Hurricane Electric's IPv6 Tunnel Broker Forums

Advanced search  

News:

Welcome to Hurricane Electric's Tunnelbroker.net forums!

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Messages - cholzhauer

Pages: 1 ... 173 174 [175]
2611
General Discussion / Problem passing the mail part of the test
« on: August 20, 2009, 11:22:16 AM »
So I finally figured out how to get sendmail to accept incoming connections, but I'm still not able to receive mail from the outside.

What sort of things should I be looking for?  I have port 25 opened for that host in the firewall

Thanks

2612
IPv6 on Routing Platforms / Re: Routing Issue?
« on: August 15, 2009, 09:47:22 AM »
I would have thought they would have changed it too, but I guess not.  The default route is now pointed at the BSD machine...for the most part, most of my servers don't need outside IPv6 access, so it's not THAT big of a deal.  The only thing I have now is a webserver (too bad Exchange 07 on Server 2k3 won't do IPv6)

Regarding the static vs dynamic...is the issue because you can determine the mac address and then use the mac address to do some spoofing or something?

2613
IPv6 on Routing Platforms / Re: Routing Issue?
« on: August 13, 2009, 06:21:26 AM »
Changing the default route did it...I swear I tried doing that yesterday.  Oh well.

Thanks for the idea.  Is there a way to change that for all hosts?  I don't want to have to go around to every machine and change the default route, but I don't see any other way.

BTW..how did you know I was using VMware? The names of the network interfaces?

2614
IPv6 on Routing Platforms / Re: Routing Issue?
« on: August 12, 2009, 03:02:26 PM »
Yep, sure can.

Every other machine on my network (40+) have no problems accessing the IPv6 Internet.  Everything used to work fine when I did everything on the Router, but since I wasn't real good with IPTables, I moved the firewalling stuff to the ASA and used it to dole out addresses.  Here's the revelant sections of /etc/rc.conf


ipv6_enable="YES"
ipv6_defaultrouter="2001:4978:f:22e::1"
ipv6_network_interfaces="fxp0 tun0"
ipv6_gateway_enable="YES"
ipv6_ifconfig_fxp0="2001:4978:1d8:e000::9"
ipv6_prefix_fxp0="2001:4978:1d8:e000"


2615
IPv6 on Routing Platforms / Re: Routing Issue?
« on: August 12, 2009, 01:29:43 PM »
Yep, thats the same thing I get.  I think it's an internal routing issue, but I'm at a loss to explain it.  I've attached the routing table from my router

2001:4978:1d8:e000:21d:a2ff:feaf:2ffd  is the address of the router

I  just figured out that I can't do any pings from the 2001:4978:1d8:e000::64 subnet, but the others work fine.

2616
IPv6 on Routing Platforms / Re: Routing Issue?
« on: August 12, 2009, 12:34:16 PM »
Here's more...it looks like the request is getting passed and acknowledged by my web server, but my IPv6 router isn't passing the return traffic?  I'm not running IP tables or anything else on the machines.  IPv6 works fine against the webserver internally.

From my router:
15:28:29.255951 IP6 ipv6.he.net.59116 > mars.sscorp.com.http: S 1658172855:1658172855(0) win 5760 <mss 1440,sackOK,timestamp 1502976556 0,nop,wscale 6>

From webserver
15:20:54.922015 IP6 ipv6.he.net.59116 > mars.sscorp.com.http: S 1658172855:1658172855(0) win 5760 <mss 1440,sackOK,timestamp 1502976556 0,nop,wscale 6>
15:20:54.922504 IP6 mars.sscorp.com.http > ipv6.he.net.59116: S 1693715780:1693715780(0) ack 1658172856 win 65535 <mss 1440,nop,wscale 3,sackOK,timestamp 32$

2617
IPv6 on Routing Platforms / Re: ASA5505 direct tunnel to tunnelbroker
« on: August 12, 2009, 11:34:30 AM »
I'm running mine through a BSD-based router and using my 5520 for access control.

2618
IPv6 on Routing Platforms / Routing Issue?
« on: August 12, 2009, 11:33:33 AM »
I have IPv6 connectivity to the outside, but the outside is unable to get to me.  I'm running all of my traffic through an ASA 5520 and I have a rule set up temporarily to allow all incoming IPv6 traffic.

However, I can't connect to myself from the outside world over IPv6.  I do have AAAA records published for the servers that need them.

http://mars.sscorp.com/briank/ should work from the outside, but does not.

Can anyone give me some suggestions as to what I should look for?

Thanks

2619
Questions & Answers / Re: RDNS... but not what you think
« on: July 07, 2009, 08:46:30 AM »
FWIW, here's the output from a non-HE tunnel

[carl@mars ~]$ dig -x 2001:470:1f11:17f::1

; <<>> DiG 9.4.3-P2 <<>> -x 2001:470:1f11:17f::1
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 18954
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.f.7.1.0.1.1.f.1.0.7.4.0.1.0.0.2.ip6.arpa. IN PTR

;; Query time: 2970 msec
;; SERVER: 2001:4978:1d8:e000:88cb:fe1b:c4b0:92a1#53(2001:4978:1d8:e000:88cb:fe1b:c4b0:92a1)
;; WHEN: Tue Jul  7 09:58:45 2009
;; MSG SIZE  rcvd: 90

2620
Questions & Answers / Re: How can I unblock ICMP?
« on: July 01, 2009, 06:56:01 AM »
It is possible...do you know if they are blocking ICMP to end users?  You might want to ask them that...if they don't block it, at least you'll be able to rule something out.

2621
Questions & Answers / Re: How can I unblock ICMP?
« on: July 01, 2009, 05:16:30 AM »
What OS are you running?  You're sure that you've either allowed ICMP through that firewall or turned off the firewall all together? 

Are you behind a NAT router?

Is there a firewall on your cable modem or DSL modem?

Pages: 1 ... 173 174 [175]