登录远程服务器抓包
2015-08-31 10:40
881 查看
#!/bin/bash # 远程服务器列表,以空格间隔,如IP1 IP2 SERVERS_IP="21.254.176.3 21.254.176.135 21.254.176.144 21.254.176.138 21.254.176.146 21.254.176.141 21.254.176.145 21.254.178.2 21.254.178.15 21.254.178.3 21.254.178.17 21.254.176.70 21.254.176.93 21.254.178.33 21.254.178.34 21.254.178.35 21.254.178.58 21.254.176.71 21.254.176.94 21.254.178.12 21.254.178.14 21.254.177.71 21.254.177.131 21.254.177.72 21.254.177.132 21.254.178.11 21.254.178.16 21.254.177.130 21.254.177.70" USERNAME=root if [ "$#" != "1" ];then echo "USAGE:$0 [start|stop|download]" exit 1 fi # 登陆远程服务器,开启tcpdump命令 function start() { for ip in $SERVERS_IP do nohup ssh $USERNAME@$ip "tcpdump -i eth1 -s 0 -w $ip.cap" > /dev/null 2> error.log & echo "$ip抓包开始............................" done echo "远程服务器抓包已全部开启" } # 登陆远程服务器,停止tcpdump命令 function stop() { for ip in $SERVERS_IP do nohup ssh $USERNAME@$ip 'PID=`ps -ef | grep tcpdump | grep -v grep | awk "{print $2}"`;kill -9 $PID' > /dev/null 2> error.log & echo "$ip抓包停止............................" done echo "远程服务器抓包已全部停止" } # 下载远程服务器的CAP到本地 function download() { for ip in $SERVERS_IP do echo "$ip.cap开始下载............................" scp $USERNAME@$ip:/root/$ip.cap . done echo "远程服务器抓包已全部下载" } function test() { echo "远程服务器tcpdump进程判断开始" >> tcpdump.log for ip in $SERVERS_IP do echo "${ip}tcpdump进程是否杀掉............................" >> tcpdump.log nohup ssh $USERNAME@$ip "ps -ef | grep tcpdump | grep -v grep" >> tcpdump.log 2> error.log & sleep 1 done echo "远程服务器tcpdump进程判断结束" >> tcpdump.log } case $1 in start) start ;; stop) stop ;; download) download ;; test) test ;; *) echo "参数错误" ;; esac
相关文章推荐
- 边框的css3样式
- 【Leetcode】【Hard】Merge Intervals
- 关于CornerStone配置SVN简单使用
- overflow:hidden
- 基于C++11 thread 实现线程池
- function(a)
- Shell Tips
- 循环与选择性语句
- android 设置一体化状态栏
- 启动模拟器提示this computer meets the requirements for haxm ... 的解决办法
- android开发拍照点击保存无法返回上一界面
- 《GPU高性能编程CUDA实战》中代码整理
- 【UML】UML之用例图
- 基于K2 BPM平台,中原地产实现了从2个人到5万多人的跨越
- [kipmi0]进程导致系统负载高
- 【Matlab学习笔记】(三)matlab的搜索顺序和搜索路径
- centos6.5搭建nginx反向代理Apache服务并实现动静分离
- php基础设计模式大全(注册树模式、工厂模式、单列模式)
- 单例模式
- 奇偶排序(一)ParitySort