- Welcome to Hurricane Electric's IPv6 Tunnel Broker Forums.
News:
Welcome to Hurricane Electric's Tunnelbroker.net forums!
Recent posts
#1
General Questions & Suggestions / IPv6 HE tunnel broker and Net...
Last post by jonathanlee571 - July 24, 2024, 11:38:02 AMHello fellow Hurricane Electric community members,
I wanted to share this with users in case others also have issues with streaming services such as Netflix blocking IPv6 tunnel brokers. I seem to have found a solution, it is to force pfSense's Unbound DNS resolver to utilize DNS A records when accessing specific Netflix domains or other domains that have this issue.
Unbound DNS resolver has a custom option in here. You can add these options.
server:
dns64-ignore-aaaa: netflix.com
dns64-ignore-aaaa: netflix.net
dns64-ignore-aaaa: nflxext.com
dns64-ignore-aaaa: nflxso.net
dns64-ignore-aaaa: nflxvideo.net
dns64-ignore-aaaa: www.netflix.com
This seemed to resolve my issue as anything with those domains will now only use DNS A records.
I hope that helps. Thanks for all you do
I wanted to share this with users in case others also have issues with streaming services such as Netflix blocking IPv6 tunnel brokers. I seem to have found a solution, it is to force pfSense's Unbound DNS resolver to utilize DNS A records when accessing specific Netflix domains or other domains that have this issue.
Unbound DNS resolver has a custom option in here. You can add these options.
server:
dns64-ignore-aaaa: netflix.com
dns64-ignore-aaaa: netflix.net
dns64-ignore-aaaa: nflxext.com
dns64-ignore-aaaa: nflxso.net
dns64-ignore-aaaa: nflxvideo.net
dns64-ignore-aaaa: www.netflix.com
This seemed to resolve my issue as anything with those domains will now only use DNS A records.
I hope that helps. Thanks for all you do
#2
Questions & Answers / Re: Unable to use Google Searc...
Last post by kirgudu - July 23, 2024, 01:58:58 AMGoogle CAPTCHA is annoying again.
Tunnelbroker, do something
Tunnelbroker, do something
#3
Questions & Answers / Re: Possible IPv6 Routing Issu...
Last post by kernelpanic1 - July 22, 2024, 03:50:52 PMA bit of an update, I was able to null route AAAA records on my DNS server based on the similar workaround needed for Netflix here and Paramount seems to be working again. The domains I came up with for Paramount are below:
server=/cbsivideo.com/#
address=/cbsivideo.com/::
server=/cbsi.com/#
address=/cbsi.com/::
server=/cbsistatic.com/#
address=/cbsistatic.com/::
server=/cbsimg.net/#
address=/cbsimg.net/::
server=/pplusstatic.com/#
address=/pplusstatic.com/::
server=/paramountplus.com/#
address=/paramountplus.com/::
server=/www.paramountplus.com/#
address=/www.paramountplus.com/::
server=/paramountplus.map.fastly.net/#
address=/paramountplus.map.fastly.net/::
server=/saa.paramountplus.com/#
address=/saa.paramountplus.com/::
server=/cbsaavideo.com/#
address=/cbsaavideo.com/::
server=/cbsinteractive.data.adobedc.net/#
address=/cbsinteractive.data.adobedc.net/::
server=/cbsig.net/#
address=/cbsig.net/::
server=/irdeto.com/#
address=/irdeto.com/::
I'm still not sure if this is some kind of IPv6 routing issue or if Paramount is silently blocking HE IPv6 tunnel traffic. If they are blocking, there is no mention of this on their support site, in any error messages, or any other references found on Google.
server=/cbsivideo.com/#
address=/cbsivideo.com/::
server=/cbsi.com/#
address=/cbsi.com/::
server=/cbsistatic.com/#
address=/cbsistatic.com/::
server=/cbsimg.net/#
address=/cbsimg.net/::
server=/pplusstatic.com/#
address=/pplusstatic.com/::
server=/paramountplus.com/#
address=/paramountplus.com/::
server=/www.paramountplus.com/#
address=/www.paramountplus.com/::
server=/paramountplus.map.fastly.net/#
address=/paramountplus.map.fastly.net/::
server=/saa.paramountplus.com/#
address=/saa.paramountplus.com/::
server=/cbsaavideo.com/#
address=/cbsaavideo.com/::
server=/cbsinteractive.data.adobedc.net/#
address=/cbsinteractive.data.adobedc.net/::
server=/cbsig.net/#
address=/cbsig.net/::
server=/irdeto.com/#
address=/irdeto.com/::
I'm still not sure if this is some kind of IPv6 routing issue or if Paramount is silently blocking HE IPv6 tunnel traffic. If they are blocking, there is no mention of this on their support site, in any error messages, or any other references found on Google.
