Author Topic: Mtr Reports and whois how to  (Read 1359 times)

lorentedford

  • Administrator
  • Newbie

  • Offline
  • *****
  • 13
  • Karma:
    +0/-0
  • Personal Text
    Owner and Server Administrator
    • View Profile
    • lorentedford.com
  • Callsign: KC9ZHV
Mtr Reports and whois how to
« on: August 03, 2016, 03:16:30 PM »
Greetings if your using Allstarlink and you have the Dial distro running you might want to install a couple of things mtr and whois.

Lets first start off with mtr reports and what they do.. Mtr reports help you figure out where latency and packet loss is coming from.. This is important when you go to call your internet service provider you can provide them with detailed information to help get your issue resolved.. Unfortunately most Internet Service providers don't train their customer support people on this topic and the reason probably is because it will cost the company money to generally fix the issue correctly..

Installation of mtr and whois
Code: [Select]
sudo apt-get update
sudo apt-get upgrade
sudo apt-get install mtr whois

(Note it is often important to download those security related updates..)

Ok lets talk a little about how to use mtr report via command line.. 

Here is an Example command
Code: [Select]
mtr -rwc 100 google.com
Now this might output some thing like this..

Code: [Select]
HOST: webserver.lorentedford.com Loss%   Snt   Last   Avg  Best  Wrst StDev
  1. 192.99.13.252               0.0%   100    4.6   3.9   0.8  14.6   2.9
  2. po111.bhs-g1-a75.qc.ca      0.0%   100    0.4   0.4   0.2   6.5   0.6
  3. be10-20.bhs-g1-a9.qc.ca     0.0%   100    1.2   2.3   0.8  10.7   2.2
  4. be100-1037.nwk-1-a9.nj.us   0.0%   100    9.4   9.3   9.0  10.3   0.2
  5. po8.ash-1-6k.va.us         64.0%   100   15.3  20.0  15.2  60.6  11.6
  6. ???                        100.0   100    0.0   0.0   0.0   0.0   0.0
  7. 216.239.46.250              0.0%   100   23.8  23.8  23.5  42.7   1.9
  8. 72.14.236.146               0.0%   100   15.8  16.5  15.6  48.4   4.7
  9. 72.14.239.92                0.0%   100   15.7  16.3  15.5  54.4   4.0
 10. 72.14.236.209               0.0%   100   15.7  18.0  15.6  40.1   6.2
 11. 72.14.252.27                1.0%   100   16.0  16.4  15.9  42.5   2.9
 12. lga15s48-in-f14.1e100.net   0.0%   100   15.6  16.2  15.5  44.9   3.7


Now looking at this you see a ??? and 100% packet loss generally speaking that particular route is hidden you are probably getting packets through that route ok but its more important to check the pings before and after that line..

Now above you can see 64% packet loss on po8.ash-1-6k.va.us    That is a problem voip communications often times have issues when you get packet loss like this..


Lets talk a bit about the command we ran and exactly what does it do..
ok mtr -rwc 100 google.com

mtr = the program used to run
-rwc = Not sure always have used it..
100 = The amount of packets you want to send generally speaking the more packets the better but don't get too carried away..
google.com = This is where you can insert any ip or domain name..

Now lets talk about whois and what exactly it does..

whois lets you revers Ips to the name of the Internet Service Provider and generally speaking provides some information on how to contact them..
Example command
Code: [Select]
whois voipham.com
It should output some thing like this..


Code: [Select]
Whois Server Version 2.0

Domain names in the .com and .net domains can now be registered
with many different competing registrars. Go to http://www.internic.net
for detailed information.

   Domain Name: VOIPHAM.COM
   Registrar: ENOM, INC.
   Sponsoring Registrar IANA ID: 48
   Whois Server: whois.enom.com
   Referral URL: http://www.enom.com
   Name Server: DNS1.REGISTRAR-SERVERS.COM
   Name Server: DNS2.REGISTRAR-SERVERS.COM
   Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
   Updated Date: 25-jul-2016
   Creation Date: 11-jul-2016
   Expiration Date: 11-jul-2017

>>> Last update of whois database: Wed, 03 Aug 2016 20:28:23 GMT <<<

For more information on Whois status codes, please visit https://icann.org/epp

NOTICE: The expiration date displayed in this record is the date the
registrar's sponsorship of the domain name registration in the registry is
currently set to expire. This date does not necessarily reflect the expiration
date of the domain name registrant's agreement with the sponsoring
registrar.  Users may consult the sponsoring registrar's Whois database to
view the registrar's reported date of expiration for this registration.

TERMS OF USE: You are not authorized to access or query our Whois
database through the use of electronic processes that are high-volume and
automated except as reasonably necessary to register domain names or
modify existing registrations; the Data in VeriSign Global Registry
Services' ("VeriSign") Whois database is provided by VeriSign for
information purposes only, and to assist persons in obtaining information
about or related to a domain name registration record. VeriSign does not
guarantee its accuracy. By submitting a Whois query, you agree to abide
by the following terms of use: You agree that you may use this Data only
for lawful purposes and that under no circumstances will you use this Data
to: (1) allow, enable, or otherwise support the transmission of mass
unsolicited, commercial advertising or solicitations via e-mail, telephone,
or facsimile; or (2) enable high volume, automated, electronic processes
that apply to VeriSign (or its computer systems). The compilation,
repackaging, dissemination or other use of this Data is expressly
prohibited without the prior written consent of VeriSign. You agree not to
use electronic processes that are automated and high-volume to access or
query the Whois database except as reasonably necessary to register
domain names or modify existing registrations. VeriSign reserves the right
to restrict your access to the Whois database in its sole discretion to ensure
operational stability.  VeriSign may restrict or terminate your access to the
Whois database for failure to abide by these terms of use. VeriSign
reserves the right to modify these terms at any time.

The Registry database contains ONLY .COM, .NET, .EDU domains and
Registrars.


Domain Name: VOIPHAM.COM
Registry Domain ID: 2042076045_DOMAIN_COM-VRSN
Registrar WHOIS Server: whois.enom.com
Registrar URL: www.enom.com
Updated Date: 2016-07-11T14:01:22.00Z
Creation Date: 2016-07-11T21:01:00.00Z
Registrar Registration Expiration Date: 2017-07-11T21:01:00.00Z
Registrar: ENOM, INC.
Registrar IANA ID: 48
Reseller: NAMECHEAP.COM
Domain Status: clientTransferProhibited https://www.icann.org/epp#clientTransferProhibited
Registry Registrant ID:
Registrant Name: WHOISGUARD PROTECTED
Registrant Organization: WHOISGUARD, INC.
Registrant Street: P.O. BOX 0823-03411
Registrant City: PANAMA
Registrant State/Province: PANAMA
Registrant Postal Code: 00000
Registrant Country: PA
Registrant Phone: +507.8365503
Registrant Phone Ext:
Registrant Fax: +51.17057182
Registrant Fax Ext:
Registrant Email: 41C094CAF1434E2184EF17EC1FB629AC.PROTECT@WHOISGUARD.COM
Registry Admin ID:
Admin Name: WHOISGUARD PROTECTED
Admin Organization: WHOISGUARD, INC.
Admin Street: P.O. BOX 0823-03411
Admin City: PANAMA
Admin State/Province: PANAMA
Admin Postal Code: 00000
Admin Country: PA
Admin Phone: +507.8365503
Admin Phone Ext:
Admin Fax: +51.17057182
Admin Fax Ext:
Admin Email: 41C094CAF1434E2184EF17EC1FB629AC.PROTECT@WHOISGUARD.COM
Registry Tech ID:
Tech Name: WHOISGUARD PROTECTED
Tech Organization: WHOISGUARD, INC.
Tech Street: P.O. BOX 0823-03411
Tech City: PANAMA
Tech State/Province: PANAMA
Tech Postal Code: 00000
Tech Country: PA
Tech Phone: +507.8365503
Tech Phone Ext:
Tech Fax: +51.17057182
Tech Fax Ext:
Tech Email: 41C094CAF1434E2184EF17EC1FB629AC.PROTECT@WHOISGUARD.COM
Name Server: DNS1.REGISTRAR-SERVERS.COM
Name Server: DNS2.REGISTRAR-SERVERS.COM
DNSSEC: unSigned
Registrar Abuse Contact Email: abuse@enom.com
Registrar Abuse Contact Phone: +1.4252982646
URL of the ICANN WHOIS Data Problem Reporting System: http://wdprs.internic.net/
>>> Last update of WHOIS database: 2016-07-11T14:01:22.00Z <<<

For more information on Whois status codes, please visit https://icann.org/epp


The data in this whois database is provided to you for information
purposes only, that is, to assist you in obtaining information about or
related to a domain name registration record. We make this information
available "as is," and do not guarantee its accuracy. By submitting a
whois query, you agree that you will use this data only for lawful
purposes and that, under no circumstances will you use this data to: (1)
enable high volume, automated, electronic processes that stress or load
this whois database system providing you this information; or (2) allow,
enable, or otherwise support the transmission of mass unsolicited,
commercial advertising or solicitations via direct mail, electronic
mail, or by telephone. The compilation, repackaging, dissemination or
other use of this data is expressly prohibited without prior written
consent from us.

We reserve the right to modify these terms at any time. By submitting
this query, you agree to abide by these terms.
Version 6.3 4/3/2002

Now if you noticed it supplies you with email contact and all types of information.. This domains is protected so it does not show the owners info but a company that handles all the official request and gives the request to the owner..




« Last Edit: August 03, 2016, 03:31:35 PM by lorentedford »