[mythtv-users] Re: atprms.net unreachable? (ip blocking)

Kenneth Hadley khadley at pacbell.net
Wed Jun 15 02:39:54 UTC 2005 

SBC DSL IP address is currently blocked, my Charter Cable connection is not.



Justin Popa wrote:

>In the correct thread now...
>
>For those who didnt see my post from earlier, I am back to using
>another repository for the at-stable information.
>
>http://mirrors.ircam.fr pub/atrpms/fedora/3/en/i386 at-stable
>
>This should be a near perfect mirror. It's working 100% for me right
>now. Don't mean to say avoid atrpms, but until this issue is resolved,
>this will work for most of you.
>
>I've noticed about 2-3 people say they were comcast. Anyone here
>having the problem on an ISP **OTHER** than comcast?
>
>On 6/14/05, Kenneth Hadley <khadley at pacbell.net> wrote:
>  
>
>>Axel Thimm wrote:
>>
>>    
>>
>>>On Tue, Jun 14, 2005 at 05:37:57PM -0700, Kenneth Hadley wrote:
>>>
>>>
>>>      
>>>
>>>>Axel,
>>>>
>>>>How often is the blocking cleared?
>>>>
>>>>
>>>>        
>>>>
>>>Not really often. I think I cleared it twice since the release.
>>>
>>>
>>>
>>>      
>>>
>>>>I've been blocked for about a bit over a day now
>>>>
>>>>
>>>>        
>>>>
>>>Certainly has been cleared in the last 24h. What have you been doing?
>>>Is it yum again?
>>>
>>>
>>>
>>>      
>>>
>>Odd then, should have cleared
>>
>>Was reloading from scratch my MythTV box from scratch via Fedora
>>MythTVology guide (had tried upgrading from v.0.16 to v.0.18.1 but that
>>left the previous insatll extremely crash prone) with apt-get and about
>>halfway through it just paused till it timed out.
>>
>>I'm lucky enough (or is that fool enough?) to have both cable and dsl
>>connected to different firewalls on my home LAN so I just switched to my
>>Cable connection; downloading from atrpms.net now :-D
>>
>>    
>>
>>>>and I'm rather amazed that it appears at least half dozen (or more)
>>>>people are having this problem.
>>>>
>>>>
>>>>        
>>>>
>>>Half a dozen is vanishingly small if you compare to the total unique
>>>client accesses per day. In normal days it's between 10-20K. I haven't
>>>checked yet for the unique connects since the release of FC4, but I
>>>guess they will be much higher.
>>>
>>>
>>>      
>>>
>>Good point, just rare to see noise on the mythtv mailing list
>>referencing problems with atrpms.net.
>>
>>    
>>
>>>      
>>>
>>>>Axel Thimm wrote:
>>>>
>>>>
>>>>
>>>>        
>>>>
>>>>>On Tue, Jun 14, 2005 at 01:44:36PM -0400, Scott wrote:
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>          
>>>>>
>>>>>>On Jun 14, 2005, at 11:10 AM, Axel Thimm wrote:
>>>>>>
>>>>>>
>>>>>>
>>>>>>
>>>>>>            
>>>>>>
>>>>>>>The server blocks any IP that connects more than a dozen time at the
>>>>>>>same moment (DoS and "download accellerators").
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>>              
>>>>>>>
>>>>>>A good feature for internet facing servers but can it be tweeked? I
>>>>>>think the yum client in FC4 along with some casual browsing is
>>>>>>triggering IP blocks. Also, yum tends to connect and disconnect
>>>>>>several times during a transaction which may be affecting things on
>>>>>>your end.
>>>>>>
>>>>>>
>>>>>>
>>>>>>
>>>>>>            
>>>>>>
>>>>>Disconnecting and reconnecting is OK, the script only checks for >= 20
>>>>>*concurrent* connections. If yum really behaves unproper, please use
>>>>>apt.
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>          
>>>>>
>>>>>>If you want to check your logs look for the IP 66.57.80.76 between
>>>>>>13:00 and 14:00 ET
>>>>>>
>>>>>>
>>>>>>
>>>>>>
>>>>>>            
>>>>>>
>>>>>If it was blocked it won't reach the logs anymore. I resetted the host list.
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>          
>>>>>
>>>>>>You most likely don't hear this enough, thanks for the help and the
>>>>>>atrpms.net service.
>>>>>>
>>>>>>
>>>>>>
>>>>>>
>>>>>>            
>>>>>>
>>>>>Thanks!
>>>>>
>>>>>If anyone has a better idea of how to deal with this, here is the
>>>>>scriplet used for checking (/etc/rc.local contains the actual
>>>>>firewalling):
>>>>>
>>>>>while /bin/true; do
>>>>>/bin/cp -a /etc/blockedhosts /etc/blockedhosts.old
>>>>>netstat -pan | grep 160.45.32.[0-9]*:80| awk '{print $5}' | awk -F: '{print $1}' |  sort | uniq -c | sort -n \
>>>>>| grep '^ *[2-9][0-9][0-9]* ' | awk '{print $2}' >> /etc/blockedhosts
>>>>>sort -nu < /etc/blockedhosts | grep -vf /etc/whitelist > /etc/blockedhosts.new
>>>>>mv -f /etc/blockedhosts.new /etc/blockedhosts
>>>>>/etc/rc.local
>>>>>#diff -ud /etc/blockedhosts.old /etc/blockedhosts
>>>>>sleep 30
>>>>>done
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>_______________________________________________
>>>>>mythtv-users mailing list
>>>>>mythtv-users at mythtv.org
>>>>>http://mythtv.org/cgi-bin/mailman/listinfo/mythtv-users
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>          
>>>>>
>>>>_______________________________________________
>>>>mythtv-users mailing list
>>>>mythtv-users at mythtv.org
>>>>http://mythtv.org/cgi-bin/mailman/listinfo/mythtv-users
>>>>
>>>>
>>>>        
>>>>
>>>
>>>------------------------------------------------------------------------
>>>
>>>_______________________________________________
>>>mythtv-users mailing list
>>>mythtv-users at mythtv.org
>>>http://mythtv.org/cgi-bin/mailman/listinfo/mythtv-users
>>>
>>>
>>>      
>>>
>>_______________________________________________
>>mythtv-users mailing list
>>mythtv-users at mythtv.org
>>http://mythtv.org/cgi-bin/mailman/listinfo/mythtv-users
>>
>>    
>>
>_______________________________________________
>mythtv-users mailing list
>mythtv-users at mythtv.org
>http://mythtv.org/cgi-bin/mailman/listinfo/mythtv-users
>
>  
>

More information about the mythtv-users mailing list