My ip is blocked?

daglab · May 25, 2023, 10:29am

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: dstu.ru

I ran this command:
curl -I -v "https://acme-v02.api.letsencrypt.org/directory"

It produced this output:

* Expire in 9 ms for 1 (transfer 0x556ec10d3fb0)
* Expire in 12 ms for 1 (transfer 0x556ec10d3fb0)
*   Trying 172.65.32.248...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Expire in 200 ms for 4 (transfer 0x556ec10d3fb0)
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
* connect to 172.65.32.248 port 443 failed: Время ожидания соединения истекло
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 134275 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 134275 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
* Failed to connect to acme-v02.api.letsencrypt.org port 443: Время ожидания соединения истекло
* Closing connection 0
curl: (7) Failed to connect to acme-v02.api.letsencrypt.org port 443: Время ожидания соединения истекло

My web server is (include version):
176.120.222.20
The operating system my web server runs on is (include version):
debian
My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don't know):
yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
vestacp
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):

Nekit · May 25, 2023, 10:35am

Looks like ipv6 is broken on the server. Confirm whether ipv4 works like so:

curl -I -v -4 https://acme-v02.api.letsencrypt.org/directory

If that works see if you can fix your ipv6 connectivity or just get rid of it.

daglab · May 25, 2023, 10:41am

same

Expire in 8 ms for 1 (transfer 0x562e511a6fb0)
Expire in 10 ms for 1 (transfer 0x562e511a6fb0)
Expire in 10 ms for 1 (transfer 0x562e511a6fb0)
Expire in 13 ms for 1 (transfer 0x562e511a6fb0)
Trying 172.65.32.248...
TCP_NODELAY set
Expire in 200 ms for 4 (transfer 0x562e511a6fb0)
connect to 172.65.32.248 port 443 failed: Время ожидания соединения истекло
Failed to connect to acme-v02.api.letsencrypt.org port 443: Время ожидания соединения истекло
Closing connection 0
curl: (7) Failed to connect to acme-v02.api.letsencrypt.org port 443: Время ожидания соединения истекло

Nekit · May 25, 2023, 10:52am

Interesting. Can the server do any other outbound connections? Especially to Cloudflare. How about these:

curl -I -v -4 https://ya.ru
curl -I -v -4 https://www.cloudflare.com

Also traceroute might shed some light:

traceroute acme-v02.api.letsencrypt.org

daglab · May 25, 2023, 11:35am

cloudflare:

* Expire in 7 ms for 1 (transfer 0x56253d1b5fb0)
* Expire in 7 ms for 1 (transfer 0x56253d1b5fb0)
* Expire in 8 ms for 1 (transfer 0x56253d1b5fb0)
* Expire in 10 ms for 1 (transfer 0x56253d1b5fb0)
* Expire in 10 ms for 1 (transfer 0x56253d1b5fb0)
* Expire in 13 ms for 1 (transfer 0x56253d1b5fb0)
*   Trying 104.16.124.96...
* TCP_NODELAY set
* Expire in 149980 ms for 3 (transfer 0x56253d1b5fb0)
* Expire in 200 ms for 4 (transfer 0x56253d1b5fb0)
* connect to 104.16.124.96 port 443 failed: Время ожидания соединения истекло
*   Trying 104.16.123.96...
* TCP_NODELAY set
* Expire in 134193 ms for 3 (transfer 0x56253d1b5fb0)
* Connected to www.cloudflare.com (104.16.123.96) port 443 (#0)
* ALPN, offering h2
* ALPN, offering http/1.1
* successfully set certificate verify locations:
*   CAfile: none
  CApath: /etc/ssl/certs
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
* TLSv1.3 (IN), TLS handshake, Server hello (2):
* TLSv1.3 (IN), TLS handshake, Encrypted Extensions (8):
* TLSv1.3 (IN), TLS handshake, Certificate (11):
* TLSv1.3 (IN), TLS handshake, CERT verify (15):
* TLSv1.3 (IN), TLS handshake, Finished (20):
* TLSv1.3 (OUT), TLS change cipher, Change cipher spec (1):
* TLSv1.3 (OUT), TLS handshake, Finished (20):
* SSL connection using TLSv1.3 / TLS_AES_256_GCM_SHA384
* ALPN, server accepted to use h2
* Server certificate:
*  subject: C=US; ST=California; L=San Francisco; O=Cloudflare, Inc.; CN=www.cloudflare.com
*  start date: Sep 27 00:00:00 2022 GMT
*  expire date: Sep 26 23:59:59 2023 GMT
*  subjectAltName: host "www.cloudflare.com" matched cert's "www.cloudflare.com"
*  issuer: C=US; O=Cloudflare, Inc.; CN=Cloudflare Inc ECC CA-3
*  SSL certificate verify ok.
* Using HTTP2, server supports multi-use
* Connection state changed (HTTP/2 confirmed)
* Copying HTTP/2 data in stream buffer to connection buffer after upgrade: len=0
* Using Stream ID: 1 (easy handle 0x56253d1b5fb0)
> HEAD / HTTP/2
> Host: www.cloudflare.com
> User-Agent: curl/7.64.0
> Accept: */*
> 
* TLSv1.3 (IN), TLS handshake, Newsession Ticket (4):
* TLSv1.3 (IN), TLS handshake, Newsession Ticket (4):
* old SSL session ID is stale, removing
* Connection state changed (MAX_CONCURRENT_STREAMS == 256)!
< HTTP/2 200 
HTTP/2 200 
< date: Thu, 25 May 2023 11:02:37 GMT
date: Thu, 25 May 2023 11:02:37 GMT
< content-type: text/html; charset=utf-8
content-type: text/html; charset=utf-8
< cf-cache-status: MISS
cf-cache-status: MISS
< accept-ranges: bytes
accept-ranges: bytes
< cache-control: max-age=120
cache-control: max-age=120
< expires: Thu, 25 May 2023 11:02:51 GMT
expires: Thu, 25 May 2023 11:02:51 GMT
< last-modified: Thu, 25 May 2023 10:47:25 GMT
last-modified: Thu, 25 May 2023 10:47:25 GMT
< strict-transport-security: max-age=31536000
strict-transport-security: max-age=31536000
< x-content-type-options: nosniff
x-content-type-options: nosniff
< x-frame-options: SAMEORIGIN
x-frame-options: SAMEORIGIN
< x-rm: RDWD
x-rm: RDWD
< x-xss-protection: 1; mode=block
x-xss-protection: 1; mode=block
< set-cookie: __cf_bm=TkgwQSR2fwxbLIm_rsGK6qZV.hCqgaj0Ocv6UBofYsU-1685012557-0-AfOVJoio20HfD0HUO225ByzNk2Q3bmsNchzHHpHKdgCdfrfv67WaB6geiyAx/Fi26g/xzr4MI30Pj6nuyPJtF8PrODlQVombdoGMAUzsbJo8; path=/; expires=Thu, 25-May-23 11:32:37 GMT; domain=.www.cloudflare.com; HttpOnly; Secure; SameSite=None
set-cookie: __cf_bm=TkgwQSR2fwxbLIm_rsGK6qZV.hCqgaj0Ocv6UBofYsU-1685012557-0-AfOVJoio20HfD0HUO225ByzNk2Q3bmsNchzHHpHKdgCdfrfv67WaB6geiyAx/Fi26g/xzr4MI30Pj6nuyPJtF8PrODlQVombdoGMAUzsbJo8; path=/; expires=Thu, 25-May-23 11:32:37 GMT; domain=.www.cloudflare.com; HttpOnly; Secure; SameSite=None
< report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IMIpeIMl6jh5Sx2olwdf8iAjY2iaM8bsX7f%2B7NLtZdGjAb6i6nEwBP%2FhyT7Kfs4Bssf7%2FSv3lMsxql6sk%2BR%2FWO3RplaJieGUZ3p36mMouFQVSjq3j7YTExQcvOZZW46jsEAbxw%3D%3D"}],"group":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IMIpeIMl6jh5Sx2olwdf8iAjY2iaM8bsX7f%2B7NLtZdGjAb6i6nEwBP%2FhyT7Kfs4Bssf7%2FSv3lMsxql6sk%2BR%2FWO3RplaJieGUZ3p36mMouFQVSjq3j7YTExQcvOZZW46jsEAbxw%3D%3D"}],"group":"cf-nel","max_age":604800}
< nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
< server: cloudflare
server: cloudflare
< cf-ray: 7ccd4986aa470c42-DME
cf-ray: 7ccd4986aa470c42-DME
< alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

< 
* Connection #0 to host www.cloudflare.com left intact



Yandex:

