nanog mailing list archives
Re: job screening question
From: Daniel Roesen <dr () cluenet de>
Date: Thu, 5 Jul 2012 21:39:02 +0200
On Thu, Jul 05, 2012 at 01:45:54PM -0400, Derek Ivey wrote:
This is exactly the issue comcast6.net is currently experiencing :). They seem to be blocking ICMP completely and that is causing my HE IPv6 tunnel to be unable to access their site from a browser.
I've recently came across a dualstacked website which fails behind a SixXS tunnel (MTU=1280) but works fine with a native connection (MTU=1500). Having contacted their technical staff, we have diagnosed the issue down to the dualstacked load balancer (pretty well-known brand) SOMETIMES not reacting on ICMPv6 PTB errors. It's not always as easy as "blocks all ICMPv6". For all the cases I've hunted down to root cause in the last decade, it was never a firewall blocking ICMPv6, but most times misbehaving load balancers, either due to bugs or plain not having implemented PMTUD on IPv6. Best regards, Daniel -- CLUE-RIPE -- Jabber: dr () cluenet de -- dr@IRCnet -- PGP: 0xA85C8AA0
Current thread:
- job screening question William Herrin (Jul 05)
- RE: job screening question Thomas York (Jul 05)
- Re: job screening question Oliver Garraux (Jul 05)
- Re: job screening question James M Keller (Jul 05)
- Re: job screening question Darius Jahandarie (Jul 05)
- Re: job screening question George Herbert (Jul 05)
- Re: job screening question William Herrin (Jul 05)
- Re: job screening question Derek Ivey (Jul 05)
- Re: job screening question Daniel Roesen (Jul 05)
- RE: job screening question Terry Baranski (Jul 05)
- Re: job screening question Ray Soucy (Jul 05)
- Re: job screening question William Herrin (Jul 05)
- Re: job screening question David Coulson (Jul 05)
- Re: job screening question Scott Howard (Jul 05)
- Re: job screening question Derek Andrew (Jul 05)
- Re: job screening question William Herrin (Jul 05)