Yadda ake toshe hanyoyin sadarwar da ake tuhuma daga CMD

¿Yadda ake toshe hanyoyin sadarwar da ake tuhuma daga CMD? Lokacin da kwamfuta ta fara aiki a hankali ko kuma ka ga ayyukan cibiyar sadarwa da ba a saba gani ba, buɗe umarni da sauri da amfani da umarni galibi shine hanya mafi sauri don dawo da iko. Tare da ƴan umarni kawai, zaku iya gano kuma toshe hanyoyin da ake tuhumaBinciken buɗe tashoshin jiragen ruwa da ƙarfafa tsaro ba tare da shigar da wani abu ba.

A cikin wannan labarin zaku sami cikakken jagora mai amfani wanda ya dogara da kayan aikin gida (CMD, PowerShell, da abubuwan amfani kamar netstat da netsh). Za ku ga yadda gano m zamanWaɗanne ma'auni don saka idanu, yadda ake toshe takamaiman cibiyoyin sadarwar Wi-Fi, da yadda ake ƙirƙirar dokoki a cikin Firewall Windows ko ma da FortiGate, duk an bayyana su cikin yare mai sauƙi kuma madaidaiciya.

Netstat: abin da yake, abin da yake don, da kuma dalilin da ya sa ya zama maɓalli

Sunan netstat ya fito daga “cibiyar sadarwa” da “ƙididdiga”, kuma aikinta yana bayarwa daidai. kididdiga da matsayi dangane a hakikanin lokaci. An haɗa shi cikin Windows da Linux tun shekarun 90s, kuma kuna iya samunsa a cikin wasu tsarin kamar macOS ko BeOS, kodayake ba tare da ƙirar hoto ba.

Gudanar da shi a cikin na'ura wasan bidiyo zai ba ku damar ganin haɗin kai mai aiki, tashar jiragen ruwa da ake amfani da su, adiresoshin gida da na nesa, kuma, gabaɗaya, bayyanannen abin da ke faruwa a cikin tarin TCP/IP. Samun wannan duban cibiyar sadarwa kai tsaye Yana taimaka muku daidaitawa, tantancewa, da haɓaka matakin tsaro na kwamfutarka ko uwar garken.

Kula da waɗanne na'urori ke haɗawa, waɗanne tashoshin jiragen ruwa ne a buɗe, da yadda aka saita na'ura mai ba da hanya tsakanin hanyoyin sadarwa yana da mahimmanci. Tare da netstat, kuna kuma samun allunan tuƙi da kuma kididdiga ta yarjejeniya wanda ke jagorantar ku lokacin da wani abu bai ƙara haɓaka ba: yawan zirga-zirga, kurakurai, cunkoso, ko haɗin kai mara izini.

Taimako mai taimako: Kafin gudanar da bincike mai mahimmanci tare da netstat, rufe duk aikace-aikacen da ba ku buƙata har ma Sake kunnawa idan zai yiwuTa wannan hanyar za ku guje wa hayaniya kuma ku sami daidaito cikin abin da ke da mahimmanci.

Tasiri kan aiki da mafi kyawun ayyuka don amfani

Gudun netstat kanta ba zai karya PC ɗin ku ba, amma amfani da shi fiye da kima ko tare da sigogi da yawa a lokaci ɗaya na iya cinye CPU da ƙwaƙwalwar ajiya. Idan kun ci gaba da gudanar da shi ko tace tekun bayanai, nauyin tsarin yana ƙaruwa kuma aikin na iya wahala.

Don rage tasirin sa, iyakance shi zuwa takamaiman yanayi kuma daidaita sigogi. Idan kuna buƙatar ci gaba da gudana, kimanta ƙarin takamaiman kayan aikin sa ido. Kuma ku tuna: ƙasa da ƙari lokacin da makasudin shine bincika takamaiman alama.

• Iyakance amfani zuwa lokutan da kuke buƙatar gaske duba ayyuka masu aiki ko kididdiga.
• Tace dai dai don nunawa kawai bayanan da ake bukata.
• A guji tsara hukuncin kisa a cikin ɗan gajeren lokaci cika albarkatun.
• Yi la'akari da keɓaɓɓun kayan aiki idan kuna nema ainihin lokacin saka idanu karin ci gaba.

Fa'idodi da iyakancewar amfani da netstat

Netstat ya kasance sananne tsakanin masu gudanarwa da masu fasaha saboda yana samarwa Ganuwa kai tsaye na haɗi da tashoshin jiragen ruwa da ake amfani da su ta aikace-aikace. A cikin daƙiƙa za ku iya gano wanda ke magana da wane kuma ta waɗanne tashoshin jiragen ruwa.

