SixXS::Sunset 2017-06-06

No INBOUND IPv6 connections with Heartbeat Tunnel and FritzBox 7270
[de] Carmen Sandiego on Saturday, 18 July 2009 15:12:37
I have my ADSL line connected to an AvM FritzBox 7270, this ADSL modem-router has support for the SixXS heartbeat tunnel. So i set up this sixxs heartbeat tunnel in the fritzbox and all of my mahines inside my LAN get proper IPv6 addresses and all outbound ipv6 connectivity works fine. However there is something very disappointing. I would like all of my machines to be reachable from outside of my lan, on their ipv6 addresses so that i do no longer need port forwarding rules. I now find that i cannot reach any of my machines from outside. Is this a problem of the FritzBox or is there something i misunderstood? My windows vista firewall is OFF. Can anyone pease help - i was so interested in ipv6 because of the fact that any machine in the subnet / lan could be reachable from outside, on all ports.. :-( greetings from Dresden in GErmany Roland Schweiger
No INBOUND IPv6 connections with Heartbeat Tunnel and FritzBox 7270
[de] Shadow Hawkins on Saturday, 18 July 2009 17:50:54
Hi Roland, currently the IPv6 firewall in the FB 7270 is apparently hardcoded/non-configurable and blocks all incomming connections. My gut feeling is, that the developers at AVM will come up with a new release of the IPv6 lab firmware soon, which might have a configurable firewall included. Just guessing (and hoping here, though!) Greetings, Michael
No INBOUND IPv6 connections with Heartbeat Tunnel and FritzBox 7270
[de] Carmen Sandiego on Saturday, 18 July 2009 18:49:32
Uff, very very dissapointing :-( because i consider the fact that (like in the early stages of the internet) each machine has its proper IP address, is the main benefit of IPv6! I wonder if there is any workaround (Wuergaround) until the AvM people designed a proper configurable firewall in the fritzbox (or rather - no firewall at all). Could i create i new tunnel AYIYA instead of HEARTBEAT and let the program AICCU run instead? Will the machines running AICCU be reachable from outside or will still the FritzBox interfear... Any experiences on this? geetings from Dresden Roland Schweiger
No INBOUND IPv6 connections with Heartbeat Tunnel and FritzBox 7270
[de] Shadow Hawkins on Saturday, 18 July 2009 20:16:14
Hi Roland, I suggest that you create a second tunnel with AICCU/AYIYA and run your inboud services/servers with that. There are some infos about this setup in the other sections. As for the FB 7270 ... we tried the firewall config on the box (via telnet) to no success. But since the last update on the IPv6 lab firmware was on May, 20th, it's about time that AVM brings up the next stage, which should be a configurable IPv6 firewall ... I am checking daily for it, as do some of my friends ... :-) I wish you luck and success with your tests. Greetings, Michael
No INBOUND IPv6 connections with Heartbeat Tunnel and FritzBox 7270
[de] Carmen Sandiego on Saturday, 18 July 2009 22:05:27
at least i am pleased to know that i am not the only one having the mentioned problem - for a couple of days i thought i dis something wrong ... I am also checking daily at AvM and i have also written several support requests to them bun they generally only reply that there is no support for labor versions :-( Well i have requested a second ayiya tunnel with a new account ant will wait for approval - however this will only be a workaround solution as it is much 'nicer' to have the FritzBox do all the jobs rather than haveng to run aiccu on all machines. greetings i will give some feed-back on any usable results of my tests. greetings Roland Schweiger
No INBOUND IPv6 connections with Heartbeat Tunnel and FritzBox 7270
[de] Carmen Sandiego on Monday, 20 July 2009 22:16:18
unfortunately so far dissappointing. I am testing on a netbook with Windows7 RC 7100 32-bit version. I now have an AYIYA tunnel + the aiccu gui + commandline program + virtual network adapter from the open-vpn, version 9. i set up the aiccu.conf and launched first the virtual vpn program, then the command line aiccu and it tells me that the tunnel is up. in the network properties of windows 7 i see a sixxs adapter but it says that there is no connection at all. No matter what i do, the situation remains. Beside the problem of how to actually get the ipv6 ip from the virtual sixxs adapter to be used within my physical WiFi / wLAN adapter. well... at the momenht, no progress :-( greetings Roland Schweiger ps: i will now try on a windows vista ultimate machine to see if this is a windows7 issue.
