On Mon, 2009-12-21 at 09:05 +0530, ericdes wrote: > > 04:20:08.292735 IP es01.tela-web.com.35200 > ks309069.kimsufi.com.www: S > 3758580123:3758580123(0) win 5840 <mss 1460,sackOK,timestamp 40378785 > 0,nop,wscale 5> > 04:20:08.293384 IP ks309069.kimsufi.com > es01.tela-web.com: ICMP host > ks309069.kimsufi.com unreachable - admin prohibited, length 68
Well, that's a pretty obvious result. Surely you must be seeing why your HTTP connections are not working. The machine/port you are trying to reach has been packet filtered, and they are even being so courteous as to tell you that rather than just dropping your packets on the floor (like I would do). > And this when I ssh: > > 04:31:26.138508 IP es01.tela-web.com.35007 > ks309069.kimsufi.com.ssh: . > ack 958 win 281 <nop,nop,timestamp 41056616 122428939> > 04:31:26.141516 IP es01.tela-web.com.35007 > ks309069.kimsufi.com.ssh: P > 838:982(144) ack 958 win 281 <nop,nop,timestamp 41056619 122428939> > 04:31:26.146252 IP ks309069.kimsufi.com.ssh > es01.tela-web.com.35007: P > 958:1678(720) ack 982 win 70 <nop,nop,timestamp 122429100 41056619> And of course, this is not being packet filtered. b.
signature.asc
Description: This is a digitally signed message part
------------------------------------------------------------------------------ This SF.Net email is sponsored by the Verizon Developer Community Take advantage of Verizon's best-in-class app development support A streamlined, 14 day to market process makes app distribution fast and easy Join now and get one step closer to millions of Verizon customers http://p.sf.net/sfu/verizon-dev2dev
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
