The UK Home Automation Archive

Archive Home
Group Home
Search Archive


Advanced Search

The UKHA-ARCHIVE IS CEASING OPERATIONS 31 DEC 2024


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE:Website published on ADSL


  • To: ukha_d@xxxxxxx
  • Subject: RE:Website published on ADSL
  • From: "Paul Gordon" <paul_gordon@xxxxxxx>
  • Date: Fri, 17 Nov 2000 15:45:40 GMT
  • Delivered-to: rich@xxxxxxx
  • Delivered-to: mailing list ukha_d@xxxxxxx
  • Mailing-list: list ukha_d@xxxxxxx; contact ukha_d-owner@xxxxxxx
  • Reply-to: ukha_d@xxxxxxx

I posted this once, some time ago, but I haven't seen it appear yet, so
apologies if it arrives twice....

Vince, sorry to piss on your bonfire mate, but I'm not convinced. Here's
what I've found:

C:\>ping emperor-zurg.3b2.com

Pinging emperor-zurg.3b2.com [213.120.145.98] with 32 bytes of data:

Reply from 213.120.145.98: bytes=32 time=673ms TTL=112
Reply from 213.120.145.98: bytes=32 time=672ms TTL=112
Reply from 213.120.145.98: bytes=32 time=604ms TTL=112
Reply from 213.120.145.98: bytes=32 time=851ms TTL=112

Ping statistics for 213.120.145.98:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 604ms, Maximum =  851ms, Average =  700ms

C:\>tracert emperor-zurg.3b2.com

Tracing route to emperor-zurg.3b2.com [213.120.145.98]
over a maximum of 30 hops:

1   137 ms   124 ms   110 ms  146.105.22.170
2   137 ms   137 ms   124 ms  146.105.22.252
3   124 ms   123 ms   124 ms  193.131.191.67
4   137 ms   123 ms   124 ms  193.131.191.1
5   275 ms   274 ms   234 ms  158.43.68.241
6   783 ms  1030 ms   947 ms  ge5-0.cr2.lnd6.gbb.uk.uu.net [158.43.194.2]
7  1112 ms  1085 ms   975 ms  srp6-0-0.br2.lnd6.gbb.uk.uu.net
[158.43.194.228]

8  1043 ms   975 ms   742 ms  linx-l0.ukcore.bt.net [195.66.224.10]
9  1180 ms  1017 ms  1002 ms  core1-pos6-0.ilford.ukcore.bt.net
[194.74.65.6]

10   700 ms   769 ms   797 ms  core1-pos10-0.bletchley.ukcore.bt.net
[62.6.196.
217]
11   604 ms   769 ms  1030 ms  vhsaccess1-pos7-0.bletchley.fixed.bt.net
[62.6.1
97.134]
12   741 ms   701 ms   701 ms  213.120.207.222
13   975 ms  1139 ms  1099 ms  172.16.93.126
14  1126 ms   962 ms   865 ms  172.16.93.53
15   961 ms   837 ms   810 ms  172.16.100.57
16   783 ms   988 ms   879 ms  172.16.109.5
17   920 ms   426 ms   412 ms  62.7.250.131
18     *     1016 ms  1139 ms  host213-120-145-98.btopenworld.com
[213.120.145.
98]

Trace complete.

C:\>

Now, what concerns me is the hops numbered 13 through 16 - the 172.16.X.X
ones. These are in the non-routable private address space as defined by
RFC1597 and CANNOT be on the internet. These addresses can only be inside a
private LAN, and hidden from the Internet by NAT. As it can be seen that
the
connection goes over UUNET's network (my ISP) and then over BT's network
(your ISP presumably), and THEN hits these private addresses, I can only
conclude that these addresses must be inside your corporate LAN, therefore
I'm connecting to that webserver via another route through your LAN.

Examination of the DNS data shows the following:
-----------------------
host -t ns 3b2.com.

3b2.com NS HOST66.3b2.com
3b2.com NS NS.3B2ONLINE.COM


host -t soa 3b2.com.

3b2.com SOA	host66.3b2.com postmaster.3b2.com(
1100	;serial (version)
3600	;refresh period
600	;retry refresh this often
86400	;expiration period
3600	;minimum TTL
)

host -t mx 3b2.com.


3b2.com mail is handled (pri=10) by mail.london-1.starlabs.net
3b2.com mail is handled (pri=5) by mail.london-2.starlabs.net
-----------------------------------

So, you are using a host address within your company's registered and
published namespace. Also note that you run your own authoritive
nameservers
for that domain.

So, what I think is happening, is that when i use the URL you specified,
DNS
will resolve the 3b2.com namespace to the normal route into your company's
LAN (IE via your leased line/firewall). Then, as you have your own
nameservers, and they are authoritive, I presume you have added an address
record in those internal DNS servers for the host name
"emperor-zurg", which
I am then able to resolve to get to the machine.

This is only based on a cursory examination, and could be wrong of course,
but I cannot see how I could hop over 172.16 addresses if I was connecting
to that machine directly from the internet via it's ADSL interface. The
true
test is:

Is the webserver in question also connected to your internal LAN? if so,
disconnect it, so that it's ONLY connection to the outside world is it's
ADSL line, and then lets try this test again... Also, when you've confirmed
that is the case, lets try connecting to it's ADSL interface's IP address.

Actually, I suppose I could see how it could be, IF 3b2.com was a DDNS
service you were using? is this so? or is that your comany's domain?

Cheers.

Paul G.




_________________________________________________________________________
Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com.

Share information about yourself, create your own public profile at
http://profiles.msn.com.


-------------------------- eGroups Sponsor -------------------------~-~>
eLerts
It's Easy. It's Fun. Best of All, it's Free!
http://click.egroups.com/1/9699/3/_/2065/_/974495961/
---------------------------------------------------------------------_->





Home | Main Index | Thread Index

Comments to the Webmaster are always welcomed, please use this contact form . Note that as this site is a mailing list archive, the Webmaster has no control over the contents of the messages. Comments about message content should be directed to the relevant mailing list.