Deleted articles cannot be recovered. Draft of this article would be also deleted. Are you sure you want to delete this article?
ææ°çã¯ä»¥ä¸ã¨ãªãã¾ãã https://dev.classmethod.jp/etc/ec2-tcp-port-check-command-2018/ ããã«ã¡ã¯ã³ã«ã³ã¼ã©å¥½ãã®æ¢¶ã§ãã EC2ã§ã¯è²ã ãªOSãæ§ç¯ã§ãã¾ããããæ§ç¯å¾ã®é信確èªã¯ã©ã®ããã«å®æ½ãã¦ã¾ããï¼ åOSã§ä»ã®ã¤ã³ã¹ã¿ã³ã¹ã¸TCPé信確èªã®ããã«ããã¼ã«ãã¤ã³ã¹ãã¼ã«ããããICMPãªã©ã®å¥ãªãããã³ã«ã§ç¢ºèªããããã«Security Groupãä¸æ解æ¾ãã¦ãã¾ãããï¼ æ§ç¯ç´å¾ã®ç¶æ ã§ãç°¡åã«TCPãã¼ãçé確èªå¯è½ãªã³ãã³ãããç´¹ä»ãã¾ãã Amazon Linux,Ubuntu,Windows2012R2,CentOSã«ã¤ãã¦èªåãå¿ããããã®ã§ã¾ã¨ãã¦ã¿ã¾ããã ã©ãªããã®ãå½¹ã«ç«ã¦ãã°å¹¸ãã§ãã Amazon Linux åä½ç¢ºèªAMI:amzn-ami-hvm-2014.09.2.x86_64-eb
ã192.168.0.100/24ãã®ãããã¯ã¼ã¯ã¢ãã¬ã¹ãå³çããã«ã¯ï¼ ipcalcã³ãã³ãï¼ãããã¯ã¼ã¯ç®¡çã®åºæ¬Tips TCP/IPãããã¯ã¼ã¯ã®è¨å®ãæåã§è¡ãã¨ããIPã¢ãã¬ã¹ã ãã§ãªããµãããããã¹ã¯ã«ã¤ãã¦ãæ£ããæ å ±ãæå®ããå¿ è¦ãããã¾ããã192.168.0.100/24ãã®ããã«ãã¹ã¯é·ãè¨ç®ãã«ããå¤ã®ã¨ãã¯ãipcalcã³ãã³ãã使ãã¨ç°¡åã«è¨ç®ã§ãã¾ãã
çãããããã«ã¡ã¯ã ãã®ã³ã©ã ã§ã¯ããããã¯ã¼ã¯ã¨ã³ã¸ãã¢ã¨ãã¦æ´»èºããã¦ããæ¹ã対象ã¨ãã¦ãè³æ ¼è©¦é¨ã ãã§ã¯å¾ãããªãå®è·µçãªæè¡ãã¼ãã«ã¤ãã¦åãä¸ãã¦ããããã¨æãã¾ãã®ã§ããããããé¡ããã¾ãã çªç¶ã§ãããç§ã®ç¥äººã以ä¸ã®ãããªç¾è±¡ã«ééãã¾ããããªãããã®ãããªãã¨ãèµ·ããã®ãããããã¾ããï¼ FTTHã®ã¤ã³ã¿ã¼ãããæ¥ç¶ãµã¼ãã¹ã使ç¨ãã¦ãããå ¬è¡FTPã§ã¹ã«ã¼ããã測å®ãè¡ãã¨85Mbpsãããåºã¦ããã ããããç¡ç·LANã使ç¨ããã¨20ï½30Mbpsç¨åº¦ã®é度ããåºã¦ããªãã£ãã ããã§ä»åãæ°ãã802.11n対å¿ã®ç¡ç·LANå èµã«ã¼ã¿ãè³¼å ¥ãã ã¾ããã«ã¼ã¿ã«FTPãµã¼ããç´æ¥æ¥ç¶ããç¡ç·LANãåéè¨å®ã«ãã¦ã¹ã«ã¼ãããã測å®ããã¨ãããç´100Mbpsãããã§ã¦ããããâ ãããã¤ã¬ãã³ã¨ãã ããã¨æå¾ ãé«ã¾ã ã¨ããããå®éã«ã¤ã³ã¿ã¼ãããï¼FTTHï¼ã«æ¥ç¶ã
