- Welcome to Hurricane Electric's IPv6 Tunnel Broker Forums.
News:
Welcome to Hurricane Electric's Tunnelbroker.net forums!
Recent posts
#11
Questions & Answers / Re: IPV6 tunnel and MTU issue ...
Last post by XQZR - August 01, 2025, 08:22:05 AM'he-ipv6' interface MTU 1480(def)
Use TCP MSS clamping on router
nftables:
Use TCP MSS clamping on router
nftables:
Code Select
chain forward {
type filter hook forward priority filter;
oifname he-ipv6 tcp flags syn tcp option maxseg size set rt mtu
}
#12
Questions & Answers / can i have more than 5 tunnels...
Last post by chandro - July 31, 2025, 02:41:33 PMhello i would like to know if there is an option to have more than 5 tunnels, even paying a little bit.
thanks
chandro
thanks
chandro
#13
Questions & Answers / Re: paris not routing IPv6?
Last post by lmamane - July 29, 2025, 12:44:10 PMIt turns out the tunnelserver works, only my tunnel is affected. The best guess is that something along the route must have started to block protocol 41 :-(
I need to migrate to another solution... Thanks for the stable service for a very long time now, and thanks all the fish!
I need to migrate to another solution... Thanks for the stable service for a very long time now, and thanks all the fish!
#14
Questions & Answers / Re: IPV6 tunnel and MTU issue ...
Last post by moeller - July 29, 2025, 04:12:20 AMLooking at my wireshark capture I am missing the ICMPv6 packet to big message from the HE tunnel endpoint. Can someone from HE confirm they get send ?
Thank you
Markus
#15
Questions & Answers / paris not routing IPv6?
Last post by lmamane - July 28, 2025, 04:42:12 AMMy tunnel over tserv10.par1 / tserv1.par2 seems not to route IPv6 anymore; it shows as "up" on https://tunnelbroker.net/status.php/ It worked this morning and I didn't change anything... Are other users of that tunnel server encountering the same?
I can ping the server tunnel endpoint over IPv4.
I can ping the server tunnel endpoint FROM ANOTHER IPv6 host but NOT from the tunnel.
I cannot ping anything IPv6 over the tunnel, nor the client tunnel endpoint from another IPv6 host.
With tcpdump, I do see IPv4 packets with protocol IPv6 (41) outgoing from my machine to the IPv6 tunnel endpoint, but nothing coming back.
I can ping the server tunnel endpoint over IPv4.
I can ping the server tunnel endpoint FROM ANOTHER IPv6 host but NOT from the tunnel.
I cannot ping anything IPv6 over the tunnel, nor the client tunnel endpoint from another IPv6 host.
With tcpdump, I do see IPv4 packets with protocol IPv6 (41) outgoing from my machine to the IPv6 tunnel endpoint, but nothing coming back.
#16
General Questions & Suggestions / Re: Automatic Dynamic AAAA and...
Last post by Kozlov Sergey Aleksandrovitsch - July 27, 2025, 08:16:22 AMThis is a cmd-file that is running in the Windows Scheduler.
#17
General Questions & Suggestions / Re: Automatic Dynamic AAAA and...
Last post by Kozlov Sergey Aleksandrovitsch - July 27, 2025, 08:15:40 AMpowershell .\AAAA_by_Name.ps1
#18
General Questions & Suggestions / Re: Automatic Dynamic AAAA and...
Last post by Kozlov Sergey Aleksandrovitsch - July 27, 2025, 08:10:11 AMThis is a powershell script, that is working fine in scheduler in Windows.
It updates two dynamic AAAA records every 5 minutes from the scheduler starting from windows laod using account 'NT\Network Service'.
I have allowed to run 'unsigned powershell scripts'.
It updates two dynamic AAAA records every 5 minutes from the scheduler starting from windows laod using account 'NT\Network Service'.
I have allowed to run 'unsigned powershell scripts'.
#19
General Questions & Suggestions / Re: Automatic Dynamic AAAA and...
