Print

[ultradian]

We're having difficulty accessing certain US government websites via the tunnel. I think this is due to breakage on their end: the server appears to complete the TCP 3-way handshake, then stops communicating. We've noticed this problem specifically on clinicaltrials.gov and uspto.gov. We've temporarily worked around the issue by blacklisting the v6 IPs in our router; I was curious if anyone else had noticed anything like this.

-Andrew

[eduperez]

I can browse both sites without issues.

[snarked]

I can confirm that certain U.S. Gov't websites are indeed broken.  The FCC's web site has parts which are unreachable despite having an IPv6 address.  It also has MTU problems with its FTP server where I have to manually set the MTU to 1450 in order to get it to work, even with IPv4.  The MTU problem could be solved if there weren't some brain-dead router in the middle or on their end that would stop blocking ICMP "packet too big" responses.

I have not tried the two sites mentioned in the originating post of this thread.

[Napsterbater]

I can confirm issues with both with an MTU of 1480.

[steve1515]

I'm seeing the same problem with www.ssa.gov which resolves to 2001:1930:d07::aaaa. This only happens via an HE tunnel. I tried it from my Verizon Mobile hotspot which supports IPv6 and the site works correctly.

Is anyone else seeing this problem?

[steve1515]

I can confirm that my problem is solved when I force my MSS to 1420.