I have a couple of problems here.
First I have a partner institution that cannot access a website we share using http by the dns name www.slrlc.org
. They can access it by the ip address 188.8.131.52. They can ping the site by dns name www.slrlc.org
and ip address 184.108.40.206 Firefox returns the message "invalid ip address", IE 6 returns "page not found". Everyone else seems to be able to access the site by DNS name without a hitch. I'm puzzled by the fact they can ping it by name but not access the website by name.
We're using Check Point's NGX for the firewall. The log shows both the http and ping packets being accepted.
Second, I've run fw monitor on the firewall console and piped the output to a file, which I opened up with Ethereal. I see a lot of lines that read "TCP previous segment lost" and "TCP retransmission" for all the upper layer protocols, http, smtp, etc.