Solved

Can ping/telnet to website, but can't browse to it.

Posted on 2008-06-23
15
3,743 Views
Last Modified: 2013-12-08
Good morning, experts.

I'm having some strange issue with a few of my servers.  


I'm trying to browse to a website hosted in my DMZ, however IE just hangs there and won't do anything.


I can ping the website.  I can telnet to the website using ports 80, 81, and 443.  That tells me this isn't a firewall issue.  Also, there is nothing of importance in my firewall logs.  Other servers on the same subnet can browse to the website just fine.  


I've also tried installing Firefox to see if it was an IE issue, but nothing.  



Any ideas?


0
Comment
Question by:Rogiee
  • 6
  • 4
  • 3
  • +2
15 Comments
 
LVL 3

Assisted Solution

by:exhaust
exhaust earned 50 total points
Comment Utility
Can you try adding the exact URL you are having trouble with to IE's Trusted Site. Does it now allow you to load the website?
0
 
LVL 10

Author Comment

by:Rogiee
Comment Utility
@exhaust

Same results after adding.
0
 
LVL 3

Expert Comment

by:exhaust
Comment Utility
Ok, if you can telnet to these ports you definitely have an end to end network socket connection to it. It almost sounds like that the website your running isn't listening on the default ports. Check IIS (I'm assuming that's what you're using).
0
 
LVL 11

Assisted Solution

by:jfields71
jfields71 earned 40 total points
Comment Utility
Have you tried watching network traffic on the host to see what, if any, traffic is passing between the two machines?  Try Wireshark: http://www.wireshark.org/.  Perhaps packets are dropping or the connection is not being completed.

Also, have you tried a simple text tool like wget to see what is being transferred?  http://en.wikipedia.org/wiki/Wget.  
0
 
LVL 10

Author Comment

by:Rogiee
Comment Utility
@exhaust ~if that were the case, i wouldn't be able to get the to website at all.  I can get to the website fine from serverA.  Server B is on the same subnet and configured the same way, however it is unable to get the the site.
0
 
LVL 17

Assisted Solution

by:kadadi_v
kadadi_v earned 20 total points
Comment Utility
Is any Internal DNS server configuration problem on server B ....:)...so its not resolvign the site URL.

Regards,

VIjay Kadadi
0
 
LVL 10

Author Comment

by:Rogiee
Comment Utility
I can ping the hostname fine, so not DNS.  ;o(
0
Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

 
LVL 38

Assisted Solution

by:ChiefIT
ChiefIT earned 70 total points
Comment Utility
Go into the HOST and LMHOST files and remove anything except the loopback addresses. Those files will be looked at by your client prior to going to a DNS server or the Master browser for a DNS query or Netbios query. If they are configured without that address, you will get the types of problems you are seeing.
0
 
LVL 38

Expert Comment

by:ChiefIT
Comment Utility
Oh, Yes:
Host is located at the C:\i386\Host and can be edited with a text editor like notepad.
LMHOST can be found in two locations C:\i386\LMHOST and C:\ Windows\System32\dirvers\ect\LMHOST. That too can be edited with a text editor like notepad.
0
 
LVL 3

Expert Comment

by:exhaust
Comment Utility
C:\Windows\System32\drivers\etc\hosts
0
 
LVL 10

Author Comment

by:Rogiee
Comment Utility
HOSTS and LMHOSTS are empty...


As I said before, I can ping by hostname, so the HOSTS file shouldn't matter...


0
 
LVL 38

Expert Comment

by:ChiefIT
Comment Utility
What computers do you see in My Network Places?
0
 
LVL 10

Author Comment

by:Rogiee
Comment Utility
I cannot see the server hosting the website in My Network Places.   I'm assuming that's because it is in the DMZ though.


I am able to ping it.  Telnet to it.  UNC to it....
0
 
LVL 38

Assisted Solution

by:ChiefIT
ChiefIT earned 70 total points
Comment Utility
This is a browser issue:

The browser uses netbios broadcasts. Netbios broadcasts will not go over a VPN tunnel, across many firewalls, or through any sort of NAT to a different subnet. Since this is the case, the browser needs help. It needs to be configured with WINS.

Here is a article on the browser service. I highly recommend anyone with browser problems read this article. This may be a NT4 article, but the browser service has not changed at all. The only thing is a registry key for 2003 server. The NT4 registry key is "IsDomainMasterBrowser". The 2003 server shortened that up to "IsDomainMaster".

Here is your fixe::: On each subnet, you will want a master browser and backup browser. Then, on the main DC, you want to make sure it has the ability to communicate as the Domain Master Browser. Master browsers on different subnets will communicate with the domain master and populate a list of nodes. In your situation, you might consider the WINS/WAN configuration of the Domain master browser.

http://www.microsoft.com/resources/documentation/windowsnt/4/server/reskit/en-us/net/chptr3.mspx?mfr=true
0
 
LVL 10

Accepted Solution

by:
Rogiee earned 0 total points
Comment Utility
Thank you all for your help.

It ended up being the MTU setting on the server.  I changed it to 1320 and it works now!
0

Featured Post

VMware Disaster Recovery and Data Protection

In this expert guide, you’ll learn about the components of a Modern Data Center. You will use cases for the value-added capabilities of Veeam®, including combining backup and replication for VMware disaster recovery and using replication for data center migration.

Join & Write a Comment

ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
Shows how to create a shortcut to site-search Experts Exchange using Google in the Chrome browser. This eliminates the need to type out site:experts-exchange.com whenever you want to search the site. Launch the Search Engine Menu: In chrome, via you…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now