User comments on ISPs
  >> Hyperoptic


Register (or login) on our website and you will not see this ad.


  Print Thread
Standard User HOUSR8402
(newbie) Mon 26-Aug-19 16:51:39
Print Post

HO blocking Cloudflare DNS


[link to this post]
 
It appears HyperOptic are blocking / started having trouble peering with Cloudflare DNS at
https://1.1.1.1

This has been working for the better part of a year (10 months) and only started this morning. This is extremely disappointing, as I use DNS over HTTPS to Cloudflare. There is *not* an issue with Cloudflare itself as I can query it from my phone, other networks.

A traceroute shows (gateway masked below by me):

[email protected]:~ $ traceroute 1.1.1.1
traceroute to 1.1.1.1 (1.1.1.1), 30 hops max, 60 byte packets
1 172.16.44.1 0.486 ms 0.307 ms 0.398 ms
2 xxx.39.89.yy.bcube.co.uk (89.39.xxx.yy) 6.752 ms 6.829 ms 7.133 ms
3 172.16.28.148 (172.16.28.148) 13.499 ms 13.638 ms 13.765 ms
4 172.17.12.242 (172.17.12.242) 2.570 ms 2.724 ms 2.881 ms
5 172.17.8.148 (172.17.8.148) 1.819 ms 2.518 ms 2.461 ms
6 172.17.13.22 (172.17.13.22) 6.086 ms 172.17.13.49 (172.17.13.49) 2.472 ms 2.497 ms
7 172.17.13.24 (172.17.13.24) 6.019 ms 172.17.12.35 (172.17.12.35) 4.761 ms 172.17.13.24 (172.17.13.24) 2.520 ms
8 * * *
9 * * *
10 * * *
11 * * *
12 * * *
13 * * *
14 * * *
15 * * *
16 * * *
17 * * *
18 * * *
19 * * *
20 * * *
21 * * *
22 * * *
23 * * *
24 * * *
25 * * *
26 * * *
27 * * *
28 * * *
29 * * *
30 * * *

Results of ping:
[email protected]:~ $ ping 1.1.1.1
PING 1.1.1.1 (1.1.1.1) 56(84) bytes of data.
^C
--- 1.1.1.1 ping statistics ---
18 packets transmitted, 0 received, 100% packet loss, time 17651ms

Is this a way to force Cloudflare users to use HO's DNS? Or is this a peering problem?

TIA

Edited by HOUSR8402 (Mon 26-Aug-19 16:54:17)

Standard User locutus
(experienced) Tue 27-Aug-19 06:25:06
Print Post

Re: HO blocking Cloudflare DNS


[re: HOUSR8402] [link to this post]
 
If it's only started this morning, what have Hyperoptic said when you reported it?

it works fine for me though, I can get to it in 8 hops and it responds to ping.

--
Views expressed are mine and not necessarily those of my employer.
Standard User 0dot37
(newbie) Tue 27-Aug-19 16:46:10
Print Post

Re: HO blocking Cloudflare DNS


[re: HOUSR8402] [link to this post]
 
I can also trace to 1.1.1.1, perhaps something was wrong with the set up?

traceroute to 1.1.1.1 (1.1.1.1), 64 hops max, 52 byte packets
1 *my router* (192.168.1.1) 1.220 ms 0.824 ms 0.802 ms
2 xxx.xxx.xxx.xxx (xxx.xxx.xxx.xxx) 2.347 ms 2.045 ms 2.074 ms
3 172.16.xxx.xxx (172.16.xxx.xxx) 1.794 ms 1.940 ms 1.685 ms
4 172.16.xxx.xxx (172.16.xxx.xxx) 7.844 ms 2.542 ms 2.357 ms
5 172.16.xxx.xxx (172.16.xxx.xxx) 5.797 ms 2.491 ms 2.225 ms
6 lonap.as13335.net (5.57.81.75) 2.249 ms 5.979 ms 2.362 ms
7 one.one.one.one (1.1.1.1) 1.464 ms 1.569 ms 1.652 ms


Register (or login) on our website and you will not see this ad.

Standard User HOUSR8402
(newbie) Tue 27-Aug-19 20:21:13
Print Post

Re: HO blocking Cloudflare DNS


[re: 0dot37] [link to this post]
 
There was nothing wrong with my setup.

I had opened a ticket with HO and they responded today to say there was a routing problem which they have now fixed.

[email protected]:~ $ traceroute -n 1.1.1.1
traceroute to 1.1.1.1 (1.1.1.1), 30 hops max, 60 byte packets
1 172.16.44.1 0.511 ms 0.414 ms 0.489 ms
2 89.39.xxx.yyy 5.392 ms 5.755 ms 5.974 ms
3 172.16.28.148 2.850 ms 3.078 ms 3.236 ms
4 172.17.12.242 2.459 ms 2.576 ms 2.804 ms
5 172.17.8.148 2.260 ms 2.367 ms 2.448 ms
6 172.17.13.22 6.219 ms 172.16.25.232 8.066 ms 7.994 ms
7 172.16.25.234 8.498 ms 7.549 ms 7.809 ms
8 1.1.1.1 1.479 ms 1.405 ms 1.501 ms
ISP Representative Hyperoptic_CS
(isp) Thu 29-Aug-19 15:22:47
Print Post

Re: HO blocking Cloudflare DNS


[re: HOUSR8402] [link to this post]
 
Hey there,

Thanks for hanging in there while we investigated and resolved this issue.

If you have any other questions, feel free to get in touch.

Customer Support
www.hyperoptic.com

Prefer to talk to the team? Call Customer Support on 0333 332 1111 or email to [email protected]
The above post has been made by an ISP REPRESENTATIVE (although not necessarily the ISP being discussed in the post).
Standard User HOUSR8402
(newbie) Sat 31-Aug-19 17:31:52
Print Post

Re: HO blocking Cloudflare DNS


[re: Hyperoptic_CS] [link to this post]
 
Thanks @Hyperoptic_CS.

Contrary to blocking CF, it appears Hyperoptic are now private peering with Cloudflare (or maybe they are hosting a cache node?).

Previously the route to CF went through lonap, whereas now it appears to directly drop to CF off HO's network. Could you please elaborate?

TIA
Standard User blueacid
(experienced) Sun 15-Sep-19 12:58:08
Print Post

Re: HO blocking Cloudflare DNS


[re: HOUSR8402] [link to this post]
 
From Manchester it all looks fine to me, and is still clearly heading out of the network, via IX Manchester to Cloudflare.

traceroute to 1.1.1.1 (1.1.1.1), 64 hops max, 52 byte packets
1 192.168.34.254 (192.168.34.254) 1.931 ms 1.968 ms 1.283 ms
2 88.98.247.xyz.bcube.co.uk (88.98.247.xyz) 5.706 ms 5.699 ms 6.937 ms
3 172.16.23.106 (172.16.23.106) 6.641 ms 3.757 ms 3.169 ms
4 172.16.27.124 (172.16.27.124) 2.929 ms 3.559 ms 3.226 ms
5 172.16.30.164 (172.16.30.164) 3.980 ms 4.464 ms 2.918 ms
6 172.16.17.81 (172.16.17.81) 2.936 ms 5.350 ms 3.325 ms
7 ixmanchester.as13335.net (195.66.244.71) 3.355 ms 4.104 ms 2.708 ms
8 one.one.one.one (1.1.1.1) 1.717 ms 2.014 ms 1.943 ms
  Print Thread

Jump to