Home | 简体中文 | 繁体中文 | 杂文 | 打赏(Donations) | 云栖社区 | OSChina 博客 | Facebook | Linkedin | 知乎专栏 | Github | Search | About

部分 III. Network Application

目录

31. network tools
31.1. curl / w3m / lynx
32. OpenNTPD
32.1. install
32.1.1. ntpd - Network Time Protocol (NTP) daemon
32.1.2. Ubuntu
32.1.3. ntpdate
32.2. ntpdate
32.2.1. CentOS 7
32.2.2. CentOS 6
32.3. ntpd.conf / ntp.conf
32.3.1. server 配置
32.3.2. ntp 安全设置
32.4. ntpstat - show network time synchronisation status
32.5. ntpq - standard NTP query program
33. DHCP
33.1. DHCP Server
33.2. dhclient
33.3. release matching connections
34. DNS/Bind
34.1. 安装 bind9
34.2. forwarders
34.3. Load Balancing
34.4. view
34.5. Master / Slave
34.5.1. master /etc/named.conf
34.5.1.1. /var/named/example.com.zone
34.5.1.2. /var/named/example.com.zone
34.5.2. slave /etc/named.conf
34.5.3. FAQ
34.5.3.1. Master 更改后 Slave 不同步
34.5.3.2. Master 与 Slave 的 Test
34.6. DNS tools
34.6.1. dig - DNS lookup utility
34.6.1.1. any
34.6.1.2. ns
34.6.1.3. A
34.6.1.4. mx
34.6.1.5. cname
34.6.1.6. txt
34.6.1.7. -x addr 反向解析
34.6.1.8. web dig
34.6.2. nslookup - query Internet name servers interactively
34.6.2.1. 刷新 DNS 解析缓存
34.6.2.2. 查看NS记录
34.6.2.3. Mx 记录
34.6.2.4. txt
34.7. DNS
34.7.1. OpenDNS
34.7.2. Google DNS
34.8. NamedManager
35. dnsmasq
35.1. Install
35.1.1. CentOS / Redhat
35.1.2. Debian / Ubuntu
35.1.3. Firewall 设置
35.2. /etc/dnsmasq.conf
35.3. dnsmasq.resolv.conf
35.4. dnsmasq.hosts
35.5. /etc/dnsmasq.d/dnsmasq.server.conf
35.6. /etc/dnsmasq.d/dnsmasq.address.conf
35.6.1. 域名劫持
35.7. FAQ
36. rinetd — internet “redirection server”
36.1. rinetd install
36.1.1. ubuntu
36.1.2. centos
36.2. rinetd.conf
36.3. 防御脚本
36.4. rinetd.log
37. News Group (innd)
37.1. Ubuntu
37.2. CentOS
37.3. User Authentication
37.4. usenet 管理
37.5. 通过SSL连接
37.6. src.rpm 安装
37.7. 常用新闻组
38. IRC - Internet Relay Chat
38.1. IRC Protcol
38.2. IRC Commands
38.3. ircd-irc2 - The original IRCNet IRC server daemon
38.4. ircd-hybrid
38.5. IRC Client
38.5.1. Irssi - a modular IRC client for UNIX
38.5.1.1. 安装 Irssi
38.5.1.2. irssi 命令参数
38.5.1.3. network
38.5.1.4. server
38.5.2. ircII - interface to the Internet Relay Chat system
38.5.3. HydraIRC
38.5.4. XChat
38.5.5. F-IRC
38.6. Web IRC
38.6.1. QuakeNet Web IRC
38.6.2. freenode
38.6.3. Web IRC
38.6.4. hackint
39. jabber XMPP
39.1. ejabberd - Distributed, fault-tolerant Jabber/XMPP server written in Erlang
39.1.1. ejabberdctl
39.2. tigase
39.3. Openfire
39.4. DJabberd
39.5. freetalk - A console based Jabber client
39.6. library
39.6.1. python-xmpp
40. Proxy Server
40.1. Apache Proxy
40.2. Squid - Internet Object Cache (WWW proxy cache)
40.2.1. 源码安装
40.2.2. debian/ubuntu 安装
40.2.3. 配置
40.2.3.1. 正向代理
40.2.3.2. 代理服务器
40.2.3.3. Squid作为反向代理Cache服务器(Reverse Proxy)
40.2.3.4. 代理+反向代理
40.2.4. Squid 管理
40.2.4.1. squidclient
40.2.4.2. reset cache
40.2.5. 禁止页面被Cache
40.2.6. Squid 实用案例
40.2.6.1. Squid Apache/Lighttpd 在同一台服务器上
40.2.6.2. 用非 root 用户守护 Squid
40.2.7. squid+icap+clamav
40.3. Web page proxy
40.3.1. Surrogafier
40.3.2. CGIproxy
40.3.3. PHPProxy
40.3.4. BBlocked
40.3.5. Glype
40.3.6. Zelune
40.4. Socks/Socks5
40.4.1. Socks5
40.4.2. dante-server - SOCKS (v4 and v5) proxy daemon(danted)