mTCP enables high-performance userspace TCP/IP stacks by bypassing the kernel and reducing system call overhead. It was shown to achieve up to 25x higher throughput than Linux for short flows. The document discusses porting the iperf benchmark to use mTCP, which required only minor changes. Performance tests found that mTCP-ified iperf achieved similar throughput as Linux iperf for different packe
å¹´æ«ãè¿ã¥ãã¦ãã¦ä»äºãçãããã£ã¦ããã®ã§è¨äºãæ¸ãã¦ç¾å®éé¿ãã¦ãã¾ãã ãã¦ã(ãªãããããªãä¸å¹´ãæ¯ãè¿ã£ã¦ãã¿ããã§åçªã§ãã)ä»å¹´ã¯Dockerãã¯ããã¨ããã³ã³ããæè¡ãã¤ãã«ä¸è¬çãªä¸çã«éãã¦ãã¦ã¿ããªããã«ã¼ããã«ã¼ã¨ããããªãã¨ã試ãããããå¹´ã§ããã Dockerã¯å人çã«ä¸ã¤é¢åãªç¹ããã£ã¦ãåºæ¬çã«Linuxãããªãã¨åããªãã¨ããã®ãããã¾ãããã³ãã¯æå ã®Macã§Dockerãããã®ã§ããããããã«Dockerã®ã³ã³ããã¯Macã§ã¯åãã¾ãããã§ãããã«å¯¾ããä¸è¬çãªã½ãªã¥ã¼ã·ã§ã³ã¯ãVirtualBoxãã¤ã³ã¹ãã¼ã«ãã¦Linux(CoreOSã¨ãboot2docker)ãåããã¦ããã«ã¤ãªãã! ã¨ãããã®ã§ããã ã¾ã¼ããã§ããããã§ãããåºæ¥ãã°Macã®ä¸ã§VMã¯åãããããªããã§ãããã¼ãã¼ãã®å ´åã¯èªå® ãµã¼ãã«ããããVMç«ã¦ã¦ããããVMã¯ãã£
Windowsãããã¯ã¼ã¯ã¯NetBIOSã¨å¼ã°ããå¤ãæè¡ããã¼ã¹ã«ãã¦ããããã®ããé·ãã³ã³ãã¥ã¼ã¿ã¼åã使ããªãã¨ãããããã¯ã¼ã¯ä¸ã§ã¦ãã¼ã¯ãªååãè¦æ±ããããªã©ã®å¶ç´ãããã é£è¼ç®æ¬¡ ååã¯ãå ±æãªã½ã¼ã¹ãè¦ã¤ãããã³ã³ãã¥ã¼ã¿ã¼ãã©ã¦ã¶ã¼ãã¨ããããã¯ã¼ã¯æ¢ç´¢ããµã¼ãã¹ã«ã¤ãã¦è§£èª¬ãããä»åããã¯ããããã¯ã¼ã¯ãããã³ã«ã®å é¨ã«ã¤ãã¦è¦ã¦ãããä»åã¯ãWindowsãããã¯ã¼ã¯ã¨æ·±ãé¢ä¿ãããNetBIOSã«ã¤ãã¦ããã®æ´å²ãæ¯ãè¿ããªããè¦ã¦ãããã