<div dir="ltr">just in case.. .this appears to be working now.<div>-chris</div></div><br><div class="gmail_quote"><div dir="ltr">On Thu, Jan 31, 2019 at 2:30 PM Mark Andrews <<a href="mailto:marka@isc.org">marka@isc.org</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">[beetle:~/git/bind9] marka% fetch -v <a href="https://www.google.com/jsapi" rel="noreferrer" target="_blank">https://www.google.com/jsapi</a><br>
looking up <a href="http://www.google.com" rel="noreferrer" target="_blank">www.google.com</a><br>
connecting to <a href="http://www.google.com:443" rel="noreferrer" target="_blank">www.google.com:443</a><br>
SSL connection established using ECDHE-RSA-AES128-GCM-SHA256<br>
Certificate subject: /C=US/ST=California/L=Mountain View/O=Google LLC/CN=<a href="http://www.google.com" rel="noreferrer" target="_blank">www.google.com</a><br>
Certificate issuer: /C=US/O=Google Trust Services/CN=Google Internet Authority G3<br>
requesting <a href="https://www.google.com/jsapi" rel="noreferrer" target="_blank">https://www.google.com/jsapi</a><br>
fetch: <a href="https://www.google.com/jsapi" rel="noreferrer" target="_blank">https://www.google.com/jsapi</a>: Bad Gateway<br>
[beetle:~/git/bind9] marka% curl -v <a href="https://www.google.com/jsapi" rel="noreferrer" target="_blank">https://www.google.com/jsapi</a><br>
* Trying 2607:f8b0:4007:80e::2004...<br>
* TCP_NODELAY set<br>
* Trying 172.217.14.100...<br>
* TCP_NODELAY set<br>
* Connected to <a href="http://www.google.com" rel="noreferrer" target="_blank">www.google.com</a> (2607:f8b0:4007:80e::2004) port 443 (#0)<br>
* ALPN, offering http/1.1<br>
* Cipher selection: ALL:!EXPORT:!EXPORT40:!EXPORT56:!aNULL:!LOW:!RC4:@STRENGTH<br>
* successfully set certificate verify locations:<br>
* CAfile: /opt/local/share/curl/curl-ca-bundle.crt<br>
CApath: none<br>
* TLSv1.2 (OUT), TLS header, Certificate Status (22):<br>
* TLSv1.2 (OUT), TLS handshake, Client hello (1):<br>
* TLSv1.2 (IN), TLS handshake, Server hello (2):<br>
* TLSv1.2 (IN), TLS handshake, Certificate (11):<br>
* TLSv1.2 (IN), TLS handshake, Server key exchange (12):<br>
* TLSv1.2 (IN), TLS handshake, Server finished (14):<br>
* TLSv1.2 (OUT), TLS handshake, Client key exchange (16):<br>
* TLSv1.2 (OUT), TLS change cipher, Change cipher spec (1):<br>
* TLSv1.2 (OUT), TLS handshake, Finished (20):<br>
* TLSv1.2 (IN), TLS change cipher, Change cipher spec (1):<br>
* TLSv1.2 (IN), TLS handshake, Finished (20):<br>
* SSL connection using TLSv1.2 / ECDHE-ECDSA-AES128-GCM-SHA256<br>
* ALPN, server accepted to use http/1.1<br>
* Server certificate:<br>
* subject: C=US; ST=California; L=Mountain View; O=Google LLC; CN=<a href="http://www.google.com" rel="noreferrer" target="_blank">www.google.com</a><br>
* start date: Jan 15 13:15:00 2019 GMT<br>
* expire date: Apr 9 13:15:00 2019 GMT<br>
* subjectAltName: host "<a href="http://www.google.com" rel="noreferrer" target="_blank">www.google.com</a>" matched cert's "<a href="http://www.google.com" rel="noreferrer" target="_blank">www.google.com</a>"<br>
* issuer: C=US; O=Google Trust Services; CN=Google Internet Authority G3<br>
* SSL certificate verify ok.<br>
> GET /jsapi HTTP/1.1<br>
> Host: <a href="http://www.google.com" rel="noreferrer" target="_blank">www.google.com</a><br>
> User-Agent: curl/7.63.0<br>
> Accept: */*<br>
> <br>
< HTTP/1.1 502 Bad Gateway<br>
< Content-Length: 0<br>
< Date: Thu, 31 Jan 2019 22:20:34 GMT<br>
< Content-Type: text/html; charset=UTF-8<br>
< Alt-Svc: quic=":443"; ma=2592000; v="44,43,39"<br>
< <br>
* Connection #0 to host <a href="http://www.google.com" rel="noreferrer" target="_blank">www.google.com</a> left intact<br>
[beetle:~/git/bind9] marka% curl -4 -v <a href="https://www.google.com/jsapi" rel="noreferrer" target="_blank">https://www.google.com/jsapi</a><br>
* Trying 172.217.14.100...<br>
* TCP_NODELAY set<br>
* Connected to <a href="http://www.google.com" rel="noreferrer" target="_blank">www.google.com</a> (172.217.14.100) port 443 (#0)<br>
* ALPN, offering http/1.1<br>
* Cipher selection: ALL:!EXPORT:!EXPORT40:!EXPORT56:!aNULL:!LOW:!RC4:@STRENGTH<br>
* successfully set certificate verify locations:<br>
* CAfile: /opt/local/share/curl/curl-ca-bundle.crt<br>
CApath: none<br>
* TLSv1.2 (OUT), TLS header, Certificate Status (22):<br>
* TLSv1.2 (OUT), TLS handshake, Client hello (1):<br>
* TLSv1.2 (IN), TLS handshake, Server hello (2):<br>
* TLSv1.2 (IN), TLS handshake, Certificate (11):<br>
* TLSv1.2 (IN), TLS handshake, Server key exchange (12):<br>
* TLSv1.2 (IN), TLS handshake, Server finished (14):<br>
* TLSv1.2 (OUT), TLS handshake, Client key exchange (16):<br>
* TLSv1.2 (OUT), TLS change cipher, Change cipher spec (1):<br>
* TLSv1.2 (OUT), TLS handshake, Finished (20):<br>
* TLSv1.2 (IN), TLS change cipher, Change cipher spec (1):<br>
* TLSv1.2 (IN), TLS handshake, Finished (20):<br>
* SSL connection using TLSv1.2 / ECDHE-ECDSA-AES128-GCM-SHA256<br>
* ALPN, server accepted to use http/1.1<br>
* Server certificate:<br>
* subject: C=US; ST=California; L=Mountain View; O=Google LLC; CN=<a href="http://www.google.com" rel="noreferrer" target="_blank">www.google.com</a><br>
* start date: Jan 15 13:15:00 2019 GMT<br>
* expire date: Apr 9 13:15:00 2019 GMT<br>
* subjectAltName: host "<a href="http://www.google.com" rel="noreferrer" target="_blank">www.google.com</a>" matched cert's "<a href="http://www.google.com" rel="noreferrer" target="_blank">www.google.com</a>"<br>
* issuer: C=US; O=Google Trust Services; CN=Google Internet Authority G3<br>
* SSL certificate verify ok.<br>
> GET /jsapi HTTP/1.1<br>
> Host: <a href="http://www.google.com" rel="noreferrer" target="_blank">www.google.com</a><br>
> User-Agent: curl/7.63.0<br>
> Accept: */*<br>
> <br>
< HTTP/1.1 502 Bad Gateway<br>
< Content-Length: 0<br>
< Date: Thu, 31 Jan 2019 22:24:43 GMT<br>
< Content-Type: text/html; charset=UTF-8<br>
< Alt-Svc: quic=":443"; ma=2592000; v="44,43,39"<br>
< <br>
* Connection #0 to host <a href="http://www.google.com" rel="noreferrer" target="_blank">www.google.com</a> left intact<br>
[beetle:~/git/bind9] marka% traceroute 172.217.14.100<br>
traceroute to 172.217.14.100 (172.217.14.100), 64 hops max, 52 byte packets<br>
1 172.30.42.65 (172.30.42.65) 1.340 ms 3.278 ms 1.673 ms<br>
2 * * *<br>
3 * * *<br>
4 59.154.18.232 (59.154.18.232) 13.710 ms<br>
<a href="http://hu0-5-0-0.22btpr01.optus.net.au" rel="noreferrer" target="_blank">hu0-5-0-0.22btpr01.optus.net.au</a> (59.154.18.234) 24.311 ms 13.662 ms<br>
5 72.14.219.128 (72.14.219.128) 12.445 ms 43.781 ms 10.760 ms<br>
6 108.170.247.74 (108.170.247.74) 12.743 ms 12.797 ms<br>
108.170.247.59 (108.170.247.59) 14.167 ms<br>
7 216.239.50.172 (216.239.50.172) 159.864 ms 162.324 ms 157.546 ms<br>
8 108.170.230.130 (108.170.230.130) 147.234 ms 151.094 ms 152.088 ms<br>
9 108.170.247.129 (108.170.247.129) 152.073 ms 149.194 ms 149.055 ms<br>
10 108.170.230.137 (108.170.230.137) 149.697 ms 150.042 ms<br>
74.125.252.75 (74.125.252.75) 149.363 ms<br>
11 <a href="http://lax31s01-in-f4.1e100.net" rel="noreferrer" target="_blank">lax31s01-in-f4.1e100.net</a> (172.217.14.100) 158.438 ms 147.982 ms 149.593 ms<br>
[beetle:~/git/bind9] marka% <br>
<br>
-- <br>
Mark Andrews, ISC<br>
1 Seymour St., Dundas Valley, NSW 2117, Australia<br>
PHONE: +61 2 9871 4742 INTERNET: <a href="mailto:marka@isc.org" target="_blank">marka@isc.org</a><br>
<br>
</blockquote></div>