Solved

Windows Live\Hotmail Attachments Web Address

Posted on 2010-09-21
2
629 Views
Last Modified: 2012-05-10
Hotmail\Windows Live Attachments ('download' rather than 'view online') are filtered by my proxy server because of a rule I have set. Can anyone tell me what address is actually trying to be accessed when users click on 'download' next to an attachment?

I have many hundred rules deny accessing to domain names, wildcard rules etc etc.

Thanks
0
Comment
Question by:Pete
2 Comments
 
LVL 8

Accepted Solution

by:
Nothing_Changed earned 250 total points
ID: 33753828
very very very broad question, this could be totally off, but I'll take a swing.

I think the simplest solution would be to connect a system outside your proxy, or put in a temporary bypass rule for one host. Connect to the desired site, download the attachment, while at the same time running a command prompt command of (assuming windows here) "netstat -a | findstr ESTAB". you may need to run it a few times, keep in mind that many connections are very transient so you might miss it the first time.

you will see a list like this:
 TCP    cmt-d630:2333          216.66.8.203:http      ESTABLISHED
 TCP    cmt-d630:2338          LB140.ASHB.COTENDO.NET:http  ESTABLISHED
 TCP    cmt-d630:2339          LB140.ASHB.COTENDO.NET:http  ESTABLISHED
 TCP    cmt-d630:2341          slashdot.org:http      ESTABLISHED
 TCP    cmt-d630:2343          a96-16-83-172.deploy.akamaitechnologies.com:http  ESTABLISHED
 TCP    cmt-d630:2346          a96-16-83-172.deploy.akamaitechnologies.com:http  ESTABLISHED

(ignore all of the connections to localhost, those aren't likely to be part of your problem)

look thru the list of connections that your download session spawned (not just host names but ports too, maybe its a weird port or ftp or something), then compare this list to your log in your proxy. You should be logging everything getting blocked, so you should see something in your block list that matches your netstat output, and that will be your culprit.

If you don't see anything in your proxy log, then it's probably a firewall rule blocking something. Use the same log review process and you'll find your culprit.
0
 
LVL 1

Author Closing Comment

by:Pete
ID: 33778468
closed
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Introduction As you’re probably aware the HTTP protocol offers basic / weak authentication, which in combination with the relevant configuration on your web server, provides the ability to password protect all or part of your host.  If you were not…
If you are running a LAMP infrastructure, this little code snippet is very helpful if you are serving lots of HTML, JavaScript and CSS-related information. The mod_deflate module, which is part of the Apache 2.2 application, provides the DEFLATE…
This tutorial gives a high-level tour of the interface of Marketo (a marketing automation tool to help businesses track and engage prospective customers and drive them to purchase). You will see the main areas including Marketing Activities, Design …
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question