New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Unable to do a IPv6 connection to piwik.org #3597
Comments
What's your IPv6 address? Could you provide a traceroute/mtr to piwik.org (IPv6 and IPv4)? |
I can't provide the IPv6 address of our proxy, as I'm not an administrator there. As well I can't do an IPv6 traceroute. Tracing route to piwik.org [176.31.58.94] 1 3 ms <1 ms <1 ms 130.92.62.1 Trace complete. |
proxy.unibe.ch doesn't resolve to an IPv6 address: Can you go to http://test-ipv6.com/ using your proxy and get its IPv6 address from here? |
test-ipv6.com says:
So the address seems to be 2001:620:400:9::57 |
Well 2001:620:400:9::57 cannot be reached. I've tested it on: http://www.subnetonline.com/pages/ipv6-network-tools/online-ipv6-ping.php |
I forwarded the question to the proxy administrator and included the link to this ticket. I have to wait what he says. I have to say, I'm not very familiar with IPv6... |
Any update? |
My ticket was closed (although I was first ;-) ), so I'm answering here. From that server I still can't connect to piwik.org. Address is resolved to 2001:41d0:8:307b::1, but not a single ping returns. Maybe this is the problem, no correct routing to the end point (ipv6 web server)? |
soerennb: what's your IPv6 address? Can you give us a traceroute to piwik.org? As you said, both tests report that piwik.org is successfully available over IPv6. |
My inet6-Address: 2a01:4f8:161:1343::8. Here's the trace route:
|
Thanks, I'll investigate. |
Works for me:
Server is located in Aachen, Germany. |
We're in touch with our network provider to have this issue solved. The server cannot be reached from a few IPv6 networks. |
Replying to Cyril:
It doesn't seem to be a (routing) problem tied to the client network, but rather to some middlebox like a load balancer which does its routing decisions based on a hash - that's at least what we guess after some testing from different machines and OSes. Below the traceroute results from two machines on the same subnet.
|
There's no load balancer or anything like that. It's definitely a routing issue that's been acknowledged by our provider. |
Any update on this? |
Seems as if the last hop in the trace route has changed, but the problem is still there.
|
It's fixed. The issue is due to a Cisco IOS bug that will be fixed in the next few weeks. In the meantime, a temporary fix has been applied. Please let me know if it happens again. |
This problem should be fixed. pls reopen if you have some issues. |
There is an issue with secure connections to piwik.org over IPv6. It's not possible to access https://piwik.org when using IPv6 as default - switching to IPv4 works however. Quick check showed that the webserver of piwik.org doesn't have an open https port on IPv6. |
unfortunately our host doesn't yet handle IPV6 on both normal and ssl port. But it should be available in a few months. Stay tuned ;-) |
In that case, I'd recommend to remove the IPv6 AAAA record from the DNS: $ dig AAAA piwik.org +short |
Why? is it not useful to have ipv6 on http alone? |
I guess I misunderstood you - I thought that IPv6 didn't work at all... |
Note: SSL should now work on IPv4 and IPv6 at https://piwik.org |
Works perfectly... |
Since some time it is not possible to connect to the website piwik.org from any computer inside our Campus Network at the University of Bern, Switzerland.
As the Network-Administrator told me, the piwik.org webserver doesn't handle IPv6 Traffic correctly.
Any computer in our network connects to http over a proxy. Each request to your site ends with a time-out interupt by the proxy giving the following information (in german):
The requested URL could not be retrieved
The following error was encountered while trying to retrieve the URL: http://www.piwik.org/
Connection to 2001:41d0:8:307b::1 failed.
The system returned: (110) Connection timed out
The remote host or network may be down. Please try the request again.
Your cache administrator is ...
Generated Tue, 04 Dec 2012 13:44:17 GMT by proxy.unibe.ch (squid)
The text was updated successfully, but these errors were encountered: