Solved

Windows Live\Hotmail Attachments Web Address

Posted on 2010-09-21
2
635 Views
Last Modified: 2012-05-10
Hotmail\Windows Live Attachments ('download' rather than 'view online') are filtered by my proxy server because of a rule I have set. Can anyone tell me what address is actually trying to be accessed when users click on 'download' next to an attachment?

I have many hundred rules deny accessing to domain names, wildcard rules etc etc.

Thanks
0
Comment
Question by:Pete
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 8

Accepted Solution

by:
Nothing_Changed earned 250 total points
ID: 33753828
very very very broad question, this could be totally off, but I'll take a swing.

I think the simplest solution would be to connect a system outside your proxy, or put in a temporary bypass rule for one host. Connect to the desired site, download the attachment, while at the same time running a command prompt command of (assuming windows here) "netstat -a | findstr ESTAB". you may need to run it a few times, keep in mind that many connections are very transient so you might miss it the first time.

you will see a list like this:
 TCP    cmt-d630:2333          216.66.8.203:http      ESTABLISHED
 TCP    cmt-d630:2338          LB140.ASHB.COTENDO.NET:http  ESTABLISHED
 TCP    cmt-d630:2339          LB140.ASHB.COTENDO.NET:http  ESTABLISHED
 TCP    cmt-d630:2341          slashdot.org:http      ESTABLISHED
 TCP    cmt-d630:2343          a96-16-83-172.deploy.akamaitechnologies.com:http  ESTABLISHED
 TCP    cmt-d630:2346          a96-16-83-172.deploy.akamaitechnologies.com:http  ESTABLISHED

(ignore all of the connections to localhost, those aren't likely to be part of your problem)

look thru the list of connections that your download session spawned (not just host names but ports too, maybe its a weird port or ftp or something), then compare this list to your log in your proxy. You should be logging everything getting blocked, so you should see something in your block list that matches your netstat output, and that will be your culprit.

If you don't see anything in your proxy log, then it's probably a firewall rule blocking something. Use the same log review process and you'll find your culprit.
0
 
LVL 1

Author Closing Comment

by:Pete
ID: 33778468
closed
0

Featured Post

Save the day with this special offer from ATEN!

Save 30% on the CV211 using promo code EXPERTS30 now through April 30th. The ATEN CV211 connects a laptop directly to any server allowing you instant access to perform data maintenance and local operations, for quick troubleshooting, updating, service and repair.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
SSL - A Registrar-Level Change? 4 42
SSL-VPN 1 91
Secure log in 'box' 4 44
Locally Hosted Website DNS cannot be found 7 65
If you are running a LAMP infrastructure, this little code snippet is very helpful if you are serving lots of HTML, JavaScript and CSS-related information. The mod_deflate module, which is part of the Apache 2.2 application, provides the DEFLATE…
It is possible to boost certain documents at query time in Solr. Query time boosting can be a powerful resource for finding the most relevant and "best" content. Of course the more information you index, the more fields you will be able to use for y…
This video shows how to use Hyena, from SystemTools Software, to update 100 user accounts from an external text file. View in 1080p for best video quality.

739 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question