LinuxQuestions.org
Latest LQ Deal: Complete CCNA, CCNP & Red Hat Certification Training Bundle
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 10-27-2014, 01:57 AM   #1
debeshbhatta
LQ Newbie
 
Registered: Oct 2014
Posts: 2

Rep: Reputation: Disabled
Unhappy Can not access certain https websites


I recently installed FC20 and for some reason cannot access some https sites including wikipedia.org.
I can access the same sites if I use a different OS.

I tried traceroute to wikipedia.org but it is stopped at the last step as if wikipedia is dropping my packets.
I am also seeing unusual slowdown of some other secure sites like facebook, taking a long time at establishing secure connection. However most other secure sites work normally.

I am confused why is it so ?
Below is a traceroute to wikipedia last few hops:

7 ash-bb4-link.telia.net (213.155.135.152) 97.350 ms ash-bb3-link.telia.net (213.155.137.89) 89.998 ms ash-bb4-link.telia.net (80.91.246.70) 101.970 ms
8 ash-b2-link.telia.net (80.91.252.93) 105.487 ms ash-b2-link.telia.net (80.91.252.91) 108.293 ms ash-b2-link.telia.net (80.91.252.99) 108.721 ms
9 * * *
10 * * *

I am also attaching a IPTABLES rules set below:

Chain INPUT (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 ACCEPT all -- lo any anywhere anywhere
33 1188 DROP igmp -- any any anywhere anywhere
6773 4785K ACCEPT all -- any any anywhere anywhere state RELATED,ESTABLISHED
0 0 ACCEPT tcp -- any any anywhere anywhere state NEW tcp dpt:http
0 0 ACCEPT tcp -- any any anywhere anywhere state NEW tcp dpt:https
0 0 ACCEPT udp -- any any anywhere anywhere state NEW udp dpt:https
0 0 ACCEPT tcp -- any any anywhere anywhere state NEW tcp dpt:ftp
0 0 ACCEPT tcp -- any any 192.168.1.0/24 anywhere tcp dpt:ssh
5 200 DROP all -- any any anywhere anywhere ctstate INVALID
29 2248 LOGGING all -- any any anywhere anywhere
0 0 DROP all -- any any anywhere anywhere

Chain FORWARD (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination

Chain OUTPUT (policy ACCEPT 7128 packets, 774K bytes)
pkts bytes target prot opt in out source destination

Chain LOGGING (1 references)
pkts bytes target prot opt in out source destination
27 2092 LOG all -- any any anywhere anywhere limit: avg 2/min burst 5 LOG level warning prefix "IPTables-Dropped: "
29 2248 DROP all -- any any anywhere anywhere

I am seeing some iptables dropped logs as:
IPTables-Dropped: IN=wlp4s0 OUT= MAC=ff:ff:ff:ff:ff:ff:xx:xx:xx:xx:xx:xx:xx:xx SRC=local_ip_oftheotherpc DST=192.168.1.255 LEN=78 TOS=0x00 PREC=0x00 TTL=128 ID=31843 PROTO=UDP SPT=137 DPT=137 LEN=58
Any help will be highly appreciated. Thanks
D
 
Old 10-28-2014, 08:09 AM   #2
Ztcoracat
LQ Guru
 
Registered: Dec 2011
Distribution: Slackware
Posts: 7,448
Blog Entries: 10

Rep: Reputation: Disabled
Hi:

This Fedora thread is similar to what you have going on and looks like a place to start.
https://ask.fedoraproject.org/en/que...tain-websites/

You can Try disabling ipv6 and see if that helps-
http://forums.fedoraforum.org/showthread.php?t=267888

Sorry I'm not familiar with how to configure ip tables if that's the issue.

You might want to try to ping the sites you are not able to access and see what those results are and post what browser your using.

If you set up your firewall make sure Firefox or whatever browser your using is permitted to using the Web.

Hope that helps.
 
1 members found this post helpful.
Old 10-28-2014, 08:13 PM   #3
debeshbhatta
LQ Newbie
 
Registered: Oct 2014
Posts: 2

Original Poster
Rep: Reputation: Disabled
The network.dns.disableIPv6 set to true solves the issue.
Thanks for the pointer.
 
Old 10-29-2014, 09:50 AM   #4
Ztcoracat
LQ Guru
 
Registered: Dec 2011
Distribution: Slackware
Posts: 7,448
Blog Entries: 10

Rep: Reputation: Disabled
Quote:
Originally Posted by debeshbhatta View Post
The network.dns.disableIPv6 set to true solves the issue.
Thanks for the pointer.
Bet your glad:-

Your Welcome-

Last edited by Ztcoracat; 10-29-2014 at 09:53 AM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Squid Refusing Connections for HTTPS websites BuisSse Linux - Newbie 2 12-22-2011 04:54 AM
[SOLVED] Cannot access certain websites mentaaal Linux - Newbie 4 04-17-2011 03:25 PM
Can`t access certain websites theuns247 Linux - Server 4 12-09-2009 02:29 AM
Unable to view secure websites - https Micro420 Linux - General 1 09-08-2006 03:20 AM
Can't access websites pow2k2 Linux - Networking 7 12-26-2002 09:09 PM


All times are GMT -5. The time now is 01:54 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration