Linux系统查看端口常用命令
Linux系统查看端口常用命令:lsof和netstat。
-
lsof
lsof (list open files)是一个显示系统当前打开文件的工具。Linux系统的应用程序都会有自己的文件描述符,通过文件描述符与操作系统进行交互。可用此命令进行系统监控、网络信息查看等,本文主要介绍端口相关操作。
-
安装(CentOS)
有些系统需要手动安装:
[root@localhost ~]# yum install lsof
-
本机网络端口使用情况
1.1 lsof -i
列举当前所有端口连接信息,输出信息列表:COMMAND PID USER FD TYPE DEVICE SIZE NODE NAME 进程名称 进程标识符 用户 文件描述符 类型 指定磁盘名称 文件大小 文件在磁盘上的标识 打开文件确切名称(谁在访问) [root@localhost ~]# lsof -i COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME dhclient 707 root 6u IPv4 12256 0t0 UDP *:bootpc dhclient 707 root 20u IPv4 12211 0t0 UDP *:52171 dhclient 707 root 21u IPv6 12212 0t0 UDP *:cgms ntpd 799 ntp 16u IPv4 13267 0t0 UDP *:ntp ntpd 799 ntp 17u IPv6 13268 0t0 UDP *:ntp ntpd 799 ntp 18u IPv4 13273 0t0 UDP localhost:ntp ntpd 799 ntp 19u IPv4 13274 0t0 UDP localhost:ntp AliYunDun 1053 root 21u IPv4 307323 0t0 TCP localhost:43876->100.100.30.25:http (ESTABLISHED) sshd 1162 root 3u IPv4 14660 0t0 TCP *:ssh (LISTEN) java 19680 nexus 82u IPv4 300159 0t0 TCP localhost:40129 (LISTEN) java 19680 nexus 733u IPv4 301293 0t0 TCP *:afs3-callback (LISTEN) sshd 31905 root 3u IPv4 508853 0t0 TCP localhost:ssh->172.10.116.232:15966 (ESTABLISHED) sshd 32138 root 3u IPv4 512855 0t0 TCP localhost:ssh->172.11.247.123:10033 (ESTABLISHED) sshd 32159 root 3u IPv4 513093 0t0 TCP localhost:ssh->172.11.247.123:10106 (ESTABLISHED)
1.2 按tcp查
查看所有tcp端口情况
[root@localhost ~]# lsof -i tcp COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME AliYunDun 1053 root 21u IPv4 307323 0t0 TCP localhost:43876->100.100.30.25:http (ESTABLISHED) sshd 1162 root 3u IPv4 14660 0t0 TCP *:ssh (LISTEN) java 19680 nexus 82u IPv4 300159 0t0 TCP localhost:40129 (LISTEN) java 19680 nexus 733u IPv4 301293 0t0 TCP *:afs3-callback (LISTEN) sshd 31905 root 3u IPv4 508853 0t0 TCP localhost:ssh->172.10.116.232:15966 (ESTABLISHED) sshd 32138 root 3u IPv4 512855 0t0 TCP localhost:ssh->172.11.247.123:10033 (ESTABLISHED) sshd 32159 root 3u IPv4 513093 0t0 TCP localhost:ssh->172.11.247.123:10106 (ESTABLISHED) [root@localhost ~]# lsof -i tcp:7001 COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME java 19680 nexus 733u IPv4 301293 0t0 TCP *:afs3-callback (LISTEN)
只查看7001端口情况
[root@localhost ~]# lsof -i tcp:7001 COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME java 19680 nexus 733u IPv4 301293 0t0 TCP *:afs3-callback (LISTEN)
1.3 按udp查
与tcp一样的用法
[root@localhost ~]# lsof -i udp COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME dhclient 707 root 6u IPv4 12256 0t0 UDP *:bootpc dhclient 707 root 20u IPv4 12211 0t0 UDP *:52171 dhclient 707 root 21u IPv6 12212 0t0 UDP *:cgms ntpd 799 ntp 16u IPv4 13267 0t0 UDP *:ntp ntpd 799 ntp 17u IPv6 13268 0t0 UDP *:ntp ntpd 799 ntp 18u IPv4 13273 0t0 UDP localhost:ntp ntpd 799 ntp 19u IPv4 13274 0t0 UDP localhost:ntp [root@localhost ~]# lsof -i udp:123 COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME ntpd 799 ntp 16u IPv4 13267 0t0 UDP *:ntp ntpd 799 ntp 17u IPv6 13268 0t0 UDP *:ntp ntpd 799 ntp 18u IPv4 13273 0t0 UDP localhost:ntp ntpd 799 ntp 19u IPv4 13274 0t0 UDP localhost:ntp
