Mastodawn

A new headscratcher: in VyOS, a #6in4 tunnel (eg HE #TunnelBroker) the tunnel's source IPv4 address can be set to 0.0.0.0, to mean that egress tunnel traffic will use the src IPv4 from the interface going to the tunnel endpoint. This is helpful when that IP is DHCP assigned.

But in FreeBSD, gif(4) disallows 0.0.0.0, requiring an IP to listen for tunnel traffic. Presumably, gif doesn't want to listen on all interfaces.

My solution: dhclient-script(8) to configure gif once binding a DHCP addr.

Paradox Nov 24

Сделал себе виртуальный IPv6, который не даёт провайдер, через технологию #6in4. Как я понял, это сродни прокси/ВПН, то есть создаёшь себе виртуальный туннель, подключаешься к нему и начинают работать ресурсы, доступные только для IPv6. Открывается, правда, не всё почему-то 🙄

Зарегистрировался и настроил виртуальный адрес через провайдера tunnelbroker

j.r / Julian Jul 6, 2025

Shitty #vodafone not only being #IPv4 only when you run their router in bridge mode, but also actively blocking #6in4 almost feels like a deliberate act to sabotage #IPv6 usage...

D_70WN 🌈 🏳️‍⚧️Jan 18, 2025

Insecure Implementation of Tunneling Protocols (GRE/IPIP/4in6/6in4) - Researchers at the DistriNet-KU Leuven research group have discovered millions of vulnerable Internet systems that accept unauthenticated IPIP, GRE, 4in6, or 6in4 traffic. This can be considered a generalization of the vulnerability in VU#636397

https://www.kb.cert.org/vuls/id/199397

#vulnerability #network #tunneling #gre #ipip #4in6 #6in4

CERT/CC Vulnerability Note VU#472136

Information Leak and DoS Vulnerabilities in Redmi Buds 3 Pro through 6 Pro

Kevin Karhan

Nov 13, 2024

@leeloo Until regulators like @BNetzA get their shit together and mandate a /64 of #IPv6 to be supplied to every #internet connection with no exceptioms or charges and mandates services and devices to support it as well, we'll not he above to get rid of #IPv4.

Worse is only #DualStackLite and having to do unreliable (due to #Geoblocking) hacks like #6in4 / #6over4 with https://tunnelbroker.net ...

Meanwhile it would be cheaper and easier for me to literally get my own private /24 of IPv4s than to convince my ISP to offer me even a single /48 of IPv6s...

Hurricane Electric Free IPv6 Tunnel Broker

Show thread

Felix Palmen

Sep 25, 2024

Unfortunately, my #6in4 tunnel from #HE's #tunnelbroker keeps underperforming a bit today (still see occassional packet loss as well), after being really bad yesterday ...

Going v6-only makes no difference here because all my hosts were already configured to *prefer* v6.

Maybe I'll recheck the native #IPv6 offered by my ISP whether I can finally have a prefix larger than /64 ... if so, I might go for "multi-homed", preferring the native v6 for outgoing traffic...

Show thread

Kevin Karhan

Apr 24, 2024

@dantheclamman @jeroen @huitema wasn't #Teredo Microsoft's #6in4 #tunneling protocol that also does #NAT-puncturing?

https://en.wikipedia.org/wiki/Teredo_tunneling

Teredo tunneling - Wikipedia

jzdm May 20, 2023

Hat noch jemand Probleme mit 6in4 Tunneln auf Fritzboxen seit Update auf FritzOS 7.50 beobachtet? Seit dem Update „ruckelt“ es, Verbindungsabbrüche und lange Ladezeiten
#IPv6 #Tunnel #6in4 #FritzBox 5530 #FritzOS #Netzwerk

Sami Lehtinen Mar 25, 2023

Transferred a bunch of #IPv6 #6in4 tunnels back to #tunnelbroker due to #route48 getting terminated.

Akkoma

Ryan Littlefield Jan 3, 2023

Set up a #6in4 tunnel on my router with HurricaneElectric and now my #ipv6 works fine. So I'm going to go ahead and assume this is a problem at #XMission and not specifically the router.

Tunnel doesn't have a lot of bandwidth though, so probably going to be very temporary.