1. Home
  2. Lainnya

Microsoft Windows Host Configurations

32 Once you have your list of applications that are started automatically, investigate how each application is configured. When it comes to configuration files, each application will follow its own conventions. The files may be grouped together, reside in a couple of directories, or have some distributed structure that spans a number of directories. For example, sendmail usually keeps configuration files together, usually in etc or in etcmail. DNS may have a couple of files in etc to get things started, with the database files grouped together somewhere else. A web server like apache may have an extensive set of files distributed across a number of directories, particularly if you consider content. But beware, your particular implementation may vary from the norm—in that case, all bets are off. You will need to look for these on an application-by-application and a system-by-system basis.

2.2.5.2 Security files

It is likely you will have already discovered relevant security files at this point, but if you are having problems, this is something worth revisiting. There are several different categories to consider: Trust relationships Some files such as etchosts.equiv set up trust relationships with other computers. You will definitely want to review these. Keep in mind that users can establish their own trust relationships, so dont forget the .rhost file in home directories if you are having problems tied to specific users. Traffic control A number of files may be tied to general access or the control of traffic. These include configuration files for applications like tcpwrappers or firewall configuration files. Application specific Dont forget that individual applications may have security files as well. For example, the file etcftpusers may be used by ftp to restrict access. These are very easy to overlook.

2.2.5.3 Log files

One last category of files you might want to consider is log files. Strictly speaking, these are not configuration files. Apart from an occasional startup message, these may not tell you very much about your systems configuration. But occasionally, these will provide the missing puzzle piece for resolving a problem. Log files are described in much greater detail in Chapter 11 .

2.3 Microsoft Windows

Networking with Windows can be quite complicated, since it may involve Microsofts proprietary enhancements. Fortunately, Microsofts approach to TCPIP is pretty standard. As with Unix, you can approach the various versions of Windows by looking at configuration parameters or by using utilities to examine the current configuration. For the most part, you wont be examining files directly under Windows, at least for versions later than Windows for Workgroups. Rather, youll use the utilities that Windows provides. There are exceptions. For example, like Unix, Windows has hosts, protocol, and services files. 33 If you are looking for basic information quickly, Microsoft provides one of two programs for this purpose, depending on which version of Windows you use. The utility winipcfg is included with Windows 9598. A command-line program, ipconfig, is included with Windows NT and Windows 2000 and in Microsofts TCPIP stack for Windows for Workgroups. Both programs provide the same information. winipcfg produces a pop-up window giving the basic parameters such as the Ethernet address, the IP address, the default route, the name servers address, and so on see Figure 2-2 . You can invoke the program by entering the program name from Run on the start menu or in a DOS window. The most basic parameters will be displayed. Additional information can be obtained by using the all option or by clicking on the More Info button. Figure 2-2. winipcfg For ipconfig, start a DOS window. You can use the command switch all to get the additional details. As in Unix, the utilities arp, hostname, and netstat are available. All require a DOS window to run. There are a few differences in syntax, but they work basically the same way and provide the same sorts of information. For example, arp -a will list all the entries in the ARP table: C:\arp -a Interface: 205.153.63.30 on Interface 2 Internet Address Physical Address Type 205.153.63.1 00-00-a2-c6-28-44 dynamic 205.153.63.239 00-60-97-06-22-22 dynamic The command netstat -r gives the computers routing table: C:\netstat -r Route Table 34 =========================================================================== Interface List 0x1 ........................... MS TCP Loopback interface 0x2 ...00 10 5a a1 e9 08 ...... 3Com 3C90x Ethernet Adapter 0x3 ...00 00 00 00 00 00 ...... NdisWan Adapter =========================================================================== =========================================================================== Active Routes: Network Destination Netmask Gateway Interface Metric 0.0.0.0 0.0.0.0 205.153.63.1 205.153.63.30 1 127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1 205.153.63.0 255.255.255.0 205.153.63.30 205.153.63.30 1 205.153.63.30 255.255.255.255 127.0.0.1 127.0.0.1 1 205.153.63.255 255.255.255.255 205.153.63.30 205.153.63.30 1 224.0.0.0 224.0.0.0 205.153.63.30 205.153.63.30 1 255.255.255.255 255.255.255.255 205.153.63.30 205.153.63.30 1 =========================================================================== Active Connections Proto Local Address Foreign Address State TCP jsloan:1025 localhost:1028 ESTABLISHED TCP jsloan:1028 localhost:1025 ESTABLISHED TCP jsloan:1184 205.153.60.247:telnet ESTABLISHED TCP jsloan:1264 mail.lander.edu:pop3 TIME_WAIT As you can see, the format is a little different, but it supplies the same basic information. You can also use the command route print to list the routing table. You can use netstat -a to get the active connections and services. There really isnt an option that is analogous to -i in Unixs netstat the option to display attached interfaces. For a listing of the basic syntax and available commands, try netstat ?. While Windows does not provide ps, both Windows NT and Windows 2000 provide the Task Manager taskmgr.exe, a utility that can be used to see or control what is running. If you have the Windows Resource Kit, three additional utilities, process viewer pviewer.exe, process explode pview.exe, and process monitor pmon.exe, are worth looking at. All four can be started by entering their names at Start Run. The Task Manager can also be started by pressing Ctrl-Alt-Delete and selecting Task Manager from the menu or by right-clicking on a vacant area on the task bar at the bottom of the screen and selecting Task Manger from the menu. You wont need NTs administrator privileges to use the DOS-based commands just described. If you want to reconfigure the system or if you need additional details, you will need to turn to the utilities provided by Windows. For NT, this will require administrator privileges. Youll also need administrative privileges to make changes with arp or route. This is available from Start Settings Control Panel Network or by following a similar path from My Computer. Select the appropriate tab and fields as needed. If you are interested in port scanners, a number are available. I have already mentioned that the Chesapeake Port Scanner will run under Windows. Scan the Internet for others. Finally, for the really brave of heart, you can go into the registry. But thats a subject for another book. See Paul Robichauxs Managing the Windows 2000 Registry or Steven Thomass Windows NT 4.0 Registry. 35

Chapter 3. Connectivity Testing

This chapter describes simple tests for individual network links and for end-to-end connectivity between networked devices. The tools described in this chapter are used to show that there is a functioning connection between two devices. These tools can also be used for more sophisticated testing, including the discovery of path characteristics and the general performance measurements. These additional uses are described in Chapter 4 . Tools used for testing protocol issues related to connectivity are described in Chapter 9 . You may want to turn next to these chapters if you need additional information in either of these areas. This chapter begins with a quick review of cabling practices. If your cabling isnt adequate, thats the first thing you need to address. Next, there is a lengthy discussion of using ping to test connectivity along with issues that might arise when using ping, such as security problems. Next, I describe alternatives to ping. Finally, I discuss alternatives that run on Microsoft Windows platforms.

Dokumen yang terkait

Network Troubleshooting Network Solution for Monitoring and Maintenance Your Networking

0 14 36

MODULAR NETWORK SOM (MNSOM): A NEW POWERFUL TOOL IN NEURAL NETWORKS

0 3 6

Evaluasi Kinerja Jaringan Kampus Memanfaatkan Tool Measurement of Network Usage

0 2 6

Simulation tool for active learning of introductory computer network subjects.

0 5 4

Simulation tool for active learning of introductory computer network subjects.

0 2 6

Tool For A Network Monitor.

0 2 24

Computer And Network Troubleshoot Helper Tool.

0 3 24

Network Monitoring Tool : A Simple Approach To Active Monitoring In Small LAN.

0 3 24

ADMINJAR P1 TOOL network configuration

0 0 21

Diklat Calon Instruktur TIK Tingkat SD MI dan SMP MTS 2015 | Filediamant's Blog

0 0 27