Since final yr, our authorities has imposed recurring web restrictions, instructing ISPs to dam all IP-based site visitors throughout sure intervals. This leaves residents with out web entry whereas nonetheless permitting telephone calls and SMS to work. I am making an attempt to grasp the character of this block and easy methods to work round it responsibly for academic functions.
-
DNS Habits:
Once I run a ping command (e.g., ping www.google.com), it efficiently resolves the area to an IP deal with, however no ICMP echo reply is obtained.
Does this imply that DNS queries (port 53) should not blocked? -
Telephone Calls and SMS:
These companies stay unaffected in the course of the restrictions, which means that site visitors for sure protocols or companies is exempt from the block. -
A VPN app known as Apna Tunnel nonetheless works regardless of the restrictions.
How may this app bypass the web block? May or not it’s utilizing unconventional ports, tunneling over DNS, or leveraging mobile infrastructure in a novel manner?
-
Different Broadband Connection:
I accessed a broadband connection from one other state the place the restrictions weren’t in impact. Whereas this labored quickly, it was unreliable and expensive. -
Customized VPN Setup:
I deployed an OpenVPN server on AWS EC2, configuring it to pay attention on port 53 (generally utilized by DNS site visitors). My reasoning was that since DNS queries look like purposeful, working a VPN on this port may bypass the restriction.
Sadly, this didn’t work. I think my lack of networking data could possibly be an element.
-
Primarily based on the signs, how may this block be applied? Is it possible port-based, protocol-based, or one thing extra refined like deep packet inspection?
-
How can I verify whether or not DNS site visitors (port 53) is genuinely unblocked or if it’s solely resolving regionally?
-
What strategies may Apna Tunnel be utilizing to bypass these restrictions? May it contain tunneling site visitors over DNS (DoH/DoT) or exploiting exemptions within the mobile community infrastructure?
-
Are there dependable methods to run a VPN or proxy server underneath such circumstances? If port 53 doesn’t work, what different protocols or methods may I discover?
I perceive the necessity for compliance with native legal guidelines and don’t intend to misuse this data. That is for academic functions and to grasp how such restrictions perform.