获取新成员中每个远程地址 IP 的主机名

Question 1

评论太长，而且很难从代码中猜出你的目的，所以创建一个填充字典可能$IPsNames会有帮助？

$IPsNames = @{}

$GetCon = Get-NetTCPConnection

$hn = $GetCon | select -expand RemoteAddress  | sort -Unique

foreach ( $IPs in $hn ) {

    try   { $rrtx = [System.Net.Dns]::GetHostbyAddress($IPs).HostName }
    catch { $rrtx = '???' }

    $IPsNames[ $IPS ] = $rrtx
}

### $IPsNames

for ( $i = 0; $i -lt $GetCon.Count; $i++ ) {

    $aux = $IPsNames[ $GetCon[$i].RemoteAddress ]
    $GetCon[$i] | Add-Member -NotePropertyName urls -NotePropertyValue $aux 

}

### $GetCon | Format-Table -Property RemoteAddress, urls -AutoSize

$GetCon | selelect -Property RemoteAddress, urls

Answer

评论太长，而且很难从代码中猜出你的目的，所以创建一个填充字典可能$IPsNames会有帮助？

$IPsNames = @{}

$GetCon = Get-NetTCPConnection

$hn = $GetCon | select -expand RemoteAddress  | sort -Unique

foreach ( $IPs in $hn ) {

    try   { $rrtx = [System.Net.Dns]::GetHostbyAddress($IPs).HostName }
    catch { $rrtx = '???' }

    $IPsNames[ $IPS ] = $rrtx
}

### $IPsNames

for ( $i = 0; $i -lt $GetCon.Count; $i++ ) {

    $aux = $IPsNames[ $GetCon[$i].RemoteAddress ]
    $GetCon[$i] | Add-Member -NotePropertyName urls -NotePropertyValue $aux 

}

### $GetCon | Format-Table -Property RemoteAddress, urls -AutoSize

$GetCon | selelect -Property RemoteAddress, urls

Question 2

<# Report = LocalAddress,LocalPort,RemoteAddress,FQDN,RemotePort,PID,ProcessName,UserName,State,CreationTime #>

$obj=@()

Foreach($p In (Get-Process -IncludeUserName | where {$_.UserName} | `
 select Id, ProcessName, UserName)) {
 $properties = @{ 'PID'=$p.Id;
 'ProcessName'=$p.ProcessName;
 'UserName'=$p.UserName;
 }
 $psobj = New-Object -TypeName psobject -Property $properties
 $obj+=$psobj
 }

$Connections = Get-NetTCPConnection | where {$_.State -ne "Listen" -and $_.State -ne "Bound"} | select `
 LocalAddress, `
 LocalPort, `
 RemoteAddress, `
 @{name='FQDN';expression={ (Resolve-DnsName -name $_.Remoteaddress).NameHost}},`
 RemotePort, `
 @{n="PID";e={$_.OwningProcess}}, @{n="ProcessName";e={($obj |? PID -eq $_.OwningProcess | select -ExpandProperty ProcessName)}}, `
 @{n="UserName";e={($obj |? PID -eq $_.OwningProcess | select -ExpandProperty UserName)}}, `
 "State","CreationTime"|
 sort -Property ProcessName, UserName

 $Report += $Connections
$Connections=@()
 $Reported = $Report | Sort-Object -Property * -Unique
 $Report = $Reported




$Report |Export-Csv -Path C:\PATH\Connections.csv

Answer

<# Report = LocalAddress,LocalPort,RemoteAddress,FQDN,RemotePort,PID,ProcessName,UserName,State,CreationTime #>

$obj=@()

Foreach($p In (Get-Process -IncludeUserName | where {$_.UserName} | `
 select Id, ProcessName, UserName)) {
 $properties = @{ 'PID'=$p.Id;
 'ProcessName'=$p.ProcessName;
 'UserName'=$p.UserName;
 }
 $psobj = New-Object -TypeName psobject -Property $properties
 $obj+=$psobj
 }

$Connections = Get-NetTCPConnection | where {$_.State -ne "Listen" -and $_.State -ne "Bound"} | select `
 LocalAddress, `
 LocalPort, `
 RemoteAddress, `
 @{name='FQDN';expression={ (Resolve-DnsName -name $_.Remoteaddress).NameHost}},`
 RemotePort, `
 @{n="PID";e={$_.OwningProcess}}, @{n="ProcessName";e={($obj |? PID -eq $_.OwningProcess | select -ExpandProperty ProcessName)}}, `
 @{n="UserName";e={($obj |? PID -eq $_.OwningProcess | select -ExpandProperty UserName)}}, `
 "State","CreationTime"|
 sort -Property ProcessName, UserName

 $Report += $Connections
$Connections=@()
 $Reported = $Report | Sort-Object -Property * -Unique
 $Report = $Reported




$Report |Export-Csv -Path C:\PATH\Connections.csv

获取新成员中每个远程地址 IP 的主机名

答案1

答案2

相关内容