Last post by Kozlov Sergey Aleksandrovitsch - July 27, 2025, 08:06:48 AM$Names = @("vEthernet (L0)", "vEthernet (L1)")
$Hostnames = @("computer_name.connection_0.domain.zone","computer_name.connection_1.domain.zone")
$Passwords = @("key_0","key_1")
$ipv6Addresses = @()
for ($Counter = 0; $Counter -lt 2; $Counter++) {
$Name = $Names[$Counter]
$Hostname = $Hostnames[$Counter]
$Password = $Passwords[$Counter]
$ipv6Address = Get-NetIPAddress -InterfaceAlias $Name -AddressFamily IPv6
if ($ipv6Address) {
$filteredAddress = $ipv6Address | Where-Object {
$_.PrefixOrigin -eq 'RouterAdvertisement' -and
$_.SuffixOrigin -eq 'Link'
}
if ($filteredAddress) {
$Foundipv6Address = $filteredAddress.IPAddress
$Foundipv6AddressFeet = "$Foundipv6Address"
$ipv6Addresses += $Foundipv6Address
Write-Host "Found IPv6 addresses:" $Foundipv6AddressFeet
Write-Host
$URL = "https://$Hostname"+":$Password@dyn.dns.he.net/nic/update?hostname=$Hostname&myip=$Foundipv6AddressFeet"
Write-Host $URL
Write-Host
curl.exe $URL
} else {
Write-Host "IPv6 address $Name not found"
}
} else {
Write-Host "Interface $Name not found"
}
}
if ($ipv6Addresses.Count -gt 0) {
Write-Host "Found IPv6 addresses:"
$ipv6Addresses | ForEach-Object { Write-Host " - $_" }
}
$Hostnames = @("computer_name.connection_0.domain.zone","computer_name.connection_1.domain.zone")
$Passwords = @("key_0","key_1")
$ipv6Addresses = @()
for ($Counter = 0; $Counter -lt 2; $Counter++) {
$Name = $Names[$Counter]
$Hostname = $Hostnames[$Counter]
$Password = $Passwords[$Counter]
$ipv6Address = Get-NetIPAddress -InterfaceAlias $Name -AddressFamily IPv6
if ($ipv6Address) {
$filteredAddress = $ipv6Address | Where-Object {
$_.PrefixOrigin -eq 'RouterAdvertisement' -and
$_.SuffixOrigin -eq 'Link'
}
if ($filteredAddress) {
$Foundipv6Address = $filteredAddress.IPAddress
$Foundipv6AddressFeet = "$Foundipv6Address"
$ipv6Addresses += $Foundipv6Address
Write-Host "Found IPv6 addresses:" $Foundipv6AddressFeet
Write-Host
$URL = "https://$Hostname"+":$Password@dyn.dns.he.net/nic/update?hostname=$Hostname&myip=$Foundipv6AddressFeet"
Write-Host $URL
Write-Host
curl.exe $URL
} else {
Write-Host "IPv6 address $Name not found"
}
} else {
Write-Host "Interface $Name not found"
}
}
if ($ipv6Addresses.Count -gt 0) {
Write-Host "Found IPv6 addresses:"
$ipv6Addresses | ForEach-Object { Write-Host " - $_" }
}
#20
Questions & Answers / Re: no answer from peer at he....
Last post by buedi - July 27, 2025, 01:46:31 AMI have the same issue, using the same endpoint, but from an OPNsense. All lights are green and I can see that I send traffic to the tunnel, but I never get a reply.
I opened a thread on the OPNsense forums today and asking for help how to debug this, just to make sure it is not a configuration mistake on my side. But reading your post, using the same endpoint, maybe we did it correctly (or the same mistake ;-))?
I opened a thread on the OPNsense forums today and asking for help how to debug this, just to make sure it is not a configuration mistake on my side. But reading your post, using the same endpoint, maybe we did it correctly (or the same mistake ;-))?