Same. The block seems to be back up

I figured out a bypass, but it is confirmed that it's a routing block. All signs point to a linux iptables-style blockage. Also, since these blockages are likely logged (I am quite well versed with the way IPTables worked), it is possible that the log will be scruntinized and the workaround be fixed soon.

Here's how to do it. No point keeping it a secret since it's logged on their effing server. You'll need to be already on GoogleDNS first:
1. Open a tab and point it to a nonexistant page on Megaupload's site to get a 404 (ie. www.megaupload.com/\)
2. Open another tab and load Megaupload again. It will work.
3. After a while the connection will fail again. Go back to the tab with the 404 and refresh.
4. You'll earn yourself another few minutes
5. Rinse and repeat.

This is definitely a no-go for large files when using a free account or having no account at all, since you cannot resume.

For once Linux is a villain here

The best way is to just cut off Yes and let them pokai and die.

This post has been edited by RAMChYLD: Jun 30 2011, 10:55 AM

Woops seems like the blockage happened again.

Since I'm not well versed with networking stuff, I try RAMChYLD steps and it works if not permanently.

Oh well this will be my last top up for YES. I'm done with it.

I still owe them 3 months credit because I bought the Huddle on 12 month installment. Will not top up after this is done with and will see if I can return the damn thing.

It's really sad. Before all this blocking nonsense Yes was the best mobile ISP out there. Really sad to see it degrade down to this

From what you describe, it doesn't look like an iptables block. If they wanted to just block destination IP ranges, they would just drop the routes for it. Less CPU usage, no need to read into TCP/IP headers so much. Anyway if opening a tab twice works, it means they could be using DPI which fails on pipelined HTTP requests. If you can open a non-existant page on megaupload.com, it means :

1) Using another DNS works -- they're not touching DNS queries. You can still resolve *.megaupload.com to whatever IP.

2) There is no route block, you can still reach megaupload's subnet.

3) When you first 404 on megaupload, your browser has opened 1 TCP connection to megaupload.com. The second *valid* request is then pipelined through that same TCP connection (as per the HTTP/1.1 RFC spec) and their DPI doesn't pick up on it because it's only logging the first few bytes of the TCP stream. I've seen this behavior on TM's Streamyx DPI last year which I believe was a Sandvine box.

So basically, to bypass this without a VPN you could open a TCP connection with megaupload.com on TCP port 80, send a fake invalid HTTP request such as :



.. then follow up with a :



That's what your browser is probably doing anyway Of course, you would need to program a tool to automate this behavior (unless you like piping binary data out manually from netcat) but it works.

Must be a bug in the DPI, needs a successful HTTP for blocking. Anyway, VPN is a way go to.. Why YES not just do simple DNS block like everybody else.. hehehe..

After my Yes credit finish, i'm not going to reload.
Just use my unifi at home plus wifi at office.

Well, in any case, it's still an uncalled for move.

After my yes credit finish, I'm going to just go back to tethering on phone. I stupidly topped up my yes credit just before finding out that they were blocking the site using DPI. In fact, I'm going to see if I can just cancel the damn line and try to get whatever left in the credits back.

*sigh* really shows which ISP really cares for the rakyat. Nevermind that Yes is already s*** expensive, but it's determination to subdue the subscribers really show us their true colors.

This post has been edited by RAMChYLD: Jun 30 2011, 08:52 PM

I think its more obvious in mobile/wireless ISPs that the trend is to attempt to save as much bandwidth as possible. They already had the DPI boxes in place, might as well use it to enforce a gov order if it's going to save them bandwidth. Any ISP operator would be able to tell you that its nearly impossible to blacklist a website.

Anyway, I'm just curious why people still subscribe to single download services like MU/FS/HF when there are multi-DDL site services available for lower prices on the net? Not rapidleech or anything but the ones that allow you to proxy through them to download as a premium user. That's what I use on my Unifi line and I get 20mbps to any DDL site easily :3

For me I use it to upload video files for oversea clients (as they have premium FS account).

I'm curious on the multi-DDL site services that you mentioned? Any examples? :3

I'm currently using real-debrid.com. I've tried a few other sites like it but they normally have speed caps at like 10mbps. It's about RM18 for 30 days. I guess I can understand if you need to upload files but if you're just a leecher.. =x

I don't understand how that's going to help YES as YES earn its revenue from pay per use basis. Why would they want to save the bandwidth?

Wireless base stations don't exactly have unlimited bandwidth, doesn't matter how much you pay if the infra can't support it :3

I see, thanks for explaining.

You'd think they'd use the money to upgrade the infra given how much they untung because the price of the subscription is the most expensive in Malaysia unless you take prepaid mobile internet into consideration.

And oh, if you think you can work around this using VPN, forget it. VPN is not stable with YES, and is totally unusable with Win7- PPTP disconnects as soon as you try to browse the internet and L2TP and IPSec is blocked.

This post has been edited by RAMChYLD: Jul 1 2011, 12:08 PM