LinuxNetworking

ThistutorialcoversTCP/[Link]. [Link],acomputerrunningtwoethernet cardswillhavetwodeviceslabeled /dev/eth0 and/dev/eth1 .Linuxnetworkconfiguration,management,monitoring andsystemtoolsarecoveredinthistutorial.

TutorialContents:
l l

OtherYoLinuxNetworkingTutorials:
l

l l l l l l l l l

l l

l l l l

l l

l l l

#Configurationfiles #RedHatLinuxnetworkGUI configurationtools. #AssigninganIPaddress #ActivatingandDeActivatingyourNIC #Subnets #EnableForwarding #Addinganetworkinterfacecard(NIC) #Route #VPN,Tunneling #UsefullLinuxnetworkingcommands #inetd/xinetd:NetworkSocket ListenerDaemons #rwhod:RemoteWhoDaemon #RPC:RemoteProcedureCall. (portmapper) #PAM:NetworkWrappers. #ICMPprotocol. #NetworkMonitoringTools #IDS:IntruderDetectionSystem SNORT #ARP:AddressResolutionProtocol #ConfiguringLinuxForNetwork Multicast #LivinginaMS/Windowsworld #NetworkDefinitions #RelatedLinks

l l

l l l l

Settingupaninternetgatewayforhomeoroffice usingiptables LoadbalancingserversusingLVS(LinuxVirtual Server) Modemdialup: ConfiguringPPPdialupconnectionstoan ISP DialingCompuserve DialingAOL ConfiguringPPPdialinconnections DNSNameserverconfiguration DHCPserverconfiguration:DynamicHost ConfigurationProtocol NISauthenticationconfiguration:ServerandClient Internet/NetworkSecurity SecurityToolsandHackerTools YoLinuxTutorialsIndex

TCP/IPNetworkConfigurationFiles:
l

File: /etc/[Link]
search [Link]'sdomainifusingtheirnameserver nameserver [Link] nameserver [Link]

[Link] client,[Link] IPaddress,asktheISPorcheckanothermachineonyournetwork. RedHat/FedoraGUI: /usr/sbin/systemconfignetwork (selecttab"DNS".

l

File: /etc/hosts locallyresolvenodenamestoIPaddresses

[Link] [Link] [Link] nodename

Notewhenaddinghoststothisfile,placethefullyqualifiednamefirst.(Ithelpssendmailidentifyyourservercorrectly)i.e.:
[Link]

ThisinformsLinuxoflocalsystemsonthenetworkwhicharenothandledbytheDNSserver.(orforallsystemsinyourLAN ifyouarenotusingDNSorNIS)
/usr/sbin/systemconfignetwork

RedHat/FedoraGUI: /usr/sbin/systemconfignetwork (selecttab"Hosts".

l

File: /etc/[Link]
hosts:filesdnsnisplusnis

ThisexampletellsLinuxtofirstresolveahostnamebylookingatthelocalhostsfile( /etc/hosts ),thenifthenameisnot foundlooktoyourDNSserverasdefinedby /etc/[Link] andifnotfoundtherelooktoyourNISserver. Inthepastthisfilehashadthefollowingnames:/etc/[Link],/etc/[Link],/etc/[Link],...dependingonthe distribution. FreeInformation Technology Magazine Subscriptions andDocument Downloads

Fedora/RedHatNetworkConfigurationFiles:
l

/etc/sysconfig/network RedHatnetworkconfigurationfileusedbythesystemduringthebootprocess.

File: /etc/sysconfig/networkscripts/ifcfgeth0 Configurationsettingsforyourfirstethernetport(0).Yoursecondportiseth1. File:

/etc/[Link] (kernel2.6) /etc/[Link] (kernel2.4) (orforoldersystems: /etc/[Link] ) aliaseth0eepro100

ExamplestatementforIntelethernetcard:

[Link] loadablemodule.(defaultforRedHat)

Fedora/RedHatNetworkGUIConfigurationTools:
[Link] andthatdevelopedbyeditingsystemconfigurationfilesdirectly. TCP/IPethernetconfiguration:
l

Networkconfiguration:
/usr/sbin/systemconfignetwork (FC2/3)GUIshownhere> /usr/bin/redhatconfignetwork (/usr/bin/neat)(RH7.2+FC1)

Textconsoleconfigurationtool:
/usr/sbin/systemconfignetworktui (TextUserInterface(TUI)forFedoraCore2/3) /usr/bin/redhatconfignetworktui (RH9.0FC1)

Textconsolenetworkconfigurationtool. Firstinterfaceonlyeth0: /usr/sbin/netconfig /usr/bin/netcfg (GUI)(lastavailablewithRH7.1)

GnomeDesktop:
l

GnomeDesktopNetworkConfiguration /usr/bin/gnomenetworkpreferences (RH9.0FC3) [Link]: 1. Directinternetconnection 2. Manualproxyconfiguration(specifyproxyandport) 3. Automaticproxyconfiguration(giveURL)

AssigninganIPaddress:
ComputersmaybeassigedastaticIPaddressorassignedonedynamically.

StaticIPaddressassignment:
Chooseoneofthefollowingmethods:

CommandLine:
/sbin/ifconfigeth0192.168.10.12netmask255.255.255.0broadcast192.168.10.255

Networkaddressbyconventionwouldbethelowest:[Link] Broadcastaddressbyconventionwouldbethehighest:[Link] Thegatewaycanbeanything,butfollowingconvention:[Link] Note:[Link] [Link]

l

RedHat/FedoraGUItools: /usr/bin/neat [Link]. (FirstavailablewithRedHat7.2.) /usr/bin/netcfg (Handlesallinterfaces)(lastavailableinRedHat7.1)

RedHat/FedoraConsoletools:

/usr/sbin/systemconfignetworktui (TextUserInterface) /usr/sbin/netconfig (Onlyseemstoworkforthefirstnetworkinterfaceeth0butnoteth1,...)

Directlyeditconfigurationfiles/[Link].

[Link].(Manuallyaddthe commandstotheendofthefile /etc/rc.d/[Link] toexecutethemuponboot.)Thecommandsnetcfgandnetconfigmake permanentchangestosystemnetworkconfigurationfileslocatedin /etc/sysconfig/networkscripts/ ,sothatthisinformation isretained. TheIANAhasallocatedIPaddressesintherangeof192.168.0.0to192.168.255.255forprivatenetworks. Helpfultools:
l l

NetworkCalculators:Subnetmaskcalculator,nodecalculator,maskinverter,... IPsubnetcalculator

Ubuntu/DebianIPConfigurationFiles:
File: /etc/network/interfaces StaticIPexample:
autolo ifaceloinetloopback autoeth0 ifaceeth0inetstatic address208.88.34.106 netmask255.255.255.248 broadcast208.88.34.111 network208.88.34.104 gateway208.88.34.110

DynamicIP(DHCP)example:
autolo ifaceloinetloopback autoeth0 ifaceeth0inetdhcp autoeth1 ifaceeth1inetdhcp autoeth2 ifaceeth2inetdhcp autoath0 ifaceath0inetdhcp autowlan0 ifacewlan0inetdhcp

Interfaces: l lo:Loopbackinterface(networkwithinyoursystemwithoutslowingdownfortherealethernetbasednetwork) l eth0:Firstethernetinterfacecard l wlan0:Firstwirelessnetworkinterface Alsosee" maninterfaces "

Alsosee" maninterfaces "

RedHat/FedoraCoreIPConfigurationFiles:
TheRedHatconfigurationtoolsstoretheconfigurationinformationinthefile/etc/sysconfig/network . Theywillalsoallowonetoconfigureroutinginformation.
l

File: /etc/sysconfig/network StaticIPaddressConfiguration:(Configuregatewayaddress)

NETWORKING=yes HOSTNAME= myhostnameHostnameisdefinedhereandbycommandhostname FORWARD_IPV4=trueTrueforNATfirewallgatewaysandlinuxrouters. Falseforeveryoneelsedesktopsandservers. GATEWAY=" [Link]"Usedifyournetworkisconnectedtoanothernetworkortheinternet. [Link].

ORforDHCPclientconfiguration:
NETWORKING=yes HOSTNAME= myhostnameHostnameisdefinedhereandbycommandhostname

(GatewayisassignedbyDHCPserver.) ORforNISclientconfiguration:
NETWORKING=yes HOSTNAME= myhostnameHostnameisdefinedhereandbycommandhostname NISDOMAIN= NISProject1 NISdomaintoattach

File(RedHat/Fedora): /etc/sysconfig/networkscripts/ifcfgeth0 (S.u.s.e.: /etc/sysconfig/network/ifcfgethidXX:XX:XX:XX:XX) Thisfileusedbythecommandscripts ifup and ifdown StaticIPaddressconfiguration:

DEVICE=eth0 BOOTPROTO=static BROADCAST=[Link].255 IPADDR= [Link] NETMASK=[Link] NETWORK= [Link].0 ONBOOT=yesWillactivateuponsystemboot

RHEL4/FC3additions: l TYPE=Ethernet l HWADDR=XX:XX:XX:XX:XX:XX l GATEWAY=[Link] ORforDHCPclientconfiguration:

DEVICE=eth0 ONBOOT=yes BOOTPROTO=dhcp

RHEL4/FC3additions: l IPV6INIT=no l USERCTL=no l PEERDNS=yes l TYPE=Ethernet l HWADDR=XX:XX:XX:XX:XX:XX (Usedbyscript /etc/sysconfig/networkscripts/ifup tobringthevariousnetworkinterfacesonline) TodisableDHCPchange BOOTPROTO=dhcp toBOOTPROTO=none Inorderforupdatedinformationinanyofthesefilestotakeeffect,onemustissuethecommand: servicenetworkrestart (or: /etc/init.d/networkrestart )

Changingthehostname:
Thisisathreestepprocess: 1. Issuethecommand: hostnamenewhostname 2. Changenetworkconfigurationfile: /etc/sysconfig/network Editentry: HOSTNAME= newhostname 3. Restartsystemswhichreliedonthehostname(orreboot): Restartnetworkservices: servicenetworkrestart (or: /etc/init.d/networkrestart ) Restartdesktop: n Bringdownsystemtoconsolemode: init3 n BringupXWindows: init5 Onemayalsowanttocheckthefile /etc/hosts foranentryusingthesystemnamewhichallowsthesystemtobeselfaware. Thehostnamemaybechangedatruntimeusingthecommand: [Link]=" superserver "

ChangethehostnameusingGUItool:/usr/sbin/systemconfignetwork (RedHat/Fedora/CentOS) Hostnameentriesaremadeintwoplaces:

Selectthe"DNS"tab. Selectthe"Devices"tab+"Edit"+the"General"tab.

NetworkIPaliasing:
AssignmorethanoneIPaddresstooneethernetcard:
ifconfigeth0 [Link].XXXnetmask255.255.255.0broadcast [Link].255 ifconfigeth0:0192.168.10.12netmask255.255.255.0broadcast192.168.10.255 ifconfigeth0:1192.168.10.14netmask255.255.255.0broadcast192.168.10.255 routeaddhost [Link].XXXdeveth0 routeaddhost192.168.10.12deveth0 routeaddhost192.168.10.14deveth0

[Link]:
eth0Linkencap:EthernetHWaddr[Link] inetaddr:[Link]:[Link].255Mask:[Link] UPBROADCASTRUNNINGMULTICASTMTU:1500Metric:1

RXpackets:14218errors:0dropped:0overruns:0frame:0 TXpackets:1362errors:0dropped:0overruns:0carrier:0 collisions:1txqueuelen:100 Interrupt:5Baseaddress:0xe400 eth0:0Linkencap:EthernetHWaddr[Link] inetaddr:192.168.10.12Bcast:192.168.10.255Mask:[Link] UPBROADCASTRUNNINGMULTICASTMTU:1500Metric:1 Interrupt:5Baseaddress:0xe400 eth0:1Linkencap:EthernetHWaddr[Link] inetaddr:192.168.10.14Bcast:192.168.10.255Mask:[Link] UPBROADCASTRUNNINGMULTICASTMTU:1500Metric:1 Interrupt:5Baseaddress:0xe400

Configfile: /etc/sysconfig/networkscripts/ifcfgeth0:0
DEVICE=eth0:0 ONBOOT=yes BOOTPROTO=static BROADCAST=[Link] IPADDR=[Link] NETMASK=[Link] NETWORK=[Link] ONBOOT=yes

Aliasescanalsobeshutdownindependently.i.e.: ifdowneth0:0 Theoptionduringkernelcompileis:CONFIG_IP_ALIAS=y(EnabledbydefaultinRedhat) Note:TheApachewebservercanbeconfiguredsothatdifferentIPaddressescanbeassignedtospecificdomainsbeing [Link]"configuringanIPbasedvirtualhost"intheYoLinuxWebsiteconfigurationtutorial.

