TODAYSPPC 모바일

[우분투] 필수 명령어 정리 + 초기설정
글쓴이:tejateja

, Hit : 32

#########^#########^#########^#########^#########^

# 10.기본명령어

#########^#########^#########^#########^#########^

#관리자권한 획득

sudo -i

#소유자변경

chown -R 계정 디렉토리/폴더명

#패키지설치 확인

dpkg -l|grep openssh

#압축 하기

tar -cvzf xxx.tar.gz *

#압축 풀기

tar -xvzf xxx.tar.gz

#우분투 버전확인

lsb_release -a

> No LSB modules are available.

> Distributor ID: Ubuntu

> Dedeleted ion:    Ubuntu 20.04.6 LTS

> Release:        20.04

> Codename:       focal

#업데이트

apt update

#업그레이드(의존성 포함)

apt dist-upgrade

#필요없는 파일 정리

apt autoremove

# 패키지파일 설치(ex)

dpkg -i mysql-workbench-community_8.0.15-1ubuntu18.04_amd64.deb

# 패키지 설치 오류 시

apt --fix-broken install

#########^#########^#########^#########^#########^

# 20.ssh/네트워크/방화벽 기본

#########^#########^#########^#########^#########^

#netstat 설치

apt install net-tools

#########^#########^#########^

# openssh 설치

#########^#########^#########^

apt-get install openssh-server

#ssh시작

service ssh start

#########^#########^#########^

# service 확인

#########^#########^#########^

service --status-all

# + means it's running,

# - means it isn't (it might have crashed - it might never have started), and

# ? means the services doesn't have a status command, so there's no way the service command can work out what's what.

service --status-all|grep +

service --status-all|grep -

service --status-all|grep ?

#########^#########^#########^

# iptables(방화벽)

#########^#########^#########^

#01.설정 확인

iptables -nL

#02.iptalbes 초기화

iptables -F

#03.기본 정책 설정

iptables -P INPUT DROP

iptables -P FORWARD DROP

iptables -P OUTPUT ACCEPT

#04.TCP PORT 22 open -- 원격작업시 4>>3으로 진행!!

iptables -A INPUT -p tcp -m tcp --dport 22 -j ACCEPT

#05.localhost 모두허용

iptables -A INPUT -i lo -j ACCEPT

#06.established and related 접속허용(ex:firefox)

iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT

#07.DNS TCP 53 / UDP 53 (*선택)

iptables -A INPUT -p tcp --dport 53 -j ACCEPT

iptables -A INPUT -p udp --dport 53 -j ACCEPT

#08.FTP passive mode (*선택)

iptables -A INPUT -p tcp --dport 21 -j ACCEPT

iptables -A OUTPUT -p tcp --sport 21 -j ACCEPT

iptables -A INPUT -p tcp --dport 1024:65535 -j ACCEPT

iptables -A OUTPUT -p tcp --sport 1024:65535 -j ACCEPT

#09.web 80, 443, 8080 (*선택)

