Hello everyone!
I just setup a new HE tunnel for having IPv6 to my Mikrotik.
My problem is that I can ping Google DNS v6 from my Router and my laptop but when I try to open webpages they stuck and Chrome is stuck on “Establishing Secure Connection” even on IPv4 webpages!!!
Any idea plz? Thank you
You forgot to include your configuration export!
/interface pppoe-client
add comment=XXXXXXXXXX disabled=no interface=ether2-WAN max-mru=1492 max-mtu=1492 name=WAN-WIND password=XXXXXXXXX user=XXXXXXXXXX
/interface 6to4
add comment=“Hurricane Electric IPv6 Tunnel Broker” !keepalive local-address=37.6.250.6 mtu=1280 name=sit1 remote-address=216.66.80.26
/ipv6 pool
add name=/64 prefix=2001:470:1f09:b1::/64 prefix-length=64
add name=/48 prefix=2001:470:6951::/48 prefix-length=48
/ip address
add address=192.168.100.1/24 interface=Bridge-LAN network=192.168.100.0
/ip dns
set allow-remote-requests=yes servers=1.1.1.1,8.8.8.8,2001:4860:4860::8888,2606:4700:4700::1111
/ip firewall mangle
add action=change-mss chain=forward new-mss=clamp-to-pmtu out-interface=sit1 passthrough=yes protocol=tcp tcp-flags=syn
/ipv6 address
add address=2001:470:1f08:b1::2 advertise=no interface=sit1
add address=::ce2d:e0ff:fea3:acbc eui-64=yes from-pool=/64 interface=Bridge-LAN
/ipv6 firewall filter
add action=drop chain=input comment=“Drop (invalid)” connection-state=invalid disabled=yes in-interface=sit1
add action=accept chain=input comment=“Accept (established, related)” connection-state=established,related disabled=yes in-interface=sit1
add action=accept chain=input comment=“Accept external ICMP (10/sec)” disabled=yes in-interface=sit1 limit=10,20:packet protocol=icmpv6
add action=drop chain=input comment=“Drop external ICMP (>10/sec)” disabled=yes in-interface=sit1 protocol=icmpv6
add action=accept chain=input comment=“Accept internal ICMP” disabled=yes in-interface=!sit1 protocol=icmpv6
add action=drop chain=input comment=“Drop external” disabled=yes in-interface=sit1
add action=reject chain=input comment=“Reject everything else” disabled=yes in-interface=sit1 reject-with=icmp-no-route
add action=accept chain=output comment=“Accept all” disabled=yes
add action=drop chain=forward comment=“Drop (invalid)” connection-state=invalid disabled=yes
add action=accept chain=forward comment=“Accept (established, related)” connection-state=established,related disabled=yes
add action=accept chain=forward comment=“Accept external ICMP (20/sec)” disabled=yes in-interface=sit1 limit=20,50:packet protocol=icmpv6
add action=drop chain=forward comment=“Drop external ICMP (>20/sec)” disabled=yes in-interface=sit1 protocol=icmpv6
add action=accept chain=forward comment=“Accept internal” disabled=yes in-interface=!sit1
add action=accept chain=forward comment=“Accept outgoing” disabled=yes out-interface=sit1
add action=drop chain=forward comment=“Drop external” disabled=yes in-interface=sit1
add action=reject chain=forward comment=“Reject everything else” disabled=yes reject-with=icmp-no-route
/ipv6 firewall mangle
add action=change-mss chain=forward new-mss=clamp-to-pmtu out-interface=sit1 passthrough=yes protocol=tcp tcp-flags=syn
/ipv6 nd
set [ find default=yes ] advertise-dns=yes other-configuration=yes
/ipv6 route
add distance=1 dst-address=2000::/3 gateway=2001:470:1f08:b1::1