DHCPLinuxClient:getconnectioninfo:/sbin/pumpieth0status (RedHatLinux7.1andolder)
Deviceeth0 IP:[Link] Netmask:[Link] Broadcast:[Link].255 Network:[Link].0 [Link].4 Nextserver0.0.0.0 Gateway:[Link].1 Domain:[Link] Nameservers:[Link].3 Renewaltime:SatAug[Link] Expirationtime:SatAug[Link]

ActivatingandDeActivatingyourNIC:
CommandsforstartingandstoppingTCP/IPnetwork servicesonaninterface:
l

Activate:/sbin/ifupeth0 (Also: ifconfigeth0up Note:EvenifnoIP addressisassignedyoucanlisten.) DeActivate:/sbin/ifdowneth0 (Also: ifconfigeth0down )

ThesescriptsusethescriptsandNICconfig filesin /etc/sysconfig/networkscripts/ GUIInterfacecontrol/configuration:

l

Start/Stopnetworkinterfaces
/usr/bin/systemcontrolnetwork (FedoraCore

2/3)
/usr/bin/redhatcontrolnetwork (RH9.0FC1)
l

ConfigureEthernet,ISDN,modem,tokenRing, WirelessorDSLnetworkconnection: /usr/sbin/systemconfignetworkdruid (FC2/3) /usr/sbin/redhatconfignetworkdruid (RH9 FC1)

Subnets:

M A S K

#OFSUB NETS

Slash Fmt

CLASSA HOSTS

CLASS CLASSB A HOSTS MASK

CLASSB MASK

CLASS C HOSTS

CLASSC MASK

CLASSC SUB HOSTS

CLASSCSUB MASK

1 255 or 256 254 128 252 64 248 32 240 16 224 8 192 4

/32

16,777,214

[Link] 65,534

[Link] 254

[Link]

Invalid 1address Invalid 2addresses 2hosts 4addresses 6hosts 8addresses 14hosts 16addresses 30hosts 32addresses 62hosts 64addresses

[Link]

/31 /30 /29 /28 /27 /26

33,554,430 67,108,862 134,217,726 268,435,454 536,870,910

[Link] 131,070 [Link] 262,142 [Link] 524,286

[Link] 510 [Link] 1,022 [Link] 2,046

[Link] [Link] [Link] [Link] [Link] [Link]

[Link] [Link] [Link] [Link] [Link] [Link]

[Link] 1,048,574 [Link] 4,094 [Link] 2,097,150 [Link] 8,190

1,073,741,822 [Link] 4,194,302 [Link] 16,382

128 2

/25

2,147,483,646 [Link] 8,388,606 [Link] 32,766

126hosts [Link] 128 addresses

[Link]

Binaryposition 8 7 6 5 4321 Value 128 64 32 16 8 4 2 1 Example:192 1 1 0 0 0000 Example192=128+64 [Link]([Link]),[Link],reserved [Link]. SubnetExample: YourISPassignsyouasubnetmaskof255.255.255.248foryouroffice. l 208.88.34.104NetworkBaseaddress l 208.88.34.105Computer1 l 208.88.34.106Computer2 l 208.88.34.107Computer3 l 208.88.34.108Computer4 l 208.88.34.109Computer5 l 208.88.34.110DSLrouter/Gateway l 208.88.34.111Broadcastaddress Oftheeightaddresses,therearesixassignedtohardwaresystemsandultimatelyonlyfiveusableaddresses. Links:
l l l l l

SubnetCheatSheet Subnetcalculator Tableofsubnets IPSubnetting,VariableSubnetting,andCIDR(Supernetting) [Link]:SubnetMaskingandAddressing

NetworkClasses:
[Link] partofaclassA,B,C,[Link]:
l

ClassA:Definedbythefirst8bitswitharangeof0127. Firstnumber(8bits)[Link] OneclassAnetworkcandefine16,777,214hosts. Range:0.0.0.0127.255.255.255 ClassB:Definedbythefirst8bitswitharangefrom128191 Firsttwonumbers(16bits)[Link] OneclassBnetworkcandefine65,534hosts. Range:128.0.0.0191.255.255.255

ClassC:Definedbythefirst8bitswitharangefrom192223 Firstthreenumbers(24bits)[Link] OneclassBnetworkcandefine254hosts. Range:192.0.0.0223.255.255.255 ClassD:Definedbythefirst8bitswitharangefrom224239 Thisisreservedformulticastnetworks(RFC988) Range:224.0.0.0239.255.255.255 ClassE:Definedbythefirst8bitswitharangefrom240255 Thisisreservedforexperimentaluse. Range:240.0.0.0247.255.255.255

EnableForwarding:
Forwardingallowsthenetworkpacketsononenetworkinterface(i.e. eth0 )tobeforwardedtoanothernetworkinterface(i.e. eth1 ).ThiswillallowtheLinuxcomputertoconect("ethernetbridge")orroutenetworktraffic. Thebridgeconfigurationwillmergetwo(orseveral)[Link] usedtofiltertraffic. ArouterconfigurationcansupportmulticastandbasicIProutingusingthe"route "[Link](NAT)canbe usedtoconnectprivatelocalareanetworks(LAN)totheinternetorloadbalanceservers.
l

TurnonIPforwardingtoallowLinuxcomputertoactasagatewayorrouter. echo1>/proc/sys/net/ipv4/ip_forward [Link]. AnothermethodistoaltertheLinuxkernelconfigfile:/etc/[Link]:

net.ipv4.ip_forward=1

Seefile /etc/sysconfig/network forstoringthisconfiguration.

FORWARD_IPV4=true

Changethedefault"false"to"true". Allmethodswillresultinaprocfilevalueof"1".Test: cat/proc/sys/net/ipv4/ip_forward TheTCPManpageLinuxProgrammer'sManualand/usr/src/linux/Documentation/[Link](Kernel2.2RH7.0) cover /proc/sys/net/ipv4/* filedescriptions. Alossee:(YoLinuxtutorials)

l

ConfigureLinuxasaninternetgatewayrouter:UsingLinuxandiptables/ipchainstosetupaninternetgatewayforhomeor office(iptables ) LoadbalancingserversusingLVS(LinuxVirtualServer)(ipvsadm )

Addinganetworkinterfacecard(NIC):
Manualmethod:Thisdoesnotalterthepermanentconfigurationandwillonlyconfiguresupportuntilthenextreboot.
l

cd/lib/modules/2.2.515/net/Usekernelversionforyoursystem.Thisexampleuses2.2.515 (FedoraCore3: /lib/modules/2.6.121.1381_FC3/kernel/net/ )

Hereyouwillfindthemodulessupportedbyyoursystem. Itcanbepermanentlyaddedto: /etc/[Link] (kernel2.6) /etc/[Link] (kernel2.4) (orforoldersystems: /etc/[Link] ) Example:

aliaseth03c59x
l

/sbin/insmod3c59x (Fora3Comethernetcard) Thisinsertsthespecifiedmoduleintothekernel. /sbin/modprobe3c59x Thisalsoloadsamoduleintothesystemkernel.

Modprobecommandlineoptions: r:tounloadthemodule. /sbin/modprobel\* :listallmodules. /sbin/modprobeltnet\* :Listonlynetworkmodules /sbin/modprobetnet\* :Tryloadingallnetworkmodulesandseewhatsticks.(actofdesperation) ifconfig...

Theeasyway:RedHatversions6.2andlater,shipwithKudzu,adevicedetectionprogramwhichrunsduringsystem initialization.(/etc/rc.d/init.d/kudzu)[Link] use/usr/sbin/netconfig [Link] utilizeduponsystemboot. SystemswithtwoNICcards:[Link] definedusingoneofthreemethods: 1. UsetheRedHatGUItool /usr/bin/netcfg OR 2. Definenetworkparametersinconfigurationfiles: Definenewdeviceinfile(RedHat/Fedora) /etc/sysconfig/networkscripts/ifcfgeth1 (S.u.s.e9.2: /etc/sysconfig/network/ifcfgethidXX:XX:XX:XX:XX)
DEVICE=eth1 BOOTPROTO=static IPADDR=[Link] NETMASK=[Link] GATEWAY=[Link] HOSTNAME= [Link] DOMAIN= [Link]

Specialroutinginformationmaybespecified,ifnecessary,inthefile (RedHat/Fedora): /etc/sysconfig/staticroutes (S.u.s.e.9.2: /etc/sysconfig/network/routes ) Example:

[Link]

OR 3. DefinenetworkparametersusingUnixcommandlineinterface: DefineIPaddress:
[Link].255 ifconfigeth1192.168.10.12netmask255.255.255.0broadcast192.168.10.255

Ifnecessary,defineroutewithwiththeroute command: Examples:

[Link].XXXdeveth0 [Link].XXXdeveth0

[Link]. Ifamistakeismadejustrepeattheroutecommandsubstituting"del"inplaceof"add".

ConfiguringyourNIC:SpeedandDuplexsettings:
Thisisusuallynotnecessarybecausemostethernetadapterscanautonegotiatelinkspeedandduplexsetting.
l

ListNICspeedandconfiguration:miitool
eth0:negotiated100baseTxFDflowcontrol,linkok

Verbosemode: miitoolv
eth0:negotiated100baseTxFDflowcontrol,linkok

productinfo:Intel82555rev4 basicmode:autonegotiationenabled basicstatus:autonegotiationcomplete,linkok capabilities:100baseTxFD100baseTxHD10baseTFD10baseTHD advertising:100baseTxFD100baseTxHD10baseTFD10baseTHDflowcontrol linkpartner:100baseTxFD100baseTxHD10baseTFD10baseTHDflowcontrol

l

SetNICconfiguration:miitoolF option Option Parameters F 100baseTxFD 100baseTxHD 10baseTFD 10baseTHD 100baseT4 100baseTxFD 100baseTxHD 10baseTFD 10baseTHD

QueryNICwithethtool: Command
ethtoolgeth0 ethtoolaeth0 ethtoolceth0 ethtoolieth0 ethtooldeth0 ethtoolketh0 ethtoolSeth0

Description Queriesethernetdeviceforrx/txringparameterinformation. Queriesethernetdeviceforpauseparameterinformation. Queriesethernetdeviceforcoalescinginformation. Queriesethernetdeviceforassociateddriverinformation. Printsaregisterdumpforthespecifiedethernetdevice. Queriesethernetdeviceforoffloadinformation. QueriesethernetdeviceforNICanddriverstatistics.

ManPages:
l l

miitoolview,manipulatemediaindependentinterfacestatus ethtoolDisplayorchangeethernetcardsettings

Route:
Staticroutes:IP(InternetProtocol)[Link] toseeifits'[Link],theroutingtableisconsultedto [Link] setwiththe route commandandwiththeconfigurationfile (RedHat/Fedora): /etc/sysconfig/networkscripts/routeeth0 or (RedHat7: /etc/sysconfig/staticroutes ) (S.u.s.e.9.2: /etc/sysconfig/network/routes ):
[Link]/16via192.168.10.254

Seecommand: /etc/sysconfig/networkscripts/ifuprouteseth0 Dynamicroutes:RIP(RoutingInformationProtocol)[Link],RIPwill choosetheshortestroute.(Fewesthopsbetweenroutersnotphysicaldistance.)RoutersuseRIPtobroadcasttheroutingtable [Link]. Manpages:

l

routeshow/manipulatetheIProutingtable(Staticroute) Examples: Showroutingtable: routee Accessindividualcomputerhostspecifiedvianetworkinterfacecardeth1: routeaddhost123.213.221.231eth1 AccessISPnetworkidentifiedbythenetworkaddressandnetmaskusingnetworkinterfacecardeth0: routeaddnet10.13.21.0netmask255.255.255.0gw192.168.10.254eth0 Conversly: routedelnet10.13.21.0netmask255.255.255.0gw192.168.10.254eth0 Specifydefaultgatewaytousetoaccessremotenetworkvianetworkinterfacecardeth0: routeadddefaultgw201.51.31.1eth0 (Gatewaycanalsobedefinedin /etc/sysconfig/network )

l l

Specifytwogatewaysfortwonetworkdestinations:([Link],[Link] routers/gatewayswillbespecified.) Addinternetgatewayasbefore: routeadddefaultgw201.51.31.1eth0 Addsecondprivatenetwork: routeaddnet10.0.0.0netmask255.0.0.0gw192.168.10.254eth0 [Link]. ipx_routeshow/manipulatetheIPXroutingtableIPXistheNovellnetworkingprotocol(Nottypicallyusedunlessyour officehasNovellservers) ifuserIdentifydestinationsroutedtoaparticularnetworkinterface.

VPN,Tunneling:
l l l l l

l l l l

l l l l

CommercialVPNLinuxsoftwaresolutionsYoLinux [Link] [Link] FreeSWANtutorialhowto OpenVPNSSLVPNsolutionforsitetosite,WiFisecurity,andenterprisescaleremoteaccesswithloadbalancing, failover,andfinegrainedaccesscontrols. SSLExplorerJavaSLLbasedVPN QuaggadynamicroutingsuiteVLAN n2npiertopierwithinaprivatefabric CIPE:CryptoIPEncapsulation(EasiestwaytoconfiguretwoLinuxgatewaysconnectingtwoprivatenetworksoverthe internetwithencryption.) CIPEHomepageCIPEisasimpleencapsulationsystemthatsecurelyconnectstwosubnets. TheLinuxCipe+MasqueradingminiHOWTOAnthonyCiaravalo GRETunnelingGenericRoutingEncapsulationHugoSamayoa [Link] InstallingandRunningPPTPonLinux L2TPExtensions(l2tpext)InternetDrafts.

UsefullLinuxnetworkingcommands:
l l

/etc/rc.d/init.d/networkstart commandtostart,restartorstopthenetwork

l l

l l

l l l l

netstatDisplayconnections,routingtables,statsetc Listexternallyconnectedprocesses: netstatpunta Listallconnectedprocesses: netstatnap Shownetworkstatistics: netstats Kernelinterfacetableinfo: netstataieth0 pingsendICMPECHO_REQUESTpacketstonetworkhosts.UseCntlCtostopping. tracerouteprinttheroutepacketstaketonetworkhost traceroute IPaddressofserver traceroute domainnameofserver mtranetworkdiagnostictoolintroducedinFedoraLiketracerouteexceptitgivesmorenetworkqualityandnetwork [Link]. mtr IPaddressofserver mtr domainnameofserver whoisLookupadomainnameintheinternicwhoisdatabase. fingerDisplayinformationonasystemuser.i.e. finger user@host Uses $HOME/.plan and $HOME/.project userfiles. [Link][Link] iptablesIPfirewalladministration(Linuxkernel2.6/2.4)SeeYoLinuxfirewall/gatewayconfiguration. ipchainsIPfirewalladministration(Linuxkernel2.2)SeeYoLinuxfirewall/gatewayconfiguration. socklistDisplaylistofopensockets,type,port,[Link] fuser orkill . [Link] nslookup ,thehost commandwilluse both /etc/hosts aswellasDNS. Example: host domainnameofserver [Link](YoLinuxTutorial)Note thatnslookupdoesnotusethe /etc/hosts file.

inetd/xinetd:NetworkSocketListenerDaemons:
ThenetworklisteningdaemonslistenandrespondtoallnetworksocketconnectionsmadeontheTCP/IPportsassignedtoit. Theportsaredefinedbythefile /etc/services .Whenaconnectionismade,thelistenerwillattempttoinvoketheassigned [Link] [Link] daemonshavebeenusedinRedHatLinuxdistributions:
l l

inetd:[Link] xinetd:RedHat7.09.0,FedoraCore

inetd:
Configurationfile: /etc/[Link] Entriesinthisfileconsistofasinglelinemadeupofthefollowingfields:
servicesockettypeprotocolwaituserservercmdline
l l

l l

service:[Link] /etc/services sockettype: stream:connectionprotocols(TCP) dgram:datagramprotocols(UDP) raw rdm seqpacket protocol:Transportprotocolnamewhichmatchesanameinthefile /etc/protocols .[Link],icmp,tcp,rpc/udp, rpc/tcp,ip,ipv6 wait:Appliesonlytodatagramprotocols(UDP). wait[.max]:Oneserverforthespecifiedportatanytime(RPC) nowait[.max]:Continuetolistenandlaunchnewservicesifanewconnectionismade.(multithreaded) Maxreferstothemaximumnumberofserverinstancesspawnedin60seconds.(default=40) user[.group]:[Link],rootoraspecialrestrictedidforthat service. server:Fullpathnameoftheserverprogramtobeexecuted. cmdline:Commandlinetobepassedtotheserver.Thisincludesargument0(argv[0]),thatisthecommandname. [Link]:echo,discard,chargen(character generator),daytime(humanreadabletime),andtime(machinereadabletime).(seeRFC)

SampleFile: /etc/[Link]
#echostreamtcpnowaitrootinternal #echodgramudpwaitrootinternal ftpstreamtcpnowaitroot/usr/sbin/[Link] la #pop3streamtcpnowaitroot/usr/sbin/tcpdipop3d #swatstreamtcpnowait.400root/usr/sbin/swatswat

Alinemaybecommentedoutbyusinga'#'[Link] lengthofalineis1022characters. Theinetdaemonmustberestartedtopickupthechangesmadetothefile: /etc/rc.d/init.d/inetdrestart Formoreinformationseethemanpages"inetd"and"[Link]".

xinetd:ExtendedInternetServicesDaemon:
Xinetdhasaccesscontrolmachanisms,loggingcapabilities,theabilitytomakeservicesavailablebasedontime,andcan placelimitsonthenumberofserversthatcanbestarted,redirectservicestodifferentportsandnetworkinterfaces(NIC)or eventoadifferentserver,chrootaserviceetc...andthusaworthyupgradefrominetd. Usethecommand chkconfiglist [Link] controlledbyxinetdandtheirrespectivestateunderthetitle"xinetdbasedservices".(Worksforxinetd(RH7.0+)butnot inetd) ThexinetdnetworkdaemonusesPAMalsocallednetworkwrapperswhichinvokethe /etc/[Link] and/etc/[Link] files. Configurationfile: /etc/[Link] whichinturnusesconfigurationfilesfoundinthedirectory /etc/xinetd.d/ . Toturnanetworkserviceonoroff:
l

Editthefile /etc/xinetd.d/servicename Setthedisablevalue: disable=yes or disable=no Restartthexinetdprocessusingthesignal: SIGUSR1( killSIGUSR1processid )Softreconfigurationdoesnotterminateexistingconnections. (Importantifyouareconnectedremotely) SIGUSR2Hardreconfigurationstopsandrestartsthexinetdprocess. (Note:UsingtheHUPsignalwillterminatetheprocess.) OR

Usethe chkconfig command: chkconfigservicenameon (oroff) Thiscommandwillalsorestartthexinetdprocesstopickupthenewconfiguration.

Thefilecontainsentriesoftheform:
serviceservicename { attributeassignmentoperatorvaluevalue... ... {

Where: l attribute: disable: n yes n no type: n RPC n INTERNAL: n UNLISTED:Notfoundin /etc/rpc or /etc/services id:Bydefaulttheserviceidisthesameastheservicename. socket_type: n stream:TCP n dgram:UDP n raw:DirectIPaccess n seqpacket:servicethatrequiresreliablesequentialdatagramtransmission flags:Combinationof: REUSE,INTERCEPT,NORETRY,IDONLY,NAMEINARGS,NODELAY,DISABLE,KEEPALIVE, NOLIBWRAP . Seethexinetdmanpagefordetails. protocol:Transportprotocolnamewhichmatchesanameinthefile /etc/protocols . wait: n no:multithreaded n yes:singlethreadedOneserverforthespecifiedportatanytime(RPC) user:Seefile: /etc/passwd group:Seefile: /etc/group server:Programtoexecuteandrecievedatastreamfromsocket.(Fullyqualifiednamefullpathenameof program) server_args:Unlikeinetd,arg[0]orthenameoftheserviceisnotpassed. only_from:IPaddress,factorizedaddress,netmaskrange,hostnameornetworknamefrom file /etc/networks . no_access:Denyfrom...(inverseofonly_from) access_times port:Seefile /etc/services Also:log_type,log_on_success,log_on_failure(Logoptions:+=PID,HOST,USERID,EXIT,DURATION,ATTEMPT andRECORD),rpc_version,rpc_number,env,passenv,redirect,bind,interface,banner,banner_success, banner_fail,per_source,cps,max_load,groups,enabled,include,includedir,rlimit_as,rlimit_cpu,rlimit_data, rlimit_rss,rlimit_stack. Thebestsourceofinformationisthemanpageanditsmanyexamples. l assignmentoperator: = +=:addavaluetothesetofvalues =:deleteavaluefromthesetofvalues Thenrestartthedaemon: /etc/rc.d/init.d/xinetdrestart Examplefrommanpage:Limittelnetsessionsto8Mbytesofmemoryandatotal20CPUsecondsforchildprocesses.
servicetelnet { socket_type=stream wait=no nice=10 user=root server=/usr/etc/[Link] rlimit_as=8M rlimit_cpu=20 }

