Ungakuvimba kanjani ukuxhumana okusolisayo kusuka ku-CMD

Isibuyekezo sokugcina: 19/11/2025
Author: Isaka
  • Ithola umsebenzi ongaqondakali nge-netstat namabhulokhi amalogi ku-pfirewall.log
  • Vimba ama-IP nobubanzi nge-netsh/PowerShell in Windows kanye nomzila we-UFW/ip ku Linux
  • Yenza ngokuzenzakalela futhi uqinise ukuphepha kwakho kwe-IPsec, kanye nomkhawulo wesilinganiso esitholakalayo kanye nama-CDN.

Vimba ukuxhumana okusolisayo kusuka ku-CMD

Uma ubona ukukhuphuka kwethrafikhi okungajwayelekile, izikhathi ezivulekile ezingasho lutho, noma amachweba alalele lapho okungafanele abe khona, into enhle ongayenza ukusabela ngaphandle kokumosha isikhathi kukhonsoli. Vimba ukuxhumana okusolisayo kusuka I-CMD (o IsikhumuloIyashesha, iyafundeka, futhi ayincikile ekuxhumaneni kwezithombe, ngakho ikukhipha ekubopheni kukho kokubili iWindows neLinux.

Kulo mhlahlandlela uzothola konke kusuka ekusetshenzisweni kwe netstat ukuthola ukuthi yini eshiwo emshinini wakho, ngisho nemithetho ye IWindows Firewall ene-netsh ne I-PowerShell, kanye nezinye izindlela ezifana ne-UFW kanye ne-firewalld ku-Linux, ukuvinjwa nge-.htaccess, amacala ahlanganisa i-FortiGate, nezixwayiso mayelana SEO kanye nokusebenza. Konke nge imiyalo izinqubo ezicacile, ezingcono kakhulu nezinketho zokuzenzakalela.

I-Netstat: ukuthi iyini, ngeyani nokuthi ungathola kanjani okuningi kuyo

Igama elithi netstat livela kuNethiwekhi + Izibalo futhi inhloso yalo ukukubonisa, ngendlela eluhlaza, isimo soxhumo lwakho nezimbobo. Ihlanganiswe ku-Windows, Linux, macOS kanye nezinhlelo amashumi eminyaka. UnixAyinaso isixhumi esibonakalayo futhi ilungele ukuxilonga okusheshayo noma ukucwaninga okuyisisekelo.

Ngaphezu kokufakwa kuhlu kokuxhumana kwe-TCP/UDP (IPv4/IPv6) namasokhethi, okunikezwayo kwe-netstat amathebula omzila, amamethrikhi ngephrothokholi ngayinye, namaphuthaNgaphambi kokuhlaziya okujulile, vala isofthiwe engadingekile noma uqalise kabusha futhi usebenzise i-netstat ngobuncane obuncane obusebenzayo, ngaleyo ndlela ugweme umsindo kokuphumayo. Uma ukhetha okuthile okubukwayo ku-Windows, i-TCPView ibonisa i-movie efanayo nge-interface yomsebenzisi..

Umthelela ekusebenzeni uma usebenzisa i-netstat

I-Netstat iyodwa ngeke iphule lutho, kodwa ukuyiqhuba ku-loop enamapharamitha ayinkulungwane kungadla i-CPU nenkumbulo uma unokuxhumana okuningi. Nciphisa umthelela, yisebenzise kuphela lapho kudingekile, hlunga lokho okudingayo kuphela, futhi ugweme ukuyethula njalo ngemva kwemizuzwana embalwa ngaphandle kwesizathu..

  • Khawulela ukusetshenziswa kwayo ezikhathini zokuxilonga noma zokuqinisekisa.
  • Sebenzisa amapharamitha athile ukuze ugweme ukugwinya uhlu olukhulu.
  • Uma udinga ukuqapha okuqhubekayo, cabanga ukusebenzisa amathuluzi enethiwekhi azinikele.

Ezimweni ezinkulu noma ezibucayi, buyekeza inqubo nethimba lesistimu. Ukuhlela ukuthi kanjani, nini, futhi ngaziphi izihlungi ezizosetshenziswa i-netstat kugwema izindleko nokubambezeleka.

