Bypass shaping?

L

Lipe123

Active Member
Joined
Apr 29, 2005
Messages
69
Reaction score
0
Hey ppl I can't beleive I'm the 1st to ask this... but exactly how does Telkom's shaping work?

I mean is it port or packet based? is it really EVERYTHING 'cept port 80 and 81?

Would it work if i set dc++(eg.) to use a sub 1024 port thats not commonly used? Like port 17.. quote of the day.. I mean thats not too commonly used.

It would be really nice to get a workaround for this damn shaping stuff!

Edit: Oops wrong section.. how do i move this to
ADSL Speed, Port Prioritisation, Cap
 
Last edited:
I also thought it was port based, but the slow down since 1 August suggests that it might be something else aswell??


I've tried lots and lots of different ports for my dc++ and nothing worked. (Note that local worked fine on all ports)
 
Guess I can forego ftp then :D I'm goin to test now..

Btw ROFLMA at ur sig.. nice one!!
 
Lipe123 said:
Hey ppl I can't beleive I'm the 1st to ask this... but exactly how does Telkom's shaping work?

I mean is it port or packet based? is it really EVERYTHING 'cept port 80 and 81?

Would it work if i set dc++(eg.) to use a sub 1024 port thats not commonly used? Like port 17.. quote of the day.. I mean thats not too commonly used.

It would be really nice to get a workaround for this damn shaping stuff!

Edit: Oops wrong section.. how do i move this to
ADSL Speed, Port Prioritisation, Cap
Click to expand...
Port and Packet. They added packet shaping because ppl were constantly shifting ports in order to get around the shaping.
 
hmm I've hear abt packet spoofing... but i suppose that would only help with uploads, and thats not shaped anyways :(

so there is no workaround?

Edit: spoofing is not good.. I clearly didnt understand it very well
 
Last edited:
I think it's packet shaping. I have used things like HTTP-TUNNEL and HTTP-PROXY and there is no diffrence.

So telkom is opening our packets and looking inside. And here I thought tampering with mail was illegal, bus since Telkom was part of the post office, they do whatever they want :)
 
have had this argument with a flat mate of mine.

He argues : They would shape all ports and only open up the ports they want us to use.
So if this is right which it is then they have effectivly closed down all other forms of communication.
now this is where my point comes in.
if they have an unshaped service then there must be certain ports which they open up for those unshaped accounts to get unshaped?

If so then one should be able to spoof and get unshaped but in reality this is not true.

hmmmm.......
Correct me if i am wrong
 
If we look skype ... it can use port 80 to bypass firewalls ... yet it's still shaped somehow.

The problem with that I have is that skype apparently encrypts traffic, so that would mean that telkom looks at anything that is not a HTTP packet and throws it to the dogs.

??
 
shaping doesnt "close" the port, It just gives it a low priority. so traffic there goes slow. And it's not just port based.. they look at the data itself and makes that traffic slow or not..
 
I'm really thinking that they seperate http traffic from the rest. We should test the routing of normal http traffic on port 80 vs say Skype traffic on port 80. Is that possible?

:)
 
if its port and packet shaped you can by pass by changing the way the traffic looks and making sure you receive data on a priority port, so use a proxy (either use a proxy option in your app or if there is no proxy option then just simply use socksify which redirects all data from a certain app through a proxy).

Interesting note is azureus and some other apps accept http proxies and it changes the traffic to look good for packet shapers (intelligent firewalls) and as a bonus alot of http proxies run on port 80
 
Slim Plan!!
++++++++++

I tried using DC++'s packets rubbish installer, but it did't work.

I'm guessing you should make your packets look like http packets??? Is that possible?? Is that what a proxy would do?
 
if its an http proxy then yeah it will look like http, but socks will look like socks traffic
you find they ussually buy/make rules for all the main p2p traffic types, so socks proxies or http ones will work fine

for apps like edonkey/emule with an ID system you get a lower priority if you use an open socks proxy so that wont help much

you can also use tunnels, (GRE tunneling works well), bridges and encryptions

anything that changes the traffic at the packet level will work, you dont have to make it look like priority traffic (http, pop3, smtp) just make sure it doesnt look like p2p traffic

and with telkom shaping you need to use a priority port, someone could set up a service quite easily with a gre tunnel or socks proxy with authentication, maybe someone should consider it
 
slimothy said:
if its an http proxy then yeah it will look like http, but socks will look like socks traffic ....
you can also use tunnels, (GRE tunneling works well), bridges and encryptions
... someone could set up a service quite easily with a gre tunnel or socks proxy with authentication, maybe someone should consider it
Click to expand...

Well I'm really considering it, but the only time i used a proxy was loong ago on my isdn, and it was only fun for a week.

So lemme see I never heard abt GRE tunneling.. but i suppose that entails a tunnel to a relay server..?

Socks I heard abt and all apps seems to support it. So I'm going to try this 1st.. Can I install a proxy server on my machine and.. hang on.. how well does a proxy server and a router work togerther??

Any advice?

Ok I downloaded allegrosurf free trial version, since i used it in the past. I can connect to dc++ hosts via socks now, but can't receive any data back. Its like dc is in active mode but without the port forwards. I checked the ports the socks server uses and its crazy.. it uses abt 20 ports of seemingly random values, there is no way i can forward all that. Nor does it seem i should forward all of it since it works somewhat.
 
Last edited:
You must log in or register to reply here.
Back
Top
Sign up to the MyBroadband newsletter
X