linux systemctl 命令完全指南-mile米乐体育

systemctl是一个systemd工具,主要负责控制systemd系统和服务管理器。

systemd是一个系统管理守护进程、工具和库的集合,用于取代system v初始进程。systemd的功能是用于集中管理和配置类unix系统。

在linux生态系统中,systemd被部署到了大多数的标准linux发行版中,只有为数不多的几个发行版尚未部署。systemd通常是所有其它守护进程的父进程,但并非总是如此。

使用systemctl管理linux服务

本文旨在阐明在运行systemd的系统上“如何控制系统和服务”。

systemd初体验和systemctl基础

1. 首先检查你的系统中是否安装有systemd并确定当前安装的版本

# systemd --version  systemd 215  pam  audit  selinux  ima  sysvinit  libcryptsetup  gcrypt  acl  xz -seccomp -apparmor

上例中很清楚地表明,我们安装了215版本的systemd。

2. 检查systemd和systemctl的二进制文件和库文件的安装位置

# whereis systemd  systemd: /usr/lib/systemd /etc/systemd /usr/share/systemd /usr/share/man/man1/systemd.1.gz  # whereis systemctl systemctl: /usr/bin/systemctl /usr/share/man/man1/systemctl.1.gz

3. 检查systemd是否运行

# ps -eaf | grep [s]ystemd  root         1     0  0 16:27 ?        00:00:00 /usr/lib/systemd/systemd --switched-root --system --deserialize 23 root       444     1  0 16:27 ?        00:00:00 /usr/lib/systemd/systemd-journald root       469     1  0 16:27 ?        00:00:00 /usr/lib/systemd/systemd-udevd root       555     1  0 16:27 ?        00:00:00 /usr/lib/systemd/systemd-logind dbus       556     1  0 16:27 ?        00:00:00 /bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation

注意:systemd是作为父进程(pid=1)运行的。在上面带(-e)参数的ps命令输出中,选择所有进程,(-a)选择除会话前导外的所有进程,并使用(-f)参数输出完整格式列表(即 -eaf)。

也请注意上例中后随的方括号和例子中剩余部分。方括号表达式是grep的字符类表达式的一部分。

4. 分析systemd启动进程

# systemd-analyze startup finished in 487ms (kernel)   2.776s (initrd)   20.229s (userspace) = 23.493s

5. 分析启动时各个进程花费的时间

# systemd-analyze blame  8.565s mariadb.service 7.991s webmin.service 6.095s postfix.service 4.311s httpd.service 3.926s firewalld.service 3.780s kdump.service 3.238s tuned.service 1.712s network.service 1.394s lvm2-monitor.service 1.126s systemd-logind.service ....

6. 分析启动时的关键链

# systemd-analyze critical-chain  the time after the unit is active or started is printed after the "@" character. the time the unit takes to start is printed after the " " character.  multi-user.target @20.222s └─mariadb.service @11.657s  8.565s   └─network.target @11.168s     └─network.service @9.456s  1.712s       └─networkmanager.service @8.858s  596ms         └─firewalld.service @4.931s  3.926s           └─basic.target @4.916s             └─sockets.target @4.916s               └─dbus.socket @4.916s                 └─sysinit.target @4.905s                   └─systemd-update-utmp.service @4.864s  39ms                     └─auditd.service @4.563s  301ms                       └─systemd-tmpfiles-setup.service @4.485s  69ms                         └─rhel-import-state.service @4.342s  142ms                           └─local-fs.target @4.324s                             └─boot.mount @4.286s  31ms                               └─systemd-fsck@dev-disk-by/x2duuid-79f594ad/x2da332/x2d4730/x2dbb5f/x2d85d19608096                                 └─dev-disk-by/x2duuid-79f594ad/x2da332/x2d4730/x2dbb5f/x2d85d196080964.device @4

重要:systemctl接受服务(.service),挂载点(.mount),套接口(.socket)和设备(.device)作为单元。

7. 列出所有可用单元

# systemctl list-unit-files  unit file                                   state    proc-sys-fs-binfmt_misc.automount           static   dev-hugepages.mount                         static   dev-mqueue.mount                            static   proc-sys-fs-binfmt_misc.mount               static   sys-fs-fuse-connections.mount               static   sys-kernel-config.mount                     static   sys-kernel-debug.mount                      static   tmp.mount                                   disabled brandbot.path                               disabled .....

