All commands in Linux are equally important to manage Linux system / server.
Here I have listed some important commands that are widely used in Linux system / server administration.
Checking running Process on the server. [ ps, pstree ]
This command is used to check the process running on the server. ” ps ” command will list all the running process with there respective process ID.
Use the following option to get more process information from the ” ps ” commands,
Also you can grep any particular process on the server.
Also try the following options for ” pstree “.
Load on a server [ top, w , uptime ]
This command is used to find the load on the server. ” top ” command can also be used to find the process and users that causes load on the server. It gives information about the total process, sleeping process, the zombie process etc.
root@server [~]$ top -cd3
11:32:03 up 15 days, 23:57, 2 users, load average: 4.95, 5.13, 5.94
220 processes: 219 sleeping, 1 running, 0 zombie, 0 stopped
CPU states: cpu user nice system irq softirq iowait idle
total 1.5% 1.6% 2.4% 0.0% 0.0% 0.0% 94.3%
cpu00 3.4% 2.8% 2.8% 0.0% 0.0% 0.0% 90.9%
cpu01 0.3% 3.1% 0.0% 0.0% 0.0% 0.0% 96.5%
cpu02 2.5% 0.3% 6.5% 0.0% 0.0% 0.0% 90.6%
cpu03 0.0% 0.3% 0.3% 0.0% 0.0% 0.0% 99.3%
Mem: 3104932k av, 2909432k used, 195500k free, 0k shrd, 284548k buff
1201588k active, 1558304k inactive
Swap: 3004112k av, 499936k used, 2504176k free 1015264k cached
PID USER PRI NI SIZE RSS SHARE STAT %CPU %MEM TIME CPU COMMAND
3754 root 16 0 1252 1252 896 R 1.4 0.0 0:01 2 top -cd3
3620 nobody 9 0 61460 45M 28768 S 0.6 1.4 2:23 0 /usr/local/apache/bin/httpd -DSSL
3604 mailnull 9 0 4204 4116 2816 S 0.2 0.1 0:00 0 /usr/sbin/exim -bd -q60m
29956 root 9 0 4684 3384 2640 S 0.1 0.1 0:31 0 /etc/authlib/authProg
1 root 8 0 468 440 416 S 0.0 0.0 0:34 2 init 
From the above example you can see the load average, total processes, sleeping processes and the CPU usage. You can find the load average ( here the load average is ” 4.95 ” ), the memory usage, stats, swap and the list of process and its users.
This command is also find the load and users on the server. ” w ” command will provide a brief description about the load, time, number of users and the uptime of the server.
root@server [~]$ w
11:39:18 up 16 days, 4 min, 2 users, load average: 5.33, 5.37, 5.74
USER TTY FROM LOGIN@ IDLE JCPU PCPU WHAT
user1 pts/0 user – ip1 8:26am 3:13m 0.09s 0.00s sshd: user1 [priv]
user2 pts/3 user – ip2 11:09am 0.00s 0.13s 0.02s sshd: user2 [priv]
This command gives the basic information about the uptime and load of the server.
root@server [~]$ uptime
11:42:52 up 16 days, 8 min, 2 users, load average: 4.91, 5.35, 5.67
From the above example you can find the load and the number of days server running with out failure etc..
Killing process on a server [ kill, pkill, killall -9 ]
This command is used to kill a running process on the server. You need to process id to execute the kill command. Consider you run ” pstree -p ” which will list all the process with its respective process id. To kill a particular process use the command ” kill <process-id> “.
root@server [~]$ kill 27209
root@server [~]$ kill -9 27209
The above command will kill the process id 27209.
This command will kill the child processes of a particular process. Consider you want kill httpd on the server.
root@server [~]$ pkill httpd
root@server [~]$ pkill -9 httpd
root@server [~]$ pkill -HUP httpd
The above command will only kill all the child process of ” httpd “. Using this command the parent process will be running and all the child process will be killed.
This command is used to kill all the processes ( parent process and child process ).
root@server [~]$ killall -9 httpd
Checking the number of connection’s to the server [ netstat, mysqladmin processlist ]
This command is used to find the number of connections to the server. ” netstat ” command will list all the connections using httpd, exim, ftp etc. You can grep the needed port and find the number of connections to a particular port. You can find the Local Address, Foreign Address, State, port etc of all the connections.
root@server [~]$ netstat -plan
root@server [~]$ netstat -plan | grep “:80”
tcp 0 0 0.0.0.0:80 0.0.0.0:* LISTEN 15496/httpd
tcp 0 0 18.104.22.168:80 22.214.171.124:42469 SYN_RECV –
tcp 0 0 126.96.36.199:80 188.8.131.52:3922 SYN_RECV –
tcp 0 0 184.108.40.206:80 220.127.116.11:28343 SYN_RECV –
tcp 0 0 18.104.22.168:80 22.214.171.124:2157 TIME_WAIT –
This command is used to find the connections to the mysql database. It gives information about Id, User, Host, db, Command, Time, State and Info of a mysql request to the server.
root@server [~]$ mysqladmin processlist
| Id | User | Host | db | Command | Time | State | Info |
| 186678 | mfjengin_shops | localhost | mfjengin_rapid | Sleep | 28337 | | |
| 188706 | mfjengin_shops | localhost | mfjengin_rapid | Sleep | 27051 | | |
| 195090 | kronosho_usifu | localhost | kroho_sifu | Sleep | 23069 | | |
| 201227 | mfjengin_shops | localhost | mfjengin_rapid | Sleep | 19655 | |
Blocking IP [ apf, csf ]
|APF and CSF are firewall software’s.
You can use these commands to block a particular IP from connecting to the server. This command is mainly used when you find too many connections from a particular IP. Normally too many connection might be a attack to the server. So it is important to block such IP before it interrupts the balance of the server.
Check which firewall is installed on your server and use it accordingly.
root@server [~]$ apf -d <IP>
root@server [~]$ csf -d <IP>
Checking the port if open or not [ telnet, nmap ]
TELNET (TELecommunication NETwork) is a network protocol used on the Internet. TELNET is a client-server protocol, based on a reliable connection-oriented transport. This command will help us to find if a particular port on the server is open or not.
root@server [~]$ telnet google.com 80
Connected to google.com (126.96.36.199)
From the above example you could find that port 80 is open on google server. If we receive a ” connection refused ” signal, that mean’s the particular port is not open on the server.
This command nmap is a Network exploration tool and a security scanner.
Installing software’s [ yum ]
This command is used to install software’s to the server without any dependences.
yum install <software>
If you find any software’s missing on the server, you can directly install it using this yum command. It will install the particular software on the server without dependencies.