NetBIOSã¨ã¯ï¼ ä¸è¬ã«TCP/IPãããã¯ã¼ã¯ã§ã¯ãå©ç¨ããæ©å¨ã«ã¦ãã¼ã¯ï¼ä¸æï¼ãªãIPã¢ãã¬ã¹ããä»ãã¦ããã°ãã¨ããããåé¡ãªãç¸äºã«éä¿¡ãã§ãããTCP/IPãããã¯ã¼ã¯ã§ã¯ãIPã¢ãã¬ã¹ããããã°ï¼ãååãããªãã¦ãï¼ç¸äºã«éä¿¡ã§ããããã ãã ãWindows OSã®å ´åã¯å°ãäºæ ãç°ãªããWindowsããã
åä½ JPCERT-AT-2014-0038 JPCERT/CC 2014-10-10 <<< JPCERT/CC Alert 2014-10-10 >>> TCP 10000çªãã¼ãã¸ã®ã¹ãã£ã³ã®å¢å ã«é¢ãã注æåèµ· https://www.jpcert.or.jp/at/2014/at140038.html I. æ¦è¦ JPCERT/CC ã§ã¯ãTCP 10000çªãã¼ãã¸ã®ã¹ãã£ã³ã 2014å¹´9æä¸æ¬ããå¢å ãã¦ãããã¨ããã¤ã³ã¿ã¼ãããå®ç¹è¦³æ¸¬ã·ã¹ãã (以ä¸ãTSUBAME) *1 ã«ã ãã¦ç¢ºèªãã¦ãã¾ãã TCP 10000çªãã¼ãã¯ãã¦ã§ããã¼ã¹ã®ã·ã¹ãã 管çãã¼ã«ã§ãã Webmin ã® æ¨æºãã¼ãã¨ãã¦å©ç¨ããããã¨ãå¤ããéçºè ã«ãã㨠Webmin ã¯å æ¥å ¬é ããã GNU bash ã®èå¼±æ§ã®å½±é¿ãåããã¨ã®ãã¨ã§ãã Changes since Webmi
2. rcu read lock receive_queue lock nf_hooks nf_iterate rcu read lock tcp_rcv_established tcp_v4_do_rcv nf_hook_slow nf_hook_thresh ___napi_schedule __napi_schedule e1000_intr handle_irq do_IRQ common_interrupt interrupt get_rps_cpu sock_queue_rcv_skb ip_queue_rcv_skb __udp_queue_rcv_skb udp_queue_rcv_skb __udp4_lib_rcv ip_local_deliver_finish NF_HOOK ip_defrag ip_rcv_finish NF_HOOK ip_rcv __netif
Hacker Schoolå¨ç±ä¸ããããã¯ã¼ãã³ã°ã®ç解ãããæ·±ãããã¨æããå°è¦æ¨¡ãªTCPã¹ã¿ãã¯ãæ¸ãã¦ã¿ããã¨æãç«ã¡ã¾ãããå人çã«ã¯ãCè¨èªãããPythonã®æ¹ã«ãªãã¿ãããã¾ãããããã®é ã¡ããã©ããã±ããéä¿¡ã é常ã«ç°¡åã« ãã scapy ãããã¯ã¼ãã³ã°ã©ã¤ãã©ãªãè¦ã¤ããã¨ããã§ããã ãããªããã§ã teeceepee ãæ¸ãå§ãã¾ããã åºæ¬çãªæ§æ³ã¯æ¬¡ã®ã¨ããã§ãã TCPãã±ãããéä¿¡å¯è½ã«ããRaw socketãéã google.comãåå¾ããããã«HTTPè¦æ±ãéã å¿çãåå¾ããã¼ã¹ãã æåãç¥ã é©åãªã¨ã©ã¼å¦çãªã©ã«ã¤ãã¦ã¯ãã»ã©ã®æ³¨æãæããããã ãã ã¦ã§ããã¼ã¸ãåå¾ããåå©ã宣è¨ãããã¨æã£ã¦ãã¾ãã(^_^) ã¹ããã1ï¼TCPãã³ãã·ã§ã¤ã¯ æå§ãã¯ãGoogleã¨ã®TCPãã³ãã·ã§ã¤ã¯ã§ãï¼ä»¥ä¸ã¯å¿ ãããæ£ããåä½ãã¾ããããå
ãã¹ãã»ã©ã¼æ¸ã®æ¹è¨ç¬¬2çãååã¯Wiresharkã®ãªãã¡ã¬ã³ã¹ã§ããWiresharkã®ãã¾ãã¾ãªæ©è½ãæ´»ç¨ãã¯ããã¯ã«ã¤ãã¦è§£èª¬ãã¾ããå¾åã¯ãã±ãã解æã®å®è·µçãªæç§æ¸ã§ããTCP/IPã®ä¸»è¦ãªãããã³ã«ã解æããæ¹æ³ãããããã¯ã¼ã¯é 延ãã¯ããã¨ãããã¾ãã¾ãªãã©ãã«ã®è§£æ±ºæ¹æ³ããå®éã«åå¾ãããã±ããæ å ±ã®å®ä¾ã使ã£ã¦è©³ãã解説ãã¾ããæ¥æ¬èªçã§ã¯TCP/IP以å¤ã®ãã±ãã解æãå ·ä½çã«ã¯USBãã¼ããæµãããã¼ã¿ã®ãã±ãã解æã«ã¤ãã¦ã®è§£èª¬ã¨ãpcap-ngå½¢å¼ ââ pcapå½¢å¼ã®ãã¼ã¿å¤æã«ã¤ãã¦ã®è§£èª¬ãå·»æ«ä»é²ã¨ãã¦è¿½å ãã¾ãããWireshark 1.8対å¿ã ç®æ¬¡ ç£è¨³è ã¾ããã è³è³ã®å£° ã¾ããã 1ç« ããã±ãã解æã¨ãããã¯ã¼ã¯ã®åºç¤ 1.1ããã±ãã解æã¨ãã±ãããã£ããã£ãã¼ã« 1.1.1ããã±ãããã£ããã£ãã¼ã«ã®è©ä¾¡ 1.1.2ããã±ãããã£ããã£ãã¼ã«
ãNETSTATããGUIã«ããã¨ãè¦ããªããã®ãè¦ãã¦ããããâ¦â¦ï¼ITããå¿ æºã®è¶ 便å©ã·ã¹ãã 管çãã¼ã«éï¼4ï¼ Sysinternalsã«ã¯60以ä¸ã®ãã¼ã«ãããã¾ããä¸ã«ã¯ãç´æçã«ä½¿ãããã®ãããä½ã«ä½¿ããããåãããªããã®ã¾ã§ãã¾ãã¾ã§ããä»åã¯ã極ãã¦ç´æçã«ä½¿ãããTCPViewããç´¹ä»ãã¾ãã
MQTTã¯ãã©ãã£ãã¯éã¯HTTPã®1/10ã«ãªãã¨èãã¾ããããå®éã«è¨æ¸¬ãã¦ã¿ãã¨ããããã»ã©ã®å·®ããªãããã«è¦ãã¾ããã HTTPãæ¥ç¶ã»éä¿¡ã»åæãæ¯åè¡ãã¾ãããMQTTã¯ä¸åº¦ã®æ¥ç¶ã§ä½åº¦ãéä¿¡ã§ãã¾ããMQTTã¯æ¥ç¶ã»åæãé¤ããéä¿¡é¨åã®ã¿ã§æ¯è¼ããã¦ããã¨ãããã¨ã§ããããï¼ ããã ã¨ãã¦ãã10åã«ã¯ãªããªããããªæ°ããã¦ãã¾ããã»ã»ã»
æ¨å¹´æ«ãããã£ã¨ãããªãã¨ããã¦ã¾ãã¦ããã®ææã«ãªã£ã¦ããããä»å¹´åã®ããã°è¨äºã§ãã é²æçãªã¢ã¬ãã¢ã¬ã§ããããªããããããã3å¹´ç®ã«çªå ¥ã® @pandax381ã§ãã RTT > 100ms ã¨ã®æ¦ã çµç·¯ã¯ãã®ã¸ãã¨ãè¦ã¦ããã ããã¨ãããã¾ãããæ¥æ¬ã¨æµ·å¤ã®éãçµã¶é·è·é¢ãããã¯ã¼ã¯ï¼ããããLong Fat pipe Networkï¼ã«ããã¦ãéä¿¡æéãåæ¸ããã«ã¯ã©ãããããããï¼ãã¨ãããã¨ããæ¨å¹´æ«ããããããã£ã¨ã¢ã¬ã³ã¬ãã£ã¦ãã¾ããã éä¿¡ãããã±ãããç¸æã«å°éããã¾ã§ã®æéï¼ä¼éé 延ï¼ãåæ¸ããã®ã¯ãå ãã¡ã¤ãã¼ã®å¹çã®ç 究ã¨ãããªãã¨ç©ççã«ç¡çãªã®ã§ãããã§è¨ãéä¿¡æéã¨ã¯ãTCPéä¿¡ãã«ãããä¸é£ã®éä¿¡ãå®äºããã¾ã§ã®æéã§ãã ä¼éé 延ã«ã¤ãã¦ã¯ãæ¥æ¬å½å ã®ãã¹ãå士ã§ããã°ãRTTï¼å¾å¾©é 延æéï¼ã¯ã ããã10ã30msç¨åº¦ã§ãããæ¥æ¬ã»åç±³éã ã¨10
ä¸è¬è«ã¨ãã¦ãå ¨äºéã®éä¿¡ãããã³ã«ãå®è£ ããã«ããã£ã¦ã¯ãããã¤ã注æãã¹ãç¹ããã£ã¦ãå ·ä½çã«ã¯ãå°é確èªã¨åæã·ã¼ã±ã³ã¹ã«ã¤ãã¦å®ãã¦ãããªãã¨ãééãããã¯ãã®ã¡ãã»ã¼ã¸ããã¹ããã¦ããããåæã¿ã¤ãã³ã°ã«ãã£ã¦ã¨ã©ã¼ãçºç*1ãããããã å ·ä½ä¾ããããã¨ããã¨ãã°TCP/IPã«ããã¦shutdown(2)ãç¨ããã«ããããªãclose(2)ãå¼ãã§ããã¨ãread(2)ãwrite(2)ãã¨ã©ã¼(ECONNRESET)ãè¿ãå ´åãããã ç¿»ã£ã¦ãWebSocket (RFC6455)ã®å ´åã¯ã©ããªã£ã¦ããï¼ãã ããã以ä¸ã®ãããªæãã£ã½ãã ws.close()ãå¼ã³åºãããã¨WebSocketãCLOSINGç¶æ ã«å¤æ´ããCloseãã¬ã¼ã ãéä¿¡ãã ws.onmessageã¯WebCosketãCLOSINGç¶æ ã«ããéãå¼ã°ãããããããªã*2 ç¸æããCloseãã¬ã¼ã
TCP Fast Open â Webãéãããããã«Googleããã£ã¦ããã㨠Make the Web Faster 4 â Jxck HTTPã¯ããã®ä¸å±¤ã«ããããã©ã³ã¹ãã¼ãã¬ã¤ã¤ã¼ã®ãããã³ã«ã¨ãã¦ãé常TCPã使ç¨ãã¾ãã ãããã£ã¦ãTCPã®ã¬ã¤ã¤ã§é度ãæ¹åãããã¨ã¯ããã®ã¾ã¾Webã®é«éåã«ã¤ãªããå¯è½æ§ãããã¨ããã¾ãã Googleã¯Webãéãããããã®æ´»åã¨ãã¦ãTCPã®ãããªãããã³ã«ã¬ã¤ã¤ã®æ¹åã«ãåãçµãã§ãã¾ãã ä»åã¯ãã®ä¸ã®ä¸ã¤ãTCP