TIME/MCMC blocking bootstrapcdn?
|
|
 Sep 18 2022, 03:42 PM, updated 4y ago
Show posts by this member only | IPv6 | Post
#1
|
 
Junior Member
13 posts Joined: Oct 2020 
|
It seems like TIME or MCMC is blocking maxcdn.bootstrapcdn.com.
It's a CDN used by a lot of websites to provide CSS and Javascript. Blocking it has resulted in many websites not loading and broken.  maxcdn.bootstrapcdn.com is being redirected to mcmc.time.net.my Can anyone confirm that it's being blocked that's using TIME or other providers? I am only using TIME so I can't test it on other providers. I tested it on my phone, laptop and computer with default DNS and it's all being redirected to mcmc. |
|
|
|
|
|
Sep 18 2022, 03:55 PM
Show posts by this member only | IPv6 | Post
#2
|
Junior Member
749 posts Joined: Jul 2016 
|
not blocked by unifi.
edit:seems to be not true as I always do not use unifi dns. I will not know if unifi is using dns blocking on this This post has been edited by akhito: Sep 19 2022, 09:11 AM |
|
|
Sep 18 2022, 06:31 PM
Show posts by this member only | IPv6 | Post
#3
|
|
Senior Member
2,611 posts Joined: Nov 2020
|
Seems like it's also blocked by U Mobile
================== Query for hostname: maxcdn.bootstrapcdn.com Name server: 123.136.100.2 Name server ip address: 123.136.100.2 Timestamp: 18/09/2022 18:31:19 ================== SOA RECORD DOMAIN: maxcdn.bootstrapcdn.com ADMIN: hostmaster@ns1.rpz.myblacklist11.org SERIAL: 2022091538 REFRESH: 10800 RETRY: 3600 EXPIRE: 604800 MINIMUM: 86400 TTL: 3600 (1h) =============== RAW DATA: ns1.rpz.myblacklist11.org. hostmaster.ns1.rpz.myblacklist11.org. 2022091538 10800 3600 604800 86400 =============== Generated by DNSDig https://play.google.com/store/apps/details?...m.a2raco.dnsdig EDIT Also blocked by Maxis CODE pi@pizero:~ $ dig @58.71.136.10 maxcdn.bootstrapcdn.com ; <<>> DiG 9.16.27-Raspbian <<>> @58.71.136.10 maxcdn.bootstrapcdn.com ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 57061 ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 1, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 4096 ;; QUESTION SECTION: ;maxcdn.bootstrapcdn.com. IN A ;; ANSWER SECTION: maxcdn.bootstrapcdn.com. 1800 IN CNAME mcmc-redirect.maxis.com.my. mcmc-redirect.maxis.com.my. 3600 IN A 175.139.142.25 ;; AUTHORITY SECTION: rpz.blacklist.maxis.com.my. 1800 IN SOA ns8.maxis.net.my.rpz.blacklist.maxis.com.my. hostmaster.ns8.maxis.net.my.rpz.blacklist.maxis.com.my. 2022091683 10800 3600 604800 86400 ;; Query time: 10 msec ;; SERVER: 58.71.136.10#53(58.71.136.10) ;; WHEN: Sun Sep 18 18:40:00 +08 2022 ;; MSG SIZE rcvd: 198 Normally i don't realize this as I'm normally using a 3rd party DNS server This post has been edited by PRSXFENG: Sep 18 2022, 06:40 PM |
|
|
Sep 19 2022, 09:16 AM
Show posts by this member only | IPv6 | Post
#4
|
|
Junior Member
749 posts Joined: Jul 2016
|
 hmm seems like MCMC blocked because PDRM claimed it was used for online gambling activities  Source:https://www.reddit.com/r/malaysia/comments/...rm_shenanigans/ |
|
|
Sep 24 2022, 03:01 PM
Show posts by this member only | IPv6 | Post
#5
|
All Stars
11,458 posts Joined: Oct 2007 From: KL
|
QUOTE(Kraii @ Sep 18 2022, 03:42 PM) It seems like TIME or MCMC is blocking maxcdn.bootstrapcdn.com. Yup, TM DNS server (1.9.1.9) also same.It's a CDN used by a lot of websites to provide CSS and Javascript. Blocking it has resulted in many websites not loading and broken. maxcdn.bootstrapcdn.com is being redirected to mcmc.time.net.my Can anyone confirm that it's being blocked that's using TIME or other providers? I am only using TIME so I can't test it on other providers. I tested it on my phone, laptop and computer with default DNS and it's all being redirected to mcmc.  I'm sure those online gambling sites have a FAQ on how to bypass ISP DNS block. |
|
|
Sep 26 2022, 11:19 AM
Show posts by this member only | IPv6 | Post
#6
|
Senior Member
2,399 posts Joined: Jul 2009 From: /dev/null
|
Issue like this, website seriously need an E-SNI/ECH and DoH as default! encrypt domain name making ISP Layer 7 Firewall useless, also no need VPN!
|
|
|
|
|
|
Sep 27 2022, 08:15 PM
Show posts by this member only | Post
#7
|
Junior Member
29 posts Joined: Jun 2012
|
In before Cloudflare and Googleapis gets blocked for being in use by almost every "illegal" website.  Circumventing blocks is never, ever the solution. Blame lies with the authorities for letting stupid mistakes like this get rubberstamped and it falls on the lawmakers to ensure the vetting procedure gets a more thorough treatment. (Email your MP!) PRSXFENG liked this post
|
|
|
Sep 27 2022, 08:51 PM
Show posts by this member only | IPv6 | Post
#8
|
|
Senior Member
2,611 posts Joined: Nov 2020
|
QUOTE(a_capybara @ Sep 27 2022, 08:15 PM) In before Cloudflare and Googleapis gets blocked for being in use by almost every "illegal" website. Fun fact, they did accidentally block some of Cloudflare's AnyCast IPs onceCircumventing blocks is never, ever the solution. Blame lies with the authorities for letting stupid mistakes like this get rubberstamped and it falls on the lawmakers to ensure the vetting procedure gets a more thorough treatment. (Email your MP!) https://forum.lowyat.net/index.php?showtopi...ost&p=100742112 |
|
|
Sep 30 2022, 11:09 AM
Show posts by this member only | IPv6 | Post
#9
|
|
Senior Member
2,399 posts Joined: Jul 2009 From: /dev/null
|
Using DNS over HTTPS (DoH) and TLS 1.3 (ECH) can bypass
DoH to protect DNS IP Query, meanwhile TLS 1.3 protect SNI in wireshark, TLS host is encrypted when using version 1.3 now Web Server need to support and enable TLS 1.3 |
| Change to: |  0.0181sec
 0.35
 5 queries
 GZIP Disabled
Time is now: 15th December 2025 - 07:38 AM |
Quote