Hurricane Electric's IPv6 Tunnel Broker Forums

Advanced search  


Welcome to Hurricane Electric's forums!

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Topics - divad27182

Pages: [1]
Suggest a Test! / Ongoing daily tests?
« on: June 08, 2017, 04:46:34 PM »
How about changing it so that:
  • You can continue to do daily tests, even after 100, but only (the last) 100 count.
  • Your credits from the daily tests gradually fades.  Like after 1 year, a test is only worth 0.5 points, and after 2, 0.25 points.  (Fading should probably stop about there.)
These would combine to make the daily tests an ongoing activity, instead of something you do for 4-6 months and then can't do any more.  This could keep people's interest in  (Which would be particularly good if you had news to show.)


General Discussion / "DIG PTR" problems?
« on: May 28, 2017, 10:04:08 PM »
Is anybody else having problems with the "DIG PTR" daily test today?  All the others worked fine for me, but not the reverse DNS lookup.  I've tried a number of addresses, and it always says (after correctly parsing the query), something like:
Summary of user's dig query
IPv6 Address: 2001:470:1f06:1356::2
Validating user's dig query
Result: Fail
Reason: Record mismatch

(It almost looks like the test machine can't do reverse DNS lookups as of today.)


P.S. FYI: I find tunnel broker transit networks to be a wonderful source of DNS lookups.  They may not ping, but they are all wonderfully filled in.  Thank you   :)

General Discussion / "DIG AAAA" test bug
« on: May 27, 2017, 12:24:25 PM »
I tried to submit the following result:
Code: [Select]
; <<>> DiG 9.9.5-4~bpo70+1-Debian <<>> AAAA
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 33571
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 2, ADDITIONAL: 5

; EDNS: version: 0, flags:; udp: 4096

;; ANSWER SECTION: 53 IN AAAA 2001:8b0:0:30::68 53 IN AAAA 2001:8b0:0:30::65


;; ADDITIONAL SECTION: 172793 IN A 172793 IN AAAA 2001:8b0:0:30::51bb:1e29 172793 IN A 172793 IN AAAA 2001:8b0:0:81::51bb:5120

;; Query time: 1 msec
;; WHEN: Sat May 27 15:11:03 EDT 2017
;; MSG SIZE  rcvd: 239

It was refused, on the basis that "2001:8b0:0:30::68" did not match "2001:8b0:0:30::65".  It turns out that the server side DNS lookup gets the first address, and the parser gets the last address, so any hostname with two IPv6 addresses is rejected unless you cherry pick the submitted results.

IPv6 on Linux & BSD & Mac / RIP on IPv6 for Linux?
« on: March 03, 2017, 07:22:21 PM »
Once upon a time, I worked on a network of SunOS computers.  They all ran "routed" implementing the RIP protocol.  They all routed everything right.  At some point our network administrators decided that the 3 packets per router per minute was too much traffic on our network, and shut it down.  Routing problems started.

Does anyone known of a comparable lightweight routing daemon for IPv6 and IPv4, for the Linux (debian) platform?  As far as I'm concerned, Quagga or Zebra is to heavy.  I tried "babeld", but it was too much based on hosts instead if networks.

I'm looking for something that is single process, single thread, small executable, minimal configuration, and capable of running on every node in the network, including the non-routing nodes.  (Non-routing nodes should just be receive only, except for an initial broadcast like in RIP.)   Ideally, it could also replace radvd.

--David G

Suggest a Test! / IPv6 DNS lookup
« on: February 07, 2017, 09:45:05 AM »
How about doing a DNS lookup using IPv6.

In order to do this, one would need a DNS zone that is deliberately NOT delegated to, on a server that only accepts IPv6 requests.  Then the testee would fetch something from the server, and enter that as evidence of test completion. 

I suggest that it be a TXT record, using a domain name like <username>.hurricane-electric-certification-test.  and that the value be a nonce, followed by a hash of the nonce, username, and a secret shared between the dns server and the test server.  This would prevent sharing answers, or taking too long to enter the answer.


Pages: [1]