Mageia forum

[courtrrb]

This web site www.ea.financial-net.com will time out when I try to connnect when using Mageia 4
and connected directly to my Cable Modem. If I move the same system to behind a Mageia 4 Firewall that is connected to the same cable modem it connect as it should. Windows connects every time. Anyone have any ideas as to why this would happen?

[doktor5000]

Seems that website is really down currently: http://www.downforeveryoneorjustme.com/ ... l-net.com/

To find out why, you can use curl -v or curl --trace to get a full trace of the connection.
Example:

[doktor5000@Mageia4 ~]$ curl -v http://www.ea.financial-net.com/
* Hostname was NOT found in DNS cache
* Trying 12.45.141.150...
* Adding handle: conn: 0x16f1da0
* Adding handle: send: 0
* Adding handle: recv: 0
* Curl_addHandleToPipeline: length: 1
* - Conn 0 (0x16f1da0) send_pipe: 1, recv_pipe: 0
* connect to 12.45.141.150 port 80 failed: Connection refused
* Failed to connect to www.ea.financial-net.com port 80: Connection refused
* Closing connection 0
curl: (7) Failed to connect to www.ea.financial-net.com port 80: Connection refused

[doktor5000@Mageia4 ~]$ curl --trace test http://www.ea.financial-net.com/
curl: (7) Failed to connect to www.ea.financial-net.com port 80: Connection refused
[doktor5000@Mageia4 ~]$ cat test
== Info: Hostname was NOT found in DNS cache
== Info: Trying 12.45.141.150...
== Info: Adding handle: conn: 0x1e79da0
== Info: Adding handle: send: 0
== Info: Adding handle: recv: 0
== Info: Curl_addHandleToPipeline: length: 1
== Info: - Conn 0 (0x1e79da0) send_pipe: 1, recv_pipe: 0
== Info: connect to 12.45.141.150 port 80 failed: Connection refused
== Info: Failed to connect to www.ea.financial-net.com port 80: Connection refused
== Info: Closing connection 0

[isadora]

this is what I get when on the machine connected directlery to the internet (It wont connect)

Code: Select all

[bob@server ~]$ curl -v https://www.ea.financial-net.com
* Rebuilt URL to: https://www.ea.financial-net.com/
* Hostname was NOT found in DNS cache
*   Trying 12.45.141.150...
* Adding handle: conn: 0x1fb2d70
* Adding handle: send: 0
* Adding handle: recv: 0
* Curl_addHandleToPipeline: length: 1
* - Conn 0 (0x1fb2d70) send_pipe: 1, recv_pipe: 0
* Connected to http://www.ea.financial-net.com (12.45.141.150) port 443 (#0)
* successfully set certificate verify locations:
*   CAfile: /etc/pki/tls/certs/ca-bundle.crt
  CApath: none
* SSLv3, TLS handshake, Client hello (1):
* SSLv3, TLS handshake, Server hello (2):
* SSLv3, TLS handshake, CERT (11):
* SSLv3, TLS handshake, Server finished (14):
* SSLv3, TLS handshake, Client key exchange (16):
* SSLv3, TLS change cipher, Client hello (1):
* SSLv3, TLS handshake, Finished (20):
* SSLv3, TLS change cipher, Client hello (1):
* SSLv3, TLS handshake, Finished (20):
* SSL connection using RC4-SHA
* Server certificate:
*        subject: C=US; ST=Oregon; L=Portland; O=Fiserv Solutions Inc; OU=Card Services; CN=www.ea.financial-net.com
*        start date: 2012-10-09 00:00:00 GMT
*        expire date: 2014-10-09 23:59:59 GMT
*        subjectAltName: http://www.ea.financial-net.com matched
*        issuer: C=US; O=Thawte, Inc.; CN=Thawte SSL CA
*        SSL certificate verify ok.
> GET / HTTP/1.1
> User-Agent: curl/7.34.0
> Host: http://www.ea.financial-net.com
> Accept: */*
>
* SSL read: error:00000000:lib(0):func(0):reason(0), errno 104
* Closing connection 0
curl: (56) SSL read: error:00000000:lib(0):func(0):reason(0), errno 104
[bob@server ~]$


