Cable Packet Shaping Causing Slowdowns

knorthern knight writes "To counter P2P programs that encrypt their traffic to evade detection, Rogers Cable in Canada has apparently started degrading all encrypted IP traffic, according to a post on Michael Geist's blog. How many of you log in to work over a VPN or ssh-tunnel? How many get usenet news or email over an encrypted connection? This could be a problem for Rogers Cable customers. Geist, who teaches at U of Ottawa, has 'been advised that the University computer help desk has received a steady stream of complaints from Rogers customers about off-campus email service.'"

Who said you were supposed to use your connection?

[garcia]

Cable companies do NOT want you to actually use your Internet connection for anything more than connecting to their webmail, POP, or SMTP servers and surfing CNN, Google, and their billing site.

We have known for years that they have been overselling bandwidth and then cutting you off when you use more than their "unlimited service" will permit without telling you any concrete numbers of what that is.

I would guess that very few people use SSH, VPNs, or other encrypted connections that require the speeds to which we have become accustomed. They don't want that 10% of users on their residential network anyway and they will be happy to have you move to their commercial service packages if you so desire.

I complain that I have to use DSL and pay for land line service that I rarely use but at least my ISP (visi.com) doesn't give a shit what I do (they allow you to run servers, use all your bandwidth, and offer static and reverse).

I feel sorry for those that don't have more of a choice :(

Re:Why aren't the companies smarter?

[Anonymous Coward]

So why not offer GRADUATED pricing levels? 2 GB/month for $x. 5 GB/month for $2x. 10 GB/month for $10x. You could even break it down to traffic that stays on your own network and traffic that reaches the Internet.

The reason for this is because they want to sell an "unlimited" package to people who will only use 2GB/month. Most people want to have unlimited traffic even if they have no concept of the amount of traffic they need.

don't blame

[feldsteins]

I'm no fan of cable companies, but someone has to speak up about the problems associated with P2P. I'm aware of some educational institutions that saw their newly upgraded networks come to a complete grinding halt - simply because of P2P sharing. They had no choice but to shape their traffic so that other business could get done. They didn't ban it or shut it off. They simply said X amount of our bandwidth can be used for it during business hours and Y amount at other times. And now look what's happened: P2P clients have deliberately foiled such attempts by encryption. Great. Now those institutions will be crippled once again by dorms full of students sharing their entire music collection to the world, many not even aware that they are doing it.

I don't want to kill P2P. I am no fan of cable companies or the RIAA or the MPAA. But don't blame network admins when they have to fight back on this stuff!

Re:don't blame

[CrazyBrett]

Fine. So put intelligent rate or bandwidth caps on and be upfront about that policy (this goes both for cable providers and universities). You used to be able to build networks with the assumption that most people wouldn't be transferring data most of the time. This simply isn't true any more.

This won't fly.

[644bd346996]

Telecommuting is too popular for this tactic to work in the US. There are some very powerful companies that have a vested interest in VPNs being reliable and responsive. How many of you think Cisco would let ISPs get away with this? Sure, Cisco sells lots of expensive hardware to ISPs, but they also sell a lot of hardware and software to businesses and consumers so that VPNs can be established.

Also, I know that many employees of my local and state governments use VPNs daily. If their VPN connections get any slower, they will be well-nigh unusable. This is essentially a lower-stakes version of NTP wanting to cripple every congressman's BlackBerry. Our monopolies seem to be forgetting rule #1: don't piss off your regulators!

Re:Who said you were supposed to use your connecti

[vertinox]

I would guess that very few people use SSH, VPNs, or other encrypted connections that require the speeds to which we have become accustomed.

Actually, some major companies out there have several thousand "work at home" employees that are required to use VPN. Most of these people are in sales type of jobs, but plenty others are required to use VPN to connect to Exchange servers to access email from home.

Considering MS Exchange and dialup don't really mix, these people often have to have broadband to do their jobs efficiently. Seeing how not having VPN with an exchange server is a security risk, I can't really see any alternatives for these work at home types other than to switch to the provider who downgrades them the least.

Keep in mind these people are often working on company laptops who are locked down completely and couldn't install P2P software even if they wanted to.

Re:... But these are essential

[ObsessiveMathsFreak]

There are reasons why p2p systems have started encrypting their traffic.

Three words.

Deep Packet Inspection.

Solution: Encapsulation

[RadicalHiltz]

The whole attempt to slow encrypted traffic is useless, simply taking the encrypted packet and running it through say, http encapsulation, would make it impossible to degrade; that is only if they are not willing to shape http requests.

Maybe they should just

[pair-a-noyd]

upgrade their shitty equipment?
Seems like I have read over and over about how North America is like pretty much at the bottom of the ladder of high speed Internet service compared to the rest of the world with the exception of places in Africa.
I think I read places like France and Korea have gigabit service pretty much nation wide.