Hakanan yana sauƙaƙe da saka idanu da magance matsalaCunkoso, kwalabe, haɗin kai… duk yana zuwa haske lokacin da kuka kalli ƙididdiga masu dacewa.

• Ganewar gaggawa na haɗin gwiwa mara izini ko yiwuwar kutse.
• Bin sawun zama tsakanin abokan ciniki da sabobin don gano hadarurruka ko latencies.
• Ƙimar aiki ta hanyar yarjejeniya don ba da fifiko ga haɓakawa inda suke da tasiri mafi girma.

Kuma menene bai yi kyau ba? Ba ya samar da kowane bayanai (wannan ba shine manufarsa ba), fitowar sa na iya zama mai rikitarwa ga masu amfani da ba fasaha ba, kuma a cikin wurare masu girma sosai ba don sikeli ba a matsayin tsarin na musamman (SNMP, alal misali). Bugu da ƙari kuma, amfani da shi yana raguwa don goyon baya PowerShell da ƙarin kayan aiki na zamani tare da fitattun abubuwan samarwa.

Yadda ake amfani da netstat daga CMD kuma karanta sakamakonsa

Bude CMD a matsayin mai gudanarwa (Fara, rubuta "cmd", danna-dama, Run a matsayin mai gudanarwa) ko amfani da Terminal a cikin Windows 11. Sannan rubuta netstat kuma danna Shigar don samun hoton lokacin.

Za ku ga ginshiƙai tare da ƙa'idar (TCP/UDP), adiresoshin gida da na nesa tare da tashar jiragen ruwa, da filin matsayi (LISTENING, ESTABLISHED, TIME_WAIT, da sauransu). Idan kana son lambobi maimakon sunayen tashar jiragen ruwa, gudu netstat -n don ƙarin karatu kai tsaye.

Sabuntawa na lokaci-lokaci? Kuna iya gaya masa don sabunta kowane sakan X a tazara: misali, netstat-n 7 Zai sabunta fitarwa kowane daƙiƙa 7 don lura da canje-canjen rayuwa.

Idan kawai kuna sha'awar kafaffen haɗin gwiwa, tace abin da aka fitar tare da findstr: netstat | Findstr KAFACanza zuwa LISTENING, CLOSE_WAIT ko TIME_WAIT idan kun fi son gano wasu jihohi.

Siffofin netstat masu amfani don bincike

Waɗannan masu gyara suna ba ku damar rage amo kuma mayar da hankali kan abin da kuke nema:

• -a: yana nuna haɗin kai mai aiki da mara aiki da tashoshin sauraro.
• -e: ƙididdigar fakitin dubawa (mai shigowa/mai fita).
• -f: yana warwarewa kuma yana nuna FQDNs (cikakkun sunayen yanki masu cancanta).
• -n: yana nuna tashar jiragen ruwa da ba a warware su ba da lambobin IP (da sauri).
• -o: Ƙara PID na tsarin da ke kula da haɗin gwiwa.
• -p X: tacewa ta hanyar yarjejeniya (TCP, UDP, tcpv6, tcpv4...).
• -q: tambaya ta haɗa sauraron sauraro da tashar jiragen ruwa mara saurara.
• -sKididdigar da aka haɗa ta hanyar yarjejeniya (TCP, UDP, ICMP, IPv4/IPv6).
• -r: Tebur na yanzu na tsarin.
• -t: bayani game da haɗi a cikin yanayin saukewa.
• -xBayanin haɗin kai kai tsaye.

Misalai masu dacewa don rayuwar yau da kullun

Don lissafin buɗe tashoshin jiragen ruwa da haɗin kai tare da PID ɗin su, gudu netstat-anoTare da wannan PID za ku iya ketare-binciken tsari a cikin Task Manager ko tare da kayan aiki kamar TCPView.

Idan kuna sha'awar haɗin IPv4 kawai, tace ta hanyar yarjejeniya tare da netstat -p IP kuma za ku ajiye hayaniya a hanyar fita.

Kididdigar duniya ta hanyar yarjejeniya ta fito daga netstat -sGanin cewa idan kuna son ayyukan musaya (aika/ karɓa) zai yi aiki netstat-e don samun daidaitattun lambobi.

Don gano matsala tare da ƙudurin suna mai nisa, haɗa netstat -f tare da tacewa: misali, netstat -f | findstr mydomain Zai dawo kawai abin da ya dace da yankin.

