 jjoshuaPremium
join:2001-06-01
Scotch Plains, NJ
kudos:3
 ·Verizon FiOS
1 edit | reply to EG
Re: Comcast is using Sandvine to manage P2P Connections said by EG:said by jjoshua:My traffic is my property. Hmmm.... I wonder if the federal government agrees with that ?   What does the government have to do with this discussion?
When you send a document via FedEx, do they open the package, look at the document, decide if the contents are 'acceptable' and make modifications to it? Of course not.
Comcast, or any other ISP, should be no different. I create the packets and they deliver it - end of story. |
|
| By using a P2P client, you are allowing remote users to download files from your computer; this essentially makes your computer a server, which is specifically prohibited by the TOS and AUP.
Personally, I'm not real crazy about the decision.
However, it seems to me that if Comcast chooses to implement technology that prevents users from violating the TOS and AUP, they are well within their rights to do so. |
|
| Not quite. Bittorrent doesn't work that way. When you think of server you think of one entity serving up files. When you're defining bittorrent traffic and the way it works it cannot be deemed that anyone seeding is running a server. I suppose if you were the only seeder one could argue that point. It is a gray area.
Either way, the issue to most people I believe is not whether they are breaking any TOS/AUP. But whether it is right for Comcast to implement technologies that are basically unwrapping your packets. |
|
 CabalPremium
join:2007-01-21
Austin, TX
 ·Suddenlink
| reply to jjoshua
I think you would have a difficult time trying to make the case that Comcast is not within their rights to shape and prioritize traffic as they see fit on their network. They do it every day for VoIP and other latency-critical traffic.
--
Interested in open source engine management for your Subaru? |
|
jjoshuaPremium
join:2001-06-01
Scotch Plains, NJ
kudos:3 Reviews:
·Verizon FiOS
| said by Cabal:I think you would have a difficult time trying to make the case that Comcast is not within their rights to shape and prioritize traffic as they see fit on their network. They do it every day for VoIP and other latency-critical traffic. Shaping and prioritization is one thing, interrupting and sabotaging the TCP/IP protocol is another thing. |
|
 telcolackey5The Truth? You can't handle the truth
join:2007-04-06
Death Valley, CA | reply to SirchMeister
said by SirchMeister:Not quite. Bittorrent doesn't work that way. When you think of server you think of one entity serving up files. When you're defining bittorrent traffic and the way it works it cannot be deemed that anyone seeding is running a server. I suppose if you were the only seeder one could argue that point. It is a gray area. Would seeding Bittorrent be similar to file sharing? |
|
 EGThe wings of lovePremium
join:2006-11-18
Union, NJ
kudos:9 | reply to jjoshua
Ignorance can certainly be bliss....
--
Let us never forget 9/11 |
|
 kadarPremium,ExMod 2001-02
join:0000-00-00 | reply to jjoshua
said by jjoshua:said by EG:said by jjoshua:My traffic is my property. Hmmm.... I wonder if the federal government agrees with that ? What does the government have to do with this discussion? When you send a document via FedEx, do they open the package, look at the document, decide if the contents are 'acceptable' and make modifications to it? Of course not. Comcast, or any other ISP, should be no different. I create the packets and they deliver it - end of story. FedEx no. Uncle Sam Yes.
»sfgate.com/cgi-bin/article.cgi?f···rintable |
|
jjoshuaPremium
join:2001-06-01
Scotch Plains, NJ
kudos:3 Reviews:
·Verizon FiOS
1 edit | I'm failing to see the connection. Uncle Sam isn't going to open your package and change the contents. And it's still my property even if Uncle Sam does decide to take a look. |
|
 NormanSPremium,MVM
join:2001-02-14
San Jose, CA
kudos:9 | reply to SirchMeister
said by SirchMeister:Not quite. Bittorrent doesn't work that way... Eh? The purpose of BitTorrent is distributed service. Every client is serving up pieces of the file being downloaded. Why do you think you need port forwarding to make BT work? Port forwarding through NAT allows unsolicited access to a computer; that is a typical signature of a server.
--
Norman
~Oh Lord, why have you come
~To Konnyu, with the Lion and the Drum |
|
NormanSPremium,MVM
join:2001-02-14
San Jose, CA
kudos:9 | reply to jjoshua
said by jjoshua:When you send a document via FedEx, do they open the package, look at the document, decide if the contents are 'acceptable' and make modifications to it? Of course not. I wasn't aware that Sandvine modified the contents of the data being downloaded. Only that it used the contents in making a decision on packet priority.
--
Norman
~Oh Lord, why have you come
~To Konnyu, with the Lion and the Drum |
|
jjoshuaPremium
join:2001-06-01
Scotch Plains, NJ
kudos:3 Reviews:
·Verizon FiOS
| said by NormanS:said by jjoshua:When you send a document via FedEx, do they open the package, look at the document, decide if the contents are 'acceptable' and make modifications to it? Of course not. I wasn't aware that Sandvine modified the contents of the data being downloaded. Only that it used the contents in making a decision on packet priority. From the OP...
- The interruption is accomplished by sending a perfectly forged TCP packet (correct peer, port, and sequence numbering) with the RST (reset) flag set. This packet is obeyed by the network stack or operating system which drops the connection.
Sounds like it to me... |
|
|
|
 funchordsHelloPremium,MVM
join:2001-03-11
Yarmouth Port, MA
kudos:6
1 edit | reply to NormanS
Upon reflection, I do not wish to post. (my point was was covered by another poster) |
|
NormanSPremium,MVM
join:2001-02-14
San Jose, CA
kudos:9 | reply to jjoshua
said by jjoshua:From the OP... - The interruption is accomplished by sending a perfectly forged TCP packet (correct peer, port, and sequence numbering) with the RST (reset) flag set. This packet is obeyed by the network stack or operating system which drops the connection. Sounds like it to me... Where is the "content" that is being modified? I take "content" to be the content of the file, not the packet header details.
--
Norman
~Oh Lord, why have you come
~To Konnyu, with the Lion and the Drum |
|
CabalPremium
join:2007-01-21
Austin, TX Reviews:
·Suddenlink
| said by NormanS:said by jjoshua:From the OP... - The interruption is accomplished by sending a perfectly forged TCP packet (correct peer, port, and sequence numbering) with the RST (reset) flag set. This packet is obeyed by the network stack or operating system which drops the connection. Sounds like it to me... Where is the "content" that is being modified? I take "content" to be the content of the file, not the packet header details. While I'm the first to support any form of traffic shaping to get the best utilization out of one's network, it's kind of tough to argue that man-in-the-middle attacks, which are what these RST injections are, are appropriate ways to control bandwidth. I wouldn't be surprised if it was a misconfiguration issue, though. I'm seeding successfully now with no issues, as usual.
--
Interested in open source engine management for your Subaru? |
|
funchordsHelloPremium,MVM
join:2001-03-11
Yarmouth Port, MA
kudos:6
1 edit | Like I hope I mentioned at the top of the thread, BitTorrent seems to be the least affected overall of the protocols that I tested. I was able to hit and maintain my top requested speed and number of connections with BitTorrent. However, in reviewing the packets I received using Comcast vs. non-Comcast, the number of RST-driven drops was multitudes higher with Comcast.
With Sandvine, the goal isn't to prevent P2P. The goal is to reduce the cost of your P2P connections. If Sandvine can cause your client to drop an expensive connection, your client will seek a new connection -- and hopefully find one that is either within the Comcast network or one that takes a less expensive or congested route outside of the network.
Tip: For some reason, the injected RST triggers the WINSOCK error 10053, which is (Connection Aborted by local software) and not the 10060 (Connection Reset by Peer.) So if you're not looking at packets, but you are looking at logs from your P2P client -- look for 10053.
Edit: I see that I didn't mention that BitTorrent seemed the least affected of the protocols that I tested. In my tests: Gnutella uploading was completely stopped. ED2K uploading was heavily affected. And BitTorrent uploading was the least affected. Interestingly, that list tends to inversely follow the current popularity of each protocol.
--
Robb Topolski -= funchords.com =- Hillsboro, Oregon USA
~ Keeper of the D-Link FAQ ~ Did you Search? ~ More features, Free! Join BBR! ~ |
|
funchordsHelloPremium,MVM
join:2001-03-11
Yarmouth Port, MA
kudos:6 | reply to NormanS
said by NormanS:said by jjoshua:From the OP... - The interruption is accomplished by sending a perfectly forged TCP packet (correct peer, port, and sequence numbering) with the RST (reset) flag set. This packet is obeyed by the network stack or operating system which drops the connection. Sounds like it to me... Where is the "content" that is being modified? I take "content" to be the content of the file, not the packet header details. Without arguing semantics, your understanding is correct.
In the RFCs, the use of the RST flag was never intended to be changed enroute. It was intended for the endpoints of a connection to avoid a lingering open TCP socket condition when connectivity was interrupted. So there is alteration, but not of the payload.
However, it is unexpected to have an RST flag on a data packet, and it is unclear in the RFCs what the receiver is supposed to do with the data payload at that point.
I did notice that empty (no data payload) RST packets were also received, apparently forged to appear that it came from the endpoint.
In short, the RST TCP/IP flag is being modified on some data packets. Also, in some cases a packet is forged to appear like it came from the endpoint with the RST flag set.
--
Robb Topolski -= funchords.com =- Hillsboro, Oregon USA
~ Keeper of the D-Link FAQ ~ Did you Search? ~ More features, Free! Join BBR! ~ |
|
