The protocols layer and in some cases intertwine. What you call "the web" sits on top of a protocol called HTTP (HyperText Transfer Protocol). HTTP makes use of the services of TCP (Transmission Control Protocol). TCP makes use of IP (Internet Protocol). IP will make use of whatever link-layer protocol is available in its sitaution. For your end systems that will be "Ethernet" protocol over your WiFi connection.
HTTP TCP IP Ethernet/WiFi/whatnot
Within/alongside IP is ICMP (Internet Control Message Protocol). ICMP is used to provide some "Hey, you should know this" kinds of messages back to traffic sources.
So, simplifying a bit, when you try to access
formatting link
from your web browser, the browser will generate an HTTP message the browswer wants to get to HTTP at
formatting link
That HTTP message will be handed-off to TCP to transmit in one or more TCP segments to TCP at
formatting link
(segment = what a packet is called in the context of TCP). The TCP segment(s) will be handed off to IP, which will encapsulate them in one or more IP datagrams (datagram = what a packet is called in the context of IP) destined to the IP address of
formatting link
IP will then hand its datagrams to the "data link" layer (eg Ethernet etc) which will do its encapsulation. It will then go across the data link destined for IP at the "next hop" where the data-link layer message will decapsulate the IP datagram and hand it to IP at that hop. IP at that hop will then decide what to do with the datagram, which is being sent to the/an IP address for
formatting link
There will probably be another "next hop" and so on until the traffic arrives at
formatting link
IP at
formatting link
will then decapsulate the TCP segment from the IP datagram, and TCP will decapsulate the HTTP message and hand it to the HTTP server.
The HTTP response will flow back to you via a similar mechanism.
Those different lines you see in the output of traceroute are the "next hops" along the way from your system to
formatting link
Now, the data links at all those next hops may have different limits for how large a packet they can transmit. If an IP datagram arrives at a "next hop" (aka an IP router), and IP there determines that where it needs to be sent-out next is over a data link with a packet size smaller than the IP datagram it needs to send, IP decides to send back to the traffic's source an ICMP message saying "Hey, the datagram you sent is too large for me to send, you should send smaller IP datagrams" (There is more to it than this, but I'm simplifying).
There are other sorts of ICMP "Hey!" messages. One of them is "Maximum Hop Count Reached" - that is the ICMP message that (default) traceroute relies upon receiving. In the header of an IP datagram there is a field called the "TTL" (Time To Live) which is really a maximum hop count. As the IP datagram passes through an IP router, the router decrements the count by one, and when it hits zero, that IP is supposed to send back an ICMP message that says "Hey! The datagram you sent had its maximum hop count expire before it reached its destination." Traceroute works by sending an IP datagram over and over again, with the TTL increased by one each time.
Ping sends a different sort of ICMP message, one that says "Please tell me that you got this" - more formally known as an ICMP Echo Request. The destination IP will send an ICMP Echo Response back to the originator when it receives one.
Now, all these things I've described rely on ICMP messages making it back to the source of the IP/ICMP datagram triggering them. But some network administrators feel that allowing (certain) ICMP traffic to pass represents a security vulnerablity, so they block ICMP traffic.
If ICMP traffic is blocked at a point part-way between you and
formatting link
you will see the traceroute "stop" (those '*' lines starting indicating there was no response with the TTL set to that many hops). You will also not have ping "work" - it won't see any ICMP Echo Reply messages.
If TCP tries to send a TCP segment that was carried in an IP datagram which needed to be fragmented somewhere in the middle there, then when it goes to send traffic it will appear to disappear - it hits an IP router (next hop) that tried to send it but couldn't and the "Hey!" message that IP router tried to send back was blocked.
Now, by default, ping and traceroute do not send very large IP datagrams, so the chances of those packets arriving at a next hop where fragmentation is needed is pretty small.
Also, not all TCP segments are the same size - the TCP segments used to setup a TCP connection for example are pretty small. That is what was behind some of the "try telnet
formatting link
80" suggestions - that is an old school way to just try establishing a TCP connection but not actually send any data on it. Those TCP segments will be small.
Why try that? (Or for that matter the pings or traceroutes with options set to send larger packets) Because it is how one tries to see if 'the problem" centers on packets which are too large arriving at a small data link somewhere, or simply a routing issue somewhere in the middle of the Internet. If the "telnet
formatting link
80" establishes the TCP connection, you can assume that it isn't a routing issue. In that case, a/the remedy is to ensure that TCP at your system and TCP at the system(s) to which you are connecting never try to send TCP segments which become IP datagrams which are too large to send without fragmentation. One can do that by shrinking the MTU of the network interface of your system. When TCP establishes a connection, part of that is exchanging with the other side (eg
formatting link
the Maximum Segment Size (MSS) for the connection. There are several inputs to that exchange, one of which is the MTU of your local interface. The smallest MSS (your's or that of
formatting link
is the one that will be used for traffic in both directions.
Now, if the telnet
formatting link
80 does not succeed, that means there is some sort of routing issue. That was already partially suggested by the ping and traceroute "failures" you've already reported (if memory serves) but since the ICMP traffic on which they rely can be blocked, their failure is not conclusive.
What sort of routing issue might it be? Well, one could be that there is a simply problem at or after one of those next hops you see in the traceroute output. That is why some have suggested you lookup the information about who runs those and contact them.
It is possible that your source IP has been "black listed" for some reason or other - either at/past the ISP responsible for the last "next hop" you see in traceroute or perhaps even at
formatting link
Perhaps at one point the IP address you have from your ISP was involved in something considered nefarious or anti-social.
That you could still get to
formatting link
using TOR would remain consistent with your IP address (the one being assigned to your home gateway by your ISP) being blacklisted because the entire point of TOR (as I understand it) is to hid your actual IP address. It does that by adding some additional layers to the top of what I mentioned above. (As I understand it, I don't actually have any practical experience with TOR).
rick jones