Ping a Specific Port

Question

Adrian Cornish

Asked: 2012-07-05 16:44:19 +0800 CST2012-07-05 16:44:19 +0800 CST 2012-07-05 16:44:19 +0800 CST

Iproute2 tools vs conntrack tools

772

I have a linux box which is setup as firewall/gateway for the network. Was just wondering why ss and other iproute2 tools show much less than iptables conntrack. Is it because the router function is happening in kernel only?

ss -na

Shows only two established connections where as a

conntrack -L -n

Shows 18 Established connections.

1 Answers

Voted

mgorven · Answer 1 · 2012-07-05T17:17:10+08:00

Best Answer

mgorven

2012-07-05T17:17:10+08:002012-07-05T17:17:10+08:00

ss and netstat show connections terminated at that host, i.e. either outgoing connections created by a process on the host, or incoming connections handled by a process on the host. (Technically these show you sockets.) conntrack shows connections known by the connection tracking system, which includes connections being routed by but not terminated by that host. (Sockets don't exist for connections only being routed.)

5

Iproute2 tools vs conntrack tools

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?