all, from what I saw within the last years, more and more companies us cloud based proxy services (like e.g. McAfee Cloud proxies). Since these proxies are sometimes misused to produce nonsense (do evil things) on the internet through these proxies, site admins block IPs belonging to that individual proxy - leaving he other IPs belonging to the local (country assigned)cluster's proxies alone, some of the nodes work for certain sites and some not ...
----- Am 3. Mrz 2021 um 22:04 schrieb Roger ro...@mgz.ch: > yeah .. blocking connection from an proxy, i step more and more in such > crazy sites, mostly i close the session and forgett about it > > there are a lot of reason to use a Proxy, i think this is a similar > paranoia based behaviour as filtering ICMP echo or worse ICMP at all. > i think its just die idea to keep other Admin busy with investigate why > the users are not able to open the Page, other explanation i dont have. > i will be shure they would even call telnet to www.blick.ch 80 as evil > and insecure :D, because Telnet is insecure, they read on PC Bild :D > > Roger > > On 03.03.2021 10:44, Benoît Panizzon wrote: >> Follow up on this. >> >> They use this service: >> https://www.brightcloud.com/tools/url-ip-lookup.php >> >> Which list the affected IP in 'high risk' category 'proxy'. >> >> I opened a case with them to find out the cause. >> >> They delistet 157.161.57.65 but not 157.161.57.70. Maybe I should >> change the PTR of the later one :-). That only was an exit for very >> short time (immediate abuse complaints). >> >> Also 'Tor' is a separate category. So if my experiments with Tor >> triggered that issue, why didn't they list it as 'Tor' which they have >> as a category. >> >> Another cause might be, that I use a transparent proxy to cache some >> content in my LAN. But that only is accessible from my LAN, but of >> course this might inject HTTP header indicating the proxy connection. >> >> Also L2TP and PPTP is accessible, so I can access my private ipv4 space >> from outside. So did they scan for those services and flag it as >> 'proxy'? >> >> I'm looking forward for their reply. >> > > > _______________________________________________ > swinog mailing list > swinog@lists.swinog.ch > http://lists.swinog.ch/cgi-bin/mailman/listinfo/swinog _______________________________________________ swinog mailing list swinog@lists.swinog.ch http://lists.swinog.ch/cgi-bin/mailman/listinfo/swinog
