Next.js Hacker News
Hurricane Electric (HE.NET) IPv6 tunnelbroker page offline due to expired domain
22 points by luckman212 6 hours ago | 11 comments
  • m3047

       Updated Date: 2026-03-11T07:13:31Z
   Creation Date: 2001-03-09T23:23:30Z
   Registry Expiry Date: 2027-03-09T23:23:30Z
    There is also this:

    https://www.infoblox.com/blog/threat-intelligence/abusing-ar...

  • happyPersonR
    Tbh ipv4 and cgnat im hoping at this point will go the way of POTS and be something we force turn off. There are differences between how ipv6 works and v4 ….

    But I’m not sure the cost of running these shims for forever is worth what they’re holding back.

    The only question remaining in my mind is if the world is ready for ipv6 … but maybe it’s better if we at least set a date.

  • luckman212
    The popular Hurricane Electric (HE.net) IPv6 tunnel broker service management page is offline due to what appears to be an expired domain.
    • Prolixium
      Is it really that popular nowadays? How many folks still use a tunnel broker at all in 2026?
      • bigstrat2003
        I've been thinking about starting. My current ISP (Comcast) has native IPv6 but you can't get a static prefix (maybe if you are a business class customer, IDK). It would be nice to have a prefix which is statically assigned to me for stuff that I host at home, so I've looked at doing an HE tunnel instead. The main drawback seems to be that some networks still refuse to peer with them so not everything is reachable.
        • db48x
          You don’t need your ISP to assign a static prefix just to have static addresses on your home network. Instead choose your own prefix inside the fd00::/8 block. There is a procedure using hashing that you can follow to help guarantee that your prefix is unlikely to be shared with anyone else, but you don’t actually need to use it. Configure your router to advertise that prefix in addition to any prefix assigned by your ISP and all of your computers will give themselves an address in both prefixes. If you set your servers to base their address on their mac address, then every one of your servers will have a single unique address. Your client machines can keep their privacy–aware addresses that change frequently.

          https://en.wikipedia.org/wiki/Unique_local_address

          For my network I wanted something I had some chance of remembering so I consulted a dictionary and ended up with fdbe:aded:cafe:babe::/64.

        • GuinansEyebrows
          > The main drawback seems to be that some networks still refuse to peer with them

          cogent gonna cogent. i think you're still probably good for the most part.

          • RationPhantoms
            Comcast has a very strict peering policy as well. They, like Deutsche Telekom, like to hold their proverbial customers hostage to make other networks pay to peer.
      • luckman212
        I don't have statistics on that, but I can say that Verizon FIOS NG-PON2 service in the US (which is what I have) does not offer native V6, so yes, sadly I am forced to use a tunnel broker in 2026.
      • nticompass
        At home, my ISP gives me native IPv6. At work, we don't have IPv6 (or it's just disabled on the router), so I sometimes use one to test stuff (I use 6Project).
      • esseph
        Tons.

        A lot of US ISPs have no ipv6 configured.

        (There are roughly 3,000 different ISPs in the US.)