 Review by clank 
member for 6.8 years, 1615 visits, last login: a few hours ago
updated 1 year ago
| Pre Sales information:
Install Co-ordination:
Connection reliability:
Tech Support:
Services:
Value for money:
|
The ICSI Netalyzr
Introduction » Analysis » Results
Result Summary +/– (help)
xx.xxx.xx.xxx.dyn.user.ono.com / xx.xxx.xx.xxx.
Recorded at 04:21 EDT (08:21 UTC), May 18 2011. Permalink. Referrer. Client/server transcript.
Summary of Noteworthy Events –
Minor Aberrations
Certain TCP protocols are blocked in outbound traffic
Network packet buffering may be excessive
Virus filtering appears to be present on your host or network
Not all DNS types were correctly processed
Your computer's clock is slightly fast
Address-based Tests +
NAT detection (?): NAT Detected
Local Network Interfaces (?): OK
DNS-based host information (?): OK
NAT support for Universal Plug and Play (UPnP) (?): Yes
Reachability Tests –
TCP connectivity (?): Note
Direct TCP access to remote FTP servers (port 21) is allowed.
Direct TCP access to remote SSH servers (port 22) is allowed.
Direct TCP access to remote SMTP servers (port 25) is allowed.
Direct TCP access to remote DNS servers (port 53) is allowed.
Direct TCP access to remote HTTP servers (port 80) is allowed.
Direct TCP access to remote POP3 servers (port 110) is allowed.
Direct TCP access to remote RPC servers (port 135) is blocked.
This is probably for security reasons, as this protocol is generally not designed for use outside the local network.
Direct TCP access to remote NetBIOS servers (port 139) is blocked.
This is probably for security reasons, as this protocol is generally not designed for use outside the local network.
Direct TCP access to remote IMAP servers (port 143) is allowed.
Direct TCP access to remote SNMP servers (port 161) is allowed.
Direct TCP access to remote HTTPS servers (port 443) is allowed.
Direct TCP access to remote SMB servers (port 445) is blocked.
This is probably for security reasons, as this protocol is generally not designed for use outside the local network.
Direct TCP access to remote SMTP/SSL servers (port 465) is allowed.
Direct TCP access to remote secure IMAP servers (port 585) is allowed.
Direct TCP access to remote authenticated SMTP servers (port 587) is allowed.
Direct TCP access to remote IMAP/SSL servers (port 993) is allowed.
Direct TCP access to remote POP/SSL servers (port 995) is allowed.
Direct TCP access to remote OpenVPN servers (port 1194) is allowed.
Direct TCP access to remote PPTP Control servers (port 1723) is allowed.
Direct TCP access to remote SIP servers (port 5060) is allowed.
Direct TCP access to remote BitTorrent servers (port 6881) is allowed.
Direct TCP access to remote TOR servers (port 9001) is allowed.
UDP connectivity (?): OK
Basic UDP access is available.
The applet was able to send fragmented UDP traffic.
The applet was able to receive fragmented UDP traffic.
Direct UDP access to remote DNS servers (port 53) is allowed.
Direct UDP access to remote NTP servers (port 123) is allowed.
Direct UDP access to remote OpenVPN servers (port 1194) is allowed.
Direct UDP access to remote MSSQL servers (port 1434) is allowed.
Traceroute (?): OK
It takes 18 network hops for traffic to pass from our server to your system, as shown below. For each hop, the time it takes to traverse it is shown in parentheses.
ip-10-114-184-3.ec2.internal (0 ms)
ip-10-1-50-41.ec2.internal (0 ms)
ip-10-1-34-8.ec2.internal (0 ms)
216.182.232.72 (0 ms)
*
*
*
63-233-113-25.dia.static.qwest.net (3 ms)
dcp-brdr-03.inet.qwest.net (4 ms)
dcp-brdr-03.inet.qwest.net (4 ms)
63.146.27.26 (3 ms)
xe-4-0-0-xcr1.mad.cw.net (103 ms)
esto-es-ono-gw2.mad.cw.net (113 ms)
esto-es-ono-gw2.mad.cw.net (113 ms)
*
*
*
*
Path MTU (?): OK
The path between your network and our system supports an MTU of at least 1500 bytes, and the path between our system and your network has an MTU of 1500 bytes.
Network Access Link Properties –
Network latency measurements (?): Latency: 160ms Loss: 0.0%
The round-trip time (RTT) between your computer and our server is 160 msec, which is good.
We recorded no packet loss between your system and our server.
TCP connection setup latency (?): 160ms
The time it takes your computer to set up a TCP connection with our server is 160 msec, which is good.
Network background health measurement (?): no transient outages
During most of Netalyzr's execution, the applet continuously measures the state of the network in the background, looking for short outages. During testing, the applet observed no such outages.
Network bandwidth measurements (?): Upload 1.0 Mbit/sec, Download 11 Mbit/sec
Your Uplink: We measured your uplink's sending bandwidth at 1.0 Mbit/sec. This level of bandwidth works well for many users.
Your Downlink: We measured your downlink's receiving bandwidth at 11 Mbit/sec. This level of bandwidth works well for many users.
Network buffer measurements (?): Uplink 520 ms, Downlink is good
We estimate your uplink as having 520 msec of buffering. This level can in some situations prove somewhat high, and you may experience degraded performance when performing interactive tasks such as web-surfing while simultaneously conducting large uploads. Real-time applications, such as games or audio chat, may also work poorly when conducting large uploads at the same time.
We were not able to produce enough traffic to load the downlink buffer, or the downlink buffer is particularly small. You probably have excellent behavior when downloading files and attempting to do other tasks.
HTTP Tests –
Address-based HTTP proxy detection (?): OK
We detected no explicit sign of HTTP proxy via IP address changes.
Content-based HTTP proxy detection (?): OK
No HTTP header or content changes hint at the presence of a proxy.
HTTP proxy detection via malformed requests (?): OK
Deliberately malformed HTTP requests arrive at our server unchanged. We are not able to detect a proxy along the path to our server using this method.
Filetype-based filtering (?): Note
Files of type exe remain unmodified by the network.
Files of type mp3 remain unmodified by the network.
Files of type torrent remain unmodified by the network.
A test "virus" (the benign EICAR test file that antivirus vendors recognize as a test) was blocked or modified in transit.
HTTP caching behavior (?): OK
We detected no signs of a transparent HTTP cache in your network path.
JavaScript-based tests (?): OK
The applet did not execute within a frame.
Your web browser reports the following cookies for our web page:
netAlizEd = BaR (set by our server)
netalyzrStatus = running (set by our server)
Your web browser was unable to fetch an image using IPv6.
DNS Tests –
Restricted domain DNS lookup (?): OK
We can successfully look up a name which resolves to the same IP address as our webserver. This means we are able to conduct many of the tests on your DNS server.
Unrestricted domain DNS lookup (?): OK
We can successfully look up arbitrary names from within the Java applet. This means we are able to conduct all test on your DNS server.
Direct DNS support (?): OK
All tested DNS types were received OK.
Direct EDNS support (?): OK
EDNS-enabled requests for small responses are answered successfully.
EDNS-enabled requests for medium-sized responses are answered successfully.
EDNS-enabled requests for large responses are answered successfully.
DNS resolver address (?): OK
The IP address of your ISP's DNS Resolver is 212.40.224.73, which resolves to cana-dns1.auna.net.
DNS resolver properties (?): Lookup latency 229ms
Your ISP's DNS resolver requires 229 msec to conduct an external lookup. It takes 210 msec for your ISP's DNS resolver to lookup a name on our server.
Your resolver correctly uses TCP requests when necessary.
Your resolver is using QTYPE=A for default queries.
Your resolver is not automatically performing IPv6 queries.
Your DNS resolver requests DNSSEC records.
Your DNS resolver advertises the ability to accept DNS packets of up to 4096 bytes.
Your DNS resolver can successfully receive a smaller (~1400 byte) DNS response.
Your DNS resolver can successfully receive a large (>1500 byte) DNS response.
Your DNS resolver can successfully accept large responses.
Your resolver does not use 0x20 randomization, but will pass names in a case-sensitive manner.
Your ISP's DNS server cannot use IPv6.
No transport problems were discovered which could affect the deployment of DNSSEC.
Direct probing of DNS resolvers (?)
Your system is configured to use 3 DNS resolver(s).
The resolver at 212.40.224.73 was unable to process the following tested types:
Medium (~1300B) TXT records
Large (~3000B) TXT records
It does not validate DNSSEC. It does not wildcard NXDOMAIN errors. The resolver reports the following properties:
Hostname: cana-dns2
Version: 9.5.1-P3
Authors: Bob Halley, David Lawrence, Danny Mayer, Damien Neil, Matt Nelson, Michael Sawyer, Brian Wellington, Mark Andrews, James Brister, Ben Cottrell, Michael Graff, Andreas Gustafsson
The resolver at 62.42.230.24 can process all tested types. It does not validate DNSSEC. It wildcards NXDOMAIN errors. Instead of an error it returns the following IP address(es): xx.xxx.xx.xxx. The resolver reports the following properties:
Version: Nominum Vantio 4.4.1.0
The resolver at 192.168.1.1 was unable to process the following tested types:
Medium (~1300B) TXT records
Large (~3000B) TXT records
It does not validate DNSSEC. It does not wildcard NXDOMAIN errors. The resolver reports the following properties:
Hostname: cana-dns2
Version: 9.5.1-P3
Authors: Bob Halley, David Lawrence, Danny Mayer, Damien Neil, Matt Nelson, Michael Sawyer, Brian Wellington, Mark Andrews, James Brister, Ben Cottrell, Michael Graff, Andreas Gustafsson
DNS glue policy (?): OK
Your ISP's DNS resolver does not accept generic additional (glue) records — good.
Your ISP's DNS resolver does not accept additional (glue) records which correspond to nameservers.
Your ISP's DNS resolver does not follow CNAMEs.
DNS resolver port randomization (?): OK
Your ISP's DNS resolver properly randomizes its local port number.
The following graph shows DNS requests on the x-axis and the detected source ports on the y-axis.
DNS lookups of popular domains (?): OK
79 of 79 popular names were resolved successfully. Hide all names.
In the following table reverse lookups that failed but for which a Start Of Authority (SOA) entry indicated correct name associations are shown using an "X", followed by the SOA entry. Absence of both IP address and reverse name indicates failed forward lookups. Name IP Address Reverse Name/SOA
www.abbey.co.uk 165.160.15.20 X (pdns1.cscdns.net)
ad.doubleclick.net 74.125.230.187 X (ns1.google.com)
www.alliance-leicester.co.uk 194.130.105.121 X (alice.ioko365.com)
www.amazon.com 72.21.194.1 X (dns-external-master.amazon.com)
www.ameritrade.com 216.105.251.204 X (mike.lynn.tdameritrade.com)
www.bankofamerica.com 171.159.228.173 X (primarydmz.bankofamerica.com)
www.bankofscotland.co.uk 195.171.171.21 X (ns0.bt.net)
bit.ly 168.143.172.53 X (ns1.dn.net)
www.capitalone.com 208.80.48.112 X (z.arin.net)
www.careerbuilder.com 208.82.7.22 X (smokey.careerbuilder.com)
www.chase.com 159.53.60.105 X (ns1.jpmorganchase.com)
chaseonline.chase.com 159.53.64.54 resources-cdc2.chase.com
www.citi.com 192.193.219.58 citibank.com
www.citibank.com 192.193.219.58 citibank.com
www.citimortgage.com 192.193.218.222 citimortgage.com
www.cnn.com 157.166.255.18 www.cnn.com
www.desjardins.com 142.195.132.100 www.desjardins.com
www.e-gold.com 209.200.169.10 unknown.prolexic.com
www.ebay.com 66.135.200.181 www.ebay.com
encrypted.google.com 74.125.230.172 X (ns1.google.com)
www.etrade.com 12.153.224.22 www.etrade.com
www.f-secure.com 92.123.73.96 a92-123-73-96.d[...]echnologies.com
www.facebook.com 69.63.189.16 www-11-01-ash2.facebook.com
www.fdic.gov 192.147.69.84 www.fdic.gov
www.friendfinder.com 208.88.180.81 X (ii53-30.friendfinderinc.com)
www.google.com 209.85.229.147 ww-in-f147.1e100.net
www.google-analytics.com 209.85.229.101 ww-in-f101.1e100.net
www.halifax.co.uk 212.140.245.97 www.halifax.co.uk
www.hsbc.co.uk 91.214.6.77 X (ns3.hsbc.com)
www.irs.gov 92.123.73.66 a92-123-73-66.d[...]echnologies.com
www.jpmorganchase.com 159.53.60.105 X (ns1.jpmorganchase.com)
mail.google.com 74.125.230.183 X (ns1.google.com)
mail.live.com 64.4.56.183 origin.by156w.[...].mail.live.com
mail.yahoo.com 217.146.187.123 l1.login.vip.ird.yahoo.com
www.mbna.com 209.135.59.10 X (ns1.usi.net)
www.mbna.net 209.135.59.10 X (ns1.usi.net)
www.meebo.com 74.114.28.110 X (ns1.meebo.com)
messenger.yahoo.com 98.139.200.98 myc1.msg.vip.bf1.yahoo.com
www.microsoft.com 207.46.19.254 wwwbaytest2.microsoft.com
www.nationwide.co.uk 155.131.31.10 X (ns0.nationet.net)
www.networksolutions.com 205.178.187.13 www.networksolutions.com
www.newegg.com 204.14.213.185 X (pdns1.ultradns.net)
online.citibank.com 199.67.180.11 citibankonline.com
online.wellsfargo.com 151.151.88.132 percussion-on.wellsfargo.com
www.orange.fr 193.252.148.241 vip1.dyn.hpo.s1.fti.net
partner.googleadservices.com 74.125.230.188 X (ns1.google.com)
www.paypal.com 66.211.169.2 X (crocodile.ebay.com)
www.rbs.co.uk 155.136.80.222 X (ns0-08.dns.pipex.net)
www.schwab.com 162.93.228.34 X (d0002bdc.schwab.com)