No INBOUND IPv6 connections with Heartbeat Tunnel and FritzBox 7270
[de] Carmen Sandiego on Monday, 20 July 2009 22:58:24
exactly the same problem on windows vista ultimate. The virtual SIXXS adapter shows only sent packets and no received ones. when i enable aiccu, i get C:\aiccu>aiccu start sock_getline() : "200 SixXS TIC Service on noc.sixx .net)" sock_printf() : "client TIC/draft-00 AICCU/2008.03 002-SP2" sock_getline() : "200 Client Identity accepted" sock_printf() : "get unixtime" sock_getline() : "200 1248121771" sock_printf() : "username IKN2-SIXXS" sock_getline() : "200 Choose your authentication ch sock_printf() : "challenge md5" sock_getline() : "200 0a10e1f10506ea01bae32126a5fd0 sock_printf() : "authenticate md5 fd36268f3e1efc3e sock_getline() : "200 Succesfully logged in using m eller) from 2001:7b8:3:4f:202:b3ff:fe46:bec" sock_printf() : "tunnel list" sock_getline() : "201 Listing tunnels" sock_getline() : "T22393 2001:6f8:1c00:6e::2 ayiya sock_getline() : "202 <tunnel_id> <ipv6_endpoint> < sock_printf() : "tunnel show T22393" sock_getline() : "201 Showing tunnel information fo sock_getline() : "TunnelId: T22393" sock_getline() : "Type: ayiya" sock_getline() : "IPv6 Endpoint: 2001:6f8:1c00:6e:: sock_getline() : "IPv6 POP: 2001:6f8:1c00:6e::1" sock_getline() : "IPv6 PrefixLength: 64" sock_getline() : "Tunnel MTU: 1280" sock_getline() : "Tunnel Name: kreller" sock_getline() : "POP Id: deham02" sock_getline() : "IPv4 Endpoint: ayiya" sock_getline() : "IPv4 POP: 212.224.0.189" sock_getline() : "UserState: enabled" sock_getline() : "AdminState: enabled" sock_getline() : "Password: ****** sock_getline() : "Heartbeat_Interval: 60" sock_getline() : "202 Done" Succesfully retrieved tunnel information for T22393 sock_printf() : "QUIT Half Day Closing" Tunnel Information for T22393: PoP Id : deham02 IPv6 Local : 2001:6f8:1c00:6e::2/64 IPv6 Remote : 2001:6f8:1c00:6e::1/64 Tunnel Type : ayiya Adminstate : enabled Userstate : enabled Name : kreller Flag: HAS_IFHEAD not present Flag: NEED_IFHEAD not present [warning] Error opening registry key: SYSTEM\CurrentControlSet\Control\Class\{4D 36E972-E325-11CE-BFC1-08002BE10318}\Properties (t1) Renaming adapter 'Local Area Connection 3' to 'sixxs' and using it [tun-start] Trying \\.\Global\{C9FA3034-5D2C-4EDB-A7C7-B26CF7A01698}.tap Flag: HAS_IFHEAD not present Flag: NEED_IFHEAD not present [AYIYA-start] : Anything in Anything (draft-02) [AYIYA-tun->tundev] : (Socket to TUN) started i also wonder about the WORNING with the registry key - i ran everything in administrator mode. seems i am too stupid for this :-( greetings Roland Schweiger
No INBOUND IPv6 connections with Heartbeat Tunnel and FritzBox 7270
[ch] Jeroen Massar SixXS Staff on Monday, 20 July 2009 23:00:10
Did you run it with the proper administrative permissions? See also :Wiki: Aiccu/Installing on Vista64
No INBOUND IPv6 connections with Heartbeat Tunnel and FritzBox 7270
[de] Carmen Sandiego on Monday, 20 July 2009 23:07:54
well, on my desktop i have put a shortcut to %systempath%\system32\cmd.exe And i always right-click on this and then "run as Administrator" i thought this should be enough - i am now in the black "DOS-like" commandline window and assume that everything i start in here will also run as administrator...
No INBOUND IPv6 connections with Heartbeat Tunnel and FritzBox 7270
[de] Carmen Sandiego on Monday, 20 July 2009 23:27:33
i now tried the ipenVPN 2.15 - thanks for the info. it installed just fine but same problem: the virtual SIXXS adapter shows up but it only sends packets and does not receive any :-(
No INBOUND IPv6 connections with Heartbeat Tunnel and FritzBox 7270
[de] Carmen Sandiego on Monday, 20 July 2009 23:52:46
the sixxs virtual network dapter shows up and windows vista says "identifying" for a while, then "network 2". i suppose because the ipv6 address is the ::2 of the ayiya tunnel and the default gateway is the ::1 - this differs from the network already on the machine. Do i need to join the netwrks in any form or is this not the actual problem ...
No INBOUND IPv6 connections with Heartbeat Tunnel and FritzBox 7270
[de] Carmen Sandiego on Thursday, 23 July 2009 23:12:19
Ok - some news. Ms setup: FritzBox 7270 with a SixxS heartbeat tunnel that i cannot use for my purposes because the FritzBox refuses incoming connections. So i setup a new tunnel (AICCU / AYIYA) and on my Windows7 RC1 32-bit machine, i set up AICCU + tuntap 9 The tunnel is now up - i can confirm because i can ping my ayiya ipv6 address from outside. But apart from the ping results, the ayiya address will not work - all inbound connections are still not functioning. i solved the problem when starting the aiccu, where i received the [warning] error opening registry key \system\CurrentControlSet\.... this was a problem of the rights of the registry keys and i solved this by taking ownership of the relevant keys. my setup now looks something like this Ethernet-Adapter sixxs: Verbindungsspezifisches DNS-Suffix: IPv6-Adresse. . . . . . . . . . . : 2001:6f8:1c00:6e::2 Verbindungslokale IPv6-Adresse . : fe80::90e9:471f:f858:c3d6%17 IPv4-Adresse (Auto. Konfiguration): 169.254.195.214 Subnetzmaske . . . . . . . . . . : 255.255.0.0 Standardgateway . . . . . . . . . : 2001:6f8:1c00:6e::1 Drahtlos-LAN-Adapter Drahtlosnetzwerkverbindung: Verbindungsspezifisches DNS-Suffix: fritz.box IPv6-Adresse. . . . . . . . . . . : 2002:81a8:102:: IPv6-Adresse. . . . . . . . . . . : 2a01:198:423:0:5c0b:eecc:c211:469d Temporre IPv6-Adresse. . . . . . : 2a01:198:423:0:ecb5:5cb3:c447:7ca3 Verbindungslokale IPv6-Adresse . : fe80::5c0b:eecc:c211:469d%12 IPv4-Adresse . . . . . . . . . . : 192.168.178.22 Subnetzmaske . . . . . . . . . . : 255.255.255.0 Standardgateway . . . . . . . . . : fe80::21f:3fff:fef2:613e%12 192.168.178.1 Tunneladapter isatap.{3D8E5A8F-046D-493D-98C1-5B3E289932C7}: Medienstatus. . . . . . . . . . . : Medium getrennt Verbindungsspezifisches DNS-Suffix: Tunneladapter isatap.fritz.box: Medienstatus. . . . . . . . . . . : Medium getrennt Verbindungsspezifisches DNS-Suffix: fritz.box Tunneladapter isatap.{BDCD28D4-24E0-493A-B11E-245C70CF0087}: Medienstatus. . . . . . . . . . . : Medium getrennt Verbindungsspezifisches DNS-Suffix: When looking at the details of the sixxs "network card" it shows only sent but now received packets - however, i can ping the ipv6 address with the ::2 from outside. The "Drahtlosnetzwerkverbindung" is my wLAN WiFi adapter - it gets a number of ipv6 from the fritzbox but i do not want to use these. i put the 2002:81a8:102:: myself as someone suggested this in order to get the 2 networkcards into the same subnet. well as i said - everything looks ok but apart from being able to PING the ayiya address, nothing else happens with it - no DNS resolved and especially no inbound connections. :-( any ideas ...? greetings Roland Schweiger
No INBOUND IPv6 connections with Heartbeat Tunnel and FritzBox 7270
[de] Shadow Hawkins on Friday, 24 July 2009 11:31:45
Hi, AVM released an update for the IPv6 lab firmware, but it seems that the IPv6 firewall isn't open yet in this release. The details state that they have pushed the firmware to the current official releaseand added the online-update feature for this lab firmware. Not so good news for our purpose..... Greetings, Michael
No INBOUND IPv6 connections with Heartbeat Tunnel and FritzBox 7270
[de] Carmen Sandiego on Friday, 24 July 2009 21:25:55
well this is again horribly dissappointing :-( so i can continue to use the Labor-Version 54.04.94-14338 I know of the problem that FritzBoox won't let any IPv6 packets IN - so i wanted to bypass this by using an AYIYA with AICCU but meanwhile i have the impression that AICCU cannot pass the nat / firewall of the fritzbox correctly. i am still not sure if this is a routing table problem - i can ping my tunnel from outside but i cannot use it in any manner and unfortunately i only have fritzboxes to test with, no other routers...

Please note Posting is only allowed when you are logged in.
Static Sunset Edition of SixXS
©2001-2017 SixXS - IPv6 Deployment & Tunnel Broker