Izinzuzo kanye nokubi kwe-netstat

Phakathi kwamandla ayo ukubonakala kwakho konke ukuxhumana okusebenzayo, ukulandelela iseshini, nokuqapha iphrothokholi. Kuyasiza ukubona ukungena, ukuvinjelwa, nokuxazulula izigameko..

  • Ukubonakala nokulawulwa kwezimbobo zokulalela nezinqubo.
  • Ukuqapha ukusetshenziswa kwenethiwekhi nokutholwa kokuminyana.
  • Ukuhlonza ukuxhumana okungagunyaziwe ukuze kunqanyulwe ngesikhathi.
  • Ukuhlonza izinkinga zokusebenza nokuxhumana okuqhubekayo.
  Liyini iTorch? Ukusetshenziswa, Izici, Imibono, Amanani

Ngakolunye uhlangothi, okukhiphayo kuminyene kubasebenzisi abangebona abezobuchwepheshe, akubetheli lutho, futhi kuyafiphala ezindaweni ezinkulu. Ngaphezu kwalokho, ezinhlelweni zesimanje imisebenzi eminingi ithuthelwe ku-PowerShell ku-Windowsevumelana nezimo futhi ebhalekayo.

  • Ijika lokufunda uma ungawazi amanethiwekhi.
  • Ukushoda kwe-scalability yamanethiwekhi amakhulu.
  • Ukuhlaziya okunomkhawulo: ngokujula kwangempela udinga amanye ama-suites (isb., Wireshark).

Ukusebenzisa i-netstat ku-Windows: imingcele ewusizo nezibonelo

Vula i-Command Prompt noma i-Terminal njengomlawuli bese usebenzisa i-netstat. Uzobona i-Proto (TCP/UDP), amakheli endawo/akude, nesimo (UKULALELA, KUSUNGULWE, njll.). Ukuze ubone izimbobo ngezinombolo, sebenzisa i-netstat -nUma ufuna ukuvuselela okuzenzakalelayo, engeza isikhawu ekugcineni (isibonelo, imizuzwana eyi-7).

Amapharamitha angukhiye wophenyo olwengeziwe: -a (konke ukuxhumana namachweba alalele), -e (izibalo zesixhumi esibonakalayo), -f (I-FQDN yesilawuli kude), -n (izinombolo), -o (PID ngokuxhumeka ngakunye), -p X (hlunga ngephrothokholi), -q (izimbobo ezixhunyiwe), -r (ithebula lomzila), -s (izibalo ngephrothokholi), -t (ukuphuma), -x (I-NetworkDirect)

  • netstat -ano Ibonisa izimbobo ezivulekile, ukuxhumeka, nama-PID ukuze unqamule ireferensi ne Umphathi Womsebenzi. Ilungele ukuzingela izinqubo ezingavamile.
  • netstat -p IP Uhlu loxhumo lwephrothokholi ye-IPv4 ngokuya ngokuphuma kwesistimu. Uma unentshisekelo ku-IPv4 kuphela, ususa umsindo.
  • netstat -a Ifundisa konke okusebenzayo nokulalelayo.
  • netstat | findstr ESTABLISHED Hlunga uxhumo olumisiwe (shintshela ku-LISTENING, CLOSE_WAIT noma TIME_WAIT njengoba kudingeka). I-grep esheshayo yezifundazwe.
  • netstat -s y netstat -e Bahlanganisa izibalo ngephrothokholi kanye nesixhumi esibonakalayo.
  • netstat -r ibonisa imizila esebenzayo; netstat -f xazulula i-FQDN (yihlanganise nayo findstr ngesizinda ukuze uhlukanise imiphumela).

Vimba ama-IP asolisayo noxhumo olusuka ku-CMD/Terminal

Uma uthola ikheli le-IP elingajwayelekile ku-netstat noma kweyakho izingodoInto enengqondo ukuyenza ukuyivimba ku-firewall. Ku-Windows ungakwenza lokhu nge... netsh futhi futhi nge I-PowerShell; ku-Linux, nge umzila wep, UFW noma iptables/firewalld. Uma iwebhusayithi yakho isebenza ku-Apache, ungaphika ngisho nokufinyelela kusuka kufayela lakho le-.htaccess..

