Hurricane Electric's IPv6 Tunnel Broker Forums

Advanced search  


Welcome to Hurricane Electric's forums!

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Messages - tjeske

Pages: [1] 2
Probably it's not DMZ, but exposed host. Maybe your router doesn't forward IP-protocol 41 (protocol, not port!). What's your router model?

Maybe if you're using IPv6 privacy extensions, you'll get lots of different addresses for your device(s), and all seem to need an entry in those geolocation databases.

I have the same problem with domain. How was your friend able to help you out?

It seems this problem still exists. HE doesn't "activate" delegation on their NS before they are marked as authorative. However, e.g. doesn't give authority before the delegation isn't active. Thus, deadlock still exists.

Questions & Answers / Re: tunnel down (endpoint Prague)
« on: March 18, 2017, 02:26:08 PM »
Down again, though endpoint still pingable. I guess just maintenance?

Edit: Never mind. Working again fine. Just a minor hickup. Status page shows all green again as well.

CU? You mean Creator's Update? So that means you're on the Windows Insider program? So it's not fixed on the stable/mainstream channel?

Questions & Answers / Re: Testing protocol 41
« on: February 22, 2017, 09:35:31 AM »
I don't think proto 41 works like that. It's not like you open a connection, and this connection stays open and all data flows through it and the switches at your end will know where to send the data. No. Proto 41 needs end-to-end connectivity. How should the gateway know it is you that wants this package? You can monitor your interface with Wireshark to check for incoming proto 41 packages, but I think most 4G gateways will only work for TCP and - if you're lucky - UDP and ICMP.

Questions & Answers / Re: Carrier grade NAT on 4G
« on: February 22, 2017, 09:12:05 AM »
I know it's a lot of work, but there's also the option to take your server elsewhere, to a service, that offers a whole subnet. I wouldn't even think of IPv6-nat as well. Many devices probably won't even be able to work that way. At least you'd be the one controlling the port forwardings, so you wouldn't have to worry that much about your monitoring equipment.

And no, SixXS is/was the only service with ayiya.

Questions & Answers / Re: Using TunnelBroker for several routers
« on: February 22, 2017, 06:51:56 AM »
Which should be as follows:
LAN Prefix Length: 64 (if you didn't apply for 48 prefix)
LAN IPv6 Prefix: 2001:470:28:15c:: (check in your account settings whether the "28"-part is actually correct).

IPv6 settings of your access points shouldn't need any configurations. Just make sure that the LAN-device on those other units has IPv6 turned on (or not disabled). Also, your tp-link repeater might still pass the IPv6-RA to other devices, even if it doesn't assign itself an IPv6 (I'm using a TP-Link WR841ND unit as AP in my network, and even though it's a pre-IPv6 version, it passes the RA requests to all clients, as it happens at a different level of the OSI layers).

Questions & Answers / Re: Using TunnelBroker for several routers
« on: February 22, 2017, 06:09:41 AM »
Ok, AP mode is the way to go. But how do you connect to the HE tunnel? Which device does this and how?

Questions & Answers / Re: Using TunnelBroker for several routers
« on: February 22, 2017, 04:29:46 AM »
Does every router span its own subnet? Then you would need to configure prefix delegation and setting up the correct routes on each device. Much easier than running those router cascades is to run them in one single subnet, only the first unit working as a router, and the others working in switch mode.

Care to share your setup?

Questions & Answers / Re: tunnel down (endpoint Prague)
« on: February 22, 2017, 02:13:40 AM »
Berlin is working again. Now let's hope Prague comes back soon as well.

Thanks so much people at HE! You're the best!

Questions & Answers / Re: Carrier grade NAT on 4G
« on: February 22, 2017, 02:11:32 AM »
It can work if it's a 1:1 NAT or if they forward IP-Protocol (not port!) 41 to your home router. Protocol-forwarding is very unlikely to happen, and 1:1 CGNAT is very rare (my ISP uses it!).

The better way in this case is AYIYA (what sixxs is using). There's always the option of renting an IPv6-capable server and setting up your own tunnel service. Though I have to admit I'd like to see AYIYA support from HE :) (would be great for mobile phone use).

Questions & Answers / Re: tunnel down (endpoint Prague)
« on: February 21, 2017, 03:00:02 PM »
I do have native IPv6 at home. Just at university I need the tunnel, cause I couldn't convince the IT department to switch to IPv6. They'll do it eventually, but god knows when. However, they were so kind to allow my tunnel through the firewall.

Prague-server being now at Berlin is then probably also the reason why some services mistake me being from CZ. If they take usage patterns from genuine CZ users connecting to the Prague-server in Berlin, they might appear similar to mine (also, I'm not too far from the border, in case they're using ping times and such). Bit annoying at times, if I use services that rely on the false GeoIP-database. Thanks for the info.

As for the tunnel, the people in Berlin are most likely not working a night shift to resolve this (I'm not sure how the industry works, though). So they'll respond to the request tomorrow morning, and hopefully during the day, or latest by Thursday, the tunnel will be up again.

Questions & Answers / Re: tunnel down (endpoint Prague)
« on: February 21, 2017, 01:55:21 PM »
But they failed at the same time, the same minute. It must be related, not unluckyness. Same/related hosting company maybe? (Berlin: IPB CarrierColo Berlin; Prague: CEColo/Sitel; however, Budapest is "CE Colo", so same as Prague?, but Budapest is working).

Pages: [1] 2