[Date Prev][Date
Next][Thread Prev][Thread Next][Date
Index][Thread Index]
Re: WEB Site published on an ADSL connection
- To: ukha_d@xxxxxxx
- Subject: Re: WEB Site published on an ADSL connection
- From: "Paul Gordon" <paul_gordon@xxxxxxx>
- Date: Fri, 17 Nov 2000 14:30:41 GMT
- Delivered-to: rich@xxxxxxx
- Delivered-to: mailing list ukha_d@xxxxxxx
- Mailing-list: list ukha_d@xxxxxxx; contact
ukha_d-owner@xxxxxxx
- Reply-to: ukha_d@xxxxxxx
Vince, sorry to piss on your bonfire mate, but I'm not convinced. Here's
what I've found:
C:\>ping emperor-zurg.3b2.com
Pinging emperor-zurg.3b2.com [213.120.145.98] with 32 bytes of data:
Reply from 213.120.145.98: bytes=32 time=673ms TTL=112
Reply from 213.120.145.98: bytes=32 time=672ms TTL=112
Reply from 213.120.145.98: bytes=32 time=604ms TTL=112
Reply from 213.120.145.98: bytes=32 time=851ms TTL=112
Ping statistics for 213.120.145.98:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 604ms, Maximum = 851ms, Average = 700ms
C:\>tracert emperor-zurg.3b2.com
Tracing route to emperor-zurg.3b2.com [213.120.145.98]
over a maximum of 30 hops:
1 137 ms 124 ms 110 ms 146.105.22.170
2 137 ms 137 ms 124 ms 146.105.22.252
3 124 ms 123 ms 124 ms 193.131.191.67
4 137 ms 123 ms 124 ms 193.131.191.1
5 275 ms 274 ms 234 ms 158.43.68.241
6 783 ms 1030 ms 947 ms ge5-0.cr2.lnd6.gbb.uk.uu.net [158.43.194.2]
7 1112 ms 1085 ms 975 ms srp6-0-0.br2.lnd6.gbb.uk.uu.net
[158.43.194.228]
8 1043 ms 975 ms 742 ms linx-l0.ukcore.bt.net [195.66.224.10]
9 1180 ms 1017 ms 1002 ms core1-pos6-0.ilford.ukcore.bt.net
[194.74.65.6]
10 700 ms 769 ms 797 ms core1-pos10-0.bletchley.ukcore.bt.net
[62.6.196.
217]
11 604 ms 769 ms 1030 ms vhsaccess1-pos7-0.bletchley.fixed.bt.net
[62.6.1
97.134]
12 741 ms 701 ms 701 ms 213.120.207.222
13 975 ms 1139 ms 1099 ms 172.16.93.126
14 1126 ms 962 ms 865 ms 172.16.93.53
15 961 ms 837 ms 810 ms 172.16.100.57
16 783 ms 988 ms 879 ms 172.16.109.5
17 920 ms 426 ms 412 ms 62.7.250.131
18 * 1016 ms 1139 ms host213-120-145-98.btopenworld.com
[213.120.145.
98]
Trace complete.
C:\>
Now, what concerns me is the hops numbered 13 through 16 - the 172.16.X.X
ones. These are in the non-routable private address space as defined by
RFC1597 and CANNOT be on the internet. These addresses can only be inside a
private LAN, and hidden from the Internet by NAT. As it can be seen that
the
connection goes over UUNET's network (my ISP) and then over BT's network
(your ISP presumably), and THEN hits these private addresses, I can only
conclude that these addresses must be inside your corporate LAN, therefore
I'm connecting to that webserver via another route through your LAN.
Examination of the DNS data shows the following:
-----------------------
host -t ns 3b2.com.
3b2.com NS HOST66.3b2.com
3b2.com NS NS.3B2ONLINE.COM
host -t soa 3b2.com.
3b2.com SOA host66.3b2.com postmaster.3b2.com(
1100 ;serial (version)
3600 ;refresh period
600 ;retry refresh this often
86400 ;expiration period
3600 ;minimum TTL
)
host -t mx 3b2.com.
3b2.com mail is handled (pri=10) by mail.london-1.starlabs.net
3b2.com mail is handled (pri=5) by mail.london-2.starlabs.net
-----------------------------------
So, you are using a host address within your company's registered and
published namespace. Also note that you run your own authoritive
nameservers
for that domain.
So, what I think is happening, is that when i use the URL you specified,
DNS
will resolve the 3b2.com namespace to the normal route into your company's
LAN (IE via your leased line/firewall). Then, as you have your own
nameservers, and they are authoritive, I presume you have added an address
record in those internal DNS servers for the host name
"emperor-zurg", which
I am then able to resolve to get to the machine.
This is only based on a cursory examination, and could be wrong of course,
but I cannot see how I could hop over 172.16 addresses if I was connecting
to that machine directly from the internet via it's ADSL interface. The
true
test is:
Is the webserver in question also connected to your internal LAN? if do,
disconnect it, so that it's ONLY connection to the outside world is it's
ADSL line, and then lets try this test again... Also, when you've confirmed
that is the case, lets try connecting to it's ADSL interface's IP address.
Actually, I suppose I could see how it could be, IF 3b2.com was a DDNS
serice you were using? is this so? or is that your comany's domain?
Cheers.
Paul G.
_________________________________________________________________________
Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com.
Share information about yourself, create your own public profile at
http://profiles.msn.com.
-------------------------- eGroups Sponsor -------------------------~-~>
eGroups eLerts
It's Easy. It's Fun. Best of All, it's Free!
http://click.egroups.com/1/9698/3/_/2065/_/974494207/
---------------------------------------------------------------------_->
Home |
Main Index |
Thread Index
|