Linux centos8

WuWuII

已于 2023-05-31 08:49:07 修改

阅读量1.5k

点赞数

分类专栏： Linux 文章标签： linux

于 2020-06-09 14:10:10 首次发布

本文链接：https://blog.csdn.net/a3562323/article/details/106639965

版权

Linux 专栏收录该内容

13 篇文章 0 订阅

订阅专栏

1、修改系统时间

依次执行命令

1、
[roo@localhost ~]$ rpm -ivh http://mirrors.wlnmp.com/centos/wlnmp-release-centos.noarch.rpm
2、
[root@localhost roo]# dnf  install wntp
3、
[root@localhost roo]# ntpdate ntp1.aliyun.com

2、快捷键

添加打开终端的快捷键

右键----》设置
在这里插入图片描述
翻到列表的最下然后选设备

打开设备后如下所示操作

随意写一个名称：Terminal
命令是：/usr/bin/gnome-terminal
然后选择快捷键

3、防火墙

3.1 systemctl

systemctl unmask firewalld                    #执行命令，即可实现取消服务的锁定
systemctl mask firewalld                    # 下次需要锁定该服务时执行
systemctl start firewalld.service               #启动防火墙  
systemctl stop firewalld.service                #停止防火墙  
systemctl reloadt firewalld.service             #重载配置
systemctl restart firewalld.service             #重启服务
systemctl status firewalld.service              #显示服务的状态
systemctl enable firewalld.service              #在开机时启用服务
systemctl disable firewalld.service             #在开机时禁用服务
systemctl is-enabled firewalld.service          #查看服务是否开机启动
systemctl list-unit-files|grep enabled          #查看已启动的服务列表
systemctl --failed                                     #查看启动失败的服务列表

3.2 firewall-cmd

firewall-cmd --state                         #查看防火墙状态  
firewall-cmd --reload                        #更新防火墙规则  
firewall-cmd --state                         #查看防火墙状态  
firewall-cmd --reload                        #重载防火墙规则  
firewall-cmd --list-ports                    #查看所有打开的端口  
firewall-cmd --list-services                 #查看所有允许的服务  
firewall-cmd --get-services                  #获取所有支持的服务  

#区域相关
firewall-cmd --list-all-zones                    #查看所有区域信息  
firewall-cmd --get-active-zones                  #查看活动区域信息  
firewall-cmd --set-default-zone=public           #设置public为默认区域  
firewall-cmd --get-default-zone                  #查看默认区域信息  
firewall-cmd --zone=public --add-interface=eth0  #将接口eth0加入区域public

#接口相关
firewall-cmd --zone=public --remove-interface=eth0       #从区域public中删除接口eth0  
firewall-cmd --zone=default --change-interface=eth0      #修改接口eth0所属区域为default  
firewall-cmd --get-zone-of-interface=eth0                #查看接口eth0所属区域  

#端口控制
firewall-cmd --add-port=80/tcp --permanent               #永久添加80端口例外(全局)
firewall-cmd --remove-port=80/tcp --permanent            #永久删除80端口例外(全局)
firewall-cmd --add-port=65001-65010/tcp --permanent      #永久增加65001-65010例外(全局)  
firewall-cmd  --zone=public --add-port=80/tcp --permanent            #永久添加80端口例外(区域public)
firewall-cmd  --zone=public --remove-port=80/tcp --permanent         #永久删除80端口例外(区域public)
firewall-cmd  --zone=public --add-port=65001-65010/tcp --permanent   #永久增加65001-65010例外(区域public) 
firewall-cmd --query-port=8080/tcp    # 查询端口是否开放
firewall-cmd --permanent --add-port=80/tcp    # 开放80端口
firewall-cmd --permanent --remove-port=8080/tcp    # 移除端口
firewall-cmd --reload    #重启防火墙(修改配置后要重启防火墙)

