|
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
|
Re: [PLUG] Comcast spoofs on network to block P2P
|
Comcast has been doing this for years, and they explicitly do it to
ensure network quality - thats why its random. There is actually a
human at Comcast who determines if the traffic should be dropped
based on other network conditions. For example, they do it with IPSEC
traffic, but it is solely at the whim of whomever is in the NOC. So
sometimes IPSEC gets dropped right away, other times it will work for
hours.
Most ISP's have in their ToS a clause that says they reserve the
right to preserve network quality for all users. The company
interprets that to mean they can drop IPSEC or terminate gnutella in
an effort to protect network quality for the whole.
Unlike leased lines services, Comcast and Verizon dont explicitly
guarantee anything. They dont guarantee bandwidth amounts, uptime, or
protocol.
Comcast is a bigger culprit then Verizon because site-wide they are
having serious capacity issues which is effecting internet access,
and also HD channels and on-demand.
I am actually amazed Comcast is still in business. Directv has them
beat in HD capacity, FiOS and next-gen DSL should have them beat in
data, and their old cable infrastructure is getting close to
extinction with no possibility of quick upgrade. Somehow they keep
managing to slither through it all.
Just today I saw an add where Comcast claims to have 16Mbps. That
must really piss off verizon. They spend millions rolling out Fiber,
to start a base package of 15Mbps, and one day Comcast just comes
along "coincidentally" and says we have 16Mbps, one notch about the
base Fios package.
-John
On Oct 20, 2007, at 9:58 PM, Toby DiPasquale wrote:
On Sat, Oct 20, 2007 at 09:29:39PM -0400, zuzu wrote:
On 10/20/07, Toby DiPasquale <toby@cbcg.net> wrote:
On Sat, Oct 20, 2007 at 08:30:11PM -0400, zuzu wrote:
is this fraud? identity theft?
isn't this how China operates its national firewall? (spoofed
RST packets)
Dood, every firewall in existence has this ability and its
employed on a
regular basis. (*) I don't like what Comcast is doing any more
than anyone
else but the technique is legit. Complain about the use, not the
tool.
I didn't mean to imply the problem is the tool. I'm merely curious
about the technique and its deployment by ISPs (as well as possible
countermeasures). I did intent to complain about the use; the
problem
is the spoofing, I think.
And I'm saying the problem is not the spoofing. "Spoofing" RSTs in
order
to snap abusive connections specified by the network administrator
(s) is
an everyday thing. The problem is that Comcast is interfering with
traffic
that its users pay them to transit because it competes with
Comcast's TV
and on-demand revenue stream. It would be exactly the same if they
were
doing traffic shaping via queues or RED. In fact, snapping both
halves of
a connection is the fastest and most efficient way of stemming this
traffic so I guess we should be thankful Comcast is *not* degrading
its
network further by trying to get its core routers to do TBF or RED
on the
BitTorrent traffic.
--
Toby DiPasquale
______________________________________________________________________
_____
Philadelphia Linux Users Group -- http://
www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-
announce
General Discussion -- http://lists.phillylinux.org/mailman/
listinfo/plug
___________________________________________________________________________
Philadelphia Linux Users Group -- http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug
|
|