Home | 简体中文 | 繁体中文 | 杂文 | 知乎专栏 | 51CTO学院 | CSDN程序员研修院 | Github | OSChina 博客 | 腾讯云社区 | 阿里云栖社区 | Facebook | Linkedin | Youtube | 打赏(Donations) | About
知乎专栏多维度架构

Netkiller Network 手札

Enterprise Intranet (Cisco, H3C, Juniper, F5 BIG-IP, Array, Dell)

netkiller Neo Chan

2010-4-23

电子书最近一次更新于 2022-07-26 16:16:39

版权声明

转载请与作者联系,转载时请务必标明文章原始出处和作者信息及本声明。

http://www.netkiller.cn
http://netkiller.github.io
http://netkiller.sourceforge.net
微信公众号: netkiller
微信:13113668890 请注明“读者”
QQ:13721218 请注明“读者”
QQ群:128659835 请注明“读者”
知乎专栏 | 多维度架构

我的系列文档

网络设备及其他

Netkiller Network 手札 Netkiller Cisco IOS 手札 Netkiller H3C 手札 Netkiller Amateur Radio 手札   

您可以使用 iBook 阅读当前文档


致读者

Netkiller 系列手札 已经被 Github 收录,并备份保存在北极地下250米深的代码库中,备份会保留1000年。

Preserving open source software for future generations

The world is powered by open source software. It is a hidden cornerstone of modern civilization, and the shared heritage of all humanity.

The GitHub Arctic Code Vault is a data repository preserved in the Arctic World Archive (AWA), a very-long-term archival facility 250 meters deep in the permafrost of an Arctic mountain.

We are collaborating with the Bodleian Library in Oxford, the Bibliotheca Alexandrina in Egypt, and Stanford Libraries in California to store copies of 17,000 of GitHub’s most popular and most-depended-upon projects—open source’s “greatest hits”—in their archives, in museum-quality cases, to preserve them for future generations.

