Some more info:

- The router firewall is enabled (default), and I configured it to respond to ICMP Echo requests because of the tunnel.

- The IPv6 firewall is also enabled (default).

- URL filter, Keyword filter and Network Services filter are all disabled.

- I'm using a PPPoE connection with VLAN tagging (required by my ISP).

These are all the details I can think of that could perhaps impact the tunnel.

I have my tunnel on an ASUS router (I forget the model, but it's probably older than yours) and haven't run into that issue.  The posts you're referring to probably have to deal with an over-eager router/firewall/NAT device cutting off the tunnel if there is no traffic for a certain period of time; the fix for that is *usually* to run a cron job that sends pings every so often to keep the tunnel up.

As for your issue, is there a firmware upgrade you can do?  Have you changed any settings from the default that might impact this?

Thanks for the reply.  I'm already running the latest stock firmware, and I haven't changed any specific settings to make the router automatically cut off the tunnel due to inactivity.  I read about the ping workaround, but what's interesting is that I can still ping an IPv6 host normally even when the connection seems to have been dropped.  And even after I ping6, I'm still unable to access IPv6 websites.  From what I've read elsewhere, the tunnel would be restablished after people pinged a host, for example (which is not my case).

On my computer, I had the IPv6 privacy extensions enabled, and I disabled them just to test, but that didn't solve the issue either.

I have my tunnel on an ASUS router (I forget the model, but it's probably older than yours) and haven't run into that issue.  The posts you're referring to probably have to deal with an over-eager router/firewall/NAT device cutting off the tunnel if there is no traffic for a certain period of time; the fix for that is *usually* to run a cron job that sends pings every so often to keep the tunnel up.

As for your issue, is there a firmware upgrade you can do?  Have you changed any settings from the default that might impact this?

Hello,

I recently configured my ASUS RT-AC3100 to use HE's IPv6 tunnel, but I'm experiencing a strange issue.  The tunnel works fine for a while (a few hours, based on what I've seen), but then it stops working for some use cases.  For example, I'm unable to browse the web and access IPv6-enabled websites.  However, I confirmed that I am still able to use ping6/traceroute6, for example.

My configurations is as follows:

Tunnel type: 6in4
Server IPv4 Address: 216.66.38.58
Client IPv6 Address: 2001:470:1c:XXX::X
IPv6 Prefix Length: 64
Server IPv6 Address: 2001:470:1c:XXX::X
Tunnel MTU: 1480
Tunnel TTL: 255

LAN Prefix Length: 64
LAN IPv6 Prefix: 2001:470:1d:XXX::

IPv6 DNS Server 1: 2001:470:20::2

I tried searching the web for similar issues, but could not find anything helpful.  I found something about protocol 41 packets and filtering rules, but my router doesn't have the option to tweak these things.

Has anyone experienced this?  I can provide more information if needed.

Thanks!

I know that a dedicated API call would be nice. But I am sure some mediocre programmer is able to code some python module for that

found that ddns is now possible for txt records (YAY). The things I'm unable to figure out now is how to update the records if you have two of the same txt records? For example if you have a Let's Encrypt certificate for *.domain.ext and domain.ext then you need two txt entries _acme-challenge.domain.ext and _acme-challenge.domain.ext. I can do this manually but when I setup the entries to be dynamic I'm only able to update the last one I updated with a password. Does anyone know if there is a trick for this situation or if this part isn't implemented yet?

While the new feature is neat, it just doesn't help us. In order for this to be really use full, we would need to be able to create new ddns txt records without the web interface. But its a very nice fist step.

regards, Matthias

Great to hear that. Come back for all your IPv6 questions whenever you feel like 🙂

tjeske, I am using the Centurylink.com 6rd tunnel values that I found on the Internet yesterday morning.  As far as the He.net tunnel values are concerned, I tried those, but was not successful in establishing a tunnel.  I thought the He.net tunnels were for the 6in4 configuration, though.  Anyway, thanks to you and kasperd for all of your suggestions.  Keep in touch. 

That looks great! Do you use the HE tunnel for this or the "native" 6rd of CenturyLink?

kasperd, this morning I found the relevant Centurylink.com 6rd tunnel values on the Internet.  See the attachment for the results.  Let me know what you think.  Thank you for your help.