[Pitfall]RedHat7.1withupdatesasof07/06/2001requiredthatIrestartthe xinetd servicesbeforeFTPwouldwork properlyeventhough xinetd [Link]

occursorhowtofixitotherthantorestart xinetd :/etc/rc.d/init.d/xinetdrestart . ManPages:

l l l l

xinetd [Link] [Link] tcpd

Formoreinfosee:
l l l l l

[Link]:xinetdFredericRaynal [Link]:ControllingAccesstoServices [Link] SeeRFC's:862,863,864,867,868,1413. manpagexinetd,[Link],[Link]

RWHO:RemoteWhodaemonrwhod
The"rwho "commandisusedtodisplayusersloggedintocomputersonyourLAN. Bydefault,[Link]" rwho ",youwillonly [Link] [Link] rwhod onalocal privateandfirewallprotectednetwork,hereishow: [Link] /etc/init.d/rwhod changefrom: daemonrwhod to:daemonrwhodb Startservice:
l l

Setservicetostartwithsystemboot: chkconfiglevel345rwhodon Startrwhodservice: servicerwhodstart (or: servicerwhodrestart )

Manpages:
l l l

rwho:whoisloggedinonlocalnetworkmachines rwhod:systemstatusserver who:showwhoisloggedontothesamesystem

RPC:RemoteProcedureCalls(Portmapper)
PortmpperisanetworkservicerequiredtosupportRPC'[Link](filesharingservices)require portmapper. ListRPCservicessupported: [root]#rpcinfoplocalhost Startingportmapserver:
l l

/etc/rc.d/init.d/portmapstart serviceportmapstart (RedHat/FedoraCore)

ManPages:
l l l l

portmap rpcinfo pmap_set pmap_dump

PAM:NetworkWrappers:
PluggableAuthenticationModulesforLinux(TCPWrappers) [Link]. File:/etc/[Link]

[Link]:[Link]

[Link].i.e. .nameof [Link] Notethebeginning".". File:/etc/[Link]

ALL:ALL

Thisgenerallydeniesanyaccess. Seethepammanpage. File:/etc/[Link]

ftpstreamtcpnowaitroot/usr/sbin/[Link] la

Theinet daemonacceptstheincomingnetworkstreamandassignsittothePAMTCPwrapper,/usr/sbin/tcpd,whichaccepts ordeniesthenetworkconnectionasdefinedby /etc/[Link] and /etc/[Link] [Link] loggedto /var/log/secure

AdvancedPAM:Morespecificaccesscanbeassignedandcontrolledbycontrollingthelevelofauthenticationrequiredfor access. [Link]. Seethefilesin/etc/pam.d/...(somesystemsuse/etc/[Link]) Theformat: servicetypecontrolmodulepathmodulearguments

l

l l

auth(type)Passwordisrequiredfortheuser nullokNullornonexistatantpasswordisacceptable shadowencryptedpasswordskeptin/etc/shadow account(type)[Link]. password(type)Controlspasswordupdate retry=3Setsthenumberofloginattempts minlen=8Setminimumlengthofpassword session(type)Controlsmonitoring

Modules:
l l l l

/lib/security/pam_pwdb.sopassworddatabasemodule /lib/security/pam_shells.so /lib/security/pam_cracklib.sochecksispasswordiscrackable /lib/security/pam_listfile.so

Afterreconfiguration,restartthe inet daemon: killallHUPinetd Formoreinfosee:

l l

Wietse'sPapers PluggableAuthenticationModulesforLinux(PAM)HomePage

ICMP:
ICMPisthenetworkprotocolusedbythe ping and traceroute commands. [Link],addthe followinglineto /etc/[Link] :
[Link].accept_redirects=1

Addthefollowingtothefile: /etc/rc.d/[Link]
forfin/proc/sys/net/ipv4/conf/*/accept_redirects

do echo1>$f done

CommandtoviewKernelIProutingcache: /sbin/routeCn NOTE:Thismayleaveyouvulnerabletohackersasattackersmayalteryourroutes.

BlockingICMPandlookinvisibletoping:
ThefollowingfirewallruleswilldropICMPrequests. Iptables:
iptablesAOUTPUTpicmpd0/0jDROP

Ipchains:
ipchainsAoutputpicmpd0/0jDENY

ORdropallincommingpings:
echo1>/proc/sys/net/ipv4/icmp_echo_ignore_all

ThisissometimesnecessarytolookinvisibletoDOS(DenialOfService)attackerswhousepingtowatchyourmachineand launchanattackwhenit'spressenceisdetected

NetworkMonitoringTools:
l

[Link]. Commandlineoption Description c C i wfilename n t Filterexpressions: primitive hosthostname Exitafterreceivingcountpackets. Specifysizeofoutputdumpfiles. [Link].i.e.eth0 Writetherawpacketstofileratherthanparsingandprintingthemout. Theycanlaterbeprintedwiththeroption. [Link]. Don'tprintatimestamponeachdumpline.

Description IfhosthasmultipleIP's,allwillbechecked.

Networknumber. netnetworknumber networknumbermaskmask Networknumberandnetmaskspecified. net port portnumber tcp udp icmp Examples:
l l l l

Portnumberspecified. SniffTCPpackets. SniffUDPpackets. Snifficmppackets.

tcpdumptcpport80andhost server1 tcpdumpiphost server1andnot server2

iptrafInteractiveColorfulIPLANMonitor nmapNetworkexplorationtoolandsecurityscanner Listpingablenodesonnetwork: nmapsP192.168.0.0/24 ScansnetworkforIPaddresses192.168.0.0to192.168.0.255usingping. [Link]. RPM'srequired: l ethereal0.8.152.i386.rpmRedHat7.1PowertoolsCDRPM l ucdsnmp4.212.i386.rpmRedHat7.1binaryCD1 l ucdsnmputils4.212.i386.rpmRedHat7.1binaryCD1 l Also:gtk+,glib,glibc,XFree86libs4.0.35(baseinstall)

l l l

l l

l l l l

Thereisanerrorintheetherealpackagebecauseitdoesnotshowthesnmplibrariesasadependancies,butyou candeducethisfromtheerrorsthatyougetiftheucdsnmplibrariesarenotinstalled. [Link] coolgraphics.(RedHatPowertoolsCD7.1) [Link].(RedHatPowertoolsCD) IPTrafncursesbasedIPLANmonitor.(RedHatPowertoolsCD) CheopsNetworkdiscovery,location,[Link] yournetwork,theirIPaddress,theirDNSname,[Link] systemonyournetwork.(RedHatPowertoolsCD) [Link] receivedonyournetwork.(RedHatPowertoolsCD) MRTGMultiRouterTrafficGrapherMonitornetworktrafficloadusingSNMPandgenerateanHTML/GIFreport.(See sampleoutput) [Link]. [Link],ICMP,DNS,HTTP,SUNRPC, NTP,&UDP.(RedHatPowertoolsCD) BigBrotherMonitoringansservicesavailablility. [Link]. Nagioshost,serviceandnetworkmonitoring Angelnetworkmonitor

Usingtcpdumptomonitorthenetwork:
[root]#ifconfigeth0promiscPutnicintopromiscuousmodetosnifftraffic. [root]#tcpdumpnhostnot [Link]|moreSniffnetbutignoreIPwhichisyourremotesession. [root]#ifconfigeth0promiscPullnicoutofpromiscuousmode.

NetworkIntrusionandHackerDetectionSystems:
SNORT:Monitorthenetwork,performingrealtimetrafficanalysisandpacketloggingonIPnetworksforthedetectionofan attackorprobe.
l l

LinuxJournal:PlanningIDSforYourEnterpriseNalneeshGaur [Link].

ARP:AddressResolutionProtocol
EthernethostsusetheAddressResolutionProtocol(ARP)toconverta32bitinternetIPaddressesintoa48bitEthernetMAC addressusedbynetworkhardware.(See:RFC826)ARPbroadcastsaresenttoallhostsonthesubnetbythedatatransmitting [Link]. TheMACaddressesareremembered(APRcache)[Link] [Link]. ReverseARP(See:RFC903)isabootstrapprotocolwhichallowsaclienttobroadcastrequestingaservertoreplywithitsIP address.
l l l l l l

l l

arp(8)manpagemanipulatethesystemARPcache Showsothersystemsonyournetwork(includingIPaddressconflicts): arpa ShowARPtableLinuxstyle: arpe arpwatch(8)manpagekeeptrackofethernet/ipaddresspairings arpsnmp(8)manpagekeeptrackofethernet/[Link] arping(8)manpagesendARPREQUESTtoaneighborhost PrintARPreply(similarto arpa):arping [Link] ListARPtable: cat/proc/net/arp ip(8)manpageshow/manipulaterouting,devices,policyroutingandtunnels ViewARPtable: ipneighbor

[Link]'[Link] aforementionedinformationisjustpartoftheLinuxcultureoffullvisibilityintowhatisgoingon.

ConfiguringLinuxForNetworkMulticast:
[Link](TCP/IP),email SNMP(TCP/IP),DNS(UDP),FTP(TCP/IP),...[Link],audioor datastreamtomultiplenodeswithonetransmissionstreaminsteadofmultipleindividualpeertopeerconnections,oneforeach node,[Link] messagesareonly"heard"bythenodesonthenetworkthathave"joinedthemulticastgroup"whicharethosethatareinterested

intheinformation. [Link],receiveandactasarouterformulticast [Link] [Link],arequestismadetothekerneltoleave [Link]/[Link] "CONFIG_IP_MULTICAST=y ".InorderfortheLinuxkerneltosupportmulticastrouting,setthefollowinginthekernelconfig:

l l l l

CONFIG_IP_MULTICAST=y CONFIG_IP_ROUTER=y CONFIG_IP_MROUTE=y CONFIG_NET_IPIP=y

ThedefaultRedHat/Fedorakernelsarecompiledtosupportmulticast. SeetheYoLinuxtutorialonoptimizationandrebuildingtheLinuxkernal. Notethatonmultihomedsystems(morethanoneIPaddress/networkcard),onlyonedevicecanbeconfiguredtohandle multicast. ClassDnetworkswitharangeofIPaddressesfrom224.0.0.0to239.255.255.255(SeeNetworkClassesabove)havetypically beenreservedformulticast. Usefullcommands: Command

cat/proc/net/igmp

Description [Link]"InternetGroupManagement Protocol". (See /usr/src/linux/net/core/igmp.c ) Listmulticastinterfaces. (See /usr/src/linux/net/core/dev_mcast.c ) AllhostsconfiguredformulticastwillrespondwiththeirIPaddresses Allroutersconfiguredformulticastwillrespond AllPIMroutersconfiguredformulticastwillrespond AllDVMRProutersconfiguredformulticastwillrespond AllOSPFroutersconfiguredformulticastwillrespond

cat/proc/net/dev_mcast ping224.0.0.1 ping224.0.0.2 ping224.0.0.3 ping224.0.0.4 ping224.0.0.5

Multicasttransmissionsareachievedthroughproperrouting,routerconfiguration(ifcommunicatingthroughsubnets)and programaticallywiththeuseofthefollowing"C"functionlibrarycalls: FunctionCall Description

setsockopt() PassinformationtotheKernel. getsockopt() Retrieveinformationbroadcastusingmulticast. Formoreonmulticastprogrammingsee:MulticastHowto. Themulticastapplicationwillspecifythemulticastloopbackinterface,TTL(networktimetolive),networkinterfaceandthe multicastgrouptoaddordrop. Addroutetosupportmulticast:

l

routeadd224.0.0.0netmask240.0.0.0deveth0

Notethatifaddingaroutetoforwardpacketsthrougharouter,thattherouterMUSTbeconfiguredtoforwardmulticastpackets. [Link] defaultdoesnotforwardmulticastpackets.

LivinginaMS/WindowsWorld:
l

SMB4k:MyfavoriteMS/Windowsfilesharebrowser. InNautilususetheURL"smb:"toviewMS/Windowsservers.[tutorial] LinNeighborhood:Linuxworkstationguitool. MakeyourlifesimpleandusetheGUI/[Link],sambaandsmbclienttogiveyou accesstoMS/Windowsserversandprinters.

LinNeighborhoodHomePage

LinNeighborhoodHomePage LinNeighborhoodScreenShot

SeetheYoLinuxtutorialonintegratingLinuxintoaMicrosoftnetwork.

NetworkDefinitions:
l

l l l

IPv4:MostoftheInternetserversandpersonalcomputersuseInternetProtocolversion4(IPv4).Thisuses32bitsto [Link] representationoffour8bitnumbersthustotaling32bits. IPv6:InternetProtocolversion6(IPv6)[Link] protocolhasalsobeenupgradedtoincludenewqualityofservicefeaturesandsecurity.CurrentlyLinuxsupportsIPv6but IPv4isusedwhenconnectingyourcomputertotheinternet. TCP/IP:(TransmissionControlProtocol/InternetProtocol)[Link] definesthedatapacketstransmitted(packetheader,datasection),dataintegrityverification(errordetectionbytes), connectionandacknowledgementprotocol,andretransmission. TCP/IPtimetolive(TTL):Thisisacountingmechanismtodeterminehowlongapacketisvalidbeforeitreachesits [Link]/[Link] [Link] network. MACAddress:(mediaaccesscontrol)isthenetworkcardaddressusedforcommunicationbetweenothernetwork [Link]/IPaddress(globalinternet)tothelocalhardware [Link] /sbin/ifconfig [Link] addressuniquelyidentifieseachnodeofanetworkandisusedbytheEthernetprotocol. FullDuplex:[Link]. HalfDuplex:Allowsthesendingandreceivingofpacketsinonedirectionatatimeonly. OSI7LayerModel:TheISO(InternationalStandardsOrganization)hasdefinedtheOSI(OpenSystemsInterconnection) modelforcurrentnetworkingprotocols. OSILayer Description LinuxNetworkingUse 7 6 5 4 3 2 1 ApplicationLayer. telnet,webbrowser,sendmail Thetoplayerforcommunicationsapplicationslikeemailandtheweb. PresentationLayer. Syntaxandformatofdatatransfer. SessionLayer. TransportLayer. Connection,acknowledgementanddatapackettransmission. NetworkLayer. DataLinkLayer. Errorcontrol,timing SMTP,http

TCP UDP IP ARP Ethernet

PhysicalLayer. Ethernet ElectricalcharacteristicsofsignalandNIC NetworkHub:[Link]/orsubnet. Allnetworktrafficissharedandcanbesniffedbyanyothernodeconnectedtothesamehub. NetworkSwitch:Likeahubbutcreatesaprivatelinkbetweenanytwoconnectednodeswhenanetworkconnectionis [Link] allnodes.

RelatedLinks:
l l l l l l l l l

l l l l

CablemodemHowToVladimirVuksan EthernetHowToPaulGortmaker YoLinuxTutorial:Settingupaninternetgatewayforhomeorofficeusingiptablesoripchains FirewallHowToMarkGrennan YoLinuxnetworkingtutorial NetworkingOverviewHowToDanielLopezRidruejo NetworkingHowtoJoshuaDrake NFSHowtoNicolaiLangfeldt SNMP:SimpleNetworkManagementProtocol(Usesports161,162,391,1993) SNMPIntroandtutorials LinuxSNMPNetworkManagementTools SNMPFAQ netsnmptoolsandlibraries News/UsenetGroup:[Link] MARSnweNetwareemulator Linux2.4AdvancedRoutingHOWTOiproute2,trafficshapingandabitofnetfilter ISDN: ISDN4LINUXFAQMatthiasHessler

l l

ISDN4LinuxHomePage DanKegel'sISDNPage PPP:PointtoPointProtocol YoLinuxTutorial:ConfiguringPPPdialupconnectionstoanISP YoLinuxTutorial:DialingCompuserve YoLinuxTutorial:DialingAOL YoLinuxTutorial:ConfiguringPPPdialinconnections PPTP:PointtoPointTunnelingProtocol RFC2637:PointtoPointTunnelingProtocol(PPTP). [Link].S. Ananian. CounterpaneSystemsFAQonMicrosoft'sPPTPImplementationFAQonthesecurityflawsinMicrosoft'sPPTP Implementation. DHCP:(DynamicHostConfigurationProtocol) YoLinuxDHCPTutorialHowtosetupaDHCPserver. ISCDynamicHostConfigurationProtocolDHCPhomepage Multicast: YoLinuxTutorial:ConfiguringLinuxformulticastthistutorialinsectionabove MulticastoverTCP/IPHOWTO ISP's:(National/Global) [Link]'s Earthlink Concentric ATTWorldnet NIS:(NFSinfrastructure) YoLinuxNIStutorial NIShowto NISconfigurationanduse Ethernetcables: MakingCAT3,5,5ERJ45EthernetCables WiringandInstallation GigabitEthernet VIX:ViennaInterneteXchangeEuropeantrafficexchangeforISP's

TestInternetBandwidth:
l l l l l

[Link]:bandwidthanddiagnostictests Speakeasyconnectionspeedtest CNETBandwidthMeterspeedtest Networkspeedtest BandwidthexplainedandListofbandwidthtestsites

ManPages:
l l l l l

icmpLinuxIPv4ICMPkernelmodule ifportselectthetransceivertypeforanetworkinterface usernetctlallowausertomanipulateanetworkinterfaceifpermitted ripqueryqueryRIP(RoutingInformationProtocol)gateways gatedgatewayroutingdaemon

Books:
"NetworkingLinux:APracticalGuidetoTCP/IP" byPatEyler ISBN#0735710317,NewRidersPublishing

"LINUXTCP/IPNetworkAdministration byScottMann,MitchellKrell ISBN#0130322202,renticeHallPTR

"AdvancedLinuxNetworking"

[Link] ISBN#0201774232,AddisonWesleyProfessional1stedition(July15,2002)

"LinuxRouting" byDeeAnnLeBlanc,Joe"Zonker"Brockmeier,[Link]. ISBN#1578702674,Sams1stedition(October11,2001)

"PolicyRoutingUsingLinux" [Link] ISBN#0672320525,Sams(March6,2001)

"RedHatFedora6andEnterpriseLinuxBible" byChristopherNegus Sams,ISBN#047008278X

"Fedora7&RedHatEnterpriseLinux:TheCompleteReference" byRichardPetersen Sams,ISBN#0071486429

"RedHatFedoraCore6Unleashed" byPaulHudson,AndrewHudson Sams,ISBN#0672329298

"RedHatLinuxFedora3Unleashed" byBillBall,HoytDuff Sams,ISBN#0672327082

"RedHatLinux9Unleashed" byBillBall,HoytDuff Sams,ISBN#0672325888 [Link] [Link] [Link]"Unleashed"serieshavedissapointed me,thisbookisthebestoutthere. "RedhatLinux9(VisualQuickProGuide)" byHaroldDavis ISBN#032121918X,PeachpitPress,AddisonWesley [Link] describedasaguidetousingtheGUIconfigurationtools.

Returnto[Link] ReturntoYoLinuxTutorialIndex FeedbackForm Copyright20012007byGregIppolito