* Expire in 10 ms for 1 (transfer 0x564e86665fb0)
* Expire in 10 ms for 1 (transfer 0x564e86665fb0)
* Expire in 13 ms for 1 (transfer 0x564e86665fb0)
*   Trying 5.255.255.242...
* TCP_NODELAY set
* Expire in 149980 ms for 3 (transfer 0x564e86665fb0)
* Expire in 200 ms for 4 (transfer 0x564e86665fb0)
* Connected to ya.ru (5.255.255.242) port 443 (#0)
* ALPN, offering h2
* ALPN, offering http/1.1
* successfully set certificate verify locations:
*   CAfile: none
  CApath: /etc/ssl/certs
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
* TLSv1.3 (IN), TLS handshake, Server hello (2):
* TLSv1.3 (IN), TLS handshake, Encrypted Extensions (8):
* TLSv1.3 (IN), TLS handshake, Certificate (11):
* TLSv1.3 (IN), TLS handshake, CERT verify (15):
* TLSv1.3 (IN), TLS handshake, Finished (20):
* TLSv1.3 (OUT), TLS change cipher, Change cipher spec (1):
* TLSv1.3 (OUT), TLS handshake, Finished (20):
* SSL connection using TLSv1.3 / TLS_AES_256_GCM_SHA384
* ALPN, server accepted to use h2
* Server certificate:
*  subject: C=RU; ST=Moscow; L=Moscow; O=Yandex LLC; CN=*.xn--d1acpjx3f.xn--p1ai
*  start date: Feb  1 12:45:35 2023 GMT
*  expire date: Aug  1 20:59:59 2023 GMT
*  subjectAltName: host "ya.ru" matched cert's "ya.ru"
*  issuer: C=BE; O=GlobalSign nv-sa; CN=GlobalSign ECC OV SSL CA 2018
*  SSL certificate verify ok.
* Using HTTP2, server supports multi-use
* Connection state changed (HTTP/2 confirmed)
* Copying HTTP/2 data in stream buffer to connection buffer after upgrade: len=0
* Using Stream ID: 1 (easy handle 0x564e86665fb0)
> HEAD / HTTP/2
> Host: ya.ru
> User-Agent: curl/7.64.0
> Accept: */*
> 
* TLSv1.3 (IN), TLS handshake, Newsession Ticket (4):
* TLSv1.3 (IN), TLS handshake, Newsession Ticket (4):
* old SSL session ID is stale, removing
* Connection state changed (MAX_CONCURRENT_STREAMS == 128)!
< HTTP/2 302 
HTTP/2 302 
< location: https://ya.ru/?nr=1&redirect_ts=1685012437.00000
location: https://ya.ru/?nr=1&redirect_ts=1685012437.00000
< date: Thu, 25 May 2023 11:00:37 GMT
date: Thu, 25 May 2023 11:00:37 GMT
< nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
< x-content-type-options: nosniff
x-content-type-options: nosniff
< set-cookie: yandex_csyr=1685012437:1; Path=/; Domain=ya.ru; Expires=Fri, 24 May 2024 11:00:37 GMT; Secure
set-cookie: yandex_csyr=1685012437:1; Path=/; Domain=ya.ru; Expires=Fri, 24 May 2024 11:00:37 GMT; Secure
< set-cookie: is_gdpr=0; Path=/; Domain=.ya.ru; Expires=Sat, 24 May 2025 11:00:37 GMT
set-cookie: is_gdpr=0; Path=/; Domain=.ya.ru; Expires=Sat, 24 May 2025 11:00:37 GMT
< set-cookie: is_gdpr_b=CLunFhCuuQEoAg==; Path=/; Domain=.ya.ru; Expires=Sat, 24 May 2025 11:00:37 GMT
set-cookie: is_gdpr_b=CLunFhCuuQEoAg==; Path=/; Domain=.ya.ru; Expires=Sat, 24 May 2025 11:00:37 GMT
< set-cookie: _yasc=IHDttMYPaFqT4/8zODycZS+asLg59+htxZiML+SfStrmhR81a+efTghQhF6scA==; domain=.ya.ru; path=/; expires=Sun, 22 May 2033 11:00:37 GMT; secure
set-cookie: _yasc=IHDttMYPaFqT4/8zODycZS+asLg59+htxZiML+SfStrmhR81a+efTghQhF6scA==; domain=.ya.ru; path=/; expires=Sun, 22 May 2033 11:00:37 GMT; secure
< set-cookie: i=2ovXMXIrPxR3gjiy/8C7ifKWHGvWubmuniEUpDZbHhH4hFbK3CqJJRkJxaoK8nvto1DTxpWPmO4HrkawfDEtY5y/iHs=; Expires=Sat, 24-May-2025 11:00:37 GMT; Domain=.ya.ru; Path=/; Secure; HttpOnly
set-cookie: i=2ovXMXIrPxR3gjiy/8C7ifKWHGvWubmuniEUpDZbHhH4hFbK3CqJJRkJxaoK8nvto1DTxpWPmO4HrkawfDEtY5y/iHs=; Expires=Sat, 24-May-2025 11:00:37 GMT; Domain=.ya.ru; Path=/; Secure; HttpOnly
< set-cookie: yandexuid=8942863181685012437; Expires=Sat, 24-May-2025 11:00:37 GMT; Domain=.ya.ru; Path=/; Secure
set-cookie: yandexuid=8942863181685012437; Expires=Sat, 24-May-2025 11:00:37 GMT; Domain=.ya.ru; Path=/; Secure
< p3p: policyref="/w3c/p3p.xml", CP="NON DSP ADM DEV PSD IVDo OUR IND STP PHY PRE NAV UNI"
p3p: policyref="/w3c/p3p.xml", CP="NON DSP ADM DEV PSD IVDo OUR IND STP PHY PRE NAV UNI"
< expires: Thu, 25 May 2023 11:00:37 GMT
expires: Thu, 25 May 2023 11:00:37 GMT
< x-yandex-req-id: 1685012437895429-11811525473594286318-balancer-l7leveler-kubr-yp-vla-110-BAL-5452
x-yandex-req-id: 1685012437895429-11811525473594286318-balancer-l7leveler-kubr-yp-vla-110-BAL-5452
< last-modified: Thu, 25 May 2023 11:00:37 GMT
last-modified: Thu, 25 May 2023 11:00:37 GMT
< accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
< report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
< cache-control: no-cache,no-store,max-age=0,must-revalidate
cache-control: no-cache,no-store,max-age=0,must-revalidate

