We all just been trolled by TM. While we discussing advanced methods, DoH, DoT, VPN, self-hosted; the simplest method from 10 years ago still works.

Just change your DNS server.

You know like how we use to change TM's DNS to 8.8.8.8. Of course, we cannot use 8.8.8.8 anymore. But a simple DNS change is all that it takes.

Note that this is only for Unifi. This method won't work on Maxis cos Maxis is smart.

And not because TM is dumb but because they need a simple way for their staff to access the ahem sites. "Go home, use this as your DNS, kautim" thereby saving the live of that one particular TM network engineer.

Mine also OK. Using neighbour's wifi, stock Unifi.

It doesn't matter as the ISP got full visibility on port 53

They can't redirect entire port 53 either as it will break many things

In fact, them messing with 1.1.1.1 already cause issues with companies that use Cloudflare Zero Trust

Yeah, hence I said there that even if you complain they will just ignore. But if anyone wants to take action that is probably the best thing they can right now other than mass canceling TM contracts in protest.

The worst part is that we're not even close to September 30th. Who knows what else will end up not working by then?

Actually mine in JB as well. But I have already migrated to another solution to prepare, just in case. I’m still testing from time to time to see if they have implemented this at my area

Since when law apply to government?

Do you understand that this is an order from the government?

Imo, the majority will soon be rudely awakened when the socmed companies refuse to comply with the government's directives to apply for licensing to continue their operations in this country.

What they're doing right now is obviously a precursor to prevent the majority from easily bypassing their measures once the bans of platforms that refuse to play ball with them gets enforced.

It will no longer be something that only affects the IT literate minority like us at that point, and there will be hell to pay.

It'll also be interesting to see who backs down first, the socmed giants (FB, Tiktok etc) or the government.

No wonder only https://dns10.quad9.net/dns-query is working on my Adguard.

Method 1:


Method 2:

DNS job is to just resolve domain name into IP.

dns.google resolves to 8.8.8.8 and 8.8.4.4

Both IP addresses are hijacked on BGP level.

Just VPN, it's easier.

Run VPN on your router then

Even a mid spec router can support 900+ Mbps on Wireguard now

RM0 Unifi: Hi. Do you know we've upgraded your account XXXXXXX@unifi to a higher speed for FREE? Your profile will be updated soon. Enjoy your new speed!

mean got one more upgrade speed?last year 500 free upgrade800

DNS Shield is just DoH, right?

So you mean they can detect even the presence of DoH now and can DC you immediately regardless of which DNS resolver you connect to?

Saw on /k tered that DoH and DoT are not actually blocked and something about TM not having certs?

Does that mean if TM's servers functioned properly, then 8.8.8.8 and other famous DNS would still be usable with DoH, or still blocked?

There was a misunderstanding here. I meant the significance of them just switching on HTTPS on their hijacker servers. I already know why this DNS block is bad.

Like another forumer here, I draw the line at a government that tells ISP to hijack DNS that is NOT theirs.
Yeah, that's why I mentioned I was confused, especially since it doesn't change anything for the end user.

Two clients of mine using Unifi Biz already kena. Tested. All the third party dns service in chrome unable to be used. Location: PJ

~gg liao

Well he's awake and is looking into the artstation block

https://x.com/fahmi_fadzil/status/1832063432038011117