My ip is blocked?

daglab · May 25, 2023, 10:29am

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: dstu.ru

I ran this command:
curl -I -v "https://acme-v02.api.letsencrypt.org/directory"

It produced this output:

* Expire in 9 ms for 1 (transfer 0x556ec10d3fb0)
* Expire in 12 ms for 1 (transfer 0x556ec10d3fb0)
*   Trying 172.65.32.248...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Expire in 200 ms for 4 (transfer 0x556ec10d3fb0)
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 149981 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
* connect to 172.65.32.248 port 443 failed: Время ожидания соединения истекло
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 134275 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
*   Trying 2606:4700:60:0:f53d:5624:85c7:3a2c...
* TCP_NODELAY set
* Expire in 134275 ms for 3 (transfer 0x556ec10d3fb0)
* Immediate connect fail for 2606:4700:60:0:f53d:5624:85c7:3a2c: Сеть недоступна
* Failed to connect to acme-v02.api.letsencrypt.org port 443: Время ожидания соединения истекло
* Closing connection 0
curl: (7) Failed to connect to acme-v02.api.letsencrypt.org port 443: Время ожидания соединения истекло

My web server is (include version):
176.120.222.20
The operating system my web server runs on is (include version):
debian
My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don't know):
yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
vestacp
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):

Nekit · May 25, 2023, 10:35am

Looks like ipv6 is broken on the server. Confirm whether ipv4 works like so:

curl -I -v -4 https://acme-v02.api.letsencrypt.org/directory

If that works see if you can fix your ipv6 connectivity or just get rid of it.

daglab · May 25, 2023, 10:41am

same

Expire in 8 ms for 1 (transfer 0x562e511a6fb0)
Expire in 10 ms for 1 (transfer 0x562e511a6fb0)
Expire in 10 ms for 1 (transfer 0x562e511a6fb0)
Expire in 13 ms for 1 (transfer 0x562e511a6fb0)
Trying 172.65.32.248...
TCP_NODELAY set
Expire in 200 ms for 4 (transfer 0x562e511a6fb0)
connect to 172.65.32.248 port 443 failed: Время ожидания соединения истекло
Failed to connect to acme-v02.api.letsencrypt.org port 443: Время ожидания соединения истекло
Closing connection 0
curl: (7) Failed to connect to acme-v02.api.letsencrypt.org port 443: Время ожидания соединения истекло

Nekit · May 25, 2023, 10:52am

Interesting. Can the server do any other outbound connections? Especially to Cloudflare. How about these:

curl -I -v -4 https://ya.ru
curl -I -v -4 https://www.cloudflare.com

Also traceroute might shed some light:

traceroute acme-v02.api.letsencrypt.org

daglab · May 25, 2023, 11:35am

cloudflare:

* Expire in 7 ms for 1 (transfer 0x56253d1b5fb0)
* Expire in 7 ms for 1 (transfer 0x56253d1b5fb0)
* Expire in 8 ms for 1 (transfer 0x56253d1b5fb0)
* Expire in 10 ms for 1 (transfer 0x56253d1b5fb0)
* Expire in 10 ms for 1 (transfer 0x56253d1b5fb0)
* Expire in 13 ms for 1 (transfer 0x56253d1b5fb0)
*   Trying 104.16.124.96...
* TCP_NODELAY set
* Expire in 149980 ms for 3 (transfer 0x56253d1b5fb0)
* Expire in 200 ms for 4 (transfer 0x56253d1b5fb0)
* connect to 104.16.124.96 port 443 failed: Время ожидания соединения истекло
*   Trying 104.16.123.96...
* TCP_NODELAY set
* Expire in 134193 ms for 3 (transfer 0x56253d1b5fb0)
* Connected to www.cloudflare.com (104.16.123.96) port 443 (#0)
* ALPN, offering h2
* ALPN, offering http/1.1
* successfully set certificate verify locations:
*   CAfile: none
  CApath: /etc/ssl/certs
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
* TLSv1.3 (IN), TLS handshake, Server hello (2):
* TLSv1.3 (IN), TLS handshake, Encrypted Extensions (8):
* TLSv1.3 (IN), TLS handshake, Certificate (11):
* TLSv1.3 (IN), TLS handshake, CERT verify (15):
* TLSv1.3 (IN), TLS handshake, Finished (20):
* TLSv1.3 (OUT), TLS change cipher, Change cipher spec (1):
* TLSv1.3 (OUT), TLS handshake, Finished (20):
* SSL connection using TLSv1.3 / TLS_AES_256_GCM_SHA384
* ALPN, server accepted to use h2
* Server certificate:
*  subject: C=US; ST=California; L=San Francisco; O=Cloudflare, Inc.; CN=www.cloudflare.com
*  start date: Sep 27 00:00:00 2022 GMT
*  expire date: Sep 26 23:59:59 2023 GMT
*  subjectAltName: host "www.cloudflare.com" matched cert's "www.cloudflare.com"
*  issuer: C=US; O=Cloudflare, Inc.; CN=Cloudflare Inc ECC CA-3
*  SSL certificate verify ok.
* Using HTTP2, server supports multi-use
* Connection state changed (HTTP/2 confirmed)
* Copying HTTP/2 data in stream buffer to connection buffer after upgrade: len=0
* Using Stream ID: 1 (easy handle 0x56253d1b5fb0)
> HEAD / HTTP/2
> Host: www.cloudflare.com
> User-Agent: curl/7.64.0
> Accept: */*
> 
* TLSv1.3 (IN), TLS handshake, Newsession Ticket (4):
* TLSv1.3 (IN), TLS handshake, Newsession Ticket (4):
* old SSL session ID is stale, removing
* Connection state changed (MAX_CONCURRENT_STREAMS == 256)!
< HTTP/2 200 
HTTP/2 200 
< date: Thu, 25 May 2023 11:02:37 GMT
date: Thu, 25 May 2023 11:02:37 GMT
< content-type: text/html; charset=utf-8
content-type: text/html; charset=utf-8
< cf-cache-status: MISS
cf-cache-status: MISS
< accept-ranges: bytes
accept-ranges: bytes
< cache-control: max-age=120
cache-control: max-age=120
< expires: Thu, 25 May 2023 11:02:51 GMT
expires: Thu, 25 May 2023 11:02:51 GMT
< last-modified: Thu, 25 May 2023 10:47:25 GMT
last-modified: Thu, 25 May 2023 10:47:25 GMT
< strict-transport-security: max-age=31536000
strict-transport-security: max-age=31536000
< x-content-type-options: nosniff
x-content-type-options: nosniff
< x-frame-options: SAMEORIGIN
x-frame-options: SAMEORIGIN
< x-rm: RDWD
x-rm: RDWD
< x-xss-protection: 1; mode=block
x-xss-protection: 1; mode=block
< set-cookie: __cf_bm=TkgwQSR2fwxbLIm_rsGK6qZV.hCqgaj0Ocv6UBofYsU-1685012557-0-AfOVJoio20HfD0HUO225ByzNk2Q3bmsNchzHHpHKdgCdfrfv67WaB6geiyAx/Fi26g/xzr4MI30Pj6nuyPJtF8PrODlQVombdoGMAUzsbJo8; path=/; expires=Thu, 25-May-23 11:32:37 GMT; domain=.www.cloudflare.com; HttpOnly; Secure; SameSite=None
set-cookie: __cf_bm=TkgwQSR2fwxbLIm_rsGK6qZV.hCqgaj0Ocv6UBofYsU-1685012557-0-AfOVJoio20HfD0HUO225ByzNk2Q3bmsNchzHHpHKdgCdfrfv67WaB6geiyAx/Fi26g/xzr4MI30Pj6nuyPJtF8PrODlQVombdoGMAUzsbJo8; path=/; expires=Thu, 25-May-23 11:32:37 GMT; domain=.www.cloudflare.com; HttpOnly; Secure; SameSite=None
< report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IMIpeIMl6jh5Sx2olwdf8iAjY2iaM8bsX7f%2B7NLtZdGjAb6i6nEwBP%2FhyT7Kfs4Bssf7%2FSv3lMsxql6sk%2BR%2FWO3RplaJieGUZ3p36mMouFQVSjq3j7YTExQcvOZZW46jsEAbxw%3D%3D"}],"group":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IMIpeIMl6jh5Sx2olwdf8iAjY2iaM8bsX7f%2B7NLtZdGjAb6i6nEwBP%2FhyT7Kfs4Bssf7%2FSv3lMsxql6sk%2BR%2FWO3RplaJieGUZ3p36mMouFQVSjq3j7YTExQcvOZZW46jsEAbxw%3D%3D"}],"group":"cf-nel","max_age":604800}
< nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
< server: cloudflare
server: cloudflare
< cf-ray: 7ccd4986aa470c42-DME
cf-ray: 7ccd4986aa470c42-DME
< alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

< 
* Connection #0 to host www.cloudflare.com left intact



Yandex:

* Expire in 10 ms for 1 (transfer 0x564e86665fb0)
* Expire in 10 ms for 1 (transfer 0x564e86665fb0)
* Expire in 13 ms for 1 (transfer 0x564e86665fb0)
*   Trying 5.255.255.242...
* TCP_NODELAY set
* Expire in 149980 ms for 3 (transfer 0x564e86665fb0)
* Expire in 200 ms for 4 (transfer 0x564e86665fb0)
* Connected to ya.ru (5.255.255.242) port 443 (#0)
* ALPN, offering h2
* ALPN, offering http/1.1
* successfully set certificate verify locations:
*   CAfile: none
  CApath: /etc/ssl/certs
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
* TLSv1.3 (IN), TLS handshake, Server hello (2):
* TLSv1.3 (IN), TLS handshake, Encrypted Extensions (8):
* TLSv1.3 (IN), TLS handshake, Certificate (11):
* TLSv1.3 (IN), TLS handshake, CERT verify (15):
* TLSv1.3 (IN), TLS handshake, Finished (20):
* TLSv1.3 (OUT), TLS change cipher, Change cipher spec (1):
* TLSv1.3 (OUT), TLS handshake, Finished (20):
* SSL connection using TLSv1.3 / TLS_AES_256_GCM_SHA384
* ALPN, server accepted to use h2
* Server certificate:
*  subject: C=RU; ST=Moscow; L=Moscow; O=Yandex LLC; CN=*.xn--d1acpjx3f.xn--p1ai
*  start date: Feb  1 12:45:35 2023 GMT
*  expire date: Aug  1 20:59:59 2023 GMT
*  subjectAltName: host "ya.ru" matched cert's "ya.ru"
*  issuer: C=BE; O=GlobalSign nv-sa; CN=GlobalSign ECC OV SSL CA 2018
*  SSL certificate verify ok.
* Using HTTP2, server supports multi-use
* Connection state changed (HTTP/2 confirmed)
* Copying HTTP/2 data in stream buffer to connection buffer after upgrade: len=0
* Using Stream ID: 1 (easy handle 0x564e86665fb0)
> HEAD / HTTP/2
> Host: ya.ru
> User-Agent: curl/7.64.0
> Accept: */*
> 
* TLSv1.3 (IN), TLS handshake, Newsession Ticket (4):
* TLSv1.3 (IN), TLS handshake, Newsession Ticket (4):
* old SSL session ID is stale, removing
* Connection state changed (MAX_CONCURRENT_STREAMS == 128)!
< HTTP/2 302 
HTTP/2 302 
< location: https://ya.ru/?nr=1&redirect_ts=1685012437.00000
location: https://ya.ru/?nr=1&redirect_ts=1685012437.00000
< date: Thu, 25 May 2023 11:00:37 GMT
date: Thu, 25 May 2023 11:00:37 GMT
< nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
< x-content-type-options: nosniff
x-content-type-options: nosniff
< set-cookie: yandex_csyr=1685012437:1; Path=/; Domain=ya.ru; Expires=Fri, 24 May 2024 11:00:37 GMT; Secure
set-cookie: yandex_csyr=1685012437:1; Path=/; Domain=ya.ru; Expires=Fri, 24 May 2024 11:00:37 GMT; Secure
< set-cookie: is_gdpr=0; Path=/; Domain=.ya.ru; Expires=Sat, 24 May 2025 11:00:37 GMT
set-cookie: is_gdpr=0; Path=/; Domain=.ya.ru; Expires=Sat, 24 May 2025 11:00:37 GMT
< set-cookie: is_gdpr_b=CLunFhCuuQEoAg==; Path=/; Domain=.ya.ru; Expires=Sat, 24 May 2025 11:00:37 GMT
set-cookie: is_gdpr_b=CLunFhCuuQEoAg==; Path=/; Domain=.ya.ru; Expires=Sat, 24 May 2025 11:00:37 GMT
< set-cookie: _yasc=IHDttMYPaFqT4/8zODycZS+asLg59+htxZiML+SfStrmhR81a+efTghQhF6scA==; domain=.ya.ru; path=/; expires=Sun, 22 May 2033 11:00:37 GMT; secure
set-cookie: _yasc=IHDttMYPaFqT4/8zODycZS+asLg59+htxZiML+SfStrmhR81a+efTghQhF6scA==; domain=.ya.ru; path=/; expires=Sun, 22 May 2033 11:00:37 GMT; secure
< set-cookie: i=2ovXMXIrPxR3gjiy/8C7ifKWHGvWubmuniEUpDZbHhH4hFbK3CqJJRkJxaoK8nvto1DTxpWPmO4HrkawfDEtY5y/iHs=; Expires=Sat, 24-May-2025 11:00:37 GMT; Domain=.ya.ru; Path=/; Secure; HttpOnly
set-cookie: i=2ovXMXIrPxR3gjiy/8C7ifKWHGvWubmuniEUpDZbHhH4hFbK3CqJJRkJxaoK8nvto1DTxpWPmO4HrkawfDEtY5y/iHs=; Expires=Sat, 24-May-2025 11:00:37 GMT; Domain=.ya.ru; Path=/; Secure; HttpOnly
< set-cookie: yandexuid=8942863181685012437; Expires=Sat, 24-May-2025 11:00:37 GMT; Domain=.ya.ru; Path=/; Secure
set-cookie: yandexuid=8942863181685012437; Expires=Sat, 24-May-2025 11:00:37 GMT; Domain=.ya.ru; Path=/; Secure
< p3p: policyref="/w3c/p3p.xml", CP="NON DSP ADM DEV PSD IVDo OUR IND STP PHY PRE NAV UNI"
p3p: policyref="/w3c/p3p.xml", CP="NON DSP ADM DEV PSD IVDo OUR IND STP PHY PRE NAV UNI"
< expires: Thu, 25 May 2023 11:00:37 GMT
expires: Thu, 25 May 2023 11:00:37 GMT
< x-yandex-req-id: 1685012437895429-11811525473594286318-balancer-l7leveler-kubr-yp-vla-110-BAL-5452
x-yandex-req-id: 1685012437895429-11811525473594286318-balancer-l7leveler-kubr-yp-vla-110-BAL-5452
< last-modified: Thu, 25 May 2023 11:00:37 GMT
last-modified: Thu, 25 May 2023 11:00:37 GMT
< accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
< report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
< cache-control: no-cache,no-store,max-age=0,must-revalidate
cache-control: no-cache,no-store,max-age=0,must-revalidate

< 
* Connection #0 to host ya.ru left intact

daglab · May 25, 2023, 11:37am


 2  10.254.254.17 (10.254.254.17)  0.955 ms  0.947 ms  0.938 ms
 3  81.163.32.17 (81.163.32.17)  0.868 ms  0.834 ms  0.839 ms
 4  92.50.202.77 (92.50.202.77)  0.941 ms  0.932 ms  6.677 ms
 5  185.140.148.155 (185.140.148.155)  25.030 ms * *
 6  * * *
 7  * * *
 8  * * *
 9  * * *
10  * * *
11  * * *
12  * * *
13  * * *
14  * * *
15  * * *
16  * * *
17  * * *
18  * * *
19  * * *
20  * * *
21  * * *
22  * * *
23  * * *
24  * * *
25  * * *
26  * * *
27  * * *
28  * * *
29  * * *
30  * * *

Nekit · May 25, 2023, 11:55am

Sorry, traceroure with default params is rather useless, let's try this one:

sudo traceroute -T -p 443 acme-v02.api.letsencrypt.org

Also, may I ask you to post the outputs of commands inside triple backticks like so:

```
1 176.120.222.1 (176.120.222.1) 0.614 ms 0.623 ms 0.693 ms
2 10.254.254.17 (10.254.254.17) 0.955 ms 0.947 ms 0.938 ms
3 81.163.32.17 (81.163.32.17) 0.868 ms 0.834 ms 0.839 ms
[…]
```

This will make it much easier to read for everyone.

jcjones · May 25, 2023, 3:17pm

We're not blocking this IP.

rg305 · May 25, 2023, 3:21pm

Not that it matters...
But appears to be an IPv4 address NOT a web server [software (and version)].

daglab · May 26, 2023, 12:43pm

Can you run a trace to our server 176.120.222.20 and post it here?

MikeMcQ · May 26, 2023, 1:32pm

@daglab What would you hope to find out about that even if they did it? Would you please show result of this that you were asked for previously

rg305 · May 26, 2023, 2:55pm

That sounds so sus; As in: you either don't understand how to troubleshoot the problem OR you are trying to socially engineer private information.
Don't expect to get one.

A traceroute would not be useful for anything related to this problem.

inbound and outbound rules are usually different
default traceroutes use ICMP [or high UDP ports]
it might show internal IPs/etc. [security risk]

Topic		Replies	Views
My ip is apparently blocked 86.111.12.92 Help	27	428	May 8, 2025
My IP is blocked? Help	26	566	May 31, 2024
Unblock IP address Help	32	2174	August 29, 2022
I think my IP is blocked Help	20	1341	February 7, 2023
IP from webserver blocked? Help	14	334	October 16, 2024

My ip is blocked?

Related topics