It's fixed now.

Our software follows redirs and somehow we got a 302 to our own IP. Perhaps it is someone's idea of a bot detector?