Outline ·
[ Standard ] ·
Linear+
YouTube Deep Packet Inspection, All HTTP connections being MITMed
|
zaqplm
|
 May 1 2013, 04:13 PM
|
New Member
|
I can confirm using Maxis broadband, I can't open the above videos. After the advertisement, youtube just shows "an error has occurred". Not even 1 sec of the video is shown. This is very similar to "HTTP-Video" block we applied on our Fortigate device in our office, but I've tested this without any firewall device. So TM is really applying Deep Packet Inspection to certain youtube videos. You can also test the links below: http://www.facebook.com/DAPMalaysia <-- Fails to open https://www.facebook.com/DAPMalaysia <-- Opened OK |
|
|
|
|
|
zaqplm
|
May 1 2013, 06:07 PM
|
New Member
|
QUOTE(rizvanrp @ May 1 2013, 05:28 PM) @zaqplm Holy shit you're right : CODE echo -e 'GET /DAPMalaysia HTTP/1.1\r\nHost: www.facebook.com\r\n\r\n' | nc.traditional any.ip.address 80 .. fails after first ACK with TCP stream being dropped :  Anything else : CODE echo -e 'GET /DAPMereisia HTTP/1.1\r\nHost: www.facebook.com\r\n\r\n' | nc.traditional any.ip.address 80 .. works without any issues :  They're inspecting all HTTP request and blocking anything with 'Host: *facebook.com' with a GET request method for '/DAPMalaysia'..! Btw are you on Maxis fiber over TM infra or directly in a Maxis broadband area? What kind of third world country is this I'm using normal 3G HSDPA broadband dongle with a Maxis sim card. |
|
|
|
|
|
zaqplm
|
May 2 2013, 12:11 PM
|
New Member
|
QUOTE(khelben @ May 2 2013, 07:52 AM) The above video failed to open. TM Unifi Biz, 20 Mbps x 4 lines. All failed to open. |
|
|
|
|
Quote
0.0222sec
0.32
6 queries
GZIP Disabled