iptables -A INPUT -p tcp --dport 80 -j ACCEPT

iptables -A INPUT -p tcp --dport 443 -j ACCEPT

iptables -A INPUT -p tcp --dport 8080 -j ACCEPT

iptables -A INPUT -p tcp --dport 3306 -j ACCEPT

iptables -A INPUT -p tcp --dport 9000 -j ACCEPT

iptables -A INPUT -p tcp --dport 9443 -j ACCEPT

iptables -A INPUT -p tcp --dport 9080 -j ACCEPT

iptables -I INPUT -p tcp --dport 1022 -j ACCEPT

#사용중인 Port확인

netstat -antp

#열린 포트 확인

netstat -tulpn | grep LISTEN

# ip v6 disable

nano /etc/sysctl.conf

## 추가

net.ipv6.conf.all.disable_ipv6=1

net.ipv6.conf.default.disable_ipv6=1

net.ipv6.conf.lo.disable_ipv6=1

## 적용

sysctl -p

service network restart

## 서버재시작

reboot now

# 방화벽설정 저장

service iptables save

>>iptables: unrecognized service

##위 메시지는 아래 설치

apt install iptables-persistent

>>ip4 예/ip6 예

netfilter-persistent save

netfilter-persistent reload

#11.저장된 룰 확인

ls /etc/iptables

>rules.v4 rules.v6

#12.init 설정/실행

cp /usr/share/netfilter-persistent/plugins.d/15-ip4tables /etc/init.d/iptables

/etc/init.d/iptables start

/etc/init.d/iptables flush

#13.부팅 시 자동실행

update-rc.d -f iptables defaults

>insserv: warning: deleted ‘K01iptables’ missing LSB tags and overrides

>insserv: warning: deleted ‘iptables’ missing LSB tags and overrides

##위 에러 /etc/init.d/iptables 맨아래 추가

### BEGIN INIT INFO

# Provides: skeleton

# Required-Start: $remote_fs $syslog

# Required-Stop: $remote_fs $syslog

# Default-Start: 2 3 4 5

# Default-Stop: 0 1 6

# Short-Dedeleted ion: Example initdeleted

# Dedeleted ion: This file should be used to construct deleted s to be

# placed in /etc/init.d.

### END INIT INFO

#14./etc/network/interface 맨아래추가(*선택)

pre-up iptables-restore < /etc/iptables/rules.v4

################

# ipv6 disable #

################

## 확인

    $ ifconfig -a | grep inet6

## 수정

    $ nano /etc/sysctl.conf

## 아래 추가

    net.ipv6.conf.all.disable_ipv6 = 1

    net.ipv6.conf.default.disable_ipv6 = 1

## 적용

    $ sysctl -p

###########

# DNS설정 #

###########

nano /etc/resolv.conf

nameserver 168.126.63.1

nameserver 168.126.63.2

options edns0

#DNS확인

nslookup

>server

$ apt-get install nm-tray network-manager

$ systemctl start NetworkManager

$ systemctl enable NetworkManager

#########^#########^#########^#########^#########^

# 디스크 파티션/포멧/마운트

#########^#########^#########^#########^#########^

# 디스크확인

fdisk -l

#fdisk실행

fdisk [/dev/sda]

>m 명령어보기

>d 파티션삭제

>n 파티션생성

    >엔터 시 전체(default) 실행

>w 저장 후 종료

>재부팅이 필요할 수 도 있다.

>reboot now

#포멧 ext4방식

mkfs.ext4 [/dev/sdb1]

#특정폴더에 마운트

mount -t /dev/sda /app/data1

#권한변경

chown -R [계정명] [/app/data1]

#언마운트

umount /dev/sda

##자동마운트(재부팅후에도마운트)

#UUID확인

ls -l /dev/disk/by-uuid/

#fstab등록

nano /etc/fstab

#마운트

mount -a

#디스크확인

lsblk

#########^#########^#########^#########^#########^

# XRDP 설치

#########^#########^#########^#########^#########^

1. apt-get update

2. apt-get install xrdp mate-core mate-desktop-environment mate-notification-daemon -y

3. sed -i.bak '/fi/a #xrdp multiple users configuration \n mate-session \n' /etc/xrdp/startwm.sh

4. ufw allow 3389/tcp

#########^#########^#########^#########^#########^

# D2Coding font 설치

#########^#########^#########^#########^#########^

mkdir ~/.local/share/fonts

cd ~/.local/share/fonts

wget https://github.com/naver/d2codingfont/releases/download/VER1.3.2/D2Coding-Ver1.3.2-20180524.zip

unzip D2Coding-Ver1.3.2-20180524.zip

#2. 폰트 캐시 지우고 다시 생성

fc-cache -f -v

#3. 잘 설치 되었는지 확인

fc-list | grep "D2Coding"

#4. 청소

rm -rf D2Coding*

#########^#########^#########^#########^#########^

# docker 설치

#########^#########^#########^#########^#########^

apt update

apt dist-upgrade

apt autoremove

#필요 패키지 설치

sudo apt-get install apt-transport-https ca-certificates curl gnupg-agent software-properties-common

#Docker의 공식 GPG키 추가

curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo apt-key add -

#Docker공식 apt 저장소 추가

sudo add-apt-repository "deb [arch=amd64] https://download.docker.com/linux/ubuntu $(lsb_release -cs) stable"

apt update

apt dist-upgrade

apt autoremove

#Docker 설치

sudo apt-get install docker-ce docker-ce-cli containerd.io

sudo systemctl status docker

sudo docker run hello-world

#sudo systemctl start docker

#sudo gpasswd -a "${USER}" docker

tejateja

회원님의 소개글이 없습니다.
정보력:510
친절도:202

댓글쓰기 작성자

패스워드