Blog

Full Stack Networker > Blog > Linux > Linux Commands for Networking Configuration and Troubleshooting for Network Engineers

Linux Commands for Networking Configuration and Troubleshooting for Network Engineers

  • March 22, 2018
  • Posted by: Muhammad Afaq Khan, CCIE #9070
  • Category: Linux
No Comments
Linux Commands for Networking Configuration and Troubleshooting for Network Engineers
5
(1)

There are at least three career benefits to learning Linux as far as networking configuration and troubleshooting are concerned.

Let me summarize.

  1. You can configure and troubleshoot machines running Linux (all distributions)
  2. You can configure and troubleshoot networking devices that run modified version of Linux OS as their networking OS e.g. Cumulus Linux.
  3. You can configure, automate and troubleshoot black boxes (routers, switches etc.) from likes of Cisco, Juniper and Arista as virtually all of them run admin-accessible Linux as sort of base OS today (an exception would be boxes that run classic Cisco IOS but who cares)

Here is a bird’s eye view of how Linux is pervasive even inside the routing, switching and security closed-source software from Cisco.

Cisco Networking OSLinux OSLinux Kernel Shell Access Command
Cisco IOS XELinux Stock Kernelrequest platform software system shell
Cisco IOS XR (Classic)QNX Real-time micro KernelConsole ("run")
Direct via Aux port
Cisco Nexus OS (NX-OS)MontaVista Linux Kernelrun bash
sudo su root
Cisco ASA/FirePOWERLinux Stock Kernel"expert" command
Classic Cisco IOSN/ANone

Now, let me break down configuration and troubleshooting commands for each scope or use case.

1. Linux OS running on x86 machines or servers

Configuration

ifconfig (or interface configurator)

You can use this command to enable/disable or assign an IP address to an interface. You can also ifconfig to view IP address, MTU and MAC address.

route (to configure to display and configure ip routing table)

arp (to configure to display and configure ARP table)

ethtool (to set speed or duplex etc.)

iwconfig (to configure wireless network interface)

Troubleshooting

ifup / ifdown

You can these two commands to enable or disable a specific interface.

ping

traceroute

netstat

dig (to query DNS related info such as A, CNAME or MX records etc.)

nslookup

host

hostname

telnet

scp

map (to see what L4 ports are open on the given machine)

2. Cumulus Linux

Configuration

You can configure pretty much everything that has to do with networking using the Cumulus Network Command Line Utility or NCLU via bash interface. NCLU wrapper utility is known as net. You can configure L2/L3 Cumulus networking stack including ACLs or VXLANS using net.

net abort
net commit [verbose] [confirm] [description ]
net commit delete (|)
net help [verbose]
net pending
net rollback (|last)

You can also use “net example” to get a handy list of configuration snippets broken down into scenarios. These can help you get started from a blank state.

Troubleshooting

net show commit (history|||last)
net show rollback (|last)
net show configuration [commands|files|acl|bgp|ospf|ospf6|interface ]

You can obviously also use standard Linux networking commands such as sudo ifup/ifdown/ifreload, ip link show, ip addr show etc.

3a. Cisco IOS XE

Configuration

You’re not supposed to configure anything directly from within the Linux shell on Cisco IOS XE, obviously that doesn’t apply to Guest Shell.

Troubleshooting

In READ-ONLY mode, you can pretty much see all of the inner workings of the systems using various Linux commands. Let me give you some examples.

tcpdump

ps

arp

ls / mount / pwd

top (to show top processes using up CPU cycles)

and others.

3b. Cisco IOS XR

Configuration

You can use run or just connect directly to AUX port to get access to Linux shell on an IOS XR device. Again, you’re not supposed to configure anything directly from within the Linux shell on Cisco IOS XR.

Troubleshooting

tcpdump

ps

arp

ls / mount / pwd

top (to show top processes using up CPU cycles)

and others.

3c. Cisco NX-OS

Configuration

In NX-OS, you can access bash shell if you are part of the dev-ops role obviously if you’re an admin.

Besides the read-only stuff, you can also install and run python from within the bash shell. This bash access is in addition to the Guest Shell access which is totally decoupled execution space running within an LXC.

Troubleshooting

tcpdump

ps

arp

ls / mount / pwd

top (to show top processes using up CPU cycles)

and others.

3d. Arista EOS

Configuration

You can use under the cover Linux for writing your shell or python scripts in addition to DevOps tools such as Ansible. You can also add your VMs or containers to it.

Troubleshooting

You can manage Arista switches much like Linux machines with the exception of the overall system software. You can add extensions using YUM.

tcpdump

ps

arp

ls / mount / pwd

top (to show top processes using up CPU cycles)

and others.

3e. Junos OS

Configuration

You can access Linux shell inside Junos OS but you’re not supposed to configure anything directly from within the Linux shell. However, once inside the shell (start shell), you will find all of the file system commands there.

Troubleshooting

tcpdump

ps

arp

ls / mount / pwd

top (to show top processes using up CPU cycles)

and others.

How useful was this post?

Author:Muhammad Afaq Khan, CCIE #9070

Muhammad Afaq Khan started his professional career at Cisco TAC San Jose and passed his first CCIE in 2002. He held multiple technical and management positions at Cisco HQ over his 11 years tenure at the company before moving into cloud software and data center infrastructure IT markets. He has worked at startups as well as Fortune 100 companies in senior leadership positions over his career. He is also a published author (Cisco Press, 2009) and holds multiple patents in the areas of networking, security and virtualization. Currently, he is a founder at Full Stack Networker and a vocal advocate for network automation technologies and NetDevOps.

Leave a Reply