Hurricane Electric's IPv6 Tunnel Broker Forums

Advanced search  


Welcome to Hurricane Electric's forums!

Pages: 1 ... 7 8 [9] 10
 on: November 05, 2018, 01:02:48 PM 
Started by jlandwehr - Last post by kcochran
"good" is the defined Dyn API reply for a request which doesn't conform to the requirements.  Most of the time this is thrown because the supplied IP address isn't pingable.

 on: November 04, 2018, 08:38:03 AM 
Started by jlandwehr - Last post by jlandwehr
The Client IPv4 address is not updating on my Tunnel Details page of:

I have been using the instructions here:


I also tried setting the IP specifically via:

In all cases, the responses are:
Which is weird even when I specify the myip=

Which is clearly the wrong IP, and it's not updating the Tunnel Details - so my Tunnel no longer works because the server doesn't recognize my IP (which changes frequently from ISP).  I have a curl -4 script running with the URL on a daily basis to keep it updated, but I just discovered my tunnel has been down.

 on: October 31, 2018, 12:42:21 PM 
Started by AndrewButterworth - Last post by snarked
Glad to see your issue is resolved.  However, note:  A failing traceroute can also occur when someone is blocking ICMP packets and/or their replies.  When traceroutes fail, they should be tested with both UDP packets and ICMP echo packets, with both failing.  Even so, direct connections (via TCP, e.g.) sometimes still work.

Note also that many admins limit or firewall drop ICMP echo packets at destination hosts.  I do drop them, except I have a list of IP addresses (v4 and v6) which may ping and receive replies (my own network ranges and some friends).  ICMP packets should never be dropped by routers, but some admins do that also (whether intentional or by misconfiguration).

 on: October 31, 2018, 02:49:49 AM 
Started by AndrewButterworth - Last post by AndrewButterworth
And it's back working...

 on: October 31, 2018, 01:52:53 AM 
Started by AndrewButterworth - Last post by AndrewButterworth
I thought the Paris tunnel server was down again this morning but after a bit of troubleshooting it seems to be a routing issue.  If I traceroute from my workstation I get this far:


Tracing route to [2607:f8b0:4005:80a::2004]
over a maximum of 30 hops:

  1     1 ms     2 ms     1 ms  2001:xxx:xxxx:xxxx::xx
  2    <1 ms    <1 ms    <1 ms  2001:xxx:xxxx:xxxx::xx
  3    20 ms    19 ms    19 ms [2001:470:1f12:ac6::1]
  4    16 ms    16 ms    18 ms [2001:470:0:7b::1]
  5    19 ms    24 ms    46 ms [2001:470:0:1b0::2]
  6    15 ms    15 ms    15 ms [2001:7f8:43::1:5169:1]
  7    15 ms    16 ms    15 ms  2001:4860:0:1015::10
  8     *        *        *     Request timed out.
  9     *        *        *     Request timed out.
 10     *        *        *     Request timed out.
 11     *        *        *     Request timed out.
 12     *        *        *     Request timed out.
 13     *        *        *     Request timed out.

Nothing after that.  It seems 2001:4860:0:1015::10 is a Google address so maybe an issue within Google?

 on: October 30, 2018, 10:18:27 AM 
Started by yaroslavukr - Last post by yaroslavukr
Please check. I sent the answer and with admin and with noc mails.

Best regards, Yaroslav

 on: October 30, 2018, 08:03:21 AM 
Started by yaroslavukr - Last post by broquea
Neither ticket has had a reply attached to it yet. Make sure you are emailing from an email address listed in your RIR's WHOIS information for both the ASN & IPv6 space.

I'll have someone check and look for the FAX.

 on: October 30, 2018, 05:26:17 AM 
Started by yaroslavukr - Last post by yaroslavukr
Can an engineer have a look at it? It has been 4 days.
I sent email messages with a ticket number in the header. Sent a fax. I never got an answer.
ID: 505183
ID: 505188

Please help me.

Best regards, Yaroslav

 on: October 25, 2018, 10:19:22 PM 
Started by frleong - Last post by snarked
DS records go in the parent zone.  You need to add them through your domain registrar's interface (assuming your domain is at a registrar that supports it).  For reverse zones, it's my understanding that HE doesn't support that (yet).

If you are adding this for a subdomain of a domain you already have, just put the DS rrset into your zone.  Works fine for HE with secondary zones (as I have done that personally) by adding it at the primary host.  For HE with primary zone hosting, HE will have to answer the question.

 on: October 24, 2018, 07:26:13 PM 
Started by frleong - Last post by frleong

I would like to delegate a subdomain to another DNS server to test DNSSEC. How can I add DS record to the domain hosted by Thanks.

Pages: 1 ... 7 8 [9] 10