8. 列出所有运行中单元

# systemctl list-units  unit                                        load   active sub       description proc-sys-fs-binfmt_misc.automount           loaded active waiting   arbitrary executable file formats file syste sys-devices-pc...0-1:0:0:0-block-sr0.device loaded active plugged   vbox_cd-rom sys-devices-pc...:00:03.0-net-enp0s3.device loaded active plugged   pro/1000 mt desktop adapter sys-devices-pc...00:05.0-sound-card0.device loaded active plugged   82801aa ac'97 audio controller sys-devices-pc...:0:0-block-sda-sda1.device loaded active plugged   vbox_harddisk sys-devices-pc...:0:0-block-sda-sda2.device loaded active plugged   lvm pv qzyo3l-qyal-urua-cjuk-pljo-qktx-vgbq8 sys-devices-pc...0-2:0:0:0-block-sda.device loaded active plugged   vbox_harddisk sys-devices-pl...erial8250-tty-ttys0.device loaded active plugged   /sys/devices/platform/serial8250/tty/ttys0 sys-devices-pl...erial8250-tty-ttys1.device loaded active plugged   /sys/devices/platform/serial8250/tty/ttys1 sys-devices-pl...erial8250-tty-ttys2.device loaded active plugged   /sys/devices/platform/serial8250/tty/ttys2 sys-devices-pl...erial8250-tty-ttys3.device loaded active plugged   /sys/devices/platform/serial8250/tty/ttys3 sys-devices-virtual-block-dm/x2d0.device    loaded active plugged   /sys/devices/virtual/block/dm-0 sys-devices-virtual-block-dm/x2d1.device    loaded active plugged   /sys/devices/virtual/block/dm-1 sys-module-configfs.device                  loaded active plugged   /sys/module/configfs ...

9. 列出所有失败单元

# systemctl --failed  unit          load   active sub    description kdump.service loaded failed failed crash recovery kernel arming  load   = reflects whether the unit definition was properly loaded. active = the high-level unit activation state, i.e. generalization of sub. sub    = the low-level unit activation state, values depend on unit type.  1 loaded units listed. pass --all to see loaded but inactive units, too. to show all installed unit files use 'systemctl list-unit-files'.

10. 检查某个单元(如 cron.service)是否启用

# systemctl is-enabled crond.service  enabled

11. 检查某个单元或服务是否运行

# systemctl status firewalld.service  firewalld.service - firewalld - dynamic firewall daemon    loaded: loaded (/usr/lib/systemd/system/firewalld.service; enabled)    active: active (running) since tue 2015-04-28 16:27:55 ist; 34min ago  main pid: 549 (firewalld)    cgroup: /system.slice/firewalld.service            └─549 /usr/bin/python -es /usr/sbin/firewalld --nofork --nopid  apr 28 16:27:51 tecmint systemd[1]: starting firewalld - dynamic firewall daemon... apr 28 16:27:55 tecmint systemd[1]: started firewalld - dynamic firewall daemon.

使用systemctl控制并管理服务

12. 列出所有服务(包括启用的和禁用的)

# systemctl list-unit-files --type=service  unit file                                   state    arp-ethers.service                          disabled auditd.service                              enabled  autovt@.service                             disabled blk-availability.service                    disabled brandbot.service                            static   collectd.service                            disabled console-getty.service                       disabled console-shell.service                       disabled cpupower.service                            disabled crond.service                               enabled  dbus-org.fedoraproject.firewalld1.service   enabled  ....

13. linux中如何启动、重启、停止、重载服务以及检查服务(如 httpd.service)状态

# systemctl start httpd.service # systemctl restart httpd.service # systemctl stop httpd.service # systemctl reload httpd.service # systemctl status httpd.service  httpd.service - the apache http server    loaded: loaded (/usr/lib/systemd/system/httpd.service; enabled)    active: active (running) since tue 2015-04-28 17:21:30 ist; 6s ago   process: 2876 execstop=/bin/kill -winch ${mainpid} (code=exited, status=0/success)  main pid: 2881 (httpd)    status: "processing requests..."    cgroup: /system.slice/httpd.service            ├─2881 /usr/sbin/httpd -dforeground            ├─2884 /usr/sbin/httpd -dforeground            ├─2885 /usr/sbin/httpd -dforeground            ├─2886 /usr/sbin/httpd -dforeground            ├─2887 /usr/sbin/httpd -dforeground            └─2888 /usr/sbin/httpd -dforeground  apr 28 17:21:30 tecmint systemd[1]: starting the apache http server... apr 28 17:21:30 tecmint httpd[2881]: ah00558: httpd: could not reliably determine the server's fully q...ssage apr 28 17:21:30 tecmint systemd[1]: started the apache http server. hint: some lines were ellipsized, use -l to show in full.