40.4.3. SSH Socks5 Tunnel
40.4.4. hpsockd - HP SOCKS server
40.4.5. Shadowsocks - A secure socks5 proxy, designed to protect your Internet traffic.
40.4.5.1. Server
40.4.5.1.1. Python PyPI
40.4.5.1.2. GitHub
40.4.5.2. ssserver 命令
40.4.5.3. Client
40.4.5.3.1. Shadowsocks for Windows
41. Firewall
41.1. TCP/IP 相关内核配置项
41.1.1. net.ipv4.ip_forward
41.1.2. net.ipv4.icmp_echo_ignore_all
41.2. iptables - administration tools for packet filtering and NAT
41.2.1. Getting Started
41.2.1.1. CentOS/Redhat TUI 工具
41.2.2. 用户自定义规则连
41.2.2.1. Chains List
41.2.2.2. Chains Refresh
41.2.2.3. Chains Admin
41.2.2.4. 重置
41.2.3. Protocols 协议
41.2.4. Interfaces 网络适配器接口
41.2.5. 源IP地址
41.2.6. Ports 端口
41.2.6.1. range
41.2.6.2. multiport
41.2.7. NAT
41.2.7.1. Redirect
41.2.7.2. Postrouting and IP Masquerading
41.2.7.3. Prerouting
41.2.7.4. DNAT and SNAT
41.2.7.5. DMZ zone
41.2.8. Module(模块)
41.2.8.1. IPTables and Connection Tracking
41.2.8.2. string
41.2.8.3. connlimit
41.2.8.4. recent
41.2.8.5. limit
41.2.8.6. nth
41.2.8.6.1. DNAT
41.2.8.6.2. SNAT
41.2.8.7. random 模块
41.2.9. IPV6
41.2.10. iptables-xml - Convert iptables-save format to XML
41.2.11. access.log IP封锁脚本
41.2.12. Example
41.2.12.1. INPUT Rule Chains
41.2.12.1.1. OpenSSH
41.2.12.1.2. FTP
41.2.12.1.3. DNS
41.2.12.1.4. WWW
41.2.12.1.5. SOCKS5
41.2.12.1.6. Mail Server
41.2.12.1.7. MySQL
41.2.12.1.8. PostgreSQL
41.2.12.1.9. DHCP
41.2.12.1.10. Samba
41.2.12.1.11. ICMP
41.2.12.1.12. 禁止IP访问自己
41.2.12.1.13. DENY
41.2.12.2. OUTPUT Rule Chains
41.2.12.2.1. outbound
41.2.12.2.2. ICMP
41.2.12.2.3. NFS
41.2.12.2.4. SSH
41.2.12.2.5. 禁止自己访问某个IP
41.2.12.3. Forward
41.2.12.3.1. TCPMSS
41.2.12.4. Malicious Software and Spoofed IP Addresses
41.2.12.5. /etc/sysconfig/iptables 操作系统默认配置
41.3. ulogd - The Netfilter Userspace Logging Daemon
41.4. ufw - program for managing a netfilter firewall
41.4.1. /etc/default/ufw
41.4.2. ip_forward
41.4.3. DHCP
41.4.4. Samba
41.5. Firewalld
41.5.1. firewalld
41.5.1.1. firewall-cmd
41.5.2. 如果你不习惯使用firewalld想用回Iptables
41.6. Shorewall
41.6.1. Installation Instructions
41.6.1.1. Install using RPM
41.6.1.2. Install using apt-get
41.6.2. Configuring Shorewall
41.6.2.1. zones
41.6.2.2. policy
41.6.2.3. interfaces
41.6.2.4. masq
41.6.2.5. rules
41.6.2.6. params
41.7. Firewall GUI Tools
41.8. Endian Firewall
41.9. Smooth Firewall
41.10. Sphirewall
42. Stunnel - universal SSL tunnel
43. OpenSSH
43.1. 安装 OpenSSH
43.2. /etc/ssh/
43.2.1. sshd_config
43.2.1.1. Authentication 配置
43.2.1.2. Automatic SSH / SSH without password
43.2.1.3. disable password authentication
43.2.1.4. GSSAPI options
43.2.1.5. 忽略known_hosts文件
43.2.1.6. UseDNS no
43.2.2. ssh_config
43.2.2.1. ForwardAgent
43.2.3. ~/.ssh/config
43.3. ssh client
43.3.1. -o option 参数详解
43.4. OpenSSH Tunnel
43.4.1. SOCKS v5 Tunnel
43.5. ssh-keygen — authentication key generation, management and conversion
43.5.1. .ssh/known_hosts
43.6. ssh-keyscan
43.7. ssh-copy-id - install your public key in a remote machine's authorized_keys
43.8. ssh-agent
43.8.1. ssh-add
43.8.2. Lock / Unlock agent
43.8.3. Set lifetime (in seconds) when adding identities.
43.9. OpenSSH for Windows
43.9.1. Putty Client
43.10. Google Authenticator - Android Apps on Google Play
43.11. FAQ
43.11.1. Pseudo-terminal will not be allocated because stdin is not a terminal.
43.11.2. 去掉 passphrase
43.11.3. 打印调试信息
44. VPN (Virtual Private Network)
44.1. OpenVPN (openvpn - Virtual Private Network daemon)
44.1.1. 安装 OpenVPN Server
44.1.1.1. 源码安装
44.1.1.2. Ubuntu
44.1.1.2.1. create keys for the server
44.1.1.2.2. create keys for the clients
44.1.1.3. CentOS
44.1.2. Easy-RSA 3
44.1.2.1. 吊销用户证书
44.1.2.2. 导出 PKCS 7/PKCS 12 证书
44.1.2.3. 查看请求文件
44.1.2.4. 查看证书
44.1.2.5. 导入 req 文件
44.1.2.6. 更新数据库
44.1.2.7. Easy-RSA 2 吊销(revoke)用户证书
44.1.3. Openvpn Client
44.1.4. OpenVPN GUI for Windows
44.1.4.1. Windows Server
44.1.4.2. Windows Client
44.1.4.2.1. 客户端路由设置
44.1.5. point-to-point VPNs
44.1.6. VPN 案例
44.1.6.1. server and client vpn
44.1.6.2. Ethernet Bridging Example
44.1.6.3. IDC Example
44.1.7. OpenVPN安全
44.2. pptpd
44.2.1. Server 服务端
44.2.2. Client 客户端
44.2.2.1. 创建账号
44.2.2.2. 内核模块安装
44.2.2.3. 拨入VPN
44.2.2.4. 路由配置
44.2.2.4.1. 自动配置路由
44.2.2.4.2. 手工配置路由
44.2.3. FAQ
44.2.3.1. 800 错误
44.2.3.2. 测试 PPTP 端口
44.2.3.3. debug
44.3. l2tpd - dummy package for l2tpd to xl2tpd transition
44.4. strongswan - IPSec utilities for strongSwan
44.4.1. 安装 strongswan VPN 服务器
44.4.2. 防火墙配置
44.4.3. 配置 IPSEC
44.4.4. Windows 10 VPN 客户端配置
44.4.5. FAQ
44.4.5.1. 查看证书信息
44.5. openswan - IPSEC utilities for Openswan
44.6. Ipsec VPN
44.6.1. ipsec-tools - IPsec tools for Linux
44.7. N2N VPN
44.8. Hypersocket VPN
45. Point to Point
45.1. download
45.1.1. rtorrent - ncurses BitTorrent client based on LibTorrent
45.1.2. mldonkey-server - Door to the 'donkey' network
45.1.3. amule - client for the eD2k and Kad networks, like eMule