Hi all
I know this has been asked before and I've read as many of the posts on here and articles on the internet but i think i'm starting to get blinded by the trees.
I'm using a WNDR3700v4 build 26849, the tunnel is configured on the router. The website I'm trying to test with is on my macbook, running MAMP PRO.
I'm trying to get past the explorer stages of this certification, I've got the tunnel configured on HEs site, got the config done my DD-WRT router. I'm getting 10/10 on the test-ipv6.com site and 18/20 on ipv6-test.com, (it's seeing no reverse DNS and not using IPV6 as default).
The certification test gets as far as grabbing the test file with "Could not grab the file via IPv6 HTTP"
I can use WGET -6 to get the file from my within my local network:
blagdon@blagdon-Parallels-Virtual-Platform ~/Desktop $ wget -6 blaggers.cf/uaa9hiqwu3.txt
--2015-05-10 14:23:43--
http://blaggers.cf/uaa9hiqwu3.txt Resolving blaggers.cf (blaggers.cf)... 2001:470:1f09:b83:3ca6:5352:f1fc:79a2
Connecting to blaggers.cf (blaggers.cf)|2001:470:1f09:b83:3ca6:5352:f1fc:79a2|:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 4 [text/plain]
Saving to: ‘uaa9hiqwu3.txt.5’
100%[======================================>] 4 --.-K/s in 0s
2015-05-10 14:23:44 (648 KB/s) - ‘uaa9hiqwu3.txt.5’ saved [4/4]
It seems port 80 is blocked, no reachable after doing this test on
http://www.subnetonline.com/pages/ipv6-network-tools/online-ipv6-port-scanner.php Checked port 80 on Host/IP blaggers.cf...
The checked port (80, service http) is offline/unreachable
Reason: Connection timed out (110)
Portscan ran for 8.0736 seconds
I'm guessing it's my firewall rules but as I understand it they are allowing port 80 and 443, see the ip6tables and iptables below:
root@DD-WRT:~# ip6tables --list
Chain INPUT (policy ACCEPT)
target prot opt source destination
ACCEPT 0 anywhere anywhere state RELATED,ESTABLISHED
ACCEPT icmpv6 anywhere anywhere
ACCEPT 0 fe80::/64 anywhere
ACCEPT udp anywhere anywhere udp dpt:546
DROP 0 anywhere anywhere
ACCEPT tcp anywhere anywhere tcp dpt:www
ACCEPT tcp anywhere anywhere tcp dpt:https
Chain FORWARD (policy ACCEPT)
target prot opt source destination
TCPMSS tcp anywhere anywhere tcp flags:SYN,RST/SYN TCPMSS clamp to PMTU
ACCEPT 0 anywhere anywhere state RELATED,ESTABLISHED
ACCEPT icmpv6 anywhere anywhere ipv6-icmp echo-request
ACCEPT 0 anywhere anywhere
DROP 0 anywhere anywhere
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
root@DD-WRT:~# iptables --list
Chain INPUT (policy ACCEPT)
target prot opt source destination
ACCEPT icmp -- tserv1.lon1.he.net anywhere
ACCEPT icmp -- arc.he.net anywhere
ACCEPT ipv6 -- anywhere anywhere
ACCEPT 0 -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT tcp -- anywhere anywhere tcp dpt:1723
ACCEPT tcp -- anywhere anywhere tcp dpt:1723
ACCEPT gre -- anywhere anywhere
DROP udp -- anywhere anywhere udp dpt:route
DROP udp -- anywhere anywhere udp dpt:route
ACCEPT udp -- anywhere anywhere udp dpt:route
ACCEPT ipv6 -- anywhere anywhere
ACCEPT icmp -- anywhere anywhere
DROP igmp -- anywhere anywhere
ACCEPT 0 -- anywhere anywhere state NEW
ACCEPT 0 -- anywhere anywhere state NEW
DROP 0 -- anywhere anywhere
Chain FORWARD (policy ACCEPT)
target prot opt source destination
ACCEPT 0 -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT gre -- 192.168.1.0/24 anywhere
ACCEPT tcp -- 192.168.1.0/24 anywhere tcp dpt:1723
lan2wan 0 -- anywhere anywhere
ACCEPT 0 -- anywhere anywhere
ACCEPT tcp -- anywhere MacBook-Pro tcp dpt:www
ACCEPT udp -- anywhere MacBook-Pro udp dpt:www
ACCEPT tcp -- anywhere MacBook-Pro tcp dpt:https
ACCEPT udp -- anywhere MacBook-Pro udp dpt:https
TRIGGER 0 -- anywhere anywhere TRIGGER type:in match:0 relate:0
trigger_out 0 -- anywhere anywhere
ACCEPT 0 -- anywhere anywhere state NEW
DROP 0 -- anywhere anywhere
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
Chain advgrp_1 (0 references)
target prot opt source destination
Chain advgrp_10 (0 references)
target prot opt source destination
Chain advgrp_2 (0 references)
target prot opt source destination
Chain advgrp_3 (0 references)
target prot opt source destination
Chain advgrp_4 (0 references)
target prot opt source destination
Chain advgrp_5 (0 references)
target prot opt source destination
Chain advgrp_6 (0 references)
target prot opt source destination
Chain advgrp_7 (0 references)
target prot opt source destination
Chain advgrp_8 (0 references)
target prot opt source destination
Chain advgrp_9 (0 references)
target prot opt source destination
Chain grp_1 (0 references)
target prot opt source destination
Chain grp_10 (0 references)
target prot opt source destination
Chain grp_2 (0 references)
target prot opt source destination
Chain grp_3 (0 references)
target prot opt source destination
Chain grp_4 (0 references)
target prot opt source destination
Chain grp_5 (0 references)
target prot opt source destination
Chain grp_6 (0 references)
target prot opt source destination
Chain grp_7 (0 references)
target prot opt source destination
Chain grp_8 (0 references)
target prot opt source destination
Chain grp_9 (0 references)
target prot opt source destination
Chain lan2wan (1 references)
target prot opt source destination
Chain logaccept (0 references)
target prot opt source destination
ACCEPT 0 -- anywhere anywhere
Chain logdrop (0 references)
target prot opt source destination
DROP 0 -- anywhere anywhere
Chain logreject (0 references)
target prot opt source destination
REJECT tcp -- anywhere anywhere reject-with tcp-reset
Chain trigger_out (1 references)
target prot opt source destination
root@DD-WRT:~#
Any help, advise would be massively appreciated. I've been stuck on this for days and it's really starting to annoy me. :-)
Cheers
Shaun