https://archiveprogram.github.com/arctic-vault/

目录

1. 自述
1.1. 写给读者
1.2. 作者简介
1.3. 如何获得文档
1.4. 打赏(Donations)
1.5. 联系方式
1. IDC
1.1. 接入线路
1.1.1. 带宽计算
1.1.2. 双线/多线
1.1.2.1. 智能DNS (Smart DNS)
1.1.3. BGP
1.1.4. 接入线路测试
1.2. 机柜(Cabinets)
1.2.1. 强电相关
1.2.2. IP 分配
1.2.3. 服务器与设备命令
1.3. 服务器部署与网络拓扑
1.3.1. 小型网站
1.3.2. 集群网站
1.3.3. 关于服务器远程管理
1.4. DDOS 攻击与流量清洗
1.5. RALDRS
I. Office network
2. Networking
2.1. Internet Network
2.1.1. 全国各省市最新DNS服务器IP地址表
2.1.2. 全国各地ISP IP表
2.2. ARP
2.3. 工具
2.4. 接口
2.4.1. 电口
2.4.2. 光口
2.5. Wireless Networking
2.5.1. DHCP
2.6. Network Management
2.6.1. Network Security
2.7. Route
2.7.1. route 实例 1
2.7.2. route 实例 2
2.7.3. Openvpn
2.7.4. Windows route 命令
3. Windows Server
3.1. net time
3.2. Port
3.3. CMD
3.3.1. net
4. Back Office Server
4.1. Active Directory
4.2. Email/Fax
4.3. Print
4.4. File Share / Ftp
4.5. VoIP / Meeting
4.6. instant messaging
4.7. Backup / Restore
5. Workstation
5.1. Computer
5.2. Desktop Application
5.3. Office Software
II. Cisco IOS
6. Terminal
6.1. Putty
6.2. minicom - friendly serial communication program
6.3. kermit
6.4. 快捷键
7. show
7.1. show version
7.2. show line
7.3. show interfaces
7.3.1. show interfaces counters
7.3.2. show ip interface brief
7.3.3. show interface status
7.4. show ip arp
7.5. show mac-address-table
7.5.1. 通过mac查找端口
7.6. show mac address dy
7.7. show ip route
7.8. show ip protocols
7.9. show access-lists
7.10. show vlans
7.11. show log
7.12. show flash
7.13. show cdp nei
7.14. control-plane
7.15. show ip nat translations
7.16. config
8. Debug
8.1. DHCP
8.2. debug ip rip
8.3. debug ip igrp
8.4. nat
8.5. platform packet all receive buffer
8.6. Switch all debugging off no debug all
9. 文件管理
9.1. tftp
9.2. License
10. Route
10.1. reset password
10.2. config
10.2.1. copy
10.3. hostname
10.4. Login & Password
10.5. Interface
10.5.1. description
10.5.2. bandwidth
10.5.3. primary/secondary
10.6. DHCP
10.6.1. dns-server
10.7. 路由协议
10.7.1. 静态路由
10.7.2. RIP
10.7.3. IGRP
10.7.4. PBR
10.8. NAT
10.8.1. IP 映射
10.8.2. 端口映射
10.8.3. example 1
10.9. 限制流量
10.9.1. rate-limit
10.10. PPPoE
10.11. SNMP
10.12. ACLs
10.12.1. 基本配置
10.12.2. extended
10.12.2.1. port numbers
10.12.3. object-group
10.12.3.1. network-object
10.12.3.2. port-object
10.12.3.3. access-list
10.12.4. www
10.12.5. show access-list
10.13. reload
11. Switch
11.1. 交换机初始化
11.1.1. 密码设置
11.1.2. 域名,网管
11.1.3. Telnet
11.1.3.1. privilege level
11.1.4. 保存当前配置
11.1.5. 恢复交换机出厂值
11.2. interface
11.2.1. show interfaces status
11.2.2. ip address
11.2.3. 配置端口速率及双工模式
11.2.4. range
11.2.5. 端口隔离
11.3. DHCP
11.3.1. Gateway
11.3.2. snooping
11.3.3. DHCP中继代理
11.4. Route port
11.5. 交换机端口镜像配置
11.6. Ethernet Port Groups
11.6.1. LACP
11.6.2. desirable
11.7. VLAN
11.7.1. vlan database
11.7.2. 两层Switch配置讲解
11.7.3. 3 Layer Switch
11.7.4. VTP
11.7.4.1. Configuring a VTP Server
11.7.4.2. Configuring a VTP Client
11.7.4.3. example for vtp
11.8. ACL
11.9. 流量控制
11.9.1. 粗糙的流量限制
11.9.2. bandwidth
11.9.3. priority
11.10. stack-manager
11.11. HSRP(Hot Standby Router Protocol)
11.12. CDP (Cisco Discovery Protocol)
11.12.1. clear cdp counters
11.12.2. show cdp
11.12.3. show cdp entry
11.12.4. show cdp interface
11.12.5. show cdp neighbors
11.13. 4506/4507 专有命令
11.13.1. 用户认证
11.13.2. PoE
11.13.3. show module
11.14. Switch Config Example
11.14.1. VLan Router
11.14.1.1. VLAN间DHCP
11.14.1.2. 多vlan与vlan间路由,并且每个vlan配合一个DHCP池,所有vlan均能访问internet
11.14.2. VLAN下联Switch
11.14.3. LAN to LAN
11.14.4. Cisco 2811 Router + 2960 Switch
11.14.4.1. running-config
11.14.5. Cisco Catalyst 3750 series DHCP + VLAN + Routing Example
11.14.6. Cisco Catalyst 3750 + Cisco Catalyst 2960 VTP Example
11.14.6.1. VTP Server
11.14.6.2. VTP Client
11.14.6.3. Cisco Config File
12. Firewall
12.1. Cisco PIX Firewall
12.1.1. cisco PIX 515E的全部数据与配置
12.1.2. 清除所有配置
12.1.3. 配置防火墙的用户信息
12.1.4. 接口设置
12.1.5. 配置NAT配置映射
12.1.5.1. 端口映射
12.1.5.2. IP 映射
12.1.6. 配置路由
12.1.7. 策略
12.1.7.1. Ping
12.1.7.2. SSH
12.1.8. ACL
12.1.9. 配置远程telnet访问
12.1.10. 配置DHCP
12.1.11. VPN
12.1.12. 防止DDOS攻击
12.1.13. SNMP
12.1.14. 开启WEB管理
12.1.15. 保存
12.1.15.1. 备份及恢复
12.1.16. clear
12.1.16.1. NAT映射更改后仍然指向之前的IP
12.1.16.2. reload
12.2. Cisco ASA Firewall
12.2.1. Console 登录
12.2.1.1. 清除配置文件
12.2.2. Management0/0
12.2.3. 接口配置
12.2.3.1. 子接口
12.2.4. route
12.2.5. ACL
12.2.5.1. Blacklist
12.2.5.2. Whitelist
12.2.5.3. object-group
12.2.5.4. Example
12.2.6. 配置NAT映射
12.2.6.1. IP 映射
12.2.6.2. 端口映射
12.2.7. timeout
12.2.8. DHCP
12.2.8.1. management
12.2.8.2. inside
12.2.9. SNMP
12.2.10. 用户登录
12.2.10.1. Telnet
12.2.10.2. SSH
12.2.11. VPN
12.2.11.1. site to site
12.2.11.2. webvpn
12.2.12. service-policy
12.2.13. failover
12.2.14. 透明防火墙(transparent)
12.2.15. logging
12.2.16. ntp
12.2.17. asdm
12.2.18. 备份配置文件
12.3. 查看命令
12.3.1. show interface
12.3.2. show static
12.3.3. show ip
12.3.4. show cpu usage
12.3.5. show conn count
12.3.6. show blocks
12.3.7. show mem
12.3.8. show traffic
12.3.9. show xlate
12.4. FAQ
12.4.1. inside 不能到达 outside
12.5. Example
12.5.1. ASA Firewall
13. Netflow
13.1. Firewall
13.2. Router
13.3. Switch
13.4. Netflow 实例
14. FAQ
14.1. SNMP
14.1.1. SNMP v2
14.1.2. SNMP v3
14.2. switchport trunk encapsulation dot1q 提示 invaild input at^marker.
1. Reference
1.1. Cisco IOS IP Configuration Guide, Release 12.2
1.2. Cisco IOS Firewall
1.3. Network Command
III. Juniper
15. Firewall
15.1. config
15.2. interface
15.2.1. PPPoE
15.2.2. 接口模式
15.2.3. vlan
15.2.4. MIP
15.2.5. VIP
15.3. arp
15.4. ntp-server
15.5. DHCP
15.6. SNMP
15.7. Service
15.8. Address
15.9. syslog
15.10. PPTP
16. Router
17. Policy
17.1. 策略管理
17.2. OpenSSH
17.3. HTTP
17.4. RemoteDesktop
17.5. PPTP
17.6. DMZ to Untrust (nat src)
18. Juniper Flow
IV. H3C
19. H3C Command
19.1. config
19.1.1. current-configuration
19.1.2. saved-configuration
19.1.3. 保存配置
19.2. boot-loader
19.3. display
19.3.1. 显示设备工作状态
19.3.2. 接口相关信息
19.4. SNMP
20. H3C Switch
20.1. 配置文件
20.2. 接口管理
20.3. DHCP
20.3.1. DHCP Server
20.3.1.1. 排除IP地址
20.3.2. DHCP中继配置
20.3.3. DHCP Snooping
20.3.4. IP地址过期时间
20.3.5.
20.3.6. 静态IP地址为不可分配地址
20.3.7. 查看地址池配置
20.3.7.1. 查看地址池配置
20.3.7.2. 查看地址租约
20.3.7.3. 查看可分配的地址
20.3.7.4. 查看租约过期地址
20.3.7.5. 查看冲突IP地址
20.4. VLAN
20.4.1. 查看vlan接口对应ip地址
20.4.2. 查看vlan接口
20.4.3. GVRP
20.5. ARP
20.5.1. 查看接口下的 ARP
20.5.2. 查找指定 mac 地址
20.5.3. 查找指定IP地址
20.5.4. 添加静态映射
20.6. Mac 地址
20.7. 流量控制
20.7.1. 基于接口
20.7.2. 基于 ACL
20.8. Routing
20.8.1. RIP
20.8.2. OSPF
20.8.3. Static
20.8.4. 策略路由
20.8.5. Debug
20.8.5.1. routing-table
20.9. SNMP
20.9.1. S5024PV2-EI
20.10. Login
20.10.1. Telnet
20.10.2. SSH
20.11. NTP 时间同步
20.12. Example
21. H3C WA2220E-AG
21.1. 用户界面
21.1.1. Console
21.1.2. 启用HTTP
21.1.3. Telnet
21.2. 用户认证
21.3. FAT/FIT AP
21.3.1. 异常处理
21.4. IP Address
21.5. SSID
21.6. 用户验证
21.6.1. Telnet
21.6.2. WEP
21.6.3. WAP2
21.6.4. WAP2 cipher
21.6.5. Mac
21.7. WLAN
21.7.1. 用户互通与隔离
21.8. DHCP
22. H3C ICG(Information Communication Gateway)
22.1. version
22.2. 基础操作
22.2.1. 登陆
22.2.2. 创建用户
22.2.3. 开启SSH服务
22.2.4. 开启FTP服务
22.2.5. 保存配置
22.3. Ethernet0/0 - Wan口配置
22.3.1. DHCP 动态IP地址
22.3.2. 固定IP地址
22.4. WLAN - 无线局域网配置
22.4.1. 修改配置
22.4.2. WLAN 状态查看
22.4.3. IDS(Intrusion detection system) 状态
22.4.4. Radio resource management
22.4.5. Service Template Parameters
22.4.6. Client Statistics
22.4.7. Wi-Fi multimedia
22.5. LAN 配置
22.5.1. DHCP Server
22.5.2. VLAN
22.6. 路由配置
22.6.1. 默认路由
22.7. VPN 配置
22.7.1. l2tp vpn
22.7.2. ipsec
22.8. Example 案例参考
V. Dell
23. Dell Switch
23.1. show
23.1.1. bootvar
23.1.2. qos
23.1.3. line
23.1.4. privilege
23.1.5. radius-servers
23.1.6. sessions
23.1.7. system
23.1.8. users
23.1.9. version
23.1.10. vlan
23.1.11. config
23.1.11.1. startup-config
23.1.11.2. running-config
23.1.11.3. copy
23.1.11.4. delete
23.2. login/authentication
23.2.1. console
23.2.2. telnet
23.2.3. SSH
23.2.4. HTTP/HTTPS
23.3. Interface
23.3.1. status
23.3.2. ip address
23.3.3. speed
23.3.4. QOS
23.4. VLAN
23.4.1. define vlan id
23.4.2. show vlan
23.4.3. interface vlan
23.4.4. interface ethernet
23.4.5. Virtual LAN Routing Commands
23.5. Routing Information Protocol (RIP) Commands
23.5.1. show line
23.5.2. show interfaces
24. OpenManage
24.1. 安装 OpenManage
24.2. Yum
24.3. Dell IT Assistant
24.4. DMC
25. Dell Server
25.1. iDRAC - Integrated Dell Remote Access Controller 6 - Enterprise
25.1.1. default password
25.1.2. iDRAC6 Configuration Utility
25.1.3. 通过 ipmitool 查看iDRAC IP地址
25.1.4. 修改iDRAC密码
25.2. PERC H700 Integrated - Raid Card
25.2.1. Clear Config
25.2.2. Raid 0
25.2.3. Raid 1
25.2.4. Raid 5
25.2.5. Raid 6
25.2.6. Raid 10
25.2.7. Raid 50
25.2.8. HS
25.2.9. Virtual Disk
25.2.10. Save
26. MD Storage
26.1. MD1200
26.2. MD3200
26.3. MD3620i
27. HP
27.1. iLO
28. IBM
28.1. IMM
VI. F5 BIG-IP 3900
29. Linux
29.1. default password
29.2. uname
29.2.1. /etc/issue
29.3. cpu
29.4. memory
29.5. disk
29.6. process
29.7. sysctl
29.8. Apache
29.8.1. httpd.conf
29.8.2. xui.conf
29.8.3. rrdtool
29.9. Tomcat
29.10. MySQL
29.11. startup
29.12. 目录结构
29.13. network
29.13.1. ip route
29.13.2. tcpdump
29.13.3. iptables
29.14. vmstat
29.15. Language
29.15.1. perl
29.15.2. python
29.15.3. PHP
29.15.4. lua
29.15.5.
29.16. driver
29.17. F5 所用到的 rpm 包
30. bigpipe - a command line interface for configuring BIG-IP and VIPRION and displaying configuration data and statistics
30.1. b
30.2. F5 Management Port Setup
30.3. Local Traffic
30.3.1. Profiles
30.3.1.1. profile http
30.3.1.2. profile persist
30.3.1.3. profile tcp
30.3.2. Pool
30.3.2.1. b pool show
30.3.2.2. Up / Down
30.3.2.3. create pool
30.3.2.4. delete pool
30.3.2.5. session enable / disable
30.3.3. Virtual
30.3.3.1. b virtual show
30.3.3.2. create virtual
30.3.3.3. persist
30.3.3.4. delete
30.3.3.5. enable / disable
30.3.4. Node
30.3.5. Example
30.4. Network
30.4.1. Interface
30.4.2. Route
30.4.3. VLAN
30.4.3.1. create
30.4.3.2. list
30.4.3.3. delete
30.4.4. bigpipe arp show
30.4.5. b self show
30.5. System
30.5.1. b version
30.5.2. b platform show
30.5.3. Memory
30.5.4. 查看连接数
30.6. config
30.6.1. list
30.6.2. export
30.6.3. import
31. utility
31.1. bigtop - bigtop is a BIG-IP live statistics display utility.
31.2. qkview - grab diagnostic information from an BIG-IP system.
31.3. tmstat
31.4. physmem
VII. Array
32. Array CLI
32.1. 登录
32.1.1. Config 模式
32.2. 系统信息
32.2.1. Configuration
32.2.2. Save configuration
32.2.3. date/time
32.2.4. show statistics tcp
32.2.5. show memory
32.3. hostname configuration
32.4. ip configuration
32.4.1. interface
32.4.2. interface name
32.4.3. interface speed
32.4.4. ip address
32.4.5. bond configuration
32.4.6. ip nameserver
32.5. route configuration
32.5.1. gateway ip
32.5.2. RIP
32.5.3. ospf
32.6. mnet / vlan
32.6.1. mnet
32.6.2. vlan
32.7. Port Forwarding / NAT / Firewall
32.7.1. Port Forwarding
32.7.2. NAT
32.7.3. Firewall
32.8. slb configuration
32.8.1. slb real
32.8.2. slb virtual
32.8.3. slb group method
32.8.4. slb group member
32.8.5. slb policy
32.8.6. slb group flush
32.8.7. slb configuration example
32.9. Logging
32.9.1. log http
32.9.2. show log config
32.9.3. show log buff
32.9.4. log host
32.10. webui
32.11. example
33. Array WebUI
34. FreeBSD
34.1. uname
34.2. passwd
34.3. process
34.4. webui
34.5. array route
34.6. ssh 证书植入
34.7. pkg_version
34.8. /etc/fstab
VIII. A10 Networks
35. WebUI
35.1. MGMT IP
36. ACOS - CLI
36.1. show
36.1.1. version
36.1.2. config
36.1.3. clock
36.1.4. show ip nat pool statistics
36.2. clock
36.3. interface
36.4. 聚合端口
36.5. route
36.6. slb
36.7. example
IX. Banggoo - ADC 3000 (应用交付控制器)
37. Web UI
37.1. user
37.2. Services
37.2.1. Traffic IP Groups
37.2.2. Pools
37.2.2.1. Edit
37.2.3. Virtual Servers
37.2.4. Status
38. CentOS
38.1. kernel
38.2. cpu/mem
38.3. ulimit
38.4. sysctl
38.5. process
38.6. 硬盘情况
38.7. rpm
38.8. b
38.9. Language
38.10. iptables
39. TrafficScript
39.1. X-Forwarded-For
40. Ruckus
40.1. SSH
41. WMware
41.1. WMware ESXi
41.2. VMware vSphere Client
42. SonicWALL
42.1. show 命令
42.2. 配置文件的导入与导出
42.3. monitor 监控命令

范例清单

5.1.
5.2.
5.3.
5.4.
5.5.
5.6.
10.1. 2811
10.2. 2911
10.3. 2911 NAT
11.1. desirable
11.2. VLAN间DHCP实例
11.3. 配置实例参考
11.4. Cisco 2811 Router + 2960 Switch
11.5. example 2
11.6. Router running-config
11.7. Switch running-config
11.8. Cisco Catalyst 3750 series Example
11.9. 3750
11.10. 2960
12.1. firewall transparent
12.2. ASA 5550
20.1. dhcp vlan rip
30.1. Profile HTTP Example
30.2. SLB HTTP Example
32.1. slb real http
32.2. slb virtual http
32.3. slb group method
32.4. slb group member
32.5. slb policy default
32.6. slb example