#4
Questions & Answers / Re: Possible IPv6 Routing Issu...
Last post by coxim - July 21, 2024, 09:00:42 PMExact same problem here. Would love to know a solution to this. Had to disable IPv6 to get Paramount Plus to work.
#5
Questions & Answers / Re: Does any know which DNS do...
Last post by rdk - July 21, 2024, 05:10:54 PMHere is my list. Might be overkill but MAX now working on my subnets.
2600:9000:24f8::/48
2600:1901:0:ded2::/64
2600:9000:a60c:cc9b::/64
2600:9000:24f8::/48
2600:1901:0:ded2::/64
2600:9000:a60c:cc9b::/64
2600:9000:24f8:e200:1f:da81:ba40:93a1
2600:9000:24f8:1400:1f:da81:ba40:93a1
2600:9000:24f8:d400:1b:81f4:8200:93a1
2600:9000:a41e:d356:d341:6bf:9f6:2751
2600:9000:a710:90b8:c006:3fc7:6367:4f5f
2600:9000:a710:90b8:f690:dc03:fd45:b50a
2600:9000:a710:90b8:c006:3fc7:6367:4f5f
2600:1402:1400:37::1735:def
2600:1402:1400:37::1735:df1
2600:1405:800::6864:a8e0
2600:9000:24f8::/48
2600:1901:0:ded2::/64
2600:9000:a60c:cc9b::/64
2600:9000:24f8::/48
2600:1901:0:ded2::/64
2600:9000:a60c:cc9b::/64
2600:9000:24f8:e200:1f:da81:ba40:93a1
2600:9000:24f8:1400:1f:da81:ba40:93a1
2600:9000:24f8:d400:1b:81f4:8200:93a1
2600:9000:a41e:d356:d341:6bf:9f6:2751
2600:9000:a710:90b8:c006:3fc7:6367:4f5f
2600:9000:a710:90b8:f690:dc03:fd45:b50a
2600:9000:a710:90b8:c006:3fc7:6367:4f5f
2600:1402:1400:37::1735:def
2600:1402:1400:37::1735:df1
2600:1405:800::6864:a8e0
#6
Questions & Answers / Re: Does any know which DNS do...
Last post by rdk - July 21, 2024, 04:35:44 PMI would love if you'd give a little bit more detail . . . On a linux box, I can't stream so I can't get a list of streaming IPs to block.
#7
Questions & Answers / Possible IPv6 Routing Issue fo...
Last post by kernelpanic1 - July 21, 2024, 03:58:17 PMHi, I've been having issues streaming Paramount Plus in my household for the past few weeks and started to troubleshoot after not finding anything online about major outages. Typically I'm streaming from a Chromecast 4k, but decided to test from my PC and found I was being automatically redirected to the German site at https://www.paramountplus.com/de/. If I disable my HE IPv6 tunnel, it loads the proper US site ok. This is what a traceroute looks like:
Any thoughts on this? Could this be a HE issue or possibly Paramount?
Code Select
tracert www.paramountplus.com
Tracing route to paramountplus.map.fastly.net [2a04:4e42:1c::347]
over a maximum of 30 hops:
1 1 ms 1 ms 2 ms <my network>
2 1 ms 1 ms 1 ms <my network>
3 13 ms 9 ms 9 ms tunnel85994.tunnel.tserv4.nyc4.ipv6.he.net [2001:470:1f06:d7c::1]
4 * * * Request timed out.
5 * * * Request timed out.
6 * * * Request timed out.
7 31 ms 31 ms 31 ms 2001:504:24:1::d361:2
8 17 ms 15 ms 14 ms 2a04:4e42:1c::347
Any thoughts on this? Could this be a HE issue or possibly Paramount?
#8
Questions & Answers / Re: AWS Public IP marked "This...
Last post by lpwm - July 19, 2024, 11:19:33 AMSame issue with Bandwagon host public ip.
#9
Questions & Answers / Re: Tunnelbroker.net account d...
Last post by kitkat44 - July 16, 2024, 11:54:49 PMMy tunnel from 2016 mysteriously disappeared too in 2023. Guess I'm not the only one. I noticed it when my only tunnel stopped working suddenly. Had to make a new one. Seems like a bungled migration that resulted in a bunch of tunnels vanishing.
#10
IPv6 on Routing Platforms / Re: ASUS RT-AX1800U - working ...
Last post by vykeer - July 15, 2024, 12:04:38 PMAnyone.. ?