republican-creole
Search:  

 
theme to white backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » US Cable Support » Comcast » Comcast HSI » Comcast is using Sandvine to manage P2P Connections
Search Topic:
 Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Posting:
Links: ·Forum Rules ·Forum FAQ ·Bandwidth Limits ·Copyright Infringement? ·How To Get Help ·How To Post Tips
[Spam] Comcast reporting spam from my IP »
« [CDV] Outgoing Static on calls  
AuthorAll Replies


funchords
Hello
Premium,MVM
join:2001-03-11
Washington, DC
·Verizon Online DSL
·Skype

reply to johnmwilson7
Re: How to test how many connections are being reset by RST pack

said by johnmwilson7 See Profile :

Other than the standard filtering options, any tips on sourcing the resets with this tool?
RST's with a sequence number seq=0 are probably not injected. Everything else is a "maybe" so you have to look at what was happening in the conversation and decide. RST's right on the tail of a bunch of data that was not problematic are very suspicious.

My last interesting discovery is that the injected RSTs had a TTL (in the IP header) of 123. The norm TTL from my computer was 128, and my peer was often in the 110s or 100s TTL. If my peer was coming in TTL=109 but the RSTs were TTL=123, that is surely injected. HOWEVER, someone on the east coast sent me his capture file, and his RSTs that were seemingly injected all had the right TTL for his peer. I don't have enough data -- so look out for that for me.
--
Robb Topolski -= funchords.com =- Hillsboro, Oregon USA
Are you affected by Comcast's RST forging? How to test it! -or- Read my original report.
to forum · permalink · · 2007-08-31 20:36:30 · (locked)

johnmwilson7

join:2007-08-30
Washington, DC

reply to funchords
FunChords,

My next step will be to install WireShark and view the traffic to see what I can see. I am used to using Ethereal on my Linux box, but I can run WireShark on Windows. Other than the standard filtering options, any tips on sourcing the resets with this tool?

Sincerely,

John M. Wilson
to forum · permalink · · 2007-08-31 20:10:07 · (locked)
Thread is
Forums » US Cable Support » Comcast » Comcast HSI[Spam] Comcast reporting spam from my IP »
« [CDV] Outgoing Static on calls  

Wednesday, 09-Dec 10:37:09 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.
page compression OFF
Most commented news this week
· [197] Sprint Sued For Distracted Driving Death
· [81] 3G Network Test Says AT&T Is Tops
· [72] Mediacom Unveils 105 Mbps Pricing
· [62] Sprint Poised For A Turnaround?
· [56] WPA Cracker: Test WPA-PSK Networks In 20 Minutes
· [50] The Future Of Wi-Fi Is Bright
· [47] Site Leaks Yahoo, Verizon Fed Data Share Pricing
· [44] Microwaving Your Innards Is Not 'Extreme'
· [39] Verizon LTE: 5-12 Mbps Downstream
· [27] AT&T Launching New 24 Mbps U-Verse Tier
Most people now reading
· Comcast refused to install 400' feet. [Comcast HSI]
· Windows 7 boot manager editing questions [Microsoft Help]
· New PvE Content [World of Warcraft]
· Buzzing whatchamacallit in ceiling...?? Help identify. [Home Repair & Improvement]
· [How to] Install Asterisk on an Asus WL-520GU router [VOIP Tech Chat]
· persistent connection to qw-in-f113.1e100.net on boot [Security]
· IMG 1.7 (IMG Updates and Discussion) [Verizon FIOS TV]
· Is sleeping similar to being dead? [General Questions]
· HOA Headaches [General Questions]
· Maximizing Rogue DPS for 3.1 [World of Warcraft]