Lokacin da Wi-Fi ke jinkirin kuma netstat yana cike da baƙon haɗi

Al'adar al'ada: jinkirin bincike, gwajin saurin da ke ɗaukar ɗan lokaci don farawa amma yana ba da adadi na yau da kullun, kuma lokacin gudanar da netstat, waɗannan suna bayyana: da dama na haɗin gwiwa KAFASau da yawa mai laifi shine mai binciken (Firefox, alal misali, saboda yadda yake sarrafa kwasfa da yawa), kuma ko da kun rufe windows, tsarin baya na iya ci gaba da kula da zaman.

Me za a yi? Na farko, gano tare da netstat-ano Kula da PIDs. Sannan duba cikin Task Manager ko tare da Process Explorer/TCPView waɗanne matakai ne ke bayan sa. Idan haɗin da tsari yana kama da shakku, la'akari da toshe adireshin IP daga Firewall Windows. gudanar da gwajin riga-kafi Kuma, idan haɗarin yana da girma a gare ku, cire haɗin kayan aiki na ɗan lokaci daga hanyar sadarwar har sai ya bayyana.

Idan ambaliya na zaman ya ci gaba bayan sake shigar da mai binciken, duba kari, kashe aiki tare na ɗan lokaci, kuma duba idan sauran abokan ciniki (kamar na'urar tafi da gidanka) suma suna jinkirin: wannan yana nuna matsalar. matsalar network/ISP maimakon software na gida.

Ka tuna cewa netstat ba shine mai saka idanu na ainihi ba, amma zaka iya kwaikwayi ɗaya da netstat-n 5 don sabunta kowane daƙiƙa 5. Idan kuna buƙatar ci gaba kuma mafi dacewa panel, duba TCPView ko fiye da kwazo madadin saka idanu.

Toshe takamaiman cibiyoyin sadarwar Wi-Fi daga CMD

Idan akwai cibiyoyin sadarwa na kusa waɗanda ba kwa son gani ko na'urarku ta yi ƙoƙarin amfani da su, kuna iya tace su daga consoleUmurnin yana ba ku damar toshe takamaiman SSID da sarrafa shi ba tare da taɓa faifan hoto ba.

Bude CMD a matsayin mai gudanarwa da amfani:

netsh wlan add filter permission=block ssid="Nombre real de la red" networktype=infrastructure

Bayan gudanar da shi, wannan hanyar sadarwar za ta ɓace daga jerin hanyoyin sadarwar da ake da su. Don duba abin da kuka toshe, ƙaddamar netsh wlan nuna izinin tacewa = tosheKuma idan kun yi nadama, share shi da:

netsh wlan delete filter permission=block ssid="Nombre real de la red" networktype=infrastructure

Toshe adiresoshin IP masu tuhuma tare da Windows Firewall

Idan kun gano cewa adireshin IP iri ɗaya na jama'a yana ƙoƙarin ayyuka masu ban sha'awa game da ayyukanku, amsar mai sauri ita ce haifar da wata doka da ke toshewa Wadancan haɗin. A cikin na'ura mai hoto mai hoto, ƙara ƙa'idar al'ada, yi amfani da shi zuwa "Dukkan shirye-shirye", yarjejeniya "Kowane", saka IPs masu nisa don toshewa, duba "Katange haɗin" kuma a shafi yanki/na sirri/jama'a.

Kun fi son aiki da kai? Tare da PowerShell, zaku iya ƙirƙira, gyara, ko share dokoki ba tare da dannawa ba. Misali, don toshe zirga-zirgar Telnet mai fita sannan kuma iyakance adireshin IP mai nisa da aka yarda, zaku iya amfani da dokoki tare da Sabon-NetFirewallRule sannan ya daidaita da Saita-NetFirewallRule.

# Bloquear tráfico saliente de Telnet (ejemplo)
New-NetFirewallRule -DisplayName "Block Outbound Telnet" -Direction Outbound -Program %SystemRoot%\System32\telnet.exe -Protocol TCP -LocalPort 23 -Action Block

# Cambiar una regla existente para fijar IP remota
Get-NetFirewallPortFilter | ?{ $_.LocalPort -eq 80 } | Get-NetFirewallRule | ?{ $_.Direction -eq "Inbound" -and $_.Action -eq "Allow" } | Set-NetFirewallRule -RemoteAddress 192.168.0.2

Don sarrafa dokoki ta ƙungiyoyi ko share ƙa'idodin toshewa gabaɗaya, dogara Kunna/A kashe/cire-NetFirewallRule kuma a cikin tambayoyi tare da kati ko tacewa ta kaddarorin.

