Blacklists and inaccessible URLs
Chong Yu Meng
chongym
Tue Feb 22 06:06:34 PST 2005
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
David Bandel wrote:
|
| It's possible their firewall is one of the borken ones that don't
| accept packets with the ECN (expect congestion notification) bit set.
| iptables can help identify and mangle your packets to turn off ECN to
| those sites.
I'll certainly test this out. I wouldn't be surprised if this is the
case, though. Good firewall engineers are pretty hard to find in this
little corner of the world.
|
| You're getting paranoid here.
As a certain famous American general once said : "Just because you're
paranoid doesn't mean they're not out to get you" ;)
| Take a Linux box with ECN support compiled in. Make sure it's turned
| off and try to get to the site. If that works, turn ECN on and see
| if you're blocked.
|
| You can also use tcptraceroute (which by default uses port 80) to
| trace to the site. Just apt-get install tcptraceroute in Debian or
| variants. In RPM distros, check rpm.net to see of they have a copy
| for your distro.
I'll try them both ! Thanks for the tips, David !
Regards,
pascal chong
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFCGxLimVdpiRJSldgRAm93AJ9jdV/cXCVZOfmnylR1s8QEnQpE6wCdGz7p
bR02iM1uFtYK2kXf6myVSB0=
=04YO
-----END PGP SIGNATURE-----
More information about the Linux-users
mailing list