Nmap scan report for us-east-2-probe.prod.ftl.netflix.com (45.57.40.1) Host is up (0.0018s latency). Other addresses for us-east-2-probe.prod.ftl.netflix.com (not scanned): 2a00:86c0:2041::1 2a00:86c0:2040::1 45.57.41.1 Not shown: 695 filtered ports, 301 closed ports PORT STATE SERVICE VERSION 22/tcp open tcpwrapped 80/tcp open http nginx |_http-server-header: nginx |_http-title: Site doesn't have a title. 179/tcp open tcpwrapped 443/tcp open ssl/https | fingerprint-strings: | FourOhFourRequest: | HTTP/1.0 442 status code 442 | Via: 1.0 c000.lax009.ix.nflxvideo.net (FTL-YP8n) | Date: Tue, 21 Nov 2023 03:06:19 GMT | Content-Length: 0 | GenericLines, Help, Kerberos, LDAPSearchReq, LPDString, RTSPRequest, SIPOptions, SSLSessionReq, TLSSessionReq: | HTTP/1.1 400 Bad Request | Content-Type: text/plain; charset=utf-8 | Connection: close | Request | GetRequest: | HTTP/1.0 442 status code 442 | Via: 1.0 c000.lax009.ix.nflxvideo.net (FTL-AyJc) | Date: Tue, 21 Nov 2023 03:06:19 GMT | Content-Length: 0 | HTTPOptions: | HTTP/1.0 442 status code 442 | Via: 1.0 c000.lax009.ix.nflxvideo.net (FTL-iiLA) | Date: Tue, 21 Nov 2023 03:06:19 GMT |_ Content-Length: 0 |_http-cors: HEAD GET POST PUT DELETE TRACE OPTIONS | http-methods: |_ Potentially risky methods: PUT DELETE TRACE SCRIPT |_http-title: Site doesn't have a title. | ssl-cert: Subject: commonName=ftl.netflix.com/organizationName=Netflix/stateOrProvinceName=California/countryName=US | Subject Alternative Name: DNS:*.ftl.nflxvideo.net, DNS:ftl.netflix.com, DNS:anycast.ftl.netflix.com, DNS:*.staging.ftl.netflix.com, DNS:*.prod.ftl.netflix.com, DNS:*.r.nflxso.net | Not valid before: 2023-10-23T00:00:00 |_Not valid after: 2023-11-28T07:44:46 |_ssl-date: TLS randomness does not represent time | tls-alpn: |_ http/1.1 1 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at https://nmap.org/cgi-bin/submit.cgi?new-service : SF-Port443-TCP:V=7.70%T=SSL%I=7%D=11/20%Time=655C1EAB%P=x86_64-redhat-linu SF:x-gnu%r(GetRequest,8A,"HTTP/1\.0\x20442\x20status\x20code\x20442\r\nVia SF::\x201\.0\x20c000\.lax009\.ix\.nflxvideo\.net\x20\(FTL-AyJc\)\r\nDate:\ SF:x20Tue,\x2021\x20Nov\x202023\x2003:06:19\x20GMT\r\nContent-Length:\x200 SF:\r\n\r\n")%r(HTTPOptions,8A,"HTTP/1\.0\x20442\x20status\x20code\x20442\ SF:r\nVia:\x201\.0\x20c000\.lax009\.ix\.nflxvideo\.net\x20\(FTL-iiLA\)\r\n SF:Date:\x20Tue,\x2021\x20Nov\x202023\x2003:06:19\x20GMT\r\nContent-Length SF::\x200\r\n\r\n")%r(FourOhFourRequest,8A,"HTTP/1\.0\x20442\x20status\x20 SF:code\x20442\r\nVia:\x201\.0\x20c000\.lax009\.ix\.nflxvideo\.net\x20\(FT SF:L-YP8n\)\r\nDate:\x20Tue,\x2021\x20Nov\x202023\x2003:06:19\x20GMT\r\nCo SF:ntent-Length:\x200\r\n\r\n")%r(GenericLines,67,"HTTP/1\.1\x20400\x20Bad SF:\x20Request\r\nContent-Type:\x20text/plain;\x20charset=utf-8\r\nConnect SF:ion:\x20close\r\n\r\n400\x20Bad\x20Request")%r(RTSPRequest,67,"HTTP/1\. SF:1\x20400\x20Bad\x20Request\r\nContent-Type:\x20text/plain;\x20charset=u SF:tf-8\r\nConnection:\x20close\r\n\r\n400\x20Bad\x20Request")%r(Help,67," SF:HTTP/1\.1\x20400\x20Bad\x20Request\r\nContent-Type:\x20text/plain;\x20c SF:harset=utf-8\r\nConnection:\x20close\r\n\r\n400\x20Bad\x20Request")%r(S SF:SLSessionReq,67,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nContent-Type:\x2 SF:0text/plain;\x20charset=utf-8\r\nConnection:\x20close\r\n\r\n400\x20Bad SF:\x20Request")%r(TLSSessionReq,67,"HTTP/1\.1\x20400\x20Bad\x20Request\r\ SF:nContent-Type:\x20text/plain;\x20charset=utf-8\r\nConnection:\x20close\ SF:r\n\r\n400\x20Bad\x20Request")%r(Kerberos,67,"HTTP/1\.1\x20400\x20Bad\x SF:20Request\r\nContent-Type:\x20text/plain;\x20charset=utf-8\r\nConnectio SF:n:\x20close\r\n\r\n400\x20Bad\x20Request")%r(LPDString,67,"HTTP/1\.1\x2 SF:0400\x20Bad\x20Request\r\nContent-Type:\x20text/plain;\x20charset=utf-8 SF:\r\nConnection:\x20close\r\n\r\n400\x20Bad\x20Request")%r(LDAPSearchReq SF:,67,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nContent-Type:\x20text/plain; SF:\x20charset=utf-8\r\nConnection:\x20close\r\n\r\n400\x20Bad\x20Request" SF:)%r(SIPOptions,67,"HTTP/1\.1\x20400\x20Bad\x20Request\r\nContent-Type:\ SF:x20text/plain;\x20charset=utf-8\r\nConnection:\x20close\r\n\r\n400\x20B SF:ad\x20Request"); Aggressive OS guesses: FreeBSD 11.0-CURRENT (93%), D-Link DIR-300 WAP (91%), FreeBSD 7.0-RELEASE (91%), FreeBSD 11.0-RELEASE - 12.0-CURRENT (90%), FreeBSD 7.0-RELEASE-p1 - 10.0-CURRENT (90%), NAS4Free (FreeBSD 9.1) (90%), FreeBSD 7.0-BETA2 (custom compiled) (90%), FreeBSD 7.0-BETA4 - 7.0 (90%), FreeBSD 7.0-CURRENT (90%), FreeBSD 7.0-CURRENT (pre-release) (90%) No exact OS matches for host (test conditions non-ideal). Network Distance: 9 hops TRACEROUTE (using port 143/tcp) HOP RTT ADDRESS 1 0.21 ms 208.76.251.177 2 0.80 ms gw.mcom-colocationamerica.com (208.64.231.81) 3 1.31 ms 1.162.45.96-dedicated.multacom.com (96.45.162.1) 4 1.38 ms be5361.ccr42.lax01.atlas.cogentco.com (38.99.219.57) 5 1.38 ms be3360.ccr41.lax04.atlas.cogentco.com (154.54.25.150) 6 ... 7 8 0.71 ms Netflix-level3-100G.LosAngeles1.Level3.net (4.68.73.26) 9 2.16 ms 45.57.40.1 OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 128.00 seconds