i was told to move this question here:

I have a question on tracer routes, I find that my site runs through several stops/ips. The HopOne I figure is just the routing of my hosting company to keep the site like others secure. But on occasion, the hops change and I have found a school system's ip, and recently eli.net etc. I am having enormous difficulties as it is keeping my site safe from hackers and those misrepresenting an interest. In the past, like with the school system, I contacted the abuse line. Can you tell me what would cause this? That eli.net is 'electric lightwave' and I have seen it several years ago too.


It now reads:

Tracert to shoaheducation.com
Generated by www.DNSstuff.com at 17:57:16 GMT on 28 Mar 2006.
Hop T1 T2 T3 Best Graph IP Hostname Dist TTL Ctry Time
1 2 0 0 0.5 ms

66.36.240.2 AS14361
HOPONE-DCA c-vl102-d1.acc.dca2.hopone.net. 255 US Unknown: 81ff6dc2
2 0 0 0 0.5 ms [+0ms]

66.36.224.249 AS0
IANA-RSVD-0 gec3.core2.dca2.hopone.net. 0 miles [+0] 254 US Unix: 16:55:48. 95
3 0 1 0 0.5 ms [+0ms]

66.36.224.232 AS0
IANA-RSVD-0 gec2.core1.dca2.hopone.net. 0 miles [+0] 254 US Unknown: 83ef0c58
4 5 2 4 2.1 ms [+1ms]

66.36.224.181 AS0
IANA-RSVD-0 ge-1-2-0--0.gw01.mcln.eli.net. 0 miles [+0] 252 US Unix: 17:57:18. 15
5 2 2 2 2.1 ms [+0ms]

207.173.115.149 AS5650
ELIX ge-3-1-0--0.cr02.mcln.eli.net. 0 miles [+0] 251 US Unix: 17:57:18. 42
6 3 4 5 3.2 ms [+1ms]

207.173.115.110 AS5650
ELIX so-3-0-0--0.er01.asbn.eli.net. 0 miles [+0] 250 US Unix: 17:57:18. 76
7 3 3 3 3.2 ms [+0ms]

206.223.115.69 AS0
IANA-RSVD-0 eqix.ge-0-0-0.gbr1.ash.nac.net. 0 miles [+0] 249 US Unix: 17:57:18.109
8 13 9 8 8.6 ms [+5ms]

209.123.11.29 AS8001
NET-ACCESS-CORP 0.so-2-2-0.gbr2.nwr.nac.net. -1 miles [+0] 0 miles [+0] 249 US Unix: 17:57:18.152
9 9 11 10 9.5 ms [+0ms]

209.123.11.62 AS8001
NET-ACCESS-CORP 0.so-7-3-0.gbr2.mmu.nac.net. -1 miles [+0] 0 miles [+0] 248 US Unix: 17:57:18.181
10 9 * 10 9.8 ms [+0ms]

66.29.59.253 AS8001
NET-ACCESS-CORP
[Reached Destination]shoaheducation.com [No PTR]

I'm not sure what you see as a problem. What hops a packet takes to and from your sight doesn't affect how vulnerable to attacks it is.

The route can actually change from packet to packet. Network routing is a complex beast that is structure to get data from point A to point B as effieciently as possible. Therefore routes can be changing from moment to moment depending on traffic on the internet backbone. It just happens that electric lightwave owns a network segment that the packets happened to travel through.

But once, I found a local school system's IP in the tracer route of a site which is an education program. The sites been on for 8.5 years, and no school system has ever been legally involved, so how would their IP end up in the route?

I have to imagine that it ws a fairly large school system and that packets were getting routed through a segment of the network backbone. Or it is possible that there was a name resolution problem and the tracert showed the wrong name. Either way the path packets make to and from your site does not affect how secure it is, the security of your website is based on the software that is running on the server. If your website keeps getting cracked, talk with your hosting company and see what steps they are doing to stop it. As I'm sure you know some sites attract more attention of this nature than others.