<DIV ALIGN=CENTER>

# Unix Networking   
## Professor Robert J. Brunner
  
</DIV>  
-----
-----

## Unix Networking Overview

Unix-based operating systems form the backbone of the Internet. However,
Unix is often used as a command line operating system. Thus there are a
number of useful commands and tools that allow you to explore the
networked world, to connect to remote computers, and to move data
between systems. In this lesson, we will explore:

- discovering and identifying network systems
- remote connections to networked systems
- data transport between networked systems

-----

## Network Discovery

When using a web browser, you are likely familiar with finding resources
by entering a human readable name, like google.com or illinois.edu.
Computers only work with numbers, however, so in reality networks
operate by associated names to numbers. The formal specification for
this is currently known as [IPv6](https://en.wikipedia.org/wiki/IPv6).
The former specification, [IPv4](https://en.wikipedia.org/wiki/IPv4)
provided a four byte address for a computer on a network. Many of the
commands we use still display the more easily understood IPV4 format.
The mapping between human readable name (like google.com) and an IP
address used by computers is handled by the domain name service (DNS).

The following list summarizes some of the more useful Unix network
commands:

### `hostname`

Used to find out the name and IP address of the current host system

    $ hostname
    
### `ping`

Used to test a connection to a remote host. Can use the regular names or
ip address.

    $ ping google.com
   
### `traceroute`

Used to find the route and time taken by communications sent from your
host to reach the target host.

    $ traceroute google.com

### `dig`

Used to find the ip address of a networked resource with a given name.

    $ dig google.com

### `ifconfig`

Used to obtain detailed networking configuration information for the
current host system.

    $ ifconfig

Note: these commands can be demonstrated by using a regular Unix shell,
for example the boot2docker shell, but may not work properly in our
Docker course container.

-----

## Secure Shell

With the growth of the Internet, standard mechanisms for network
communication needed to be made more secure. This led to the development
of the cryptographic network protocol for secure communications between
two systems. Secure Shell (SSH) allows a user to securely connect to a
remote system or to securely transfer files. The later functionality
is generally done by using the Secure Shell cp `scp` or Secure Shell ftp
`sftp` commands.

SSH relies on public-private key pairs to enable robust compression.
These keys are generated by the
[`ssh-keygen`](https://en.wikipedia.org/wiki/Ssh-keygen) command.

### Secure connection

To connect to a remote computer by using SSH, we simply need to have our
remote username and the remote system name:

    $ ssh profbrunner@data.illinois.edu

As part of the connection process, you will be required to enter your
password on the remote system. When you connect for the first time (or
if a machine name has changed its IP address) you may be presented with
a warning message requesting that you double check the machine to which
you are trying to connect. One example of where this can be important is
to prevent a _man-in-the-middle_ attack where a hostile entity changes
the IP-name mapping so that you are directed to connect to a system
different than what you expect.

### Secure file transport

To transport files by using scp, a similar format is used, depending on
whether files are being pulled or pushed.

To pull a file from a remote host and save it locally:

    $ scp profbrunner@data.illinois.edu:/home/profbrunner/myfile .

To push a file to a remote host:  

    $ scp myfile profbrunner@data.illinois.edu:/home/profbrunner/

There is a recursive option `-r` to enable directory structures to be
transported.

-----

## Anonymous file download

In many instances, we simply want to grab a file (or files) from an
Internet resource, like a website. The simplest command to grab a file
from a website is the `wget` command. When given a URL to the desired
resource, `wget` will retrieve the file and save it locally. 

    $ wget http://w3c.org

![WGET example](images/wget.png)

`wget` is a powerful program with many options. For example, `wget` can
recursively download an entire directory structure (which can be
dangerous as you can easily fill up your available disk space!).
     
-----

## Connect to Running Container

While `ssh` is a secure method to connect to a host machine, we can't
use it to connect to a running docker container (at least not with our
course docker image) since there is no ssh server running in the
container. There are several options for connecting to a running
container (i.e., `nsenter`), which can be very useful when a container
is running in non-interactive mode (e.g., as a web server, or an ipython
notebook server).

To connect to a Docker container running on a local host (for example,
if we run the JupyterHub server locally), we can use the `docker exec`
command. In this case, we will want to run this command in interactive
mode and to start a bash shell. Given a container name, from `docker
ps`, we can connect to a running container:

    $ docker exec -it standalone /bin/bash
    

![Docker Connect](images/docker-exec.png)

As shown in the preceding figure, we have connected to the running
Docker container and not a new container created form the original
course image.

-----

### Additional References

1. A tutorial for [`ssh`](http://support.suso.com/supki/SSH_Tutorial_for_Linux)
2. Wikipedia page for [`wget`](https://en.wikipedia.org/wiki/Wget)
-----

### Return to the [Course Index](index.ipynb).

-----