01-05-2016
We have a bank of static IPs we purchased from Comcast, and we have been dealing with loss of access for a long time and applying all sorts of bandaids, from new routers to having a tech come in to resetting equipment. Access is a problem with all protocols -- http, https, ssh, sftp, tcp -- and the failure is a timeout. There is apparently some routing algorithm being used that gets lost somehow, through all configurations of equipment we have. All eight servers are affected. Just those IPs, and just internally, and just intermittently. Aggravating. So until it gets solved, we need to have a workaround for, in this particular case, http, since we have a workaround for ssh/sftp.
---------- Post updated at 03:14 PM ---------- Previous update was at 03:10 PM ----------
We use both IPs and the domain/URL. All are affected. The machines attempting to access it are Mac OS X, Windows and Linux, several of each, and they all encounter the same timeout. The "hairpin" through the other server works fine for ssh and sftp, but not http for our graphic apps.
6 More Discussions You Might Find Interesting
1. IP Networking
Hi,
I am involved in a project on Debian. One of my requirement is to route an IP packet in my application to a proxy server and receive the reply from the proxy server as an IP packet. My application handles data at the IP frame level. My application creates an IP packet(with all the necessary... (0 Replies)
Discussion started by: Rajesh_BK
0 Replies
2. Cybersecurity
Setting up an Internet proxy - need help
Hi guys
In the past I had set a computer to act as an Internet proxy. This would be multihomed, and running dansguardian, tinyproxy and firehol. Then webmin would be used as interface. By time I realised that this system is far from effective....
Is... (0 Replies)
Discussion started by: ramon82
0 Replies
3. UNIX for Dummies Questions & Answers
In our country, blogspot.com, twitter.com facebook.com....and more excellent sites are blocked by the Goverment FireWall, who can help me ? thanks a lot for your kind. (2 Replies)
Discussion started by: shuke
2 Replies
4. Linux
I was wondering if it is possible to setup SFTP to go through the internet proxy while connecting to an internet location.
Problem: Client system is behind internet proxy. SFTP to any internet location fails as there is no documented way to configure SFTP to connect to internet locations through... (4 Replies)
Discussion started by: toobrown1
4 Replies
5. UNIX and Linux Applications
Hi Everyone!
A friend of mine is looking for a way to limit time his kids spent on the internet. I told him he should try out Squid proxy server. He now tries to find a way to limit total time spend on the internet to "X" hours a day, at any time during the day.
I remember there are built-in... (3 Replies)
Discussion started by: togr
3 Replies
6. IP Networking
I need to configure a proxy on my local machine to use an upstream proxy (installed on another machine). The upstream proxy requires Digest/NTLM authorization. I want the local proxy to deal with the upstream proxy's authorization details and provides authorization free access to users that connect... (0 Replies)
Discussion started by: Russel
0 Replies
LEARN ABOUT DEBIAN
proxychains
proxychains(1) proxychains(1)
NAME
ProxyChains - redirect connections through proxy servers
SYNTAX
proxychains <program>
DESCRIPTION
This program forces any tcp connection made by any given tcp client to follow through proxy (or proxy chain). It is a kind of proxifier.
It acts like sockscap / premeo / eborder driver (intercepts TCP calls).
This version (2.0) supports SOCKS4, SOCKS5 and HTTP CONNECT proxy servers. Auth-types: socks - "user/pass" , http - "basic".
When to use it ?
1) When the only way to get "outside" from your LAN is through proxy server.
2) When you are behind restrictive firewall which filters outgoing connections to some ports.
3) When you want to use two (or more) proxies in chain:
like: your_host <--> proxy1 <--> proxy2 <--> target_host
4) When you want to "proxify" some programs with no proxy support built-in (like telnet).
5) When you dont want to pay for eBorder / premeo socks driver :)
Some cool features:
* This program can mix different proxy types in the same chain
like: your_host <-->socks5 <--> http <--> socks4 <--> http <--> target_host
* Different chaining options supported like: take random proxy from the list. or : chain proxies in exact order or :
chain proxies in dynamic order (smart exclude dead proxies from chain)
*You can use it with any TCP client application, even network scanners. yes, yes - you can make portscan via proxy (or chained proxies) for
example with Nmap scanner by fyodor (www.insecure.org/nmap).
proxychains nmap -sT -PO -p 80 -iR (find some webservers through proxy)
NOTE: to run suid/sgid programs(like ssh) through proxychains you have to be root
FILES
proxychains looks for config file in following order:
./proxychains.conf
$(HOME)/.proxychains/proxychains.conf
/etc/proxychains.conf
see more in /etc/proxychains.conf
EXAMPLES
To run this program the standard way type:
proxychains telnet targethost.com
in this example it will run telnet through proxy(or chained proxies) specified by proxychains.conf
COPYING
proxychains is distributed under the GNU General Public License. (GPL 2.0 or greater).
AUTHORS
Net Creature, Proxy Labs
<http://proxychains.sourceforge.net>
<Net Creature> 2.0 proxychains(1)