注意:当我们使用systemctl的start,restart,stop和reload命令时,我们不会从终端获取到任何输出内容,只有status命令可以打印输出。

14. 如何激活服务并在启动时启用或禁用服务(即系统启动时自动启动服务)

# systemctl is-active httpd.service # systemctl enable httpd.service # systemctl disable httpd.service

15. 如何屏蔽(让它不能启动)或显示服务(如 httpd.service)

# systemctl mask httpd.service ln -s '/dev/null' '/etc/systemd/system/httpd.service'  # systemctl unmask httpd.service rm '/etc/systemd/system/httpd.service'

16. 使用systemctl命令杀死服务

# systemctl kill httpd # systemctl status httpd  httpd.service - the apache http server    loaded: loaded (/usr/lib/systemd/system/httpd.service; enabled)    active: failed (result: exit-code) since tue 2015-04-28 18:01:42 ist; 28min ago  main pid: 2881 (code=exited, status=0/success)    status: "total requests: 0; current requests/sec: 0; current traffic:   0 b/sec"  apr 28 17:37:29 tecmint systemd[1]: httpd.service: got notification message from pid 2881, but recepti...bled. apr 28 17:37:29 tecmint systemd[1]: httpd.service: got notification message from pid 2881, but recepti...bled. apr 28 17:37:39 tecmint systemd[1]: httpd.service: got notification message from pid 2881, but recepti...bled. apr 28 17:37:39 tecmint systemd[1]: httpd.service: got notification message from pid 2881, but recepti...bled. apr 28 17:37:49 tecmint systemd[1]: httpd.service: got notification message from pid 2881, but recepti...bled. apr 28 17:37:49 tecmint systemd[1]: httpd.service: got notification message from pid 2881, but recepti...bled. apr 28 17:37:59 tecmint systemd[1]: httpd.service: got notification message from pid 2881, but recepti...bled. apr 28 17:37:59 tecmint systemd[1]: httpd.service: got notification message from pid 2881, but recepti...bled. apr 28 18:01:42 tecmint systemd[1]: httpd.service: control process exited, code=exited status=226 apr 28 18:01:42 tecmint systemd[1]: unit httpd.service entered failed state. hint: some lines were ellipsized, use -l to show in full.

使用systemctl控制并管理挂载点

17. 列出所有系统挂载点

# systemctl list-unit-files --type=mount  unit file                     state    dev-hugepages.mount           static   dev-mqueue.mount              static   proc-sys-fs-binfmt_misc.mount static   sys-fs-fuse-connections.mount static   sys-kernel-config.mount       static   sys-kernel-debug.mount        static   tmp.mount                     disabled

18. 挂载、卸载、重新挂载、重载系统挂载点并检查系统中挂载点状态

# systemctl start tmp.mount # systemctl stop tmp.mount # systemctl restart tmp.mount # systemctl reload tmp.mount # systemctl status tmp.mount  tmp.mount - temporary directory    loaded: loaded (/usr/lib/systemd/system/tmp.mount; disabled)    active: active (mounted) since tue 2015-04-28 17:46:06 ist; 2min 48s ago     where: /tmp      what: tmpfs      docs: man:hier(7)  http://www.freedesktop.org/wiki/software/systemd/apifilesystems    process: 3908 execmount=/bin/mount tmpfs /tmp -t tmpfs -o mode=1777,strictatime (code=exited, status=0/success)  apr 28 17:46:06 tecmint systemd[1]: mounting temporary directory... apr 28 17:46:06 tecmint systemd[1]: tmp.mount: directory /tmp to mount over is not empty, mounting anyway. apr 28 17:46:06 tecmint systemd[1]: mounted temporary directory.

