我們有時可能需要在遠端機器上執行一些命令。如果只是偶爾進行的操作,要實現這個目的,可以登入到遠端系統上直接執行命令。但是每次都這麼做的話,就有點煩人了。既然如此,有沒有擺脫這種麻煩操作的更佳方案?
是的,你可以從你本地系統上執行這些操作,而不用登入到遠端系統上。這有什麼好處嗎?毫無疑問。這會為你節省很多好時光。
這是怎麼實現的?SSH 允許你無需登入到遠端計算機就可以在它上面執行命令。
通用語法如下所示:
$ ssh [使用者名稱]@[遠端主機名或 IP] [命令或指令碼]
下面的例子允許使用者通過 ssh 在遠端 Linux 機器上執行 df 命令。
$ ssh [email protected] df -h Filesystem Size Used Avail Use% Mounted on /dev/mapper/centos-root 27G 4.4G 23G 17% / devtmpfs 903M 0 903M 0% /dev tmpfs 920M 0 920M 0% /dev/shm tmpfs 920M 9.3M 910M 2% /run tmpfs 920M 0 920M 0% /sys/fs/cgroup /dev/sda1 1014M 179M 836M 18% /boot tmpfs 184M 8.0K 184M 1% /run/user/42 tmpfs 184M 0 184M 0% /run/user/1000
下面的例子允許使用者通過 ssh 在遠端 Linux 機器上一次執行多條命令。
同時在遠端 Linux 系統上執行 uptime
命令和 free
命令。
$ ssh [email protected] "uptime && free -m" 23:05:10 up 10 min, 0 users, load average: 0.00, 0.03, 0.03 total used free shared buffers cached Mem: 1878 432 1445 1 100 134 -/+ buffers/cache: 197 1680 Swap: 3071 0 3071
下面的例子允許使用者通過 ssh 在遠端 Linux 機器上執行帶有 sudo 許可權 的 fdisk
命令。
普通使用者不允許執行系統二進位制(/usr/sbin/
)目錄下提供的命令。使用者需要 root 許可權來執行它。
所以你需要 root 許可權,好在 Linux 系統上執行 fdisk 命令。which
命令返回給定命令的完整可執行路徑。
$ which fdisk /usr/sbin/fdisk
$ ssh -t [email protected] "sudo fdisk -l" [sudo] password for daygeek: Disk /dev/sda: 32.2 GB, 32212254720 bytes, 62914560 sectors Units = sectors of 1 * 512 = 512 bytes Sector size (logical/physical): 512 bytes / 512 bytes I/O size (minimum/optimal): 512 bytes / 512 bytes Disk label type: dos Disk identifier: 0x000bf685 Device Boot Start End Blocks Id System /dev/sda1 * 2048 2099199 1048576 83 Linux /dev/sda2 2099200 62914559 30407680 8e Linux LVM Disk /dev/sdb: 10.7 GB, 10737418240 bytes, 20971520 sectors Units = sectors of 1 * 512 = 512 bytes Sector size (logical/physical): 512 bytes / 512 bytes I/O size (minimum/optimal): 512 bytes / 512 bytes Disk /dev/mapper/centos-root: 29.0 GB, 28982640640 bytes, 56606720 sectors Units = sectors of 1 * 512 = 512 bytes Sector size (logical/physical): 512 bytes / 512 bytes I/O size (minimum/optimal): 512 bytes / 512 bytes Disk /dev/mapper/centos-swap: 2147 MB, 2147483648 bytes, 4194304 sectors Units = sectors of 1 * 512 = 512 bytes Sector size (logical/physical): 512 bytes / 512 bytes I/O size (minimum/optimal): 512 bytes / 512 bytes Connection to centos7.2daygeek.com closed.
下面的例子允許使用者通過 ssh 在遠端 Linux 機器上執行帶有 sudo 許可權的服務控制命令。
$ ssh -t [email protected] "sudo systemctl restart httpd" [sudo] password for daygeek: Connection to centos7.2daygeek.com closed.
下面的例子允許使用者通過 ssh 在使用了非標準埠的遠端 Linux 機器上執行 hostnamectl 命令。
$ ssh -p 2200 [email protected] hostnamectl Static hostname: Ubuntu18.2daygeek.com Icon name: computer-vm Chassis: vm Machine ID: 27f6c2febda84dc881f28fd145077187 Boot ID: bbeccdf932be41ddb5deae9e5f15183d Virtualization: oracle Operating System: Ubuntu 18.04.2 LTS Kernel: Linux 4.15.0-60-generic Architecture: x86-64
下面的例子允許使用者通過 ssh 在遠端 Linux 機器上執行 top 命令,並將輸出儲存到本地系統。
$ ssh [email protected] "top -bc | head -n 35" > /tmp/top-output.txt
cat /tmp/top-output.txt top - 01:13:11 up 18 min, 1 user, load average: 0.01, 0.05, 0.10 Tasks: 168 total, 1 running, 167 sleeping, 0 stopped, 0 zombie %Cpu(s): 0.0 us, 6.2 sy, 0.0 ni, 93.8 id, 0.0 wa, 0.0 hi, 0.0 si, 0.0 st KiB Mem : 1882300 total, 1176324 free, 342392 used, 363584 buff/cache KiB Swap: 2097148 total, 2097148 free, 0 used. 1348140 avail Mem PID USER PR NI VIRT RES SHR S %CPU %MEM TIME+ COMMAND 4943 daygeek 20 0 162052 2248 1612 R 10.0 0.1 0:00.07 top -bc 1 root 20 0 128276 6936 4204 S 0.0 0.4 0:03.08 /usr/lib/sy+ 2 root 20 0 0 0 0 S 0.0 0.0 0:00.00 [kthreadd] 3 root 20 0 0 0 0 S 0.0 0.0 0:00.25 [ksoftirqd/+ 4 root 20 0 0 0 0 S 0.0 0.0 0:00.00 [kworker/0:+ 5 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [kworker/0:+ 7 root rt 0 0 0 0 S 0.0 0.0 0:00.00 [migration/+ 8 root 20 0 0 0 0 S 0.0 0.0 0:00.00 [rcu_bh] 9 root 20 0 0 0 0 S 0.0 0.0 0:00.77 [rcu_sched] 10 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [lru-add-dr+ 11 root rt 0 0 0 0 S 0.0 0.0 0:00.01 [watchdog/0] 13 root 20 0 0 0 0 S 0.0 0.0 0:00.00 [kdevtmpfs] 14 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [netns] 15 root 20 0 0 0 0 S 0.0 0.0 0:00.00 [khungtaskd] 16 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [writeback] 17 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [kintegrity+ 18 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [bioset] 19 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [bioset] 20 root 0 -20 0 0 0 S 0.0 0.0 0:00.00 [bioset]
或者你也可以使用以下格式在遠端系統上執行多條命令:
$ ssh [email protected] << EOFhostnamectlfree -mgrep daygeek /etc/passwdEOF
上面命令的輸出如下:
Pseudo-terminal will not be allocated because stdin is not a terminal. Static hostname: CentOS7.2daygeek.com Icon name: computer-vm Chassis: vm Machine ID: 002f47b82af248f5be1d67b67e03514c Boot ID: dca9a1ba06374d7d96678f9461752482 Virtualization: kvm Operating System: CentOS Linux 7 (Core) CPE OS Name: cpe:/o:centos:centos:7 Kernel: Linux 3.10.0-957.el7.x86_64 Architecture: x86-64 total used free shared buff/cache available Mem: 1838 335 1146 11 355 1314 Swap: 2047 0 2047 daygeek:x:1000:1000:2daygeek:/home/daygeek:/bin/bash
下面的例子允許使用者通過 ssh 在遠端 Linux 機器上執行本地 bash 指令碼 remote-test.sh
。
建立一個 shell 指令碼並執行它。
$ vi /tmp/remote-test.sh#!/bin/bash#Name: remote-test.sh#-------------------- uptime free -m df -h uname -a hostnamectl
上面命令的輸出如下:
$ ssh [email protected] 'bash -s' < /tmp/remote-test.sh 01:17:09 up 22 min, 1 user, load average: 0.00, 0.02, 0.08 total used free shared buff/cache available Mem: 1838 333 1148 11 355 1316 Swap: 2047 0 2047 Filesystem Size Used Avail Use% Mounted on /dev/mapper/centos-root 27G 4.4G 23G 17% / devtmpfs 903M 0 903M 0% /dev tmpfs 920M 0 920M 0% /dev/shm tmpfs 920M 9.3M 910M 2% /run tmpfs 920M 0 920M 0% /sys/fs/cgroup /dev/sda1 1014M 179M 836M 18% /boot tmpfs 184M 12K 184M 1% /run/user/42 tmpfs 184M 0 184M 0% /run/user/1000 Linux CentOS7.2daygeek.com 3.10.0-957.el7.x86_64 #1 SMP Thu Nov 8 23:39:32 UTC 2018 x86_64 x86_64 x86_64 GNU/Linux Static hostname: CentOS7.2daygeek.com Icon name: computer-vm Chassis: vm Machine ID: 002f47b82af248f5be1d67b67e03514c Boot ID: dca9a1ba06374d7d96678f9461752482 Virtualization: kvm Operating System: CentOS Linux 7 (Core) CPE OS Name: cpe:/o:centos:centos:7 Kernel: Linux 3.10.0-957.el7.x86_64 Architecture: x86-64
或者也可以使用管道。如果你覺得輸出不太好看,再做點修改讓它更優雅些。
$ vi /tmp/remote-test-1.sh#!/bin/bash#Name: remote-test.sh echo "---------System Uptime--------------------------------------------" uptime echo -e "\n" echo "---------Memory Usage---------------------------------------------" free -m echo -e "\n" echo "---------Disk Usage-----------------------------------------------" df -h echo -e "\n" echo "---------Kernel Version-------------------------------------------" uname -a echo -e "\n" echo "---------HostName Info--------------------------------------------" hostnamectl echo "------------------------------------------------------------------"
上面指令碼的輸出如下:
$ cat /tmp/remote-test.sh | ssh [email protected] Pseudo-terminal will not be allocated because stdin is not a terminal. ---------System Uptime-------------------------------------------- 03:14:09 up 2:19, 1 user, load average: 0.00, 0.01, 0.05 ---------Memory Usage--------------------------------------------- total used free shared buff/cache available Mem: 1838 376 1063 11 398 1253 Swap: 2047 0 2047 ---------Disk Usage----------------------------------------------- Filesystem Size Used Avail Use% Mounted on /dev/mapper/centos-root 27G 4.4G 23G 17% / devtmpfs 903M 0 903M 0% /dev tmpfs 920M 0 920M 0% /dev/shm tmpfs 920M 9.3M 910M 2% /run tmpfs 920M 0 920M 0% /sys/fs/cgroup /dev/sda1 1014M 179M 836M 18% /boot tmpfs 184M 12K 184M 1% /run/user/42 tmpfs 184M 0 184M 0% /run/user/1000 tmpfs 184M 0 184M 0% /run/user/0 ---------Kernel Version------------------------------------------- Linux CentOS7.2daygeek.com 3.10.0-957.el7.x86_64 #1 SMP Thu Nov 8 23:39:32 UTC 2018 x86_64 x86_64 x86_64 GNU/Linux ---------HostName Info-------------------------------------------- Static hostname: CentOS7.2daygeek.com Icon name: computer-vm Chassis: vm Machine ID: 002f47b82af248f5be1d67b67e03514c Boot ID: dca9a1ba06374d7d96678f9461752482 Virtualization: kvm Operating System: CentOS Linux 7 (Core) CPE OS Name: cpe:/o:centos:centos:7 Kernel: Linux 3.10.0-957.el7.x86_64 Architecture: x86-64
下面的 bash 指令碼允許使用者同時在多個遠端系統上執行多條指令。使用簡單的 for
迴圈實現。
為了實現這個目的,你可以嘗試 PSSH 命令 或 ClusterShell 命令 或 DSH 命令。
$ vi /tmp/multiple-host.sh for host in CentOS7.2daygeek.com CentOS6.2daygeek.com do ssh daygeek@${host} "uname -a;uptime;date;w" done
上面指令碼的輸出如下:
$ sh multiple-host.sh Linux CentOS7.2daygeek.com 3.10.0-957.el7.x86_64 #1 SMP Thu Nov 8 23:39:32 UTC 2018 x86_64 x86_64 x86_64 GNU/Linux 01:33:57 up 39 min, 1 user, load average: 0.07, 0.06, 0.06 Wed Sep 25 01:33:57 CDT 2019 01:33:57 up 39 min, 1 user, load average: 0.07, 0.06, 0.06 USER TTY FROM [email protected] IDLE JCPU PCPU WHAT daygeek pts/0 192.168.1.6 01:08 23:25 0.06s 0.06s -bash Linux CentOS6.2daygeek.com 2.6.32-754.el6.x86_64 #1 SMP Tue Jun 19 21:26:04 UTC 2018 x86_64 x86_64 x86_64 GNU/Linux 23:33:58 up 39 min, 0 users, load average: 0.00, 0.00, 0.00 Tue Sep 24 23:33:58 MST 2019 23:33:58 up 39 min, 0 users, load average: 0.00, 0.00, 0.00 USER TTY FROM [email protected] IDLE JCPU PCPU WHAT
如果你覺得每次輸入密碼很麻煩,我建議你視你的需求選擇以下方法中的一項來解決這個問題。
如果你經常進行類似的操作,我建議你設定 免密碼認證,因為它是標準且永久的解決方案。
如果你一個月只是執行幾次這些任務,我推薦你使用 sshpass
工具。只需要使用 -p
引數選項提供你的密碼即可。
$ sshpass -p '在這裡輸入你的密碼' ssh -p 2200 [email protected] ip a 1: lo: mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever inet6 ::1/128 scope host valid_lft forever preferred_lft forever 2: eth0: mtu 1500 qdisc pfifo_fast state UP group default qlen 1000 link/ether 08:00:27:18:90:7f brd ff:ff:ff:ff:ff:ff inet 192.168.1.12/24 brd 192.168.1.255 scope global dynamic eth0 valid_lft 86145sec preferred_lft 86145sec inet6 fe80::a00:27ff:fe18:907f/64 scope link tentative dadfailed valid_lft forever preferred_lft forever