4、安装软件

4.1 centos8安装keepalived

[root@localhost ~]# yum install keepalived

5、异常

5.1 连接不到网络

我用的是桥接模式，前一天还正常使用，第二天上不了网，也ping不同，网络连接一直显示正在连接，之前一直使用动态获取ip，尝试了下静态获取ip,发现网络连接显示正常了，但是还是ping不同，然后发现一个：https://www.cnblogs.com/pady/p/14497033.html，这个文章第2个问题，这里原本是自动获得，现在指定了一下网卡，就可以了
在这里插入图片描述

6、nmap

nmap端口扫描工具
安装

sudo dnf install nmap

使用

2、扫描指定网段中那些IP是被使用的

[root@localhost ~]# nmap -sP 192.168.1-254

3、扫描指定远端主机开放了那些端口

[root@localhost ~]# nmap -sS 192.168.1.130

4、扫描指定远端主机是什么操作系统

[root@localhost ~]# nmap -O 192.168.1.130

5、扫描指定远端主机服务版本号

[root@localhost ~]# nmap -sV 192.168.1.130

扫描指定远端主机开放了那些端口
nmap -sS

[root@localhost ~]# nmap -sS 192.168.3.171
Starting Nmap 7.92 ( https://nmap.org ) at 2023-05-30 20:51 CST
Note: Host seems down. If it is really up, but blocking our ping probes, try -Pn
Nmap done: 1 IP address (0 hosts up) scanned in 3.07 seconds

这个情况是ping被禁用，需要加参数-Pn

[root@localhost ~]# nmap -O -Pn 192.168.3.171
Starting Nmap 7.92 ( https://nmap.org ) at 2023-05-31 08:43 CST
Nmap scan report for 192.168.3.171
Host is up (0.000057s latency).
Not shown: 997 closed tcp ports (reset)
PORT     STATE SERVICE
22/tcp   open  ssh
111/tcp  open  rpcbind
3306/tcp open  mysql
Device type: general purpose
Running: Linux 3.X
OS CPE: cpe:/o:linux:linux_kernel:3
OS details: Linux 3.7 - 3.10
Network Distance: 0 hops

OS detection performed. Please report any incorrect results at https://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 1.46 seconds

扫描指定网段中那些IP是被使用的
nmap -sP

[root@localhost ~]# nmap -sP -Pn 192.168.3.171-175
Starting Nmap 7.92 ( https://nmap.org ) at 2023-05-31 08:44 CST
Nmap scan report for 192.168.3.171
Host is up.
Nmap scan report for 192.168.3.172
Host is up.
Nmap scan report for 192.168.3.173
Host is up.
Nmap scan report for 192.168.3.174
Host is up.
Nmap scan report for 192.168.3.175
Host is up.
Nmap done: 5 IP addresses (5 hosts up) scanned in 0.00 seconds

扫描指定远端主机是什么操作系统
nmap -O

[root@localhost ~]#  nmap -O 192.168.3.171
Starting Nmap 7.92 ( https://nmap.org ) at 2023-05-31 08:45 CST
Nmap scan report for 192.168.3.171
Host is up (0.000053s latency).
Not shown: 997 closed tcp ports (reset)
PORT     STATE SERVICE
22/tcp   open  ssh
111/tcp  open  rpcbind
3306/tcp open  mysql
Device type: general purpose
Running: Linux 3.X
OS CPE: cpe:/o:linux:linux_kernel:3
OS details: Linux 3.7 - 3.10
Network Distance: 0 hops

OS detection performed. Please report any incorrect results at https://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 1.45 seconds

扫描指定远端主机服务版本号
nmap -sV

[root@localhost ~]# nmap -sV 192.168.3.171
Starting Nmap 7.92 ( https://nmap.org ) at 2023-05-31 08:46 CST
Nmap scan report for 192.168.3.171
Host is up (0.0000050s latency).
Not shown: 997 closed tcp ports (reset)
PORT     STATE SERVICE VERSION
22/tcp   open  ssh     OpenSSH 8.0 (protocol 2.0)
111/tcp  open  rpcbind 2-4 (RPC #100000)
3306/tcp open  mysql   MySQL 8.0.31

Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 6.37 seconds