Networking: Difference between revisions
Jump to navigation
Jump to search
No edit summary |
No edit summary |
||
| Line 27: | Line 27: | ||
ip -s addr | ip -s addr | ||
ip -j --oneline addr | jq '.[1]."addr_info"[] | .dev' | ip -j --oneline addr | jq '.[1]."addr_info"[] | .dev' | ||
sysctl -w net.ipv4.netfilter.ip_conntrack_tcp_timeout_established=54000 | |||
sysctl -w net.netfilter.nf_conntrack_generic_timeout=120 | |||
sysctl -w net.ipv4.netfilter.ip_conntrack_max=131072 | |||
sysctl -w net.netfilter.nf_conntrack_max = 131072 | |||
https://lartc.org/howto/ | https://lartc.org/howto/ | ||
Revision as of 14:26, 29 August 2023
mac vendor
https://standards-oui.ieee.org/
arp ip scan port scan mdns avahi dns-sd dhcp leases webserver server/powered-by ssh banner
ifupdown-ng netcli netplan iptables / nftables netfilter tc
https://askubuntu.com/questions/1476599/how-can-i-limit-the-outbound-traffic/1477145#1477145
1. periodically check the netstat counters 2. check ip addr counters, to split out by dev and protocol 3. optionally also check iptables for specific network traffic 4. check against limits and adjust speed /proc/net/dev
ip -j --oneline addr ip -j -s addr ip -s addr ip -j --oneline addr | jq '.[1]."addr_info"[] | .dev'
sysctl -w net.ipv4.netfilter.ip_conntrack_tcp_timeout_established=54000
sysctl -w net.netfilter.nf_conntrack_generic_timeout=120
sysctl -w net.ipv4.netfilter.ip_conntrack_max=131072
sysctl -w net.netfilter.nf_conntrack_max = 131072
https://lartc.org/howto/lartc.cookbook.fullnat.intro.html
tc queueing disciplines
tag traffix, qos
http://luxik.cdi.cz/~devik/qos/htb/manual/userg.htm
https://serverfault.com/questions/70042/linux-traffic-shaping-using-tc
https://serverfault.com/questions/154451/throttle-bandwidth-via-iptables
iptables with "--limit"