19. 在启动时激活、启用或禁用挂载点(系统启动时自动挂载)

# systemctl is-active tmp.mount # systemctl enable tmp.mount # systemctl disable  tmp.mount

20. 在linux中屏蔽(让它不能启用)或可见挂载点

# systemctl mask tmp.mount  ln -s '/dev/null' '/etc/systemd/system/tmp.mount'  # systemctl unmask tmp.mount  rm '/etc/systemd/system/tmp.mount'

使用systemctl控制并管理套接口

21. 列出所有可用系统套接口

# systemctl list-unit-files --type=socket  unit file                    state    dbus.socket                  static   dm-event.socket              enabled  lvm2-lvmetad.socket          enabled  rsyncd.socket                disabled sshd.socket                  disabled syslog.socket                static   systemd-initctl.socket       static   systemd-journald.socket      static   systemd-shutdownd.socket     static   systemd-udevd-control.socket static   systemd-udevd-kernel.socket  static    11 unit files listed.

22. 在linux中启动、重启、停止、重载套接口并检查其状态

# systemctl start cups.socket # systemctl restart cups.socket # systemctl stop cups.socket # systemctl reload cups.socket # systemctl status cups.socket  cups.socket - cups printing service sockets    loaded: loaded (/usr/lib/systemd/system/cups.socket; enabled)    active: active (listening) since tue 2015-04-28 18:10:59 ist; 8s ago    listen: /var/run/cups/cups.sock (stream)  apr 28 18:10:59 tecmint systemd[1]: starting cups printing service sockets. apr 28 18:10:59 tecmint systemd[1]: listening on cups printing service sockets.

23. 在启动时激活套接口,并启用或禁用它(系统启动时自启动)

# systemctl is-active cups.socket # systemctl enable cups.socket # systemctl disable cups.socket

24. 屏蔽(使它不能启动)或显示套接口

# systemctl mask cups.socket ln -s '/dev/null' '/etc/systemd/system/cups.socket'  # systemctl unmask cups.socket rm '/etc/systemd/system/cups.socket'

服务的cpu利用率(分配额)

25. 获取当前某个服务的cpu分配额(如httpd)

# systemctl show -p cpushares httpd.service  cpushares=1024

注意:各个服务的默认cpu分配份额=1024,你可以增加/减少某个进程的cpu分配份额。

26. 将某个服务(httpd.service)的cpu分配份额限制为2000 cpushares/

# systemctl set-property httpd.service cpushares=2000 # systemctl show -p cpushares httpd.service  cpushares=2000

注意:当你为某个服务设置cpushares,会自动创建一个以服务名命名的目录(如 httpd.service),里面包含了一个名为90-cpushares.conf的文件,该文件含有cpushare限制信息,你可以通过以下方式查看该文件:

# vi /etc/systemd/system/httpd.service.d/90-cpushares.conf   [service] cpushares=2000

27. 检查某个服务的所有配置细节

# systemctl show httpd  id=httpd.service names=httpd.service requires=basic.target wants=system.slice wantedby=multi-user.target conflicts=shutdown.target before=shutdown.target multi-user.target after=network.target remote-fs.target nss-lookup.target systemd-journald.socket basic.target system.slice description=the apache http server loadstate=loaded activestate=active substate=running fragmentpath=/usr/lib/systemd/system/httpd.service ....

28. 分析某个服务(httpd)的关键链

# systemd-analyze critical-chain httpd.service  the time after the unit is active or started is printed after the "@" character. the time the unit takes to start is printed after the " " character.  httpd.service  142ms └─network.target @11.168s   └─network.service @9.456s  1.712s     └─networkmanager.service @8.858s  596ms       └─firewalld.service @4.931s  3.926s         └─basic.target @4.916s           └─sockets.target @4.916s             └─dbus.socket @4.916s               └─sysinit.target @4.905s                 └─systemd-update-utmp.service @4.864s  39ms                   └─auditd.service @4.563s  301ms                     └─systemd-tmpfiles-setup.service @4.485s  69ms                       └─rhel-import-state.service @4.342s  142ms                         └─local-fs.target @4.324s                           └─boot.mount @4.286s  31ms                             └─systemd-fsck@dev-disk-by/x2duuid-79f594ad/x2da332/x2d4730/x2dbb5f/x2d85d196080964.service @4.092s  149ms                               └─dev-disk-by/x2duuid-79f594ad/x2da332/x2d4730/x2dbb5f/x2d85d196080964.device @4.092s

29. 获取某个服务(httpd)的依赖性列表

# systemctl list-dependencies httpd.service  httpd.service ├─system.slice └─basic.target   ├─firewalld.service   ├─microcode.service   ├─rhel-autorelabel-mark.service   ├─rhel-autorelabel.service   ├─rhel-configure.service   ├─rhel-dmesg.service   ├─rhel-loadmodules.service   ├─paths.target   ├─slices.target   │ ├─-.slice   │ └─system.slice   ├─sockets.target   │ ├─dbus.socket ....

