Is my ip address being blocked???

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

I have a problem I'm hoping someone here can help me with...or at the
very least maybe point me to another place where I might find the
answer.

I have a hosting account that I can no longer access from my office
computer...I can access it from other computers...just no computers in
my office...

Let me quickly explain what I think has happened...

On Monday I tried to create an ftp login account for a friend who
wanted to update a web page. I had never used cpanel to do this before
and after I setup the new username and password I was unable to log
into the account using the new username and password. I was certain I
had them right and "tried repeatedly" with no success. Then I realized I
had to include the "domain name" in the newly created username...like
this...

username: (e-mail address removed)
password: NewPassword

....I had been using...

username: NewUsername
password: NewPassword

Every since this I did this, I have not been able to access any of my
domains on this server, even the web hosts web site...

I believe what has happened is that some setting on the server flagged
my ip address as a spammer, because of all the failed login attempts,
and is now blocking my ip address. I cannot access this server using a
web browser, email, ftp, ping...nothing. I have tried the other two
computers in this office with no luck. All the computers access the
internet through the same connection with a static ip address.

I can get on the web hosts server from home, or anywhere else,
and everyone else can see my web sites...so I'm sure my ip address
is being blocked.

I called my internet connection service provider to see if I could get
my static ip address changed...but they say they "can't" (I think it's
more like they won't)...

My web host, who is a very nice guy and always very helpful,
disagrees...he believes it's my computer (or router) that is blocking
access to his server. I have looked at my router settings, turned off
all firewall's etc., but still no luck. I am posting here just in case it
is something going on my end...

Is there anyone here who can shed some light on this? Surely a similar
thing has happened to someone else.

Any advice would be greatly appreciated...

Sincerely,
bglefty
 
In bglefty had this to say:

My reply is at the bottom of your sent message:
I have a problem I'm hoping someone here can help me with...or at the
very least maybe point me to another place where I might find the
answer.

I have a hosting account that I can no longer access from my office
computer...I can access it from other computers...just no computers in
my office...

Let me quickly explain what I think has happened...

On Monday I tried to create an ftp login account for a friend who
wanted to update a web page. I had never used cpanel to do this before
and after I setup the new username and password I was unable to log
into the account using the new username and password. I was certain I
had them right and "tried repeatedly" with no success. Then I
realized I had to include the "domain name" in the newly created
username...like this...

username: (e-mail address removed)
password: NewPassword

...I had been using...

username: NewUsername
password: NewPassword

Every since this I did this, I have not been able to access any of my
domains on this server, even the web hosts web site...

I believe what has happened is that some setting on the server flagged
my ip address as a spammer, because of all the failed login attempts,
and is now blocking my ip address. I cannot access this server using a
web browser, email, ftp, ping...nothing. I have tried the other two
computers in this office with no luck. All the computers access the
internet through the same connection with a static ip address.

I can get on the web hosts server from home, or anywhere else,
and everyone else can see my web sites...so I'm sure my ip address
is being blocked.

I called my internet connection service provider to see if I could get
my static ip address changed...but they say they "can't" (I think it's
more like they won't)...

My web host, who is a very nice guy and always very helpful,
disagrees...he believes it's my computer (or router) that is blocking
access to his server. I have looked at my router settings, turned off
all firewall's etc., but still no luck. I am posting here just in
case it is something going on my end...

Is there anyone here who can shed some light on this? Surely a similar
thing has happened to someone else.

Any advice would be greatly appreciated...

Sincerely,
bglefty
Click to expand...

There's no _standard_ configuration that will do that from the standard LAMP
stack with cPanel and WHM, though they /could/ possibly have a firewall with
poorly configured security that would send all packets from you to the bit
bucket as it tries to prevent further attacks.

The first thing is to check with your IT department if applicable. Assuming
that there isn't anything blocking there (What happens if you ping it? Have
you flushed DNS/cache just to be sure?) at your end you might ask what brand
hardware firewall he uses or what mods he has installed to help prevent DDOS
attacks. You may have a situation where your hosting company is actually
just a reseller for a larger hosting company and doesn't actually manage the
hardware themselves.

Chances are, if there's nothing blocking it at your end - do check with your
IT department first though - that's where the problem is. Can you use one of
the many online proxy sites and access it from work? If so that will tell
you (if it's a truly anonymous proxy server that blocks
"HTTP_X_FORWARDED_FOR" environment variable) that it is that specific IP
address that is being blocked - though it still could be at the server end
or at your end.

Over aggressive settings (we use a combination of Juniper hardware and
hardening as well as what I'll simply term "software" for the sake of this
discussion) for security are pretty easy to accomplish. What looked to you
like a few failed password attempts may well have been enough to match their
criteria for dropping your requests at the firewall.

--
Galen - MS MVP - Windows (Shell/User & IE)
http://dts-l.org/ http://kgiii.info/

"Chance has put in our way a most singular and whimsical problem, and
its solution is its own reward." - Sherlock Holmes
 
Back
Top