Computer networks -- 2007-2008 -- info.uvt.ro/Laboratory 5
Quick links:
- front;
- courses 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13;
- laboratories agenda, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, evaluation, tools, repository.
Prerequisites
[edit]In order to successfully accomplish this laboratory, you should be familiar with:
- a command line interpreter (wikipedia:Command line interpreter);
- Linux/UNIX shell (wikipedia:Bash in general);
- Windows command line (wikipedia:Command Prompt (Windows));
- man pages or info pages -- see below;
Man pages
[edit]Please consult User:Ciprian Dorin Craciun/Tools/Man.
SSH clients
[edit]- wikipedia:Secure Shell;
- wikipedia:Comparison of SSH clients;
- PuTTY: User:Ciprian Dorin Craciun/Tools/Putty;
ping
[edit]This tool is used for checking that a specific host is reachable in an IP network, or for testing the local configuration. PING works by sending ICMP ECHO_REQUEST datagrams to the target host and listening for ICMP ECHO_RESPONSE replies.
ECHO_REQUEST datagrams have an IP and ICMP header, followed by a struct timeval and then an arbitrary number of "pad" bytes used to fill out the packet.
PING provides estimates the round-trip time and records any packet loss, and prints a statistical summary when finished.
Links
[edit]Example
[edit]user$ ping -c 4 k.ro PING k.ro (194.102.255.23) 56(84) bytes of data. 64 bytes from www.k.ro (194.102.255.23): icmp_seq=1 ttl=55 time=10.6 ms 64 bytes from www.k.ro (194.102.255.23): icmp_seq=2 ttl=55 time=10.5 ms 64 bytes from www.k.ro (194.102.255.23): icmp_seq=3 ttl=55 time=10.4 ms 64 bytes from www.k.ro (194.102.255.23): icmp_seq=4 ttl=55 time=10.7 ms --- k.ro ping statistics --- 4 packets transmitted, 4 received, 0% packet loss, time 3015ms rtt min/avg/max/mdev = 10.449/10.592/10.717/0.165 ms
Usage
[edit]The ping tool can be used for:
- fault isolation -- It is first run on the localhost in order to verify that the local network interface is running. Then, hosts and gateways further and further away should be "pinged" in order to check their status.
- metrics -- PING computer Round-trip times and packet loss statistics. When PING sends the specified number of packets (and possibly has received them) a summary is displayed
Drawbacks
[edit]Although RFC 1122 prescribes that any host must accept an echo-request and issue an echo-reply in return, one finds that this standard is frequently not followed on the public Internet.
arping
[edit]arping is similar in functionality with ping, but operates by using the ARP protocol (opposed to ping which uses ICMP). Due to the usage of the ARP protocol the arping tool is only useful in the local network or in networks that provide an PROXY ARP.
Links
[edit]Example
[edit]root# arping -I eth1 192.168.1.1 ARPING 192.168.1.1 from 192.168.1.230 eth1 Unicast reply from 192.168.1.1 [00:1D:60:95:77:16] 2.024ms Unicast reply from 192.168.1.1 [00:1D:60:95:77:16] 1.083ms Unicast reply from 192.168.1.1 [00:1D:60:95:77:16] 1.601ms Sent 3 probes (1 broadcast(s)) Received 3 response(s)
nslookup and dig
[edit]- wikipedia:Domain Name System;
- wikibooks:Computer Networks/DNS;
- wikipedia:nslookup;
- nslookup man page;
- wikipedia:Domain Information Groper;
- dig man page;
netcat and telnet
[edit]netstat
[edit]ifconfig
[edit]ipconfig
[edit]ip
[edit]- ip man page (the utility);
Wireshark and tcpdump
[edit]- Wireshark:
- tcpdump:
- sample captures: