Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1187
Views
10
Helpful
6
Replies

tunnel-update

ciscoreg2
Level 1
Level 1

‎10-07-2017 08:47 AM - edited ‎03-05-2019 09:15 AM

Hi;

I setup ipv6 tunnel (he.net) and try update dynamic ip with below conf

ip ddns update method he-update
 HTTP     
  add https://username:password@ipv4.tunnelbroker.net/nic/update?hostname=hostname
 interval maximum 0 0 1 0
!
interface Dialer0
 ip ddns update he-update

but it doesn't work. every time it will show error message, anyone knows what's wrong?
Oct 7 15:28:34.868: DYNDNSUPD: Can't create FQDN hostname for update - no default domain
Oct 7 15:28:34.868: DYNDNSUPD: Update aborted - no hostname

Labels:
0 Helpful
6 Replies 6

Georg Pauwen
VIP
VIP

‎10-07-2017 09:00 AM

Hello,

I think you miss the line below (in bold) under your Dialer interface:

 

interface Dialer0

ip ddns update hostname Router1.dyndns.org
ip ddns update he-update

 

The hostname is obviously just an example, it needs to match what you have configured as your hostname.

 

ciscoreg2
Level 1
Level 1
In response to Georg Pauwen

‎10-07-2017 09:59 AM

it works thanks a lot.

But there is another problem

I got the error message, it seems that there is no certificate for tunnelbroker.net. how to got it?

HTTPDNSUPD: Call returned Request Aborted, update of ipv4.tunnelbroker.net <=> xxx.xxx.xxx.xxx failed

 

 

0 Helpful

Georg Pauwen
VIP
VIP
In response to Georg Pauwen

‎10-07-2017 10:45 AM

Hello,

what are the source and destination IP addresses/interfaces for your tunnel ? Can you post the full configuration of your router ?

0 Helpful

ciscoreg2
Level 1
Level 1
In response to Georg Pauwen

‎10-07-2017 08:39 PM

please see my conf

Building configuration...
!
!
!
version 15.5
service timestamps debug datetime msec
service timestamps log datetime localtime year
!
hostname router
!
boot-start-marker
boot-end-marker
!
!
!
no aaa new-model
ethernet lmi ce
!
!
!
!         
!         
!         
!         
!         
!         
!         
!         
!         
!         
!         
!         
!         
          
          
!         
!
ip dhcp pool abc-192-168-1
 network 192.168.1.0 255.255.255.0
 default-router 192.168.1.1
 dns-server 192.1.1.1 
 lease 8  
!         
ip dhcp pool abc-192-168-2
 network 192.168.2.0 255.255.255.0
 default-router 192.168.2.1 
 dns-server 192.1.1.1 
 lease 8  
!         
!         
!         
ip name-server 8.8.8.8
ip name-server 8.8.4.4
ip ddns update method he-update
 HTTP     
  add https://ipv4.tunnelbroker.net/nic/update?username=username&password=password&hostname=hostname
 interval maximum 10 0 0 0
!         
ip cef    
ipv6 unicast-routing
ipv6 dhcp pool DHCPv6
 dns-server 2001:470:20::2
!         
ipv6 cef  
!         
multilink bundle-name authenticated
!         
!         
!         
crypto pki trustpoint TP-self-signed-3153235583
 enrollment selfsigned
 subject-name cn=IOS-Self-Signed-Certificate-3153235583
 revocation-check none
 rsakeypair TP-self-signed-3153235583
!         
!         
crypto pki certificate chain TP-self-signed-3153235583
 certificate self-signed 01
  3082022B 30820194 A0030201 02020101 300D0609 2A864886 F70D0101 05050030 
  31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274 
  69666963 6174652D 33313533 32333535 3833301E 170D3137 30333239 30333432 
  33375A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649 
  4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D33 31353332 
  33353538 3330819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281 
  81009C27 8274D401 3D412205 07695D39 DDBD4BCF 9D38DE97 3A9AB5A4 17F46F12 
  F0A5AA7E 6C2DEA4F F4FA3C49 29BDCB13 62F095F8 20719512 3B14BD41 3BCF6F40 
  D24A071D 2AAA115A BDB90705 6735C4E8 305E2A2F D2566BC1 5C6D386E 6C4DB87E 
  5B1D97BD 9E22A00D D9CC1645 16F58B27 76439A90 7AC06BA1 67213C74 7CA42115 
  D0F30203 010001A3 53305130 0F060355 1D130101 FF040530 030101FF 301F0603 
  551D2304 18301680 144A1321 8527FC90 0F4FC21D 38A430FF 9A3CFCEE ED301D06 
  03551D0E 04160414 4A132185 27FC900F 4FC21D38 A430FF9A 3CFCEEED 300D0609 
  2A864886 F70D0101 05050003 81810049 6C902D88 F05186D3 CFE2832E 88041B7F 
  B1BF4994 6ACF6C06 050724C8 BF891EED 5FFA2439 007F6CC2 DA249448 F277359F 
  24959B72 C42C6BFD C22E1F2B B7443215 6EFAE6AD 8BC7D2A2 F811C2B4 521B74DC 
  13870540 719CD311 F6DCCBD7 0F7609D6 B0FB8027 CEF9D0B8 5E26CF19 619EFFCB 
  3AB4A3FE 5343DE67 8EFC2327 6066CC
        quit
license udi pid CISCO1941/K9 sn FGL18387865
!         
!         
!         
redundancy
!         
!         
!         
!         
!         
!         
!         
!         
!         
!         
!         
!         
!         
!         
!         
interface Loopback0
 ip address 192.1.1.1 255.255.255.0
!         
interface Tunnel0
 description Hurricane Electric IPv6 Tunnel Broker
 no ip address
 ipv6 address 2001:470:x:xxxx::x/64
 ipv6 enable
 tunnel source Dialer1
 tunnel mode ipv6ip
 tunnel destination 66.220.18.42
!         
interface Embedded-Service-Engine0/0
 no ip address
 shutdown 
!         
interface GigabitEthernet0/0
 no ip address
 duplex auto
 speed auto
 pppoe enable group global
 pppoe-client dial-pool-number 1
 no cdp enable
!         
interface GigabitEthernet0/1
 no ip address
 shutdown 
 duplex auto
 speed auto
!         
!         
interface Vlan1
 no ip address
!         
interface Vlan11
 description for_192_168_1_0_network
 ip address 192.168.1.1 255.255.255.0
 ip nat inside
 ip virtual-reassembly in
 ip tcp adjust-mss 1420
!         
interface Vlan22
 description for_192_168_2_0_network
 ip address 192.168.2.1 255.255.255.0
 ip nat inside
 ip virtual-reassembly in
 ip tcp adjust-mss 1420
 ipv6 address 2001:470:x:xxxx::x/64
 ipv6 enable
 ipv6 mtu 1280
 ipv6 nd other-config-flag
 ipv6 dhcp server DHCPv6
!         
interface Dialer1
 ip ddns update hostname ipv4.tunnelbroker.net
 ip ddns update he-update
 ip address negotiated
 ip mtu 1460
 ip nat outside
 ip virtual-reassembly in max-reassemblies 1024
 encapsulation ppp
 ip tcp adjust-mss 1420
 dialer pool 1
 ppp authentication chap callin
 ppp chap hostname hostname
 ppp chap password 0 password
 no cdp enable
!         

!         
ip forward-protocol nd
!         
!         
ip nat inside source list DSL_ACCESSLIST interface Dialer1 overload
ip route 0.0.0.0 0.0.0.0 Dialer1
!         
ip access-list extended DSL_ACCESSLIST
 permit ip 192.168.1.0 0.0.0.255 any
 permit ip 192.168.2.0 0.0.0.255 any
!         

!         

!         
end
0 Helpful

Georg Pauwen
VIP
VIP
In response to ciscoreg2

‎10-08-2017 12:51 AM

Hello,

 

I think the problem is that Hurricane Electric doesn't use self signed certificates anymore. You need to replace it with the tunnelbroker CA, which you can find in the link below (scroll down to the Hurricane Electric section):

http://docwiki.cisco.com/wiki/IPv6_with_Tunnel_Broker_Configuration_Example

 

ciscoreg2
Level 1
Level 1
In response to Georg Pauwen

‎10-08-2017 02:35 AM

thanks for your help!

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card