Top 30 Networking Commands for Linux Administrators

A Linux distribution also abbreviated as a distro and is distributed freely under GNU. Since Linux became a buzzword many organizations have started offering professional support and there are many sites on the Net where Linux questions are answered for free. Of course, if you are good at coding you can tweak the source code directly. Linux distributions are free to download. Lets decryptinfo about the Top 30 Linux Networking commands.

arp command

ARP stands for Address Resolution Protocol, which is used to find the media access control address of a network neighbor for a given IPv4 Address. Arp manipulates or displays the kernel’s IPv4 network neighbor cache. It can add entries to the table, delete one or display the current content.


arpwatch command

Arpwatch keeps track for ethernet/ip address pairings. It syslogs activity and reports certain changes via email. Arpwatch can be used with various parameters. For example, if you use “-i” parameter, you can use arpwatch for a specific network interface. Or you can use “-d” parameter for debugging

bmon command

bmon command is used to monitor bandwidth, captures data, and provide human-readable data with this information. bmon is a monitoring and debugging tool to capture networking related statistics and prepare them visually in a human-friendly way. It features various output methods including an interactive curses user interface and a programmable text output for scripting.


curl command

curl command is one of the Network Commands in Ubuntu Linux that is used for file transfer. Curl can use various protocols like HTTP, HTTPS, FTP, FTPS, SFTP, SCP etc. curl offers a busload of useful tricks like proxy support, user authentication, FTP upload, HTTP post, SSL connections, cookies, file transfer resume, Metalink, and more.

dhclient command

The Internet Systems Consortium DHCP Client, dhclient, provides a means for configuring one or more network interfaces using the Dynamic Host Configuration Protocol, BOOTP protocol, or if these protocols fail, by statically assigning an address.

For example, to renew eth0 ip address, we can use the below command:


dig command

“dig” is the abbreviation of Domain Information Gropher. It is mostly used for simple DNS lookup to DNS Server like CName, MX records etc. dig is a flexible tool for interrogating DNS name servers. It performs DNS lookups and displays the answers from the name server(s) that were queried. Most DNS administrators use dig to troubleshoot DNS problems because of its flexibility, ease of use and clarity of output.

dstat command

Dstat is a multipurpose replacement for vmstat, iostat and ifstat. Dstat overcomes some of the limits and adds some extra features. Dstat allows you to view all of system resources instantly. This command is also used with Python and extend its functionality.


ethtool command

ethtool is used to query and control network device driver and hardware settings, particularly for wired Ethernet devices. To check the settings of your Network Interface Card (NIC), you can use ethtool command.

ftp command

FTP is the most used File Transfer Protocol used with ubuntu Linux. With ftp command, you can connect ftp session and you can transfer files. You can also connect straight to the remote host with ftp command.


host command

Host command is used IP-Name matchings. You can get the results both for IPv4 and IPv6. It is normally used to convert names to IP addresses and vice versa.

ifstat command

Ifstat is a tool to report interface activity, just like iostat/vmstat do for other system statistics. These statistics can be bandwidth usage, received frames, discarded frames, errors, collisions etc.

ip addr command

“ip addr” command is the ubuntu Linux cmd that is used for network interfaces and routing activities. The earlier command used instead of this command was “ifconfig”. With this mint Linux network cmd, you can both check the interface information like ip addresses, MAC values etc, and you can modify ip addresses.


iptables command

iptables cmd is used for ip packet filtering. With iptables command, we can set up iptable rules and prevent unauthorized access to OS, network. iptables cmd can be used with various parameters.

$ iptables [-t <table-name>] <command> <chain-name> <parameter-1> \<option-1> <parameter-n> <option-n>

There is a “chain” that includes several rule.And there are “tables” that includes several chains. To list the rules under chains and tables, we can use “-L” and “-t“ parameters.


iftop command

iftop ubuntu operating system command is one of the Network Commands in Mint Linux used to display current bandwidth usage on existing network interfaces. You can also use this command for a specific interface with “-i” parameter. iftop listens to network traffic on a named interface, and displays a table of current bandwidth usage by pairs of hosts.


iwconfig command

iwconfig is similar to ifconfig used in redhat linux, iwconfig command is used to configure wireless interfaces. You can configure SSID, frequencies etc. any other parameters related to your wireless network interface. All these parameters and statistics are device dependent.

netstat command

To check network connections, we use “netstat” command on ubuntu Linux. “netstat” cmd is very useful especially for troubleshooting activities. It shows network connections, routing tables, interface statistics, masquerade connections, and multicast memberships


nload command

nload command is also a bandwidth monitoring tool. It also shows the total bandwith usage, minimum bandwith usage, maximum bandwith usage etc. It visualizes the in- and outgoing traffic using two graphs and provides additional info like the total amount of transferred data and min/max network usage.


nmap command

Nmap (“Network Mapper”) is an open source tool in ubuntu linux for network exploration and this mint linux command is used for security audits. Nmap shows, which services are available and their offerings, operating systems, other characteristic etc. The output from Nmap is a list of scanned targets, with information on each depending on the switch used. Key among that information is the “ports table”


nslookup command

“nslookup” is used also for DNS Query(DNS lookup). It gives DNS Server information. Nslookup linux mint command has two modes: interactive and non-interactive. Interactive mode allows to query name servers for information about hosts and domains. Non-interactive mode is used to print just the name and requested information for a host or domain.


ping command

“ping” command is the most used command in the networking world. Ping command is used on Linux Mint similar with the other platforms like cisco, juniper etc. “ping” command can be used with various options. ping works with both IPv4 and IPv6. Using only one of them explicitly can be enforced by specifying -4 or -6.


route command

To check the IP Routing Table on Ubuntu Linux machine, “route” command is used. Its primary use is to set up static routes to specific hosts or networks via an interface. Routing Table can be manuplated also with additional parameters like “add”, “delete”, “flush”.

e.g. To add a route:

$ route add -net gw

To delete a route:

$ route del -net gw


scp command

scp” is used to secured file transfer between different hosts. You can copy your files to another device in the network. It uses ssh for data transfer, and uses the same authentication and security as ssh client. You can copy both files and directories. For directories, you use “-r” parameter

From local host to remote host:

$ scp $filename user@targetmachine:remotemachine_path

From remote host to local host:

$ scp user@targetmachine:remotemachine_path local_path

sftp command

sftp is a file transfer program in linux mint OS, similar to ftp service, which performs all operations over an encrypted ssh transport. It is a secure file transfer protocol. With SFTP, FTP is used over SSH.


ss command

ss cmd gives detailed information about the sockets.We can use “-l” option to list listening sockets and “-t” option for tcp connections only. It allows showing information similar to netstat command. It can display more TCP and state information than other tools.


ssh command

“ssh” is a secure connection command used in networking. In Ubuntu Linux, we can use “ssh” to connect any node. We can use “ssh” command with username and IP or Domain name. ssh connects and logs into the definite destination, which may be specified as either [user@]hostname or a URL of the form ssh://[user@]hostname[:port].


tshark command

tshark command is one of the Network Commands in Mint Linux used for analyze packet and its is stronger command than tcpdump command. It is a Wireshark utility. It will use the pcap library to capture traffic from the available network interface and displays a summary line on the output for each received packet.


To capture the traffic on an interface, we can use it with “-i” parameter.

$ sudo tshark –i enp0s3


hping3 command

hping3 command is also a packet analyzing tool that can analyze and assemble TCP, UDP, ICMP etc. packets. With hping3 command, you can start the session and then you can write its commands. It is used for penetration testing, firewall testing, network testing, advanced port scanning, advanced traceroute, tcp/ip stack auditing etc hping3_decryptinfo

tcpdump command

Tcpdump command is the most used command for analyzing and capturing packets in RedHat Linux. With this command, you can see TCP transmissions on your network. It can also be run with the -w switch, which causes it to save the packet data to a file for analysis


telnet command

“telnet” is a connection command used in networking. In Linux mint, we can use “telnet” to connect any service. We can use only ip address and port number with “telnet” command. It is not so secure command as ssh. Telnet service is dependent on xinetd service.


tracepath command

tracepath command is a similar path tracking Linux Mint command like traceroute command. It uses UDP port port or some random port. It is similar to traceroute, only does not require superuser privileges. With tracepath command, you can list the host series on the way to a destinationtracepath_decryptinfo


, , , , , , , , , ,