Hurricane Electric's IPv6 Tunnel Broker Forums

Advanced search  

News:

Welcome to Hurricane Electric's Tunnelbroker.net forums!

Author Topic: tunnelbroker blocking certain https?  (Read 2199 times)

kbar

  • Newbie
  • *
  • Posts: 1
tunnelbroker blocking certain https?
« on: May 08, 2013, 11:31:31 AM »

Code: [Select]
jchen@test> curl -I -v -6 https://forum.linode.com
* About to connect() to forum.linode.com port 443 (#0)
*   Trying 2600:3c00::4e...
* connected
* Connected to forum.linode.com (2600:3c00::4e) port 443 (#0)
* successfully set certificate verify locations:
*   CAfile: /etc/ssl/cert.pem
  CApath: none
* SSLv3, TLS handshake, Client hello (1):
* SSLv3, TLS handshake, Server hello (2):
* SSL connection timeout
* Closing connection #0
curl: (28) SSL connection timeout

works fine on native ipv6 and ipv4. my tunnel server is NYC: 209.51.161.14
Logged

cholzhauer

  • Hero Member
  • *****
  • Posts: 2715
Re: tunnelbroker blocking certain https?
« Reply #1 on: May 08, 2013, 11:50:06 AM »

TunnelBroker doesn't block anything...maybe a problem with the remote end?

Works OK for me

Code: [Select]
$ curl -I -v -6 https://forum.linode.com
* About to connect() to forum.linode.com port 443 (#0)
*   Trying 2600:3c00::4e...
* connected
* Connected to forum.linode.com (2600:3c00::4e) port 443 (#0)
* successfully set certificate verify locations:
*   CAfile: /usr/local/share/certs/ca-root-nss.crt
  CApath: none
* SSLv3, TLS handshake, Client hello (1):
* SSLv3, TLS handshake, Server hello (2):
* SSLv3, TLS handshake, CERT (11):
* SSLv3, TLS handshake, Server key exchange (12):
* SSLv3, TLS handshake, Server finished (14):
* SSLv3, TLS handshake, Client key exchange (16):
* SSLv3, TLS change cipher, Client hello (1):
* SSLv3, TLS handshake, Finished (20):
* SSLv3, TLS change cipher, Client hello (1):
* SSLv3, TLS handshake, Finished (20):
* SSL connection using DHE-RSA-AES256-SHA
* Server certificate:
*        subject: serialNumber=EJ30iihL7KMMBhZAueyDVgWG4OTQj-x7; OU=GT15858513;                                                                                                                      OU=See www.rapidssl.com/resources/cps (c)13; OU=Domain Control Validated - Rapid                                                                                                                     SSL(R); CN=*.linode.com
*        start date: 2013-04-22 17:39:04 GMT
*        expire date: 2015-07-25 04:27:36 GMT
*        subjectAltName: forum.linode.com matched
*        issuer: C=US; O=GeoTrust, Inc.; CN=RapidSSL CA
*        SSL certificate verify ok.
> HEAD / HTTP/1.1
> User-Agent: curl/7.24.0 (amd64-portbld-freebsd9.1) libcurl/7.24.0 OpenSSL/0.9.                                                                                                                     8x zlib/1.2.7
> Host: forum.linode.com
> Accept: */*
>
< HTTP/1.1 200 OK
HTTP/1.1 200 OK
< Date: Wed, 08 May 2013 18:57:40 GMT
Date: Wed, 08 May 2013 18:57:40 GMT
< Server: Apache/2.2.16 (Debian)
Server: Apache/2.2.16 (Debian)
< X-Powered-By: PHP/5.3.3-7+squeeze15
X-Powered-By: PHP/5.3.3-7+squeeze15
< Set-Cookie: phpbb3_kbnry_u=1; expires=Thu, 08-May-2014 18:57:40 GMT; path=/; d                                                                                                                     omain=forum.linode.com; HttpOnly
Set-Cookie: phpbb3_kbnry_u=1; expires=Thu, 08-May-2014 18:57:40 GMT; path=/; dom                                                                                                                     ain=forum.linode.com; HttpOnly
< Set-Cookie: phpbb3_kbnry_k=; expires=Thu, 08-May-2014 18:57:40 GMT; path=/; do                                                                                                                     main=forum.linode.com; HttpOnly
Set-Cookie: phpbb3_kbnry_k=; expires=Thu, 08-May-2014 18:57:40 GMT; path=/; doma                                                                                                                     in=forum.linode.com; HttpOnly
< Set-Cookie: phpbb3_kbnry_sid=d368db6d329351dfb8f86264dcde3b96; expires=Thu, 08                                                                                                                     -May-2014 18:57:40 GMT; path=/; domain=forum.linode.com; HttpOnly
Set-Cookie: phpbb3_kbnry_sid=d368db6d329351dfb8f86264dcde3b96; expires=Thu, 08-M                                                                                                                     ay-2014 18:57:40 GMT; path=/; domain=forum.linode.com; HttpOnly
< Cache-Control: private, no-cache="set-cookie"
Cache-Control: private, no-cache="set-cookie"
< Expires: 0
Expires: 0
< Pragma: no-cache
Pragma: no-cache
< Strict-Transport-Security: max-age=31536000
Strict-Transport-Security: max-age=31536000
< Vary: Accept-Encoding
Vary: Accept-Encoding
< Connection: close
Connection: close
< Content-Type: text/html; charset=UTF-8
Content-Type: text/html; charset=UTF-8

<
* Closing connection #0
* SSLv3, TLS alert, Client hello (1):
$

« Last Edit: May 08, 2013, 11:58:16 AM by cholzhauer »
Logged

broquea

  • Sr. Network Engineer, HE.NET AS6939
  • Administrator
  • Hero Member
  • *****
  • Posts: 1722
Re: tunnelbroker blocking certain https?
« Reply #2 on: May 08, 2013, 03:21:11 PM »

pmtud issue? what does a tracepath6 look like for output?
Logged