This is what I get when when connected to the machine thet is connected to the internet (Site is found and I can browse the site)

Code: Select all

[bob@bob ~]$ curl -v https://www.ea.financial-net.com
* Rebuilt URL to: https://www.ea.financial-net.com/
* Hostname was NOT found in DNS cache
*   Trying 12.45.141.150...
* Adding handle: conn: 0x2031d70
* Adding handle: send: 0
* Adding handle: recv: 0
* Curl_addHandleToPipeline: length: 1
* - Conn 0 (0x2031d70) send_pipe: 1, recv_pipe: 0
* Connected to http://www.ea.financial-net.com (12.45.141.150) port 443 (#0)
* successfully set certificate verify locations:
*   CAfile: /etc/pki/tls/certs/ca-bundle.crt
  CApath: none
* SSLv3, TLS handshake, Client hello (1):
* SSLv3, TLS handshake, Server hello (2):
* SSLv3, TLS handshake, CERT (11):
* SSLv3, TLS handshake, Server finished (14):
* SSLv3, TLS handshake, Client key exchange (16):
* SSLv3, TLS change cipher, Client hello (1):
* SSLv3, TLS handshake, Finished (20):
* SSLv3, TLS change cipher, Client hello (1):
* SSLv3, TLS handshake, Finished (20):
* SSL connection using RC4-SHA
* Server certificate:
*        subject: C=US; ST=Oregon; L=Portland; O=Fiserv Solutions Inc; OU=Card Services; CN=www.ea.financial-net.com
*        start date: 2012-10-09 00:00:00 GMT
*        expire date: 2014-10-09 23:59:59 GMT
*        subjectAltName: http://www.ea.financial-net.com matched
*        issuer: C=US; O=Thawte, Inc.; CN=Thawte SSL CA
*        SSL certificate verify ok.
> GET / HTTP/1.1
> User-Agent: curl/7.34.0
> Host: http://www.ea.financial-net.com
> Accept: */*
>
< HTTP/1.1 403 Forbidden
< Set-Cookie: EA.FINCL_COOKIE=R3406327097; path=/; expires=Sun, 27-Jul-2014 19:02:25 GMT
< Content-Type: text/html
* Server Microsoft-IIS/7.5 is not blacklisted
< Server: Microsoft-IIS/7.5
< X-Powered-By: ASP.NET
< Date: Sat, 26 Jul 2014 18:43:11 GMT
< Content-Length: 1233
<
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"/>
<title>403 - Forbidden: Access is denied.</title>
<style type="text/css">
<!--
body{margin:0;font-size:.7em;font-family:Verdana, Arial, Helvetica, sans-serif;background:#EEEEEE;}
fieldset{padding:0 15px 10px 15px;}
h1{font-size:2.4em;margin:0;color:#FFF;}
h2{font-size:1.7em;margin:0;color:#CC0000;}
h3{font-size:1.2em;margin:10px 0 0 0;color:#000000;}
#header{width:96%;margin:0 0 0 0;padding:6px 2% 6px 2%;font-family:"trebuchet MS", Verdana, sans-serif;color:#FFF;
background-color:#555555;}
#content{margin:0 0 0 2%;position:relative;}
.content-container{background:#FFF;width:96%;margin-top:8px;padding:10px;position:relative;}
-->
</style>
</head>
<body>
<div id="header"><h1>Server Error</h1></div>
<div id="content">
 <div class="content-container"><fieldset>
  <h2>403 - Forbidden: Access is denied.</h2>
  <h3>You do not have permission to view this directory or page using the credentials that you supplied.</h3>
 </fieldset></div>
</div>
</body>
</html>
* Connection #0 to host http://www.ea.financial-net.com left intact
[bob@bob ~]$

[doktor5000]

Can't help you, that site is still unavailable here. Maybe you're better of contacting the webmaster of that site ...

[courtrrb]

This is a Linux problem and not a web site problem because it works in Win7 and on those Linux machines that
are connected to the Linux firewall machine.

Just not the firewall machine itself.

Turning off the shorewall firewall does not fix the problem.