Fast Openãåãä¸ãã解説ã¨åä½æ¤è¨¼ãç°¡åãªãã³ããã¼ã¯ãè¡ãã¾ãã æ¤è¨¼ç°å¢çã¯æä¸é¨ã«è¨è¼ãã¾ã. Make the Web Faster: TCP Fast Open 3 Way Handshake TCPã¯ããæ£ç¢ºã確å®ã«ãã¼ã¿ãå±ããããã¨ãéè¦ããè¨è¨ã«ãªã£ã¦ãã¾ãã ç¹ã«æ¥ç¶ç¢ºç«æã«ã¯ãåæ¹ã®ç¶
SPDYãQUICç»å ´ã®èæ¯ãWebã®é²åããããã³ã«ãå¤ãã¤ã¤ãããHTML5 Conference 2013 Webãããéããããã¨ãHTTPãããåªãããããã³ã«ã¨ãã¦ææ¡ãããSPDYï¼ã¹ãã¼ãã£ï¼ãããããã®SPDYã«ãã£ã¦ãä¸ä½ã¬ã¤ã¤ã§ããTCPã®å¶éãé¡èã«è¦ããããã«ãªã£ã¦ãã¾ãããã®ãã¨ã§TCP以å¤ã®ãããã³ã«ã¨ãã¦QUICãGoogleãææ¡ãã¦ãã¾ãã Webã®é²åã¯ãã¤ã³ã¿ã¼ãããã®ãããã³ã«ã«ã¾ã§å½±é¿ãä¸ãããã¨ãã¦ãããã¨ããé常ã«èå³æ·±ã話ããHTML5ã®ã³ãã¥ããã£ãhtml5jã主å¬ã®ã¤ãã³ããHTML Conference 2013ãã§è¡ãããå°æ¾å¥ä½æ°ã®ã»ãã·ã§ã³ãææ°Webãããã³ã«ãå¾åã¨å¯¾çãã§è¡ããã¾ããã ãã®å 容ããã¤ã¸ã§ã¹ãã§ç´¹ä»ãã¾ãããã ææ°Webãããã³ã«ãå¾åã¨å¯¾ç å°æ¾ã§ããæå±ã¯NTTã³ãã¥ãã±ã¼ã·ã§ã³ãºã§HTML5ã®ç 究
ã¨ãããã¨ã«ã(ä»æ´ï¼)æ°ä»ããã話ã§ãã HAãçµãã éã®VIPã®åãæ¿ããã¹ãããã£ã¦ããã¨ãã«ãé«è² è·æã¨ãã¯åãæ¿ãã«7ç§ã´ã£ãããããã±ã¼ã¹ã¨ãããã£ã¦ã7ç§ã£ã¦ä½ã®æ°åã ããã¨çåãæã¡ã¾ããã OSã¯ãCentOS 6.4(2.6.32-358.23.2.el6.x86_64)ã§ãã TCP SYNã®åéééãã1...2...4...ç§ã«ãªã£ã¦ãã ã§ãtcpdumpãçºãã¦ããã¨ä»¥ä¸ã®ãããªã·ã¼ã±ã³ã¹ã§ãã 11:50:35.689301 IP client-host.8957 > server-host.http: Flags [S], seq 1616681830, win 14600, options [mss 1460,sackOK,TS val 889880946 ecr 0,nop,wscale 7], length 0 11:50:36.688503 IP
ãªãªã¼ã¹ãé害æ å ±ãªã©ã®ãµã¼ãã¹ã®ãç¥ãã
ææ°ã®äººæ°ã¨ã³ããªã¼ã®é ä¿¡
å¦çãå®è¡ä¸ã§ã
j次ã®ããã¯ãã¼ã¯
kåã®ããã¯ãã¼ã¯
lãã¨ã§èªã
eã³ã¡ã³ãä¸è¦§ãéã
oãã¼ã¸ãéã
{{#tags}}- {{label}}
{{/tags}}