[192717] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

pay.gov and IPv6

daemon@ATHENA.MIT.EDU (Carl Byington)
Wed Nov 16 12:55:21 2016

X-Original-To: nanog@nanog.org
From: Carl Byington <carl@five-ten-sg.com>
To: nanog@nanog.org
Date: Tue, 15 Nov 2016 14:30:03 -0800
Errors-To: nanog-bounces@nanog.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Following up on a two year old thread, one of my clients just hit this
problem. The failure is not that www.pay.gov is not reachable over ipv6
(2605:3100:fffd:100::15). They accept (TCP handshake) the port 443
connection, but the connection then hangs waiting for the TLS handshake.

openssl s_client -connect www.pay.gov:443

openssl s_client -servername www.pay.gov -connect 199.169.192.21:443

Browsers (at least firefox) see that as a very slow site, and it does
not trigger their happy eyeballs fast failover to ipv4.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.14 (GNU/Linux)

iEYEAREKAAYFAlgrjDEACgkQL6j7milTFsG8OwCgh5yRxxZHskjL4HVhzxIEmenA
LQgAniRMcYf/DIcg+8ve55MxUgrUbmzC
=MS8j
-----END PGP SIGNATURE-----


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[192717] in North American Network Operators' Group

pay.gov and IPv6

daemon@ATHENA.MIT.EDU (Carl Byington)Wed Nov 16 12:55:21 2016

daemon@ATHENA.MIT.EDU (Carl Byington)
Wed Nov 16 12:55:21 2016