Anyone up for a tuff problems? http direct works but cant telnet to port 80
Gerald Combs
gerald at ethereal.com
Wed Mar 6 19:50:00 CST 2002
Try hitting it with "traceroute -I" or better yet "traceroute -In".
12.127.201.146 is the hop just before their firewall, apparently. "-I"
tells traceroute to use ICMP packets instead of UDP, assuming your
traceroute is properly equipped. Most firewalls will allow ICMP messages,
but not the high-port UDP messages that traceroute sends.
Can you run an Ethereal or tcpdump trace to compare the telnet connection
with an http connection. In particular, I'd be interested to know how far
the telnet connection gets in its handshake, and how the initial SYN
packets differ. If you use tcpdump, be sure to use "-s 2000".
On Wed, 6 Mar 2002, hanasaki wrote:
> I am connecting the same way as you are :(
> telnet www.wdc.com 80
> Trying 129.253.170.30...
> telnet: Unable to connect to remote host: Connection timed out
> Here is a traceroute to the host.
> traceroute stops at <www.wec.com>:
> 22 12.127.201.146 (12.127.201.146) 257.796 ms 271.081 ms 266.475 ms
> 23 * *
>
> Duane Attaway wrote:
> > On Wed, 6 Mar 2002, hanasaki wrote:
> >
> >
> >>1. Direct browsing to the following sites works. Even when NAT'ed from
> >>an internal network
> >>2. telnet on port 80 times out
> >>3. Browsing via Squid times out
> >>
> >>hosts:
> >> www.wdc.com
> >> www.nvidia.com
> >
> > Works for me. How are you doing it?
> >
> > [dattaway at attaway dattaway]$ telnet www.wdc.com 80
> > Trying 129.253.170.30...
> > Connected to www.wdc.com (129.253.170.30).
> > Escape character is '^]'.
> >
> > [dattaway at attaway dattaway]$ telnet www.nvidia.com 80
> > Trying 209.213.198.80...
> > Connected to www.nvidia.com (209.213.198.80).
> > Escape character is '^]'.
>
> --
> = hanasaki at hanaden.com =
> = Spam : Unhealthy and High in Sodium and Cholesterol =
>
>
>
>
More information about the Kclug
mailing list