IWindows: netsh (IWindows Firewall)

Qalisa i-CMD njengomlawuli bese ufaka umongo othuthukisiwe: netsh advfirewallUkuze unike amandla i-firewall kuphrofayela esebenzayo: set currentprofile state on. Lokhu kuqinisekisa ukuthi imithetho iyalandelwa..

  • Vimba ikheli le-IP elingenayo kuzo zonke izinhlelo: netsh advfirewall firewall add rule name=Bloqueo_IP dir=in action=block remoteip=203.0.113.5
  • Vimba ububanzi: ... remoteip=203.0.113.0/24
  • Susa umthetho: netsh advfirewall firewall delete rule name=Bloqueo_IP
  • Buyisela amanani azenzakalelayo: netsh advfirewall reset

Uma uthanda i-graphical console: vula i-"Windows Firewall with Advanced Security" bese udala ifayela le- Umthetho wokufaka ngokwezifiso ukuvimba i-IP noma ibanga kokuthi "Scope". Khetha "Vimba ukuxhumeka" futhi usebenzise kokuthi Isizinda/Okuyimfihlo/Esidlangalaleni.

  IFirefox 136 yethula amathebhu aqondile kanye nentuthuko ku-Linux

IWindows: I-Classic GUI isinyathelo ngesinyathelo (vimba i-IP)

Enye indlela elula kakhulu ukudala umthetho ophuma ku-Firewall (MMC): khetha "Umthetho omusha"> "Okwezifiso", sebenzisa "Kuzo zonke izinhlelo", umthetho olandelwayo "Noma yikuphi", futhi kokuthi "Scope" wengeze i-IP noma ububanzi ukuze uvimbele. Khetha okuthi “Vimba uxhumo”, lusebenzise kuwo womathathu amaphrofayili bese uqambe igama.

I-Linux: Vimba ngomzila "omnyama".

Uma ufuna ukulahla ithrafikhi evela ku-IP noma ibanga kuleveli yomzila, ungakha imizila emnyama. Iyashesha futhi iyasebenza, ilungele ukulwa nokuhlasela okunomsindo.

  • Ikheli le-IP eliqondile: ip route add blackhole 24.92.120.34/32
  • Ibanga /24: ip route add blackhole 22.118.20.0/24
  • Bona ithebula: ip route
  • Susa: ip route del blackhole 22.118.20.0/24

Ezinhlelweni ezindala uzobona route add -host 24.92.120.34 rejectKodwa namuhla kuvamile ukusetshenziswa umzila wep. Zombili izindlela zikhomba into efanayo: imbobo emnyama.

Vimba ku-.htaccess (Ukusingathwa kwe-Apache)

Uma okukukhathazayo ukufinyelela kuwebhu (ukuphawula kogaxekile, imizamo yokuya kuphaneli), ungakuvimba nge-IP ekusingatheni kwakho (Plesk/Apache). Hlela ifayela le-httpdocs .htaccess ngemva kokwenza ikhophi.

Order Allow,Deny
Deny from 192.168.10.10
Allow from all

Ukuze uthole imvelaphi eminingi, engeza imigqa yokuphika okwengeziwe. Njalo yenza ikhophi yefayela lakho le-.htaccess ngaphambi kokwenza izinguquko; kuzokusindisa ekumangaleni okungajabulisi..

I-Geoblocking kanye ne-SEO

Ngamamojula we-GeoIP ungakwazi ukuqondisa kabusha ngezwe ukusuka ku-.htaccess, isibonelo ekhasini lephutha uma ikhodi yezwe ifana. Yisebenzise kuphela uma iseva isekela i-geoblocking futhi yazi ukuthi ithinta i-SEO nabasebenzisi nge i-VPN.

RewriteEngine on
RewriteCond %{ENV:GEOIP_COUNTRY_CODE} ^CN$
RewriteRule ^(.*)$ http://tu-dominio.com/pagina-de-error.html [R=301,L]

Gwema ukuvimba ama-bot enjini yokusesha noma uzokonakalisa inkomba. Phatha okuhlukile kwe-Googlebot/Bingbot futhi ubuyekeze Ikhonsoli Yokusesha.

Okunye ukuvimba okuqondile

Ngaphambi kokuba usebenzise ukubhidliza, cabanga ukungqubuzana okuhlakaniphile: Ama-CAPTCHA, umkhawulo wesilinganiso nama-CDN emunca ama-spikes kanye nesihlungi se-DDoS. Lezi zinyathelo aziphazamisi kakhulu futhi ziyingozi kakhulu..