1.4 按协议类型查
ipv4或ipv6
[root@localhost ~]# lsof -i 4 COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME dhclient 707 root 6u IPv4 12256 0t0 UDP *:bootpc dhclient 707 root 20u IPv4 12211 0t0 UDP *:52171 ntpd 799 ntp 16u IPv4 13267 0t0 UDP *:ntp ntpd 799 ntp 18u IPv4 13273 0t0 UDP localhost:ntp ntpd 799 ntp 19u IPv4 13274 0t0 UDP localhost:ntp AliYunDun 1053 root 21u IPv4 307323 0t0 TCP localhost:43876->100.100.30.25:http (ESTABLISHED) sshd 1162 root 3u IPv4 14660 0t0 TCP *:ssh (LISTEN) java 19680 nexus 82u IPv4 300159 0t0 TCP localhost:40129 (LISTEN) java 19680 nexus 733u IPv4 301293 0t0 TCP *:afs3-callback (LISTEN) sshd 31905 root 3u IPv4 508853 0t0 TCP localhost:ssh->172.10.116.232:15966 (ESTABLISHED) sshd 32138 root 3u IPv4 512855 0t0 TCP localhost:ssh->172.11.247.123:10033 (ESTABLISHED) sshd 32159 root 3u IPv4 513093 0t0 TCP localhost:ssh->172.11.247.123:10106 (ESTABLISHED) [root@localhost ~]# lsof -i 6 COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME dhclient 707 root 21u IPv6 12212 0t0 UDP *:cgms ntpd 799 ntp 17u IPv6 13268 0t0 UDP *:ntp
1.5 按端口查
如22端口
[root@localhost ~]# lsof -i :22 COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME sshd 1162 root 3u IPv4 14660 0t0 TCP *:ssh (LISTEN) sshd 31905 root 3u IPv4 508853 0t0 TCP localhost:ssh->172.10.116.232:15966 (ESTABLISHED) sshd 32138 root 3u IPv4 512855 0t0 TCP localhost:ssh->172.11.247.123:10033 (ESTABLISHED) sshd 32159 root 3u IPv4 513093 0t0 TCP localhost:ssh->172.11.247.123:10106 (ESTABLISHED)
没使用的端口没有查询信息
[root@localhost ~]# lsof -i :8090 [root@localhost ~]#
1.6 按用户查
如nexus用户
[root@localhost ~]# lsof -a -u nexus -i COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME java 19680 nexus 82u IPv4 300159 0t0 TCP localhost:40129 (LISTEN) java 19680 nexus 733u IPv4 301293 0t0 TCP *:afs3-callback (LISTEN)
-
netstat
netstat 命令用于显示网络状态,系统默认都装有该命令,下文主要介绍端口常用操作。
- netstat -anp | grep ":22"
查看22端口
[root@localhost ~]# netstat -anp | grep ":22" tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 1162/sshd tcp 0 0 172.9.204.26:22 172.10.116.232:15966 ESTABLISHED 31905/sshd: root@pt tcp 0 0 172.9.204.26:22 172.11.247.123:10106 ESTABLISHED 32159/sshd: root@pt tcp 0 52 172.9.204.26:22 172.11.247.123:10033 ESTABLISHED 32138/sshd: root@pt
- netstat -tunplp
所有端口
[root@localhost ~]# netstat -tunplp Active Internet connections (only servers) Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 1162/sshd tcp 0 0 0.0.0.0:7001 0.0.0.0:* LISTEN 19680/java tcp 0 0 127.0.0.1:40129 0.0.0.0:* LISTEN 19680/java udp 0 0 0.0.0.0:52171 0.0.0.0:* 707/dhclient udp 0 0 0.0.0.0:68 0.0.0.0:* 707/dhclient udp 0 0 172.9.204.26:123 0.0.0.0:* 799/ntpd udp 0 0 127.0.0.1:123 0.0.0.0:* 799/ntpd udp 0 0 0.0.0.0:123 0.0.0.0:* 799/ntpd udp6 0 0 :::3003 :::* 707/dhclient udp6 0 0 :::123 :::* 799/ntpd
- netstat -tunplp | grep ":22"
22端口
[root@localhost ~]# netstat -tunplp | grep ":22" tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 1162/sshd
原创
Doflamingo
https://www.cnblogs.com/doflamingo