nanog mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Comcast blocking p2p uploads

From: "Scott Berkman" <scott.berkman () reignmaker net>
Date: Fri, 19 Oct 2007 18:50:24 -0400 (EDT)
This solution is only partially effective because Comcast's Sandvine
deployment sends a farced RST packet to both sides of the connection.  The
solution linked below drops the RST packet on your firewall keeping the
connection from being torn down as far as your client is concerned, but it
is not very likely that the other end will have this as well.
 
This is not to say it can't help.  Using HTTPS on the tracker and data
encryption also help.  So does any kind of tunneling including tor or
DNS/icmp tunneling, but these have some level of performance impact that
may be undesirable.
 
    -Scott

  _____  

From: owner-nanog () merit edu [mailto:owner-nanog () merit edu] On Behalf Of
Clinton Popovich
Sent: Friday, October 19, 2007 4:49 PM
To: 'Mark Owen'; 'Mike Lewinski'
Cc: nanog () nanog org
Subject: RE: Comcast blocking p2p uploads



For anyone who is not aware this Comcast issue does have a solutions and
its called iptables. works great for those behind either the great
firewall of china or the great firewall of Comcast.

 

http://redhatcat.blogspot.com/2007/09/beating-sandvine-with-linux-iptables
.html

 

 

Clinton Popovich
Systems Administrator
Nauticom Internet Services - An NPSI Company
2591 Wexford-Bayne Road, Suite 400
Sewickley, PA 15143
Tel: 724-933-9540
Fax: 724-933-9888
Email: crpopovi () nauticom net
Web:  <http://www.nauticom.net/> http://www.nauticom.net
Previous By Date Next
Previous By Thread Next

Current thread: