* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project
Download Jarkom2-7Praktikum P..
Survey
Document related concepts
Point-to-Point Protocol over Ethernet wikipedia , lookup
Network tap wikipedia , lookup
Airborne Networking wikipedia , lookup
Distributed firewall wikipedia , lookup
Deep packet inspection wikipedia , lookup
IEEE 802.1aq wikipedia , lookup
Computer network wikipedia , lookup
Piggybacking (Internet access) wikipedia , lookup
Remote Desktop Services wikipedia , lookup
Dynamic Host Configuration Protocol wikipedia , lookup
Recursive InterNetwork Architecture (RINA) wikipedia , lookup
Internet protocol suite wikipedia , lookup
Wake-on-LAN wikipedia , lookup
TCP congestion control wikipedia , lookup
Transcript
Modul 7 Praktikum Perintah Command DOS Dalam materi ini , mengenai perintah – perintah command dos prompt yang berhubungan dengan jaringan Command-line utilities This section covers: • Viewing configuration by using ipconfig /all • Viewing configuration by using the Status feature • Refreshing configuration by using ipconfig /renew • Managing DNS and DHCP class IDs by using ipconfig • Testing connections by using ping • Troubleshooting hardware addresses by using arp • Troubleshooting NetBIOS names by using nbtstat • Displaying connection statistics by using netstat • Tracing network connections by using tracert • Testing routers by using pathping Viewing configuration by using ipconfig /all When you troubleshoot a TCP/IP networking problem, begin by checking the TCP/IP configuration on the computer that is experiencing the problem. You can use the ipconfig command to get host computer configuration information, including the IP address, subnet mask, and default gateway. Note • For clients running Windows 95, Windows 98, and Windows Millennium Edition, use the winipcfg command instead of ipconfig. When you use the ipconfig command with the /all option, a detailed configuration report PUSAT PENGEMBANGAN BAHAN AJAR - UMB Andrew Tiade ST. Jaringan Komputer 2 is produced for all interfaces, including any configured serial ports. With ipconfig /all, you can redirect command output to a file and paste the output into other documents. You can also use this output to confirm the TCP/IP configuration of each computer on the network or to further investigate TCP/IP network problems. For example, if a computer is configured with an IP address that is a duplicate of an existing IP address, the subnet mask appears as 0.0.0.0. The following example shows the output of the ipconfig /all command on a computer that running Windows XP Professional and is configured to use the DHCP server for automatic TCP/IP configuration, and WINS and DNS servers for name resolution. IP Configuration Node Type . . . . . . . . . : Hybrid IP Routing Enabled. . . . . : No WINS Proxy Enabled. . . . . : No Ethernet adapter Local Area Connection: Host Name . . . . . . . . DNS Servers . . . . . . . Description . . . . . . . Physical Address. . . . . DHCP Enabled. . . . . . . Autoconfiguration Enabled IP Address. . . . . . . . Subnet Mask . . . . . . . Default Gateway . . . . . DHCP Server . . . . . . . Primary WINS Server . . . Secondary WINS Server . . Lease Obtained. . . . . . 10:32:13 AM Lease Expires . . . . . . 10:32:13 AM . . . . . . . . . . . . . : : : : : : : : : : : : : client1.microsoft.com 10.1.0.200 3Com 3C90x Ethernet Adapter 00-60-08-3E-46-07 Yes Yes 192.168.0.112 255.255.0.0 192.168.0.1 10.1.0.50 10.1.0.101 10.1.0.102 Wednesday, September 02, 1998 . : Friday, September 18, 1998 If no problems appear in the TCP/IP configuration, the next step is testing the ability to connect to other host computers on the TCP/IP network. Viewing configuration by using the Status feature An alternate method of viewing configuration is available through the Status feature of a network connection. PUSAT PENGEMBANGAN BAHAN AJAR - UMB Andrew Tiade ST. Jaringan Komputer 2 Refreshing configuration by using ipconfig /renew When you troubleshoot a TCP/IP networking problem, begin by checking the TCP/IP configuration on the computer that is experiencing the problem. If the computer is DHCP-enabled and is using a DHCP server to obtain configuration, you can initiate a refresh of the lease by using the ipconfig /renew command. When you use ipconfig /renew, all network adapters on the computer that uses DHCP (except those that are manually configured) try to contact a DHCP server and renew their existing configuration or obtain a new configuration. You can also use the ipconfig command with the /release option to immediately release the current DHCP configuration for a host. • For Windows 95, Windows 98, and Windows Millennium Edition DHCP-enabled clients, use the release and renew options of the winipcfg command instead of ipconfig /release and ipconfig /renew to perform manual release or renewal of the IP configuration lease for a client. Repair feature As an alternative to ipconfig you can use Repair to renew LAN or high-speed Internet connection IP settings. Repair performs a series of commands that repair a connection. The commands that are invoked by Repair are listed below with their command-line equivalents: Repair Command-line equivalent Checks whether DHCP is enabled and, if enabled, issues a broadcast No command line renew to refresh the IP address equivalent available Flushes the ARP cache arp -d * Flush the NetBIOS cache nbtstat -R Flushes the DNS cache ipconfig /flushdns Re-registers with WINS nbtstat -RR Re-registers with DNS ipconfig /registerdns Important PUSAT PENGEMBANGAN BAHAN AJAR - UMB Andrew Tiade ST. Jaringan Komputer 2 • Repair uses a broadcast renew and will cause a computer to accept any lease from any DHCP server that is on the network. In contrast, a unicast renew (ipconfig /renew) will only renew the existing lease from the last DHCP server from which the client got a lease. For more information, see To repair a LAN or high-speed Internet connection. Managing DNS and DHCP class IDs by using ipconfig You can also use the ipconfig command to: • Display or reset the DNS cache. For more information, see To flush and reset a client resolver cache using the ipconfig command. • Refresh registered DNS names. For more information, see To renew DNS client registration using the ipconfig command. • Display the DHCP class IDs for an adapter. For more information, see To show DHCP class ID information at a client computer. • Set the DHCP class IDs for an adapter. For more information, see To set DHCP class ID information at a client computer. Testing connections by using ping The ping command helps to verify IP-level connectivity. When troubleshooting, you can use ping to send an ICMP echo request to a target host name or IP address. Use ping whenever you need to verify that a host computer can connect to the TCP/IP network and network resources. You can also use ping to isolate network hardware problems and incompatible configurations. It is usually best to verify that a route exists between the local computer and a network host by first using the ping command and the IP address of the network host to which you want to connect. Try pinging the IP address of the target host to see if it responds, as follows: ping IP_address You should perform the following steps when using ping: Ping the loopback address to verify that TCP/IP is configured correctly on the local computer. ping 127.0.0.1 Ping the IP address of the local computer to verify that it was added to the network PUSAT PENGEMBANGAN BAHAN AJAR - UMB Andrew Tiade ST. Jaringan Komputer 2 correctly. ping IP_address_of_local_host Ping the IP address of the default gateway to verify that the default gateway is functioning and that you can communicate with a local host on the local network. ping IP_address_of_default_gateway Ping the IP address of a remote host to verify that you can communicate through a router. ping IP_address_of_remote_host The ping command uses Windows Sockets–style name resolution to resolve a computer name to an IP address, so if pinging by address succeeds, but pinging by name fails, then the problem lies in address or name resolution, not network connectivity. For more information, see Troubleshooting hardware addresses by using arp. If you cannot use ping successfully at any point, confirm that: • The computer was restarted after TCP/IP was configured. • The IP address of the local computer is valid and appears correctly on the General tab of the Internet Protocol (TCP/IP) Properties dialog box. • IP routing is enabled and the link between routers is operational. You can use different options with the ping command to specify the size of packets to use, how many packets to send, whether to record the route used, what Time-to-Live (TTL) value to use, and whether to set the "don't fragment" flag. You can type ping –? to see these options. The following example illustrates how to send two pings, each 1,450 bytes in size, to IP address 131.107.8.1: C:\>ping -n 2 -l 1450 131.107.8.1 Pinging 131.107.8.1 with 1450 bytes of data: Reply from 131.107.8.1: bytes=1450 time<10ms TTL=32 Reply from 131.107.8.1: bytes=1450 time<10ms TTL=32 Ping statistics for 131.107.8.1: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate roundtrip times in milliseconds: Minimum = 0ms, Maximum = 10ms, Average = 2ms By default, ping waits 4,000 milliseconds (4 seconds) for each response to be returned before displaying the "Request Timed Out" message. If the remote system being pinged is across a high-delay link, such as a satellite link, responses may take longer to be returned. You can use the –w (wait) option to specify a longer time-out. PUSAT PENGEMBANGAN BAHAN AJAR - UMB Andrew Tiade ST. Jaringan Komputer 2 Troubleshooting hardware addresses by using arp The Address Resolution Protocol (ARP) allows a host to find the media access control address of a host on the same physical network, given the IP address of the host. To make ARP efficient, each computer caches IP–to–media access control address mappings to eliminate repetitive ARP broadcast requests. You can use the arp command to view and modify the ARP table entries on the local computer. The arp command is useful for viewing the ARP cache and resolving address resolution problems. For more information, see To view the Address Resolution Protocol (ARP) cache and To add a static ARP cache entry. Troubleshooting NetBIOS names by using nbtstat NetBIOS over TCP/IP (NetBT) resolves NetBIOS names to IP addresses. TCP/IP provides many options for NetBIOS name resolution, including local cache lookup, WINS server query, broadcast, DNS server query, and Lmhosts and Hosts file lookup. Nbtstat is a useful tool for troubleshooting NetBIOS name resolution problems. You can use the nbtstat command to remove or correct preloaded entries: • nbtstat –n displays the names that were registered locally on the system by programs such as the server and redirector. • nbtstat –c shows the NetBIOS name cache, which contains name-to-address mappings for other computers. • nbtstat –R purges the name cache and reloads it from the Lmhosts file. • nbtstat –RR releases NetBIOS names registered with a WINS server and then renews their registration. • nbtstat –a name performs a NetBIOS adapter status command against the computer specified by name. The adapter status command returns the local NetBIOS name table for that computer plus the media access control address of the adapter. • nbtstat –S lists the current NetBIOS sessions and their status, including statistics, as shown in the following example: NetBIOS connection table Local name State In/out Remote Host Input Output -----------------------------------------------------------------CORP1 <00> Connected Out CORPSUP1<20> 6MB 5MB PUSAT PENGEMBANGAN BAHAN AJAR - UMB Andrew Tiade ST. Jaringan Komputer 2 CORP1 CORP1 CORP1 CORP1 <00> <00> <00> <03> Connected Out Connected Out Connected Out Listening CORPPRINT<20> 108KB CORPSRC1<20> 299KB CORPEMAIL1<20> 324KB 116KB 19KB 19KB Displaying connection statistics by using netstat You can use the netstat command to display protocol statistics and current TCP/IP connections. The netstat –a command displays all connections, and netstat –r displays the route table plus active connections. The netstat –o command displays process IDs so you can view the owner of the port for each connection. The netstat –e command displays Ethernet statistics, and netstat –s displays per-protocol statistics. If you use netstat –n, addresses and port numbers are not converted to names. The following shows sample output for netstat: C:\>netstat -e Interface Statistics Bytes Unicast packets Non-unicast packets Discards Errors Unknown protocols Received 3995837940 120099 7579544 0 0 363054211 Sent 47224622 131015 3823 0 0 C:\>netstat -n -o Active Connections Proto PID TCP 180 TCP TCP 364 TCP 1128 TCP 1128 TCP 908 TCP 908 TCP TCP TCP TCP TCP TCP TCP Local Address Foreign Address State 172.31.71.152:1136 157.54.2.84:389 CLOSE_WAIT 172.31.71.152:2730 172.31.71.152:3110 172.31.71.99:139 157.54.2.84:389 ESTABLISHED CLOSE_WAIT 172.31.71.152:3796 172.30.236.233:1479 ESTABLISHED 172.31.71.152:3800 172.30.236.233:1740 ESTABLISHED 172.31.71.152:3815 172.30.236.233:1479 ESTABLISHED 172.31.71.152:3819 172.30.236.233:1740 ESTABLISHED 172.31.71.152:4034 172.31.71.152:4037 172.31.71.152:4043 172.31.71.152:4044 172.31.71.152:4045 172.31.71.152:4046 172.31.71.152:4047 172.31.16.197:139 157.54.4.183:445 157.60.218.11:119 157.60.218.11:119 157.60.218.11:119 157.60.218.11:119 157.60.218.11:119 TIME_WAIT TIME_WAIT TIME_WAIT TIME_WAIT TIME_WAIT TIME_WAIT TIME_WAIT PUSAT PENGEMBANGAN BAHAN AJAR - UMB 4 0 0 0 0 0 0 0 Andrew Tiade ST. Jaringan Komputer 2 TCP TCP TCP 172.31.71.152:4048 172.31.71.152:4049 172.31.71.152:4050 157.60.218.11:119 157.60.218.11:119 157.60.218.11:119 TIME_WAIT TIME_WAIT TIME_WAIT 0 0 0 C:\>netstat -a Active Connections Proto Local Address TCP CORP1:1572 TCP CORP1:1589 TCP CORP1:1606 TCP CORP1:1632 TCP CORP1:1659 TCP CORP1:1714 TCP CORP1:1719 TCP CORP1:1241 UDP CORP1:1025 UDP CORP1:snmp UDP CORP1:nbname UDP CORP1:nbdatagram UDP CORP1:nbname UDP CORP1:nbdatagram C:\>netstat -s IP Statistics Foreign Address 172.16.48.10:nbsession 172.16.48.10:nbsession 172.16.105.245:nbsession 172.16.48.213:nbsession 172.16.48.169:nbsession 172.16.48.203:nbsession 172.16.48.36:nbsession 172.16.48.101:nbsession *:* *:* *:* *:* *:* *:* State ESTABLISHED ESTABLISHED ESTABLISHED ESTABLISHED ESTABLISHED ESTABLISHED ESTABLISHED ESTABLISHED Packets Received = 5378528 Received Header Errors = 738854 Received Address Errors = 23150 Datagrams Forwarded = 0 Unknown Protocols Received = 0 Received Packets Discarded = 0 Received Packets Delivered = 4616524 Output Requests = 132702 Routing Discards = 157 Discarded Output Packets = 0 Output Packet No Route = 0 Reassembly Required = 0 Reassembly Successful = 0 Reassembly Failures = 0 Datagrams Successfully Fragmented = 0 Datagrams Failing Fragmentation = 0 Fragments Created = 0 ICMP Statistics Messages Errors Destination Unreachable Time Exceeded Parameter Problems Source Quenches Redirects Echoes Echo Replies Timestamps Timestamp Replies Received 693 0 685 0 0 0 0 4 0 0 0 Sent 4 0 0 0 0 0 0 0 4 0 0 PUSAT PENGEMBANGAN BAHAN AJAR - UMB Andrew Tiade ST. Jaringan Komputer 2 Address Masks Address Mask Replies 0 0 0 0 TCP Statistics Active Opens Passive Opens Failed Connection Attempts Reset Connections Current Connections Segments Received Segments Sent Segments Retransmitted = = = = = = = = 597 135 107 91 8 106770 118431 461 UDP Statistics Datagrams Received No Ports Receive Errors Datagrams Sent = = = = 4157136 351928 2 13809 Tracing network connections by using tracert Tracert (Trace Route) is a route-tracing utility that is used to determine the path that an IP datagram takes to reach a destination. The tracert command uses the IP Time-to-Live (TTL) field and ICMP error messages to determine the route from one host to another through a network. How tracert works The Tracert diagnostic utility determines the route taken to a destination by sending Internet Control Message Protocol (ICMP) echo packets with varying IP Time-to-Live (TTL) values to the destination. Each router along the path is required to decrement the TTL on a packet by at least 1 before forwarding it. When the TTL on a packet reaches 0, the router should send an "ICMP Time Exceeded" message back to the source computer. Tracert determines the route by sending the first echo packet with a TTL of 1 and incrementing the TTL by 1 on each subsequent transmission until the target responds or the maximum TTL is reached. The route is determined by examining the "ICMP Time Exceeded" messages sent back by intermediate routers. Some routers silently drop packets with expired TTLs and are invisible to the Tracert utility. The tracert command prints out an ordered list of the near-side interface of the routers in the path that returned the "ICMP Time Exceeded" message. If the –d option is used, the Tracert utility does not perform a DNS lookup on each IP address. PUSAT PENGEMBANGAN BAHAN AJAR - UMB Andrew Tiade ST. Jaringan Komputer 2 In the following example, the packet must travel through two routers (10.0.0.1 and 192.168.0.1) to get to host 172.16.0.99. The default gateway of the host is 10.0.0.1 and the IP address of the router on the 192.168.0.0 network is 192.168.0.1. C:\>tracert 172.16.0.99 -d Tracing route to 172.16.0.99 over a maximum of 30 hops 1 2 ms 3 ms 2 ms 10.0.0.1 2 75 ms 83 ms 88 ms 192.168.0.1 3 73 ms 79 ms 93 ms 172.16.0.99 Trace complete. Troubleshooting with tracert You can use the tracert command to determine where a packet stopped on the network. In the following example, the default gateway has determined that there is not a valid path for the host on 192.168.10.99. There is probably a router configuration problem or the 192.168.10.0 network does not exist (a bad IP address). C:\>tracert 192.168.10.99 Tracing route to 192.168.10.99 over a maximum of 30 hops 1 10.0.0.1 reports: Destination net unreachable. Trace complete. The Tracert utility is useful for troubleshooting large networks where several paths can be taken to arrive at the same point. Tracert command-line options The tracert command supports several options, as shown in the following table. tracert [–d] [–h maximum_hops] [–j host-list] [–w timeout] target_name Option –d Description Specifies that IP addresses are not resolved to host names. –h Specifies the number of hops to allow in tracing a route to the host named in maximum_ho target_name. ps –j host-list Specifies the list of router interfaces in the path taken by the Tracert utility packets. –w timeout Waits the number of milliseconds specified by timeout for each reply. target_name Name or IP address of the target host. For more information, see To trace a path by using the tracert command. PUSAT PENGEMBANGAN BAHAN AJAR - UMB Andrew Tiade ST. Jaringan Komputer 2 Testing routers by using pathping The pathping command is a route tracing tool that combines features of the ping and tracert commands with additional information that neither of those tools provides. The pathping command sends packets to each router on the way to a final destination over a period of time, and then computes results based on the packets returned from each hop. Since the command shows the degree of packet loss at any given router or link, it is easy to determine which routers or links might be causing network problems. A number of options are available, as shown in the following table. Option Name Function –n Hostnames Does not resolve addresses to host names. –h Maximum hops Maximum number of hops to search for target. –g Host-list Loose source route along host list. –p Period Number of milliseconds to wait between pings. –q Num_queries Number of queries per hop. –w Time-out Waits this many milliseconds for each reply. –i address Use the specified source address. –4 IPv4 Force pathping to use IPv4. –6 IPv6 Force pathping to use IPv6. The default number of hops is 30, and the default wait time before a time-out is 3 seconds. The default period is 250 milliseconds, and the default number of queries to each router along the path is 100. The following is a typical pathping report. The compiled statistics that follow the hop list indicate packet loss at each individual router. D:\>pathping -n server1 Tracing route to server1 [10.54.1.196] over a maximum of 30 hops: 0 172.16.87.35 1 172.16.87.218 2 192.168.52.1 3 192.168.80.1 4 10.54.247.14 5 10.54.1.196 Computing statistics for 125 seconds... PUSAT PENGEMBANGAN BAHAN AJAR - UMB Andrew Tiade ST. Jaringan Komputer 2 Hop 0 RTT Source to Here Lost/Sent = Pct 1 41ms 0/ 100 = 0% 2 22ms 16/ 100 = 16% 3 24ms 13/ 100 = 13% 4 21ms 14/ 100 = 14% 5 24ms 13/ 100 = 13% This Node/Link Lost/Sent = Pct 0/ 0/ 13/ 3/ 0/ 0/ 0/ 1/ 0/ 0/ 100 100 100 100 100 100 100 100 100 100 = 0% = 0% = 13% = 3% = 0% = 0% = 0% = 1% = 0% = 0% Address 172.16.87.35 | 172.16.87.218 | 192.168.52.1 | 192.168.80.1 | 10.54.247.14 | 10.54.1.196 Trace complete. When pathping is run, you first see the results for the route as it is tested for problems. This is the same path that is shown by the tracert command. The pathping command then displays a busy message for the next 125 seconds (this time varies by the hop count). During this time, pathping gathers information from all the routers previously listed and from the links between them. At the end of this period, it displays the test results. The two rightmost columns—This Node/Link Lost/Sent=Pct and Address—contain the most useful information. The link between 172.16.87.218 (hop 1), and 192.168.52.1 (hop 2) is dropping 13 percent of the packets. All other links are working normally. The routers at hops 2 and 4 also drop packets addressed to them (as shown in the This Node/Link column), but this loss does not affect their forwarding path. The loss rates displayed for the links (marked as a | in the rightmost column) indicate losses of packets being forwarded along the path. This loss indicates link congestion. The loss rates displayed for routers (indicated by their IP addresses in the rightmost column) indicate that those routers' CPUs might be overloaded. These congested routers might also be a factor in end-to-end problems, especially if packets are forwarded by software routers. Keterangan Sewaktu Kuliah: • c:\dir • C:\ dir s*.* • C:\dir s????.* • C:\dir a*.doc PUSAT PENGEMBANGAN BAHAN AJAR - UMB Andrew Tiade ST. Jaringan Komputer 2 • C:\dir h?s*.txt • Menampilkan file tersembunyi • C:\dir /ah • Menampilkan waktu dari direktory • C:\>dir /ta • Waktu • C:\>date /t && time /t • Mon 10/08/2007 • 10:39 AM • C:\> C:\mkdir coba_folder C:\rmdir coba C:\cp file kefolder C:\RMDIR COBA C:\rmdir /S coba D:\>rmdir /Q /S coba D:\mkdir coba1 coba2 D:\> • C:\>net share • Share name Resource • ------------------------------------------------------------ • PC$ • D$ Remark Remote IPC D:\ Default share PUSAT PENGEMBANGAN BAHAN AJAR - UMB Andrew Tiade ST. Jaringan Komputer 2 • ADMIN$ • C$ • Jarkom 1 PPT D:\Jarkom 1 PPT • The command completed successfully. • C:\>net share data_d=d:\coba • data_d was shared successfully. • C:\> • --- • C:\>net share data_d /delete • data_d was deleted successfully. • C:\ • C:\>net user • User accounts for \\KOMP_D408 • ----------------------------------------------------------------------- • __vmware_user__ • HelpAssistant • The command completed successfully. • C:\> • C:\>net stop messenger • The Messenger service is stopping......... • The Messenger service was stopped successfully. • C:\>net start messenger • The Messenger service is starting... • The Messenger service was started successfully. C:\WINDOWS C:\ Remote Admin Default share Administrator Guest SUPPORT_388945a0 PUSAT PENGEMBANGAN BAHAN AJAR - UMB W-A304-060-CP-001 Andrew Tiade ST. Jaringan Komputer 2 • C:\> • C:\shutdown –r • C:\shutdown –s • C:\shutdown –a • D:\>shutdown -r -t 60 • D:\>shutdown -r -c "cuma test doing @echo IP target : %1 @echo Net Send Bomber siap melakukan serangan ... @pause :serang @net send %1 Hooiiiii %1 i was here !!!!!! @goto serang • PUSAT PENGEMBANGAN BAHAN AJAR - UMB Andrew Tiade ST. Jaringan Komputer 2