[clug] ssl and https

Peter Barker pbarker at barker.dropbear.id.au
Thu Feb 24 15:56:41 MST 2011


On Fri, 25 Feb 2011, dylan porter wrote:

> it comes up with timed out and such like but when i ping the server it
> replies in average time

OK.  Let's do some simple network diagnostics.

Could you try to install "tcptraceroute"?

Try:
tcptraceroute <servername> 443
to two server names: one that works, one that doesm't.

Here are the results from my 3G connection to google.com port 443 (the 
https port):


  1  * * *
  2  * * *
  3  10.176.80.10  120.520 ms  99.900 ms  89.954 ms
  4  10.176.81.22  79.939 ms  89.956 ms  89.941 ms
  5  10.176.81.130  79.935 ms  79.953 ms  109.959 ms
  6  10.176.80.5  79.937 ms  83.702 ms  109.317 ms
  7  202.124.65.252  89.257 ms  96.847 ms  109.883 ms
  8  202.124.65.250  79.094 ms
     202.124.65.249  97.752 ms
     202.124.65.250  74.553 ms
  9  10.176.64.14  129.798 ms  127.413 ms  82.460 ms
10  10.176.64.17  89.950 ms  127.455 ms  99.951 ms
11  as15169.sydney.pipenetworks.com (218.100.2.97)  99.940 ms  119.810 ms 
95.801 ms
12  66.249.95.232  85.334 ms * *
13  74.125.237.50 [open]  112.861 ms * *

Here are the results from my 3G connection to smh.com.a port 443 (which 
doesn't work)

Tracing the path to smh.com.au (203.26.51.71) on TCP port 443 (https), 30 
hops max
  1  * * *
  2  * * *
  3  10.176.80.10  68.049 ms  119.764 ms  97.350 ms
  4  10.176.81.22  65.630 ms  77.944 ms  67.404 ms
  5  10.176.81.130  80.112 ms  118.426 ms  99.935 ms
  6  10.176.80.5  61.157 ms  60.185 ms  79.240 ms
  7  202.124.65.252  70.155 ms  127.367 ms  142.392 ms
  8  202.124.65.249  89.954 ms  74.837 ms  89.935 ms
  9  10.176.64.2  69.976 ms  69.889 ms  117.454 ms
10  as23854.sydney.pipenetworks.com (218.100.2.15)  62.433 ms  72.102 ms 
80.059 ms
11  * * *
12  * * *
.
.
29  * * *
30  * * *
Destination not reached


Could you also try "telnet <servername> 443", again for one that works, 
one that doesn't.

Here's one that doesn't:
pbarker at bluebottle:~$ telnet smh.com.au 443
Trying 203.26.51.71...
^C
pbarker at bluebottle:~$

And here's one that does:
pbarker at bluebottle:~$ telnet google.com 443
Trying 74.125.237.50...
Connected to google.com.
Escape character is '^]'.
^]
telnet> Connection closed.
pbarker at bluebottle:~$


> problem is that takes up much more cpu time and memory then just running
> firefox

And, by extension, more battery life - which is the sucky bit :-)

> dylan porter

Yours,
-- 
Peter Barker                          |   Programmer,Sysadmin,Geek.
pbarker at barker.dropbear.id.au	      |   You need a bigger hammer.
:: It's a hack! Expect underscores! - Nigel Williams


More information about the linux mailing list