首先,如果发给错误的交易所我很抱歉,我真的不确定这个问题适合什么地方。
一段时间以来,我的家庭互联网连接一直遇到这个非常奇怪的问题,这肯定是我的路由器或ISP的故障,但是我的ISP在调试它时却束手无策。
在大多数情况下,我的连接效果很好-没有停机时间,而且我一直获得所支付速度的几乎100%。
但是,存在一个特定的问题:某些网站的行为非常奇怪,因此加载它们将花费很长时间。此类网站的示例是en.wikipedia.org,www.canadapost.ca和www.theweathernetwork.com。在这些网站上,每当我尝试加载页面时,一开始都不会加载任何内容,并且Chrome中的状态栏会显示“建立安全连接..”很长时间,最终它会给我一个“无法访问此站点”错误。如果我重新加载并重试,几次后,最终将加载该网站,并且在加载该网站后,我可以自由浏览该网站大约15分钟左右,而问题仍然存在。
我的防火墙或PC设置不是问题。我已经尝试了很多方法来排除问题所在,并且确定它必须是我的调制解调器路由器或Internet连接本身,因为它发生在连接到我网络的所有设备(台式机,笔记本电脑,智能手机等)以及我的智能手机,当我切换到移动数据时,问题就消失了。
我已经向ISP提交了支持票,他们已经引导我完成了所有显而易见的步骤(调制解调器的出厂重置等),但现在并没有那么大的帮助。
我尝试进行测试的一件事是,我已经为有此问题的网站运行curl命令,并且发现了一些问题。对于所有有此问题的网站,“ curl -v [url]”将返回HTTP 301而不是200。
任何人都不知道到底是什么原因造成的,所以我可以为我的ISP的技术人员指明正确的方向吗?
编辑:有人指出,我没有在curl命令中包括https,这导致301返回。但是现在我加入了https,我注意到了一些有趣的东西:
当对不属于问题的https网站(例如facebook)运行curl -v时,我最终得到正常输出..但是对于一个网站,它看起来像这样:
$ curl -v https://www.canadapost.ca
* STATE: INIT => CONNECT handle 0x600057810; line 1413 (connection #-5000)
* Rebuilt URL to: https://www.canadapost.ca/
* Added connection 0. The cache now contains 1 members
* Trying 2600:140a:0:18a::1dc5...
* TCP_NODELAY set
* STATE: CONNECT => WAITCONNECT handle 0x600057810; line 1466 (connection #0)
* Trying 23.34.200.189...
* TCP_NODELAY set
* Connected to www.canadapost.ca (2600:140a:0:18a::1dc5) port 443 (#0)
* STATE: WAITCONNECT => SENDPROTOCONNECT handle 0x600057810; line 1583 (connection #0)
* Marked for [keep alive]: HTTP default
* ALPN, offering h2
* ALPN, offering http/1.1
* Cipher selection: ALL:!EXPORT:!EXPORT40:!EXPORT56:!aNULL:!LOW:!RC4:@STRENGTH
* successfully set certificate verify locations:
* CAfile: /etc/pki/tls/certs/ca-bundle.crt
CApath: none
* TLSv1.2 (OUT), TLS header, Certificate Status (22):
* TLSv1.2 (OUT), TLS handshake, Client hello (1):
* STATE: SENDPROTOCONNECT => PROTOCONNECT handle 0x600057810; line 1597 (connection #0)
然后将其挂在那里很长时间,然后最终继续并结束于:
* TLSv1.2 (IN), TLS handshake, Server hello (2):
* TLSv1.2 (IN), TLS handshake, Certificate (11):
* TLSv1.2 (IN), TLS handshake, Server key exchange (12):
* TLSv1.2 (IN), TLS handshake, Server finished (14):
* TLSv1.2 (OUT), TLS handshake, Client key exchange (16):
* TLSv1.2 (OUT), TLS change cipher, Client hello (1):
* TLSv1.2 (OUT), TLS handshake, Finished (20):
* TLSv1.2 (IN), TLS change cipher, Client hello (1):
* TLSv1.2 (IN), TLS handshake, Finished (20):
* SSL connection using TLSv1.2 / ECDHE-RSA-AES256-GCM-SHA384
* ALPN, server accepted to use http/1.1
* Server certificate:
* subject: C=CA; ST=Ontario; L=OTTAWA; O=Canada Post Corporation; OU=Akamai SAN SSL OV; CN=www.canadapost.ca
* start date: Jan 13 00:00:00 2017 GMT
* expire date: Jan 13 23:59:59 2018 GMT
* subjectAltName: host "www.canadapost.ca" matched cert's "www.canadapost.ca"
* issuer: C=US; O=GeoTrust Inc.; CN=GeoTrust SSL CA - G3
* SSL certificate verify ok.
* STATE: PROTOCONNECT => DO handle 0x600057810; line 1618 (connection #0)
> GET / HTTP/1.1
> Host: www.canadapost.ca
> User-Agent: curl/7.54.0
> Accept: */*
>
* STATE: DO => DO_DONE handle 0x600057810; line 1680 (connection #0)
* STATE: DO_DONE => WAITPERFORM handle 0x600057810; line 1807 (connection #0)
* STATE: WAITPERFORM => PERFORM handle 0x600057810; line 1817 (connection #0)
* HTTP 1.1 or later with persistent connection, pipelining supported
< HTTP/1.1 301 Moved Permanently
* Server AkamaiGHost is not blacklisted
< Server: AkamaiGHost
< Content-Length: 0
< Location: https://www.canadapost.ca/web/en/home.page
< Date: Mon, 22 May 2017 22:01:55 GMT
< Connection: keep-alive
< Strict-Transport-Security: max-age=31536000
<
* STATE: PERFORM => DONE handle 0x600057810; line 1991 (connection #0)
* multi_done
* Connection #0 to host www.canadapost.ca left intact
* Expire cleared