< 
* Connection #0 to host ya.ru left intact

daglab · May 25, 2023, 11:37am


 2  10.254.254.17 (10.254.254.17)  0.955 ms  0.947 ms  0.938 ms
 3  81.163.32.17 (81.163.32.17)  0.868 ms  0.834 ms  0.839 ms
 4  92.50.202.77 (92.50.202.77)  0.941 ms  0.932 ms  6.677 ms
 5  185.140.148.155 (185.140.148.155)  25.030 ms * *
 6  * * *
 7  * * *
 8  * * *
 9  * * *
10  * * *
11  * * *
12  * * *
13  * * *
14  * * *
15  * * *
16  * * *
17  * * *
18  * * *
19  * * *
20  * * *
21  * * *
22  * * *
23  * * *
24  * * *
25  * * *
26  * * *
27  * * *
28  * * *
29  * * *
30  * * *

Nekit · May 25, 2023, 11:55am

Sorry, traceroure with default params is rather useless, let's try this one:

sudo traceroute -T -p 443 acme-v02.api.letsencrypt.org

Also, may I ask you to post the outputs of commands inside triple backticks like so:

```
1 176.120.222.1 (176.120.222.1) 0.614 ms 0.623 ms 0.693 ms
2 10.254.254.17 (10.254.254.17) 0.955 ms 0.947 ms 0.938 ms
3 81.163.32.17 (81.163.32.17) 0.868 ms 0.834 ms 0.839 ms
[…]
```

This will make it much easier to read for everyone.

jcjones · May 25, 2023, 3:17pm

We're not blocking this IP.

rg305 · May 25, 2023, 3:21pm

Not that it matters...
But appears to be an IPv4 address NOT a web server [software (and version)].

daglab · May 26, 2023, 12:43pm

Can you run a trace to our server 176.120.222.20 and post it here?

MikeMcQ · May 26, 2023, 1:32pm

@daglab What would you hope to find out about that even if they did it? Would you please show result of this that you were asked for previously

rg305 · May 26, 2023, 2:55pm

That sounds so sus; As in: you either don't understand how to troubleshoot the problem OR you are trying to socially engineer private information.
Don't expect to get one.

A traceroute would not be useful for anything related to this problem.

inbound and outbound rules are usually different
default traceroutes use ICMP [or high UDP ports]
it might show internal IPs/etc. [security risk]

system · June 25, 2023, 2:55pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
I think my IP is blocked Help	20	1226	February 7, 2023
My IP is blocked Help	4	513	September 3, 2022
Suspect IP is blocked? Help	15	527	November 29, 2023
I think my Server IP is blocked or something Help	11	537	September 15, 2023
I think my IP Address is blocked Help	11	723	January 12, 2023

My ip is blocked?

Related topics