Re: Is google.com down, or...

From: Newsbox (nospam_for_me_please_at_thanks.invalid)
Date: 06/14/05 

Date: Tue, 14 Jun 2005 14:19:29 -0400

On Tue, 14 Jun 2005 13:37:28 +0200, Christophe Vandeplas wrote:

> Rincewind wrote:
>> On Tue, 14 Jun 2005 04:34:23 -0400, Newsbox mumbled something like
>> this:
>>
>>>or is it my ISP? Or what else?
>>
>> Could it be that you have changed you firewall rules recently? I note
>> that you have another thread which mentions hits from 72.14.207.104,
>> which is a Google address.
>>
>> I suggest you check the logs to see whether those hits from
>> 72.14.207.104 have a source port 80.
>>
>>
> Hmm, this is indeed possible,
> Newsbox, how did you configure your firewall? It's better to disable
> incoming requests from that ip, but leave outgoing open. Established
> connections should stay open.
>
> This means you can start a connection, do a request to that site, but he
> can only reply to stuff you asked for. And thus not annoying you more
> than you need.
>
> Hope this is indeed the problem

Yes, I believe you are both (all) correct in what you have said, except
that I'm not yet aware of what has changed here. My firewall rules are
newly set by a series of scripts immediately upon network connection, and
did at last scrutiny in fact conform to all suggestions and good practice.

I'll look more carefully, and the interim inconvenience to me seems
tolerable, so long as it is truly limited, and the rules are more
restrictive than desired rather than less. Whatever it is _appears_ to be
a local firewall issue, and will need to be resolved locally. If I find
anything of general interest, I'll certainly advise back.

Thanks for all the good and timely responses. They were all helpful, and
sincerely appreciated.

Relevant Pages

  • Re: Is google.com down, or...
    ... > Could it be that you have changed you firewall rules recently? ... > I suggest you check the logs to see whether those hits from 72.14.207.104 ... It's better to disable incoming requests from that ip, ... Established connections should stay open. ...
    (comp.os.linux.security)
  • Re: Is google.com down, or...
    ... Could it be that you have changed you firewall rules recently? ... a Google address. ... I suggest you check the logs to see whether those hits from 72.14.207.104 ... have a source port 80. ...
    (comp.os.linux.security)
  • Re: extending fail2ban
    ... You can do similar sort of blocking with firewall rules that count the ... be 10 HTTP connection attempts per hour, or any other port you care to ... I don't have a ready made answer, but I've seen people discuss this sort ... I read messages from the public lists. ...
    (Fedora)
  • Re: website built on ADSL connection: slow remote not local
    ... >> I'm guessing either your firewall rules are too strict or there's some ... >> or you have a truly crappy connection. ... (behind the router). ... > Best regards, ...
    (comp.os.linux.networking)
  • Perl firewall test script - detect whether host not responding or firewall rule not implemented
    ... I submitted some firewall rules today which will be implemented before ... all the destination hosts are live on the network. ... a perl script on each source server and controlled them from a central ... Is there any scriptable way to know why a connection failed from the ...
    (comp.lang.perl.misc)