Linux ss Command Tutorial for Beginners (8 Examples)

How to Compile Brotli from Source on Ubuntu 18.04 LTS
Linux manpath Command Tutorial for Beginners (5 Examples)
Add a new Host and Services to be Monitored by Icinga 2

When it comes to accessing socket related information through the command line in Linux, the first tool that comes to mind is netstat. However, there’s another utility that can do this work for you.

It’s called ss. In this tutorial, we will discuss the basics of this tool using some easy to understand examples. But before we do that, it’s worth mentioning that all examples here have been tested on an Ubuntu 18.04 LTS machine.

Linux ss command

The ss command in Linux allows you to investigate sockets. Following is its syntax:

ss [options] [ FILTER ]

And here’s what the tool’s man page says about it:

ss is used to dump socket statistics. It allows showing information similar to netstat.  
It can display more TCP and state information than other tools.

Following are some Q&A-styled examples that should give you a better idea on how the ss command works.

Q1. How to use ss command?

In its very basic form, you can use the ss command by executing ‘ss’ sans any option.


Following is the output the command produced in my case:

How to use ss command

You’ll noticed that ss displays sockets with established connections in its default output.

Q2. How to make ss suppress header line?

This can be done using the -H command line option.

ss -H

The following screenshot shows this command line option in action:

How to make ss suppress header line

So you can see the header line is missing in this case.

Q3. How to make ss display both listening and non-listening sockets?

This you can do using the -a command line option.

ss -a

Note that listening sockets are omitted by default, so using -a makes ss include them in the output. However, if you want ss to only display listening sockets, use the -l command line option.

ss -l

Q4. How to make ss show processes using sockets?

If you want the ss command to show process information along with the other info it already produces in output, then use the -p command line option.

ss -p

The following screenshot shows the output in my case:

How to make ss show processes using sockets

So you can see that process information was also displayed in output.

Q5. How to make ss produce summary info?

If you don’t want to see the output the ss command produces by default. Then there’s an option through which you can ask ss to produce a small summary of the information it parses.

This summary can be produced using the -s command line option:

ss -s

For example, following is the summary produced in my case:

Total: 1334 (kernel 0)
TCP:   ۴۱ (estab 35, closed 3, orphaned 0, synrecv 0, timewait 3/0), ports 0

Transport Total     IP        IPv6
*      ۰         -         -        
RAW      ۱         ۰         ۱        
UDP      ۷         ۵         ۲        
TCP      ۳۸        ۳۷        ۱        
INET      ۴۶        ۴۲        ۴        
FRAG      ۰         ۰         ۰

Q6. How to make ss display only IPv4 or IPv6 sockets?

This can be done using the -4 and -6 options.

For example, to make ss only show IPv4 sockets, run the following command:

ss -4

Similarly for IPv6, execute the following command:

ss -6

Q7. How to make ss only display TCP or UDP sockets?

There are different command line options that you can use here: -t for TCP and -u for UDP.

Following is a useful excerpt from the ss command man page.

 -t, --tcp
              Display TCP sockets.

       -u, --udp
              Display UDP sockets.

       -d, --dccp
              Display DCCP sockets.

       -w, --raw
              Display RAW sockets.

       -x, --unix
              Display Unix domain sockets (alias for -f unix).

       -S, --sctp
              Display SCTP sockets.

              Display vsock sockets (alias for -f vsock).


The ss command is a very useful tool if your Linux work involves networking. Here, in this tutorial, we have discussed some command line options ss offers. Once you’re done practicing these, head to the tool’s man page to learn more.

Himanshu Arora

About Himanshu Arora

Himanshu Arora has been working on Linux since 2007. He carries professional experience in system level programming, networking protocols, and command line. In addition to HowtoForge, Himanshu’s work has also been featured in some of world’s other leading publications including Computerworld, IBM DeveloperWorks, and Linux Journal.

Share this page: