Re: Weird problem, only one port, 80, is blocked.

---

• From: ibuprofin@xxxxxxxxxxxxxxxxxxxxxx (Moe Trin)
• Date: Mon, 29 Sep 2008 23:59:28 -0500

---

On Tue, 30 Sep 2008, in the Usenet newsgroup comp.os.linux.networking, in
article <qak2e45okj7smk4nmrsn6jkri5jhpabpl3@xxxxxxx>, Grant wrote:

ibuprofin@xxxxxxxxxxxxxxxxxxxxxx (Moe Trin) wrote:

Obviously dodoau7.lnk.telstra.net or dodomel-lns002-ge3-4-2.core.dodo.com.au
is dropping port 80 inbound. Does your contract with Dodo Oz Pty say
that you are to have such access? If so, raise hell with them.

Hey thanks for that, things looking gloomy yesterday as they trying to
blame my linux + bridged modem setup. Yes I'm allowed to run servers,
been with ISP for four years and had web + ftp server up for most of ]
that time.

OK - I only looked at those two ports, but the results are quite
obvious. Either dodomel-lns002-ge3-4-2.core.dodo.com.au (most likely)
or dodoau7.lnk.telstra.net (possible) is silently discarding packets to
port 80. There were no ICMP errors returned.

What did you use to trace port 80? tcptraceroute?

Yup - that's what it's designed for. You can also use hping2, hping3,
or nmap to do the same thing. Some ISPs don't like you using those
type of tools though.

Dodo tech seem to have no tools, they're a windoze based company, I'm
only there for the cheap ADSL plan ;)

Melbourne? There are alternatives.

Your trace shows what I've been trying to tell them since Friday, it
isn't my end playing up, thanks again for this evidence :)

Glad to help.

Old guy
.

---

• References:
  • Weird problem, only one port, 80, is blocked.
    • From: Grant
  • Re: Weird problem, only one port, 80, is blocked.
    • From: Moe Trin
  • Re: Weird problem, only one port, 80, is blocked.
    • From: Grant

• Prev by Date: NFS problem with cloned hard disks
• Next by Date: Re: setting up lax security on one ethernet interface while leaving the other strict
• Previous by thread: Re: Weird problem, only one port, 80, is blocked.
• Next by thread: OpenSSH Assistance - New Admin
• Index(es):
  • Date
  • Thread

---

Relevant Pages RE: Port 21 blocked by ISP ... >> ftp server to use port 7721. ... >presumably your ISP has blocked port 21 because they ... (microsoft.public.inetserver.iis.ftp) RE: blocking IPs for FTP server ... With Port Sentry you can use the Advanced Stealth Scan Detection. ... blocking IPs for FTP server ... holding too many open connections. ... (Security-Basics) RE: Hidden windows ports, files and services. ... also apply for IE's cache. ... be the work of a root kit of some sort. ... and I'd like to analyze the ftp server. ... |was by doing an nmap port scan of the system. ... (Security-Basics) Re: Hidden windows ports, files and services. ... and I'd like to analyze the ftp server. ... Prior to XP SP2, I used to be able to go through the c$ share and see ... was by doing an nmap port scan of the system. ... downloaded fresh version of each and tried again. ... (Security-Basics) Re: Ports necessary for running a FTP-server? ... The FTP server should be listening on the LAN IP address of the Winroute ... The port mapping should redirect FTP traffic to the Winroute LAN ... >> install will not allow an Internet client to connect to a Winroute ... (comp.security.firewalls)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• Mailing-Lists
• Newsgroups
• About
• Privacy
• Search
• Imprint

linux.derkeiler.com  > Newsgroups  > comp.os.linux.networking  > 2008-09