30. 按等级列出控制组

# systemd-cgls  ├─1 /usr/lib/systemd/systemd --switched-root --system --deserialize 23 ├─user.slice │ └─user-0.slice │   └─session-1.scope │     ├─2498 sshd: root@pts/0     │     ├─2500 -bash │     ├─4521 systemd-cgls │     └─4522 systemd-cgls └─system.slice   ├─httpd.service   │ ├─4440 /usr/sbin/httpd -dforeground   │ ├─4442 /usr/sbin/httpd -dforeground   │ ├─4443 /usr/sbin/httpd -dforeground   │ ├─4444 /usr/sbin/httpd -dforeground   │ ├─4445 /usr/sbin/httpd -dforeground   │ └─4446 /usr/sbin/httpd -dforeground   ├─polkit.service   │ └─721 /usr/lib/polkit-1/polkitd --no-debug ....

31. 按cpu、内存、输入和输出列出控制组

# systemd-cgtop  path                                                              tasks   %cpu   memory  input/s output/s  /                                                                    83    1.0   437.8m        -        - /system.slice                                                         -    0.1        -        -        - /system.slice/mariadb.service                                         2    0.1        -        -        - /system.slice/tuned.service                                           1    0.0        -        -        - /system.slice/httpd.service                                           6    0.0        -        -        - /system.slice/networkmanager.service                                  1      -        -        -        - /system.slice/atop.service                                            1      -        -        -        - /system.slice/atopacct.service                                        1      -        -        -        - /system.slice/auditd.service                                          1      -        -        -        - /system.slice/crond.service                                           1      -        -        -        - /system.slice/dbus.service                                            1      -        -        -        - /system.slice/firewalld.service                                       1      -        -        -        - /system.slice/lvm2-lvmetad.service                                    1      -        -        -        - /system.slice/polkit.service                                          1      -        -        -        - /system.slice/postfix.service                                         3      -        -        -        - /system.slice/rsyslog.service                                         1      -        -        -        - /system.slice/system-getty.slice/getty@tty1.service                   1      -        -        -        - /system.slice/systemd-journald.service                                1      -        -        -        - /system.slice/systemd-logind.service                                  1      -        -        -        - /system.slice/systemd-udevd.service                                   1      -        -        -        - /system.slice/webmin.service                                          1      -        -        -        - /user.slice/user-0.slice/session-1.scope                              3      -        -        -        -

控制系统运行等级

32. 启动系统救援模式

# systemctl rescue  broadcast message from root@tecmint on pts/0 (wed 2015-04-29 11:31:18 ist):  the system is going down to rescue mode now!

33. 进入紧急模式

# systemctl emergency  welcome to emergency mode! after logging in, type "journalctl -xb" to view system logs, "systemctl reboot" to reboot, "systemctl default" to try again to boot into default mode.

34. 列出当前使用的运行等级

# systemctl get-default  multi-user.target

35. 启动运行等级5,即图形模式

# systemctl isolate runlevel5.target 或 # systemctl isolate graphical.target

36. 启动运行等级3,即多用户模式(命令行)

# systemctl isolate runlevel3.target 或 # systemctl isolate multiuser.target

36. 设置多用户模式或图形模式为默认运行等级

# systemctl set-default runlevel3.target  # systemctl set-default runlevel5.target

37. 重启、停止、挂起、休眠系统或使系统进入混合睡眠

# systemctl reboot  # systemctl halt  # systemctl suspend  # systemctl hibernate  # systemctl hybrid-sleep

对于不知运行等级为何物的人,说明如下。

  • runlevel 0 : 关闭系统
  • runlevel 1 : 救援?维护模式
  • runlevel 3 : 多用户,无图形系统
  • runlevel 4 : 多用户,无图形系统
  • runlevel 5 : 多用户,图形化系统
  • runlevel 6 : 关闭并重启机器

到此为止吧。保持连线,进行评论。别忘了在下面的评论中为我们提供一些有价值的反馈哦。喜欢我们、与我们分享,求扩散。

展开全文
内容来源于互联网和用户投稿,文章中一旦含有米乐app官网登录的联系方式务必识别真假,本站仅做信息展示不承担任何相关责任,如有侵权或涉及法律问题请联系米乐app官网登录删除

最新文章

网站地图