contoh dari traceroute
[yak 71]% traceroute nis.nsf.net.
traceroute to nis.nsf.net (35.1.1.48), 30 hops max, 38 byte packet
1 helios.ee.lbl.gov (128.3.112.1) 19 ms 19 ms 0 ms
2 lilac-dmc.Berkeley.EDU (128.32.216.1) 39 ms 39 ms 19 ms
3 lilac-dmc.Berkeley.EDU (128.32.216.1) 39 ms 39 ms 19 ms
4 ccngw-ner-cc.Berkeley.EDU (128.32.136.23) 39 ms 40 ms 39 ms
5 ccn-nerif22.Berkeley.EDU (128.32.168.22) 39 ms 39 ms 39 ms
6 128.32.197.4 (128.32.197.4) 40 ms 59 ms 59 ms
7 131.119.2.5 (131.119.2.5) 59 ms 59 ms 59 ms
8 129.140.70.13 (129.140.70.13) 99 ms 99 ms 80 ms
9 129.140.71.6 (129.140.71.6) 139 ms 239 ms 319 ms
10 129.140.81.7 (129.140.81.7) 220 ms 199 ms 199 ms
11 nic.merit.edu (35.1.1.48) 239 ms 239 ms 239 ms
 
8. mtr
Tool yang digunakan untuk memeriksa/ mendiagnosa network. Mtr mengkombinasikan fungsi dari traceroute dan ping dalam sebuah tool tunggal dalam sebuah jaringan sederhana. Mtr mulai dengan menginvestigasi koneksi host-host dalam jaringan dengan cara mengirimkan paket dengan fungsi TTLs rendah.
Opsi dari mtr sebagai berikut :
mtr [-hvrctglsni] [--help] [--version] [--report] [--report-cycles COUNT] [--curses]
[--split] [--raw] [--no-dns] [--gtk] [--address IP.ADD.RE.SS] [--interval SECONDS]
[--psize BYTES | -p BYTES] HOSTNAME [PACKETSIZE]
 
9. netstat
Tool ini dapat mencetak koneksi jaringan, routing table, statistic interface, koneksi masquerade dan anggota multicast.
Opsi dari netstat sebagai berikut :
netstat [address_family_options] [--tcp|-t] [--udp|-u] [--raw|-w] [--listening|-l]
[--all|-a] [--numeric|-n] [--numeric-hosts] [--numeric-ports] [--numeric-users] [--sym-
bolic|-N] [--extend|-e[--extend|-e]] [--timers|-o] [--program|-p] [--verbose|-v] [--con-
tinuous|-c]
netstat {–route|-r} [address_family_options] [--extend|-e[--extend|-e]] [--verbose|-v]
[--numeric|-n] [--numeric-hosts] [--numeric-ports] [--numeric-users] [--continuous|-c]
netstat {–interfaces|-i} [--all|-a] [--extend|-e[--extend|-e]] [--verbose|-v] [--pro-
gram|-p] [--numeric|-n] [--numeric-hosts] [--numeric-ports] [--numeric-users] [--continu-
ous|-c]
netstat {–groups|-g} [--numeric|-n] [--numeric-hosts] [--numeric-ports] [--numeric-
users] [--continuous|-c]
netstat {–masquerade|-M} [--extend|-e] [--numeric|-n] [--numeric-hosts] [--numeric-
ports] [--numeric-users] [--continuous|-c]

10. Netconfig
Command untuk konfigurasi ip secara permanen

Langkah Percobaan
1. Jalankan perintah “dmesg | grep eth.
Hasil Percobaan :
[ 2823.645646] atl1c 0000:03:00.0: atl1c: eth0 NIC Link is Up
[ 2823.645884] ADDRCONF(NETDEV_CHANGE): eth0: link becomes ready
[ 2834.529122] eth0: no IPv6 routers present
[ 2882.542617] eth0: no IPv6 routers present
[ 2930.244257] eth0: no IPv6 routers present
[ 2978.281747] eth0: no IPv6 routers present
[ 2998.990331] atl1c 0000:03:00.0: atl1c: eth0 NIC Link is Down
[ 3015.345341] atl1c 0000:03:00.0: atl1c: eth0 NIC Link is Up
[ 3020.522416] NETDEV WATCHDOG: eth0 (atl1c): transmit queue 0 timed out
[ 3020.547441] atl1c 0000:03:00.0: atl1c: eth0 NIC Link is Up
[ 3025.895480] eth0: no IPv6 routers present
[ 3074.132781] eth0: no IPv6 routers present
[ 3121.770520] eth0: no IPv6 routers present
[ 3170.927351] eth0: no IPv6 routers present
[ 3500.321485] eth0: no IPv6 routers present
[ 3623.678455] atl1c 0000:03:00.0: atl1c: eth0 NIC Link is Down
[ 3675.992508] atl1c 0000:03:00.0: atl1c: eth0 NIC Link is Up
[ 3681.174361] atl1c 0000:03:00.0: atl1c: eth0 NIC Link is Up
[ 3682.846928] atl1c 0000:03:00.0: atl1c: eth0 NIC Link is Down
[ 3684.534563] atl1c 0000:03:00.0: atl1c: eth0 NIC Link is Up
[ 3690.161337] atl1c 0000:03:00.0: atl1c: eth0 NIC Link is Up
[ 4295.154476] eth0: no IPv6 routers present
[ 4413.241290] eth0: no IPv6 routers present

2. Lepaskan kabel jaringan, lakukan perintah mii-tool.
Hasil Percobaan :
eth0: no link

3. Pasangkan lagi kabel jaringan dan lakukan perintah mii-tool
Hasil Percobaan :
eth0: negotiated 100baseTx-FD flow-control, link ok

4. Catat hasil dari perintah “lspci” sebelum dan sesudah melepas kabel
Hasil Percobaan :
Sebelum
00:00.0 Host bridge: Intel Corporation Core Processor DRAM Controller (rev 02)
00:02.0 VGA compatible controller: Intel Corporation Core Processor Integrated Graphics Controller (rev 02)
00:16.0 Communication controller: Intel Corporation 5 Series/3400 Series Chipset HECI Controller (rev 06)
00:1a.0 USB controller: Intel Corporation 5 Series/3400 Series Chipset USB2 Enhanced Host Controller (rev 05)
00:1b.0 Audio device: Intel Corporation 5 Series/3400 Series Chipset High Definition Audio (rev 05)
00:1c.0 PCI bridge: Intel Corporation 5 Series/3400 Series Chipset PCI Express Root Port 1 (rev 05)
00:1c.4 PCI bridge: Intel Corporation 5 Series/3400 Series Chipset PCI Express Root Port 5 (rev 05)
00:1c.5 PCI bridge: Intel Corporation 5 Series/3400 Series Chipset PCI Express Root Port 6 (rev 05)
00:1d.0 USB controller: Intel Corporation 5 Series/3400 Series Chipset USB2 Enhanced Host Controller (rev 05)
00:1e.0 PCI bridge: Intel Corporation 82801 Mobile PCI Bridge (rev a5)
00:1f.0 ISA bridge: Intel Corporation Mobile 5 Series Chipset LPC Interface Controller (rev 05)
00:1f.2 SATA controller: Intel Corporation 5 Series/3400 Series Chipset 4 port SATA AHCI Controller (rev 05)
00:1f.3 SMBus: Intel Corporation 5 Series/3400 Series Chipset SMBus Controller (rev 05)
00:1f.6 Signal processing controller: Intel Corporation 5 Series/3400 Series Chipset Thermal Subsystem (rev 05)
02:00.0 Network controller: Broadcom Corporation BCM4313 802.11b/g/n Wireless LAN Controller (rev 01)
03:00.0 Ethernet controller: Atheros Communications Inc. AR8152 v1.1 Fast Ethernet (rev c1)
ff:00.0 Host bridge: Intel Corporation Core Processor QuickPath Architecture Generic Non-core Registers (rev 02)
ff:00.1 Host bridge: Intel Corporation Core Processor QuickPath Architecture System Address Decoder (rev 02)
ff:02.0 Host bridge: Intel Corporation Core Processor QPI Link 0 (rev 02)
ff:02.1 Host bridge: Intel Corporation Core Processor QPI Physical 0 (rev 02)
ff:02.2 Host bridge: Intel Corporation Core Processor Reserved (rev 02)
ff:02.3 Host bridge: Intel Corporation Core Processor Reserved (rev 02)
Sesudah
00:00.0 Host bridge: Intel Corporation Core Processor DRAM Controller (rev 02)
00:02.0 VGA compatible controller: Intel Corporation Core Processor Integrated Graphics Controller (rev 02)
00:16.0 Communication controller: Intel Corporation 5 Series/3400 Series Chipset HECI Controller (rev 06)
00:1a.0 USB controller: Intel Corporation 5 Series/3400 Series Chipset USB2 Enhanced Host Controller (rev 05)
00:1b.0 Audio device: Intel Corporation 5 Series/3400 Series Chipset High Definition Audio (rev 05)
00:1c.0 PCI bridge: Intel Corporation 5 Series/3400 Series Chipset PCI Express Root Port 1 (rev 05)
00:1c.4 PCI bridge: Intel Corporation 5 Series/3400 Series Chipset PCI Express Root Port 5 (rev 05)
00:1c.5 PCI bridge: Intel Corporation 5 Series/3400 Series Chipset PCI Express Root Port 6 (rev 05)
00:1d.0 USB controller: Intel Corporation 5 Series/3400 Series Chipset USB2 Enhanced Host Controller (rev 05)
00:1e.0 PCI bridge: Intel Corporation 82801 Mobile PCI Bridge (rev a5)
00:1f.0 ISA bridge: Intel Corporation Mobile 5 Series Chipset LPC Interface Controller (rev 05)
00:1f.2 SATA controller: Intel Corporation 5 Series/3400 Series Chipset 4 port SATA AHCI Controller (rev 05)
00:1f.3 SMBus: Intel Corporation 5 Series/3400 Series Chipset SMBus Controller (rev 05)
00:1f.6 Signal processing controller: Intel Corporation 5 Series/3400 Series Chipset Thermal Subsystem (rev 05)
02:00.0 Network controller: Broadcom Corporation BCM4313 802.11b/g/n Wireless LAN Controller (rev 01)
03:00.0 Ethernet controller: Atheros Communications Inc. AR8152 v1.1 Fast Ethernet (rev c1)
ff:00.0 Host bridge: Intel Corporation Core Processor QuickPath Architecture Generic Non-core Registers (rev 02)
ff:00.1 Host bridge: Intel Corporation Core Processor QuickPath Architecture System Address Decoder (rev 02)
ff:02.0 Host bridge: Intel Corporation Core Processor QPI Link 0 (rev 02)
ff:02.1 Host bridge: Intel Corporation Core Processor QPI Physical 0 (rev 02)
ff:02.2 Host bridge: Intel Corporation Core Processor Reserved (rev 02)
ff:02.3 Host bridge: Intel Corporation Core Processor Reserved (rev 02)

5. jalankan perintah ”arp –a” dan catat hasilnya , buka beberap terminal baru lagi dan jalankan perintah ”ping no_ip_tujuan” ke beberapa komputer sebelah (tanya nomor IP tersebut ke teman). Pada terminal pertama lakukan perintah arp –a sekali lagi . Catat hasilnya dan bandingkan dengan hasil arp yang pertama, analisa hasilnya.
Hasil Percobaan :
arp -a sebelum melakukan ping tidak ada hasil yang keluar.
arp -a setelah di ping
lab3-laptop-2.local (192.168.1.42) at 00:26:22:15:d8:39 [ether] on eth0

6. Jalankan perintah ”ifconfig”.
Hasil Percobaan :
eth0 Link encap:Ethernet HWaddr 60:eb:69:bc:de:2a
inet addr:192.168.1.41 Bcast:192.168.1.255 Mask:255.255.255.0
inet6 addr: fe80::62eb:69ff:febc:de2a/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:2494 errors:0 dropped:0 overruns:0 frame:0
TX packets:615 errors:0 dropped:0 overruns:0 carrier:11
collisions:0 txqueuelen:1000
RX bytes:392990 (392.9 KB) TX bytes:97697 (97.6 KB)
Interrupt:44
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:1610 errors:0 dropped:0 overruns:0 frame:0
TX packets:1610 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:127588 (127.5 KB) TX bytes:127588 (127.5 KB)
wlan0 Link encap:Ethernet HWaddr 4c:ed:de:f4:33:e7
UP BROADCAST MULTICAST MTU:1500 Metric:1
RX packets:103 errors:0 dropped:0 overruns:0 frame:0
TX packets:786 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:14537 (14.5 KB) TX bytes:186480 (186.4 KB)

7. Jalankan perintah route –n.
Hasil Percobaan :
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
169.254.0.0 0.0.0.0 255.255.0.0 U 1000 0 0 eth0
192.168.1.0 0.0.0.0 255.255.255.0 U 1 0 0 eth0

1 komentar:

  1. Hard Rock Hotel & Casino & Spa- Pittsburgh, PA
    Hard Rock Hotel & Casino 여수 출장마사지 & Spa - Pittsburgh, PA - 광양 출장마사지 2021 · Resorts: The Hard Rock 제주도 출장샵 Hotel & Casino, Hollywood Casino at 군포 출장샵 Penn National Gaming's Hollywood Casino, 세종특별자치 출장안마

    BalasHapus