Hurricane Electric's IPv6 Tunnel Broker Forums

Advanced search  


Welcome to Hurricane Electric's forums!

Pages: 1 ... 8 9 [10]
 on: March 10, 2019, 07:47:33 AM 
Started by toshio - Last post by mprix

  can confirm this. Same at my site.

 on: March 10, 2019, 07:23:59 AM 
Started by toshio - Last post by toshio
Traffic is not reaching my tunnel endpoint. To the best of my abilities, I'm suspecting routing problems on HE side.

Data I gathered so far:
 - Ping from ::2 client endpoint to ::1 server endpoint works (which proves that IPv4 transport works as expected in both directions).
 - Ping from ::2 client endpoint to a tunnel on tserv5.lon1 delivers ICMPv6 packet to destination, but the reply doesn't reach me.
 - Ping from ::2 client to non-HE ipv6 address behaves in the same way: requests go out, responses never return.
 - There's no ingress traffic on the tunnel apart from ICMPv6 replies from ::1 server endpoint when pinged. I'd expect at least DNS and SMTP chatter.
 - HE traceroute6 from stops at 2nd hop (> traceroute ipv6 2001:470:....::2  source 2001:470:0:23c::1 numeric)
 - HE traceroute6 from within reaches stalls at 7th hop, nothing reaches my client (> traceroute ipv6 2001:470:....::2  source 2001:470:0:2a::1 numeric)

My naive guess would be that tserv6.fra1 is not announcing locally connected networks.

 on: March 09, 2019, 02:21:52 PM 
Started by primo - Last post by Abchosters
Did you create a tunnel then go to Advanced under Tunnel Details?

 on: March 08, 2019, 06:45:53 AM 
Started by primo - Last post by primo
how to request irc access for my accounts?
i am sage's but i can't find any option/button to unblock irc access from my account
i already send an email to but they tell me to complete the sage level
i've try creating 3 more accounts and complete the certification (sage+tshirt) but none of them have irc access

 on: March 05, 2019, 07:39:25 AM 
Started by snarked - Last post by snarked
I noticed an addition in the web form that sets up a secondary zone for a TSIG key.  As HE hasnít yet announced it, I assume itís under test.  However, my question is:

Will there be a way to add this for existing zones without having to delete and re-add them?

Thank you.

 on: March 01, 2019, 05:58:23 AM 
Started by shirakun - Last post by divad27182
OK.  It could also be on the server end.

To determine which, run a packet sniffer on the server side, watching for traffic involving the clients IPv6 address.  Then ping an internet host from the client.  Doing this on both interfaces on the server allows you to determine just how far the packets get. 

If you can't get anything on the interface to the client, the problem is routing on the client.  If you get the packets in one direction on one interface and not the other, the problem is server routing (or firewalling).  If you get packets in both directions on both interfaces, the problem is probably on the client (and might be firewall).  If you get packets only in the outbound direction, the problem is further upstream, and if that's your exterior border, might be an announcement issue.

 on: March 01, 2019, 05:42:57 AM 
Started by shirakun - Last post by divad27182
sounds like a problem with the routing table on the CLIENT side.  It needs to know to route internet IPv6 traffic to your server.

 on: February 27, 2019, 11:34:35 AM 
Started by dtic - Last post by broquea
HE needs to approve the BGP tunnel after a vetting process. Sorry your other ticket didn't get responded to yet.

 on: February 27, 2019, 10:44:15 AM 
Started by dtic - Last post by dtic
Sorry I don't understand the procedure: to ping the peer I should have approved the BGP tunnel?
is that why I cannot ping the peer?

I have received this confirmation on February 25th:

Your message ("Problem: I cannot ping peer for tunnel broker") has been assigned the tracking ID [HE#4045337].
One of our engineers will reply to your email within 24 hours.

Please include the string '[HE#4045337]' in the subject of any future email about
this case.  You may do that by simply replying to this message.

Please be aware that our system currently rejects binary attachments.  If you
are submitting a traceroute or ping output please generate it in text and
followup to this email.

Thank You.
Hurricane Electric Support

Thanks for answering,

 on: February 27, 2019, 08:48:07 AM 
Started by dtic - Last post by broquea
BGP tunnels are manually approved. They are not configured until approved.
Your ticket to request one was opened 44 hours ago by our system.
No replies from you to that ticket.
If you are emailing our ticket system, you should be getting back an autoresponder for any new ticket you created.
If not, your emails aren't making it to our system.

Pages: 1 ... 8 9 [10]