Imithetho yokuzenzakalela nge-PowerShell (Windows) ne-IPsec

I-PowerShell ikuvumela ukuthi udale, uguqule, uthekelise ku-GPO, futhi uhlole imithetho ye-firewall ngokunemba. Futhi uma udinga ukuphepha kwenethiwekhi yezinga lephakethe, engeza i-IPsec..

  Kuyini Ukusayina Okukodwa (i-SSO) nokungena Komphakathi: umhlahlandlela ophelele

Dala umthetho wokuvimbela ophumayo ngohlelo lokusebenza kanye nembobo ku-GPO: New-NetFirewallRule -DisplayName Block_Out_Telnet -Direction Outbound -Program %SystemRoot%\System32\telnet.exe -Protocol TCP -LocalPort 23 -Action Block -PolicyStore domain.contoso.com\gpo_name

Ukuze unciphise umthwalo kuzilawuli, gcina i-GPO kuseshini, sebenzisa izinguquko, bese ulondoloza: I-Open-NetGPO, I-New-NetFirewallRule -GPOSession, Londoloza-NetGPO. Ugwema uhambo olungadingekile oluya e-DC.

Ukushintsha imithetho ekhona kulula njengokubonisana nayo Get-NetFirewallRule kanye nezihlungi zayo ezihambisanayo (izimbobo, amakheli) kanye neketango nge Set-NetFirewallRule. Ungakwazi futhi ukuyinika amandla iqembu ngalinye nge-Enable-NetFirewallRule -DisplayGroup.

Okokuhlanza okulawulwayo: Remove-NetFirewallRule -Action Block noma hlola kuqala, gcina kokuguquguqukayo bese ususa ngokuqinisekisa. -Isenzo Sephutha ButhuleQhubeka Gwema umsindo uma into ingasekho.

Ukuphathwa okukude: ukusetshenziswa -CimSession ukubonisana noma ukushintsha imithetho kwamanye amaqembu (New-CimSession futhi wenze). I-WinRM inikwe amandla ngokuzenzakalelayo..

I-IPsec: dala imithetho yezokuthutha, chaza iziphakamiso ze-cryptographic, sebenzisa i-IKEv2 uma uzakwenu eyidinga, futhi usebenzise ukuhlukaniswa kwesizinda (Kerberos). Ungadinga "ukuvumela uma kuphephile" ku-firewall futhi wenze isipele nge-IPsec yokuqinisekisa nemithetho yokubethela..

Ukuze uhlukanise ukufinyelela ngamaqembu, yakha izintambo ze-SDDL ngama-SID omsebenzisi/wezinto futhi uwabhekise emthethweni. Ngale ndlela kuphela isethi engaphansi esemthethweni enokufinyelela futhi ithrafikhi ibethelwe..

Amalogi, lokho okuvinjwa i-firewall, nokuhlolwa kwembobo

Kutuswa ukunika amandla ukugawulwa kwamaphakethe awisiwe ku-"Windows Firewall With Advanced Security"> I-Firewall Properties> Ngena ngemvume> "Amaphakethe awehlisiwe: Yebo". Ifayela lokungena elizenzakalelayo lithi %systemroot%\system32\LogFiles\Firewall\pfirewall.log.

Lapho uzobona ukuthi yini, nini, futhi kungani ivinjiwe. Iwusizo ukulungisa imithetho noma ukuthola amaphuzu angamanga.

Ukuze uhlole izimbobo ezivulekile ku-IP yakho yomphakathi kusukela ngaphandle, i-YouGetSignal ikunikeza isinqumo esisheshayo (I-Port Forwarding Tester). Faka imbobo futhi ngemizuzwana uzokwazi ukuthi iyaphendula.

Uma usola ukuthi i-firewall ivimbela uhlelo lokusebenza, hamba kokuthi "Vumela uhlelo lokusebenza noma isici nge-Windows Defender Firewall" bese ulungisa izilungiselelo zenethiwekhi ngayinye (Okuyimfihlo/Esidlangalaleni). Phatha uhlu lwakho olugunyaziwe kahle futhi uzogwema amabhlogo angenangqondo..