Akamai IPv6 contact needed

• Previous message (by thread): Nexus 9k, packet loss through switch on vlan without SVI
• Next message (by thread): Akamai IPv6 contact needed
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Some servers are not serving content over IPv6 HTTPS. It fails in such
a way that most applications can't fall back to IPv4. tcp/443 is open
but RST as soon as client sends TLS 1.2 client hello. It has been this
way for 24+ hours.

>>>
$ telnet 2600:1404:18::17d7:fbc 443
Trying 2600:1404:18::17d7:fbc...
Connected to 2600:1404:18::17d7:fbc.
Escape character is '^]'.

Connection closed by foreign host

>
ncat -6 --ssl -v 2600:1404:18::17d7:fac 443
Ncat: Version 7.00SVN ( https://nmap.org/ncat )
Ncat: Input/output error.


>>>
www.apple.com.          681     IN      CNAME   www.apple.com.edgekey.net.
www.apple.com.edgekey.net. 11306 IN     CNAME
www.apple.com.edgekey.net.globalredir.akadns.net.
www.apple.com.edgekey.net.globalredir.akadns.net. 1664 IN CNAME
e6858.dscc.akamaiedge.net.
e6858.dscc.akamaiedge.net. 5    IN      AAAA    2600:1404:18::17d7:fac
e6858.dscc.akamaiedge.net. 5    IN      AAAA    2600:1404:18::17d7:fbc

>
2600:1404:18::17d7:0/112 serves www.apple.com, download.microsoft.com etc.


>>> HTTP does work
$ wget http://www.apple.com
--2016-07-25 03:09:17--  http://www.apple.com/
Resolving www.apple.com (www.apple.com)... 2600:1404:18::17d7:fbc,
2600:1404:18::17d7:fac, 23.11.55.206
Connecting to www.apple.com
(www.apple.com)|2600:1404:18::17d7:fbc|:80... connected.
HTTP request sent, awaiting response... 200 OK

>>>
$ dig whoami.akamai.com +short
whoami.akamai.net.
72.183.81.39


Thanks.


Yang

• Previous message (by thread): Nexus 9k, packet loss through switch on vlan without SVI
• Next message (by thread): Akamai IPv6 contact needed
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]