Bypassing Bell Canada Throttling Using Protocol Encryption
Some Guy
http://pervices.com/docs/throttling_tech_brief.pdf
-----------------
Overview
In general, there are two steps to enabling peer-to-peer communication
over the Bell Canada DSL Network. It is first necessary to force
protocol encryption for all connections. Then, route traffic over the
VPN port TCP/1723, and using the IPSec ports (UDP/50, UDP/51) for for
DHT or tracker. Alternatively, you may want to try to route traffic over
TCP/500.
At this point, it may be necessary to renew your IP address. Assuming
you have a dynamic IP, this could be accomplished as simply as
reconnecting to your DSL service, or rebooting the DSL modem. If you
have a static IP, it may be necessary to wait an unknown period of time,
or else request a new one. This may not work for everyone. If this does
not work for you, please see the notes following the example
configurations.
Notes
Very little public information exists as to the specific methods or
techniques used by Bell Canada to throttle traffic. While this method
has been tested over the network of a third party ISP, and has been
independently confirmed to work on some retail Sympatico customers, it
does not work for everyone. We do not know why it does not work for
everyone.
The remainder of this note speculates on the mechanics of how Bell
Canada throttles traffic, and on why we believe our method works.
Without access to appropriate technical documentation, we cannot
guarantee the accuracy of our claims. If you have additional
information, or feel we are in error, we encourage you to email us using
the contact information found on our site.
When Bell Canada first began throttling traffic, some VPN2 users
experienced a decrease in their connection bandwidth which they
associated with being throttled by Bell. In their CRTC filing, Bell
refuted the claim and emphasized that properly configured clients are
not affected. They noted that the majority of clients using the correct
ports are not throttled. As VPN traffic is encrypted, the DPI device is
unlikely to be able to immediately read the packet contents, perhaps
causing it to default to a rule based algorithm to decide whether or not
to throttle a particular stream.
This also suggests a special configuration or procedure in place
allowing VPN users unthrottled access. It also leaves the open the
possibility for Bell to conduct traffic pattern analysis in order to
determine likely the content type. As such analysis is statistical in
nature, we assume conservative heuristics to minimize false positives.
Bell states that the majority of VPN users have unthrottled access.
Although it is plausible to assume they configure the DPI devices
differently depending on the area being served, we assume a standard
rule set across the network, white listing VPN traffic. In their
commission filings, Bell Canada notes as much; Therefore, the VPN
signatures in the DPI are created leveraging the standard protocol ports
and basic signatures based on the specification of the VPN vendor. As
long as the customer's VPN port is correctly setup and there are no
alterations to the VPN client, VPN traffic will not be shaped. In the
Company's experience, issues arise because the VPN client is incorrectly
setup or not setup to the specifications of the VPN vendor.
This suggests that Bell Canada uses port and protocol data to to apply
rule based signatures that exclude VPN traffic from being throttled.
Depending on the completeness and aggressiveness of the rule set, this
may eventually require modification of the bit torrent engine or
protocol to effectively defeat throttle application.
It is our hope that the follow guide is of use in restoring full
connectivity. If you have any further information you feel may be of
use, we encourage you to contact us through our website.
JF Mezei
not throttled. Experience shows that any encrypted traffic outside
those port ranges gets throttled. This includes encrypted FTP.
Bittorrent uses what are essentially random port numbers. FTP uses a
fixed port number for the control session, but random port number for
actual data transfers.
So, Bell is essentially throttling anything tht is encrypted except when
it is on a limited set of ports.
Since Bell stated in the CRTC filings that it does not throttle VPN
traffic, the setting up VPN connections between customers and ISPs would
bypass the trhottling.
chuckcar
news:00269b5f$0$12305$c3e...@news.astraweb.com:
> Bell stated that those using encrypted VPN servies on official ports are
> not throttled. Experience shows that any encrypted traffic outside
> those port ranges gets throttled. This includes encrypted FTP.
>
They're trottling FTP even? (haven't used it for a *while*) the swine.
> Bittorrent uses what are essentially random port numbers. FTP uses a
> fixed port number for the control session, but random port number for
> actual data transfers.
>
So if you just use a normal FTP command line session, is *it* throttled?
This could be a big point in reversing it if so. FTP is hugely different
from P2p both in type of file and bandwidth required.
--
(setq (chuck nil) car(chuck) )
JF Mezei
> They're trottling FTP even? (haven't used it for a *while*) the swine.
Nop. DPI will look into the FTP packets and understand them and not
thorttle them. I was talking about secure FTP, which uses encryption, so
the DPI equipment can't distinguish those packets from Bittorrent
packets so it throttles them.
> So if you just use a normal FTP command line session, is *it* throttled?
> This could be a big point in reversing it if so. FTP is hugely different
> from P2p both in type of file and bandwidth required.
No different in bandwitdh. Any protocol will use the available bandwitdh.
Warren Oates
chuckcar <ch...@nil.car> wrote:
> They're trottling FTP even? (haven't used it for a *while*) the swine.
No. I occasionally (very very occasionally) see "throttling" on my p2p
stuff, but never on regular connections. I get 600 K down.
--
W. Oates
chuckcar
news:002730ae$0$3994$c3e...@news.astraweb.com:
With Bell, it's 24/7 throttling to 30K up and down as far as I can tell.
At least in my neck of the woods it is.
chuckcar
Well with FTP the amount used would be less - a linux CD here and there
would be the most. Whereas with Torrents, you could have gigs after gigs.
My main point was really learning towards that you're not going to get
anything illegal with FTP. BTW has anyone ever found out the real ratio of
customers to those who use torrents for Bell?
Tony
Date: Mon, 8 Sep 2008 01:49:27 +0000 (UTC)
From: chuckcar <ch...@nil.car>
Organization: A noiseless patient Spider
Newsgroups: 24hoursupport.helpdesk
RichardOnRails <RichardDummy...@uscomputergurus.com> wrote in
news:2f12223b-a801-4ad6...@73g2000hsx.googlegroups.com:
> Hi Chuck,
>
> As before, I removed the prior context.
>
>> > What do you recommend for a Windows newsreader?
>>
>> Netscape Messenger naturally,
>
> As promised, I'll check it out. It'll take me a couple of days to get
> to it. Thanks for your advice.
>
> BTW, this was much more pleasant than the last time I was challenged
> on this issue, mainly because I only paid attention to your
> responses.
>
Yeah, there's a lot of kids here with too much time on their hands. Filter
out alt.usenet.kooks and you'll get rid of a *lot* of it. Taking a look at
*full* headers and a half hour of searching for patterns about once a week
can provide you with permanent solutions. Advertising same (like I did
with the kooks bit) is *not* a good idea as then you have to then do it
again once they read your post. BTW There's a poster here and in
news.software.readers that goes by the name of Binky that has the
latest version on a website he puts in his signature. I haven't seen it
*anywhere* else and only that version allows filtering on *all* headers.
--
(setq (chuck nil) car(chuck) )
chuckcar wrote:
--
The Grandmaster of the CyberFROG
Come get your ticket to CyberFROG city
Nay, Art thou decideth playeth ye simpleton games. *Some* of us know proper
manners
Very few. I used to take calls from *rank* noobs,
Hamster isn't a newsreader it's a mistake!
El-Gonzo Jackson FROGS both me and Chuckcar
Master Juba was a black man imitating a white man imitating a black man
Using my technical prowess and computer abilities to answer questions beyond
the realm of understandability
Regards Tony... Making usenet better for everyone everyday
Alan Illeman
"chuckcar" <ch...@nil.car> wrote in message
news:Xns9B6CE10842...@127.0.0.1...
I thought I was bad. Used to get 160K down but soon after all the
talk of throttling it dropped to around 55K down.
My wiring is a mess, phone and electrical (old house). Know of
anyone that does both and is reliable (spring/summer will do)?
Alan
(Scarborough, Ont)
chuckcar
news:L5SdnQtJdslTwqHU...@supernews.com:
>
> "chuckcar" <ch...@nil.car> wrote in message
> news:Xns9B6CE10842...@127.0.0.1...
>> Warren Oates <warren...@gmail.com> wrote in
>> news:002730ae$0$3994$c3e...@news.astraweb.com:
>>
>>> In article <Xns9B6CC127B5...@127.0.0.1>,
>>> chuckcar <ch...@nil.car> wrote:
>>>
>>>> They're trottling FTP even? (haven't used it for a *while*) the
>>>> swine.
>>>
>>> No. I occasionally (very very occasionally) see "throttling" on my
>>> p2p
>>> stuff, but never on regular connections. I get 600 K down.
>>
>> With Bell, it's 24/7 throttling to 30K up and down as far as I can
>> tell.
>> At least in my neck of the woods it is.
>>
> I thought I was bad. Used to get 160K down but soon after all the
> talk of throttling it dropped to around 55K down.
>
That sounds like basic. Try unplugging *all* the phones in your house for
a half hour. Then plug them back in and turn off then on your modem. If
that doesn't fix it, you need your line serviced. Check to see if the
junction box where the phones split off from (called the demarcation box
by bell) is inside or outside. That point is as far as Bell will service
anymore. Then call Bell. You *will* get India, but they still will do
repairs. They've done it here. Read the conditions on phone repair and who
pays (you or bell) on Bell's web site. Particularly about the demarcation
point. You need to know this stuff before you call for service.
> My wiring is a mess, phone and electrical (old house). Know of
> anyone that does both and is reliable (spring/summer will do)?
>
You have Bell phone service don't you? I know of no one else that
maintains phone lines or is allowed to touch their lines.
Warren Oates
chuckcar <ch...@nil.car> wrote:
> You have Bell phone service don't you? I know of no one else that
> maintains phone lines or is allowed to touch their lines.
Anything inside your house (beyond the demarc) you can maintain
yourself. I've wired a bunch of houses for phone.
--
W. Oates
Alan Illeman
news:004137b7$0$24167$c3e...@news.astraweb.com...
Problem is, wife would never let me do any of that stuff, since I've
dislocated my replacement hip 6 times doing much simpler
things (even bending over the stroke the cat) and am now
recovering from a second hip replacement 6 weeks ago.
(Actually they call it a 'revision', 2nd time around.)
I got all the info before this hip thingy..
http://www.ling.upenn.edu/~kurisuto/phone_wiring.html
but finding someone RELIABLE has been the problem.
A guy who replaced our windows and doors (and has since
retired) cut off one phone line to the dining room and buried
it in the wall, we think. Our two replacement outer doors leak
cold air and the hinges are rusting, but again finding someone
RELIABLE to repair them, has been a problem.
Please, please come on over and give us a quote (at your
convenience) !
Alan
I'm in the Scarborough telephone book, or alani (at) kos (dot) net
chuckcar
Actually the way it works is Bell won't touch your phones/lines from the
phone itself to the demarcation point. Without charging you. Pure nonsence
IMHO. It's their jacks and they don't supply the tools to their customers.
It's like Rogers saying you have to fix the cable if it's not the
telephone pole. There's something about whether it's inside or outside
that changes that somewhat, but I can't recall exactly what it says, hence
my reference to the web site.
Warren Oates
"Alan Illeman" <ille...@surfbest.net> wrote:
> A guy who replaced our windows and doors (and has since
> retired) cut off one phone line to the dining room and buried
> it in the wall, we think. Our two replacement outer doors leak
> cold air and the hinges are rusting, but again finding someone
> RELIABLE to repair them, has been a problem.
I'm not close enough to come fix your wiring, and I'm really really not
capable of fixing your doors. I have no concept of level or square.
Telephone is simple stuff, though. Right now I keep putting off dragging
50 feet or so of ethernet cable through the dirty little crawl space so
I can connect the Mac Pros to the PS3 -- gigabit gigabit gigabit, screw
this wireless crap.
--
W. Oates
Warren Oates
chuckcar <ch...@nil.car> wrote:
> It's their jacks and they don't supply the tools to their customers.
It's not their jacks or wiring or anything inside my house. All my own
work.
--
W. Oates
Madonna
> Thought some people might find this useful...
>
> http://pervices.com/docs/throttling_tech_brief.pdf
Ah brilliant! Now I can download my Linux ISO's at 8Mbps instead of 30Kbps.
uTorrent
--------
The following has been tested to work to uTorrent v1.7.7.
1. Launch uTorrent.
2. Select Options then Preferences.
3. Click on BitTorrent from the preference tree.
4. Under the Protocol Encryption heading, select Forced. Ensure that the Allow incoming legacy connections box is unchecked.
5. As uTorrent seems to dynamically assign DHT ports, it seems necessary to disable them: Under Additional BitTorrent
Features, disable DHT by unchecking the boxes for Enable DHT Network, and Enable DHT for new torrents.
6. Click on Connection from the preference tree.
7. Under the Listening Port heading, select the Port used for incoming connections, and set it 1723 (alternatively, try
500).
8. Ensure that the Randomize port each time uTorrent starts box is unchecked.
9. Click on OK, and reconnect to your DSL service or reboot your DSL modem.
Warren Oates
> Ah brilliant! Now I can download my Linux ISO's at 8Mbps instead of 30Kbps.
I haven't been having throttling problems. Maybe it only kicks in above
a certain monthly threshold.
Anyway, you can do the same thing with Azureus -- enable 2 way
encryption (only, no fallback) and set the ports to VNC ports (or FTP or
anything you're not using that your ISP probably won't throttle).
You should have a careful read of the Sympatico AUP, too -- they seem to
suggest that avoiding the throttling this way is against it. I haven't
got it to hand, but I seem to remember that.
--
W. Oates
Tony
Alan Illeman wrote:
--
Madonna
> You should have a careful read of the Sympatico AUP, too -- they seem to
> suggest that avoiding the throttling this way is against it. I haven't
> got it to hand, but I seem to remember that.
I'm not with Sympatico, so their AUP doesn't apply to me... :)
Warren Oates
>
> I'm not with Sympatico, so their AUP doesn't apply to me... :)
Cool.
--
W. Oates
chuckcar
Bell *will* do the work, just they'll bill you for it. No idea how much.
It would be on their web site though.
Alan Illeman
You can vouch for them? They are reliable?
chuckcar
> "chuckcar" <ch...@nil.car> wrote in message
> news:Xns9B6E811EB9...@127.0.0.1...
>>>
>>> A guy who replaced our windows and doors (and has since
>>> retired) cut off one phone line to the dining room and buried
>>> it in the wall, we think. Our two replacement outer doors leak
>>> cold air and the hinges are rusting, but again finding someone
>>> RELIABLE to repair them, has been a problem.
>>>
>>> Please, please come on over and give us a quote (at your
>>> convenience) !
>>>
>>> Alan
>>> I'm in the Scarborough telephone book, or alani (at) kos (dot) net
>>>
>> Bell *will* do the work, just they'll bill you for it. No idea how
>> much.
>> It would be on their web site though.
>
> You can vouch for them? They are reliable?
>
Hey, we're talking about Bell here. Lets not go nuts. But they did put the
phones in right? Been doing it for a while I hear. Some guy even built a
cottage in Badeck bay from the money I hear and built his own hydrofoil.
Idiot did 70 Mph in the thing. In the 30's.
A little story. Had a phone in this appartment block years ago. One day I
start getting static. Bad static. Can't hear the other person static. Call
Bell. They send a tech over to fix the problem. Turns out another guy
installed a phone somewhere and the green box where the lines all go got a
bit messed up from him. Ok, fine. While the guy's still there, however, I
check the line. Problem's still there. Not any better at all. Tell him.
Says I'll have to do another call to fix it, he's done his bit. Of what?
I wonder under my breath. Get the second guy. About half of the static
gone this time, but still unacceptable. This guy tells me I shouldn't
have complained about the "non-fix". Says it made problems for the last
tech. Tough I say. Didn't do his job properly. That's life. The guy comes
about an inch short of threatening me. Let it pass. Final guy comes and
fixes the phone. Get a call from Bell a while later, asking pointed
questions about the behavior of their techs, but not saying what in
particular. Let them figure it out I say. They sure have no idea how to
choose them.
They'll do their best with the best failures from your local community
college that knew someone in the local Bell office. <g>
Alan Illeman
> In article <rYqdnUpRU_pFG6HU...@supernews.com>,
> "Alan Illeman" <ille...@surfbest.net> wrote:
>
>> A guy who replaced our windows and doors (and has since
>> retired) cut off one phone line to the dining room and buried
>> it in the wall, we think. Our two replacement outer doors leak
>> cold air and the hinges are rusting, but again finding someone
>> RELIABLE to repair them, has been a problem.
>
> I'm not close enough to come fix your wiring, and I'm really really
> not
> capable of fixing your doors. I have no concept of level or square.
Forget the doors, I only mentioned them because the idiot cut the
telephone wire. How far is too far? Do I have send my plane, boat
or car, for you?
Alan Illeman
"Tony" <To...@TheDeli.Sandwich> wrote in message
news:493D3126...@TheDeli.Sandwich...
> Maybe you can get Alan Illeman junior to do all that stuff for you.
You know where he is?
Madonna
------------------------------------------
Download the latest uTorrent:
http://download.utorrent.com/beta/utorrent-1.9-alpha-13910.upx.exe
Settings:
Preferences > Advanced, set bt.transp_disposition to 10
And look at the speed difference...