On 04/15/16 07:55, Dr Know wrote: > # ping v1-0-0-server.tarsnap.com > PING v1-0-0-server.tarsnap.com (75.101.135.185) 56(84) bytes of data. > > No response. > [...] > > 3. Try step (1) from an off-campus network. Voila! Key generation > works too. > > Conclusion: our campus firewall is blocking port 9279.
Not just port 9279, but also ping. Which makes me wonder if they're blocking all traffic to certain IP ranges, or simply blocking everything except HTTP/HTTPS. (Not that there's much difference where using Tarsnap is concerned.) > Also, the > default Ubuntu 14.04 firewall appears to allow all outgoing traffic, > so I didn't need to do anything special with the firewall to get > tarsnap-keygen to work off-campus. Yes, most host firewalls are outward permissive; problems tend to happen with corporate and campus firewalls since they want to make sure that their users can't attack other networks. -- Colin Percival Security Officer Emeritus, FreeBSD | The power to serve Founder, Tarsnap | www.tarsnap.com | Online backups for the truly paranoid