search.yahoo.com 74.6.238.254 syc.search.vip.ac2.yahoo.com
smartzone.comcast.net 76.96.58.12 webmail3.westch[...]ail.comcast.net
www.smithbarney.com 192.193.224.11 ssb.com
www.sterlingsavingsbank.com 12.19.55.215 sterlingsavingsbank.com
www.tdameritrade.com 216.105.251.204 X (mike.lynn.tdameritrade.com)
tinyurl.com 195.66.135.139 b2.tinyurl.com
us.etrade.com 198.93.34.50 us.etrade.com
www.usbank.com 170.135.216.181 communications.usbank.com
www.verisign.com 69.58.181.89 www-ilg.verisign.net
www.visa.com 92.123.73.24 a92-123-73-24.d[...]echnologies.com
www.wachovia.com 169.200.183.139 X (sls-ns1.wachovia.com)
www.wamu.com 159.53.116.2 X (ns1.jpmorganchase.com)
www.wellsfargo.com 151.151.88.133 www.wellsfargo.com
westernunion.com 206.201.228.250 www.wuagentlink.com
windowsupdate.microsoft.com 65.54.221.118 X (msnhst.microsoft.com)
wireless.att.com 135.209.168.22 origin-b2b-al[...]eless.att.com
www.yahoo.com 87.248.112.181 ir1.fp.vip.ird.yahoo.com
12 popular names have a mild anomaly. The ownership suggested by the reverse name lookup does not match our understanding of the original name. The most likely cause is the site's use of a Content Delivery Network. Hide all names. Name IP Address Reverse Name/SOA
www.barclays.co.uk 212.140.250.32 X (ns0.bt.net)
www.bing.com 92.123.73.72 a92-123-73-72.d[...]echnologies.com
www.deutsche-bank.de 160.83.8.24 X (ns1.db.com)
www.lloydstsb.com 141.92.130.226 X (ns0.bt.net)
www.nordea.fi 193.88.186.178 X (ns01.tdchosting.dk)
www.postbank.de 195.50.155.73 X (ns1.arcor-ip.de)
www.sears.com 95.100.121.99 X (pri.authdns.ripe.net)
www.secureworks.com 216.52.89.170 X (ns1.nym.pnap.net)
www.sparkasse.de 212.34.69.3 rev-212.34.69.3.rev.izb.net
www.ticketmaster.com 95.100.116.199 X (pri.authdns.ripe.net)
www.torproject.org 86.59.30.36
www.trendmicro.com 88.221.45.214 a88-221-45-214.[...]echnologies.com
One popular name has a mild anomaly: we are unable to find a reverse name associated with the IP address provided by your ISP's DNS server. This is most likely due to a slow responding DNS server or misconfiguration on the part of the domain owner. Hide all names. Name IP Address Reverse Name/SOA
www.bankofthewest.com 204.44.12.103 X
DNS external proxy (?): OK
Your host ignores external DNS requests.
DNS results wildcarding (?): OK
Your ISP correctly leaves non-resolving names untouched.
DNS-level redirection of specific sites (?): OK
Your ISP does not appear to be using DNS to redirect traffic for specific websites.
IPv6 Tests +
DNS support for IPv6 (?): OK
IPv4, IPv6, and Your Web Browser (?): No IPv6 Support
IPv6 Connectivity (?): No IPv6 Support
Host Properties –
System clock accuracy (?): Warning
Your computer's clock is 44 seconds fast.
Browser properties (?): OK
Your web browser sends the following parameters to all web sites you visit:
User Agent: Opera/9.80 (Windows NT 5.1; U; en) Presto/2.8.131 Version/11.10
Accept: text/html, application/xml; q=0.9, application/xhtml+xml, image/png, image/webp, image/jpeg, image/gif, image/x-xbitmap, */*; q=0.1
Accept Language: es-ES,es;q=0.9,en;q=0.8
Accept Encoding: gzip, deflate
Accept Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Java identifies your operating system as Windows XP.
Uploaded Data (?): OK
The applet uploaded the following additional content:
apache_404
custom_404
modified_eicar-standard-av-test-file.com
plain_404
raw_http_content
upnp
Feedback
Comments:
|
spain
$54 per month
"cable,internet and telephone."
"