[plug] iptables questions

Fred Janon fjanon at yahoo.com
Wed Sep 29 17:57:00 WST 2010 

I have been trying to use tcptraceroute (the Amazon guys suggested it) with no luck, but using port 22 with it is a good idea. Here is the result:

--------------------------------------------
C:\TraceTCP traceroute for Windows\tracetcp-0.99.4beta>tracetcp ec2-184-72-17-255.us-west-1.compute.amazonaws.com:22
Tracing route to 184.72.17.255 [ec2-184-72-17-255.us-west-1.compute.amazonaws.com] on port 22
Over a maximum of 30 hops.
1       1 ms    1 ms    1 ms    192.168.0.1
2       *       *       *       Request timed out.
3       *       *       *       Request timed out.
4       *       *       *       Request timed out.
5       *       *       *       Request timed
 out.
6       *       *       *       Request timed out.
7       *       *       *       Request timed out.
8       *       *       *       Request timed out.
9       *       *       *       Request timed out.
10      *       *       *       Request timed out.
11      *      
 *       *       Request timed out.
12      *       *       *       Request timed out.
13      *       *       *       Request timed out.
14      Destination Reached in 231 ms. Connection established to 184.72.17.255
Trace Complete.
------------------------------------------------

I am not sure it means 231ms round trip or only one way? I guess it's round trip?

And yep, it sounds like hell. I was trying to find a way to figure out if accessing an instance of EC2 in Singapore is faster than in the US and I thought about using traceroute... I end up by spending way too much time on this.

Thanks

Fred

--- On Wed, 9/29/10, William Kenworthy <billk at iinet.net.au> wrote:

From: William Kenworthy <billk at iinet.net.au>
Subject: Re: [plug] iptables questions
To: plug at plug.org.au
Date: Wednesday, September 29, 2010, 5:37 PM

On Wed, 2010-09-29 at 02:29 -0700, Fred Janon wrote:
> 
> $ ping localhost
> PING localhost (127.0.0.1) 56(84) bytes of data.
> 64 bytes from localhost (127.0.0.1): icmp_seq=1 ttl=64 time=0.028 ms
> 64 bytes from localhost (127.0.0.1): icmp_seq=2 ttl=64 time=0.029 ms
> 
> The server is on an EC2 Amazon server in the US and I am trying to
> traceroute it from here with my ISP and the Amazon firewall in the
> middle, with an ocean in between.
> 
> Thanks
> 
> Fred
> 
> 
> "You aint got a hope in hell ..."
> 
> ping and traceroute wont work across the Internet - well they might
> but its almost standard practise to block ICMP due to DOS
> 
> EC2 itself is getting a reputation for being used in DOS attacks - the
> VoIP boys are up in arms and were talking about blocking it.
> 
> Use tcptraceroute - uses TCP and port 80 by default, or you can select
> another port such as 22 (ssh) - that should work.
> 
> BillK

_______________________________________________
PLUG discussion list: plug at plug.org.au
http://www.plug.org.au/mailman/listinfo/plug
Committee e-mail: committee at plug.linux.org.au
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.plug.org.au/pipermail/plug/attachments/20100929/69030b6d/attachment.html>

More information about the plug mailing list