Mafi kyawun ayyuka: Kar a kashe sabis na Firewall

Microsoft yana ba da shawara akan dakatar da sabis na Firewall (MpsSvc). Yin hakan na iya haifar da batutuwan menu na Fara, matsalolin shigar da ƙa'idodin zamani, ko wasu matsaloli. kurakurai na kunnawa Ta waya. Idan, a matsayin al'amari na manufofi, kuna buƙatar musaki bayanan martaba, yi haka a matakin daidaitawar wuta ko GPO, amma barin sabis ɗin yana gudana.

Za'a iya saita bayanan martaba (yanki/na zaman kansu/jama'a) da tsoffin ayyuka (ba da izini/ toshe) daga layin umarni ko na'urar wasan bidiyo ta Tacewar zaɓi. Tsayar da waɗannan abubuwan da suka dace da kyau yana hana ramukan da ba son rai ba lokacin ƙirƙirar sabbin dokoki.

FortiGate: Toshe ƙoƙarin SSL VPN daga IPs na jama'a masu shakka

Idan kuna amfani da FortiGate kuma ku ga gazawar yunƙurin shiga SSL VPN ɗinku daga IP ɗin da ba ku sani ba, ƙirƙirar wurin shakatawa (misali, blacklistipp) kuma ƙara duk IPs masu cin karo da juna a can.

A kan na'ura wasan bidiyo, shigar da saitunan SSL VPN tare da saita saitin vpn ssl kuma ya shafi: saita tushen adireshin "blacklistipp" y saita tushen-adireshin-negate kunna. Tare da show Kuna tabbatar da cewa an yi amfani da shi. Ta wannan hanyar, lokacin da wani ya fito daga waɗancan IPs, za a ƙi haɗin kai daga farkon.

Don duba zirga-zirga da ke bugun waccan IP da tashar jiragen ruwa, zaku iya amfani da su bincika fakitin sniffer kowane "mai masaukin baki XXXX da tashar jiragen ruwa 10443" 4, kuma tare da samun vpn ssl Monitor Kuna bincika wuraren da aka yarda daga IPs waɗanda ba a haɗa su cikin lissafin ba.

Wata hanyar ita ce SSL_VPN> Ƙuntata Samun shiga> Ƙayyadadden damar zuwa takamaiman rundunaKoyaya, a wannan yanayin ƙin yarda yana faruwa bayan shigar da takaddun shaida, ba kai tsaye ta hanyar na'ura wasan bidiyo ba.

Madadin zuwa netstat don dubawa da nazarin zirga-zirga

Idan kana neman ƙarin ta'aziyya ko dalla-dalla, akwai kayan aikin da ke ba da shi. graphics, ci-gaba tacewa da zurfin kama na fakiti:

• Wireshark: kama zirga-zirga da bincike a kowane matakai.
• tsawa2 (Linux): kayan aiki don sarrafa TCP/UDP da IPv4/IPv6.
• GlassWireBinciken hanyar sadarwa tare da sarrafa tacewar wuta da mai da hankali kan keɓewa.
• Uptrends Uptime MonitorCi gaba da saka idanu da faɗakarwa.
• Germain UX: saka idanu yana mai da hankali kan a tsaye kamar kuɗi ko lafiya.
• AterraRMM suite tare da saka idanu da shiga nesa.
• CloudsharkNazarin yanar gizo da raba hotuna.
• iptraf / iftop (Linux): zirga-zirga na lokaci-lokaci ta hanyar keɓancewar fahimta.
• ss (Kididdigar Socket) (Linux): na zamani, mafi bayyanan madadin netstat.

Katange IP da tasirin sa akan SEO, da dabarun ragewa

Toshe IPs masu tsauri yana da ma'ana, amma a kula da toshe injin binciken botsDomin kuna iya rasa ƙididdiga. Katange ƙasa kuma na iya keɓance masu amfani da halal (ko VPNs) kuma rage ganuwa a wasu yankuna.

Karin matakan: ƙara CAPTCHAs Don dakatar da bots, yi amfani da capping ƙididdiga don hana cin zarafi da sanya CDN don rage DDoS ta hanyar rarraba kaya a cikin nodes da aka rarraba.

Idan hosting ɗinku yana amfani da Apache kuma kuna da kunna blocking geo akan sabar, zaku iya sake kai ziyara daga wata ƙasa ta musamman ta amfani da .htaccess tare da tsarin sake rubutawa (misali na yau da kullun):

RewriteEngine on
RewriteCond %{ENV:GEOIP_COUNTRY_CODE} ^CN$
RewriteRule ^(.*)$ http://tu-dominio.com/pagina-de-error.html [R=301,L]

Don toshe IPs akan hosting (Plesk), zaka iya kuma gyara .htaccess kuma ƙin ƙayyadaddun adireshi, koyaushe tare da madadin fayil ɗin gabaɗaya idan kuna buƙatar dawo da canje-canje.

Sarrafa Firewall Windows cikin zurfi ta amfani da PowerShell da netsh

Bayan ƙirƙirar ƙa'idodi guda ɗaya, PowerShell yana ba ku cikakken iko: ayyana tsoffin bayanan martaba, ƙirƙira / gyara / share dokoki kuma har ma da aiki da GPOs Directory Active tare da lokutan da aka adana don rage kaya akan masu sarrafa yanki.

Misalai masu sauri: ƙirƙirar ƙa'ida, canza adireshin nesa, kunna / kashe duka ƙungiyoyi, da cire dokokin toshewa cikin faduwar gaba. Samfurin da ya dace da abu yana ba da damar tacewa don mashigai, aikace-aikace, ko adireshi da sakamakon sarka da bututun mai.

Don sarrafa ƙungiyoyi masu nisa, dogara ga WinRM da sigogi -CimSessionWannan yana ba ku damar jera dokoki, gyara, ko share shigarwar akan wasu inji ba tare da barin na'urar wasan bidiyo ba.

Kurakurai a cikin rubutun? Amfani -ErrorAction SilentlyCi gaba don murkushe "dokar da ba a samo ba" lokacin sharewa, - Me Idan don samfoti da -Tabbatar Idan kana son tabbatarwa ga kowane abu. Tare da - Verbose Za ku sami ƙarin cikakkun bayanai kan aiwatarwa.

IPsec: Tabbatarwa, ɓoyewa, da keɓewar tushen manufofi

Lokacin da kuke buƙatar ingantattun zirga-zirgar ababen hawa ko rufaffiyar hanyar wucewa, kuna haɗawa Firewall da dokokin IPsecƘirƙirar ƙa'idodin yanayin sufuri, ayyana saitunan sirri da hanyoyin tantancewa, da haɗa su da ƙa'idodin da suka dace.

Idan abokin tarayya yana buƙatar IKEv2, zaku iya ƙididdige shi a cikin ƙa'idar IPsec tare da tabbatarwa ta takardar shaidar na'ura. Wannan kuma yana yiwuwa. kwafi dokokin daga wannan GPO zuwa wani da kuma abubuwan da suka danganci su don hanzarta tura aiki.

Don keɓance membobin yanki, yi amfani da ƙa'idodi waɗanda ke buƙatar ingantaccen zirga-zirgar zirga-zirgar shigowa da buƙatu don zirga-zirga mai fita. Hakanan zaka iya na buƙatar zama memba a ƙungiyoyi tare da sarƙoƙin SDDL, hana samun dama ga masu amfani/na'urori masu izini.

Aikace-aikacen da ba a ɓoye ba (kamar telnet) ana iya tilasta su yin amfani da IPsec idan kun ƙirƙiri ƙa'idar "ba da izini idan amintacce" da tsarin IPsec Bukatar tantancewa da ɓoyewaTa haka babu abin da ke tafiya a fili.

Ingantacciyar hanyar wucewa da tsaro ta ƙarshe

Ingantacciyar hanyar wucewa tana ba da damar zirga-zirga daga amintattun masu amfani ko na'urori don ƙetare dokokin toshewa. Mai amfani ga sabunta da duba sabobin ba tare da bude tashoshin jiragen ruwa ga duk duniya ba.

Idan kana neman tsaro na ƙarshe-zuwa-ƙarshe a cikin ƙa'idodi da yawa, maimakon ƙirƙirar doka ga kowane ɗayan, matsar da izini zuwa Layer na IPsec tare da jerin na'ura / ƙungiyoyin masu amfani da aka yarda a cikin tsarin duniya.

Jagorar netstat don ganin wanda ke haɗawa, yin amfani da netsh da PowerShell don aiwatar da dokoki, da ƙima tare da IPsec ko kewayen wuta kamar FortiGate yana ba ku ikon sarrafa hanyar sadarwar ku. Tare da matattarar Wi-Fi na tushen CMD, toshewar IP da aka tsara da kyau, kiyayewar SEO, da madadin kayan aikin lokacin da kuke buƙatar ƙarin zurfin bincike, zaku iya. gano hanyoyin da ake tuhuma cikin lokaci kuma ka toshe su ba tare da katse ayyukan ku ba.