WHY is the (used to be) world leader of technology and one of the richest nations on Earth (USA) still dragging it's feet and living in the past? I know so many people that are STILL running 54k dialup modems at home but their actual throughput averages around 48k. And they are paying an average of $30 a month for such sorry service! Not to mention, frequent disconnects, busy trunks in the evenings, etc..

How pathetic.

These companies have no interest in providing a quality service, their only interest is milking their customers for as much as possible as long as they can. They'll continue to use antiquated and archaic equipment to provide substandard service until they are FORCED to by either massive equipment failures or court order.

Workaround?

[TerranFury]

Perhaps one could slap HTTP headers on all traffic, call everything either a GET or a PUT request, and tunnel out with only a modest overhead?

If everyone flushed their toilets at one time

[davidwr]

Telcos have ALWAYS oversold their capacity. So do most other businesses.

If EVERYONE tries to use their phone at the same time, there are problems. Remember trying to make a cell call anywhere in greater New York City on 9/11? Nevermind the destroyed equipment, the demand on each cell tower was just too much.

Even today, on busy days like Mother's Day, it's hard to get a long-distance call between certain cities on certain carriers. It's not as bad as it used to be thankfully.

Other businesses do the same thing. Ever tried to get into a computer store at 5AM the day after Thanksgiving? Some stores have fire-wardens at the door and when the store reaches fire-code capacity they won't let anyone else in until someone leaves. There's a popular restaurant I used to go to that took a different approach: They kicked you out after a certain period of time during peak hours. Think of it as "traffic-shaping" your restaurant experience.

Re:don't blame

[feldsteins]

The solution cannot be to simply throttle all traffic from dorms. People in dorms are often doing academic work. We cannot lump those packets together with music and movie sharing and then simply throttle the whole thing down to where we know it's going to crawl. That solution does not work. We have to have a way to segregate it.

Re:Who said you were supposed to use your connecti

[vertinox]

How does what you describe not fit under the umbrella of "very few people"?

Perhaps if I meant "very few people with influence" it would have made more sense. If a company (who chances are you buy a daily product of every day) notices that its employees can't do its job because of another company... Well they might say something either to the other company or to another press related group.

Of course I think I forgot to mention the company I'm referring (vaguely) to is in the States and their sales reps are regional so they would all have different ISPs.

Re:Why not pay as you go?

[bendodge]

No, because it isn't a free market. It's monopolized by a handful of backbone providers who are frequently supported by your taxes.

Re:Sometimes There is No Choice

[Dunbal]

Obviously we can not charge people 10x southern rates for our service, so we have to manage our capacity very carefully, and that includes traffic shaping that deprioritises traffic that can not be identified as a common protocol.

I am able to confirm that their traffic is mistakenly being considered rogue

      OK, it's your network and if you have no competition, I guess you can do whatever the heck you want. However a few questions spring to mind:

1) Why can't you charge more? I would assume that everyone up north is in the same boat as you. It would be silly to assume that the same rates apply in the bush or in downtown Toronto.

2) Are you advertising a bandwidth you are not able to provide? See when I plug something into the power socket, I expect more or less 110 volts and 60 Hz in North America. If I plug in and get 50V at 50Hz and my electronics get fried, the power company is going to have to replace my stuff. Sure, you don't have to provide 3Mb/s to everyone if you're not set up to do it, but you shouldn't really advertise what you can't provide. What people DO with their connection is NONE of your business. Or do you want to be responsible for everything transmitted on your net? You're either a common carrier, or you're not. By the way, do you CLEARLY advertise (just as clearly as your offers of bandwidth) that you throttle or "shape" traffic, or is that buried somewhere on page 4 of the Terms Of Service?

3) Like I just mentioned: who gets to determine what "rogue traffic" is? You? Sure, you own the network - so you've appointed yourself as censor. Is a list of your likes and dislikes clearly provided to your subscribers? Which games are allowed more bandwidth? What if there's a game you don't like at all, because it makes fun of people in northern Canada? Is this game also qualified for more bandwidth?

4) Have you actually tried offering higher throughput for more money to the people who actually use the bandwidth you claim to provide them with? Who knows, maybe they'd be willing to pay.

      I think I would certainly prefer taking a 2000msec delay on a satellite hookup than subscribe to an arbitrarily censored and regulated network.

Re:If everyone flushed their toilets at one time

[Dunbal]

There's a popular restaurant I used to go to that took a different approach: They kicked you out after a certain period of time during peak hours. Think of it as "traffic-shaping" your restaurant experience.

      I certainly wouldn't eat there more than once. Perhaps the owner should consider putting the price up, or building a second floor, according to the laws of supply and demand.

      Then again I guess there's a certain percentage of the population that enjoys being bullied and treated like crap.

Re:Net-neutral service teir

[Dunbal]

This is neutral: All encrypted traffic gets clobbered.

      Great. According to HIPAA, all patient related medical information must be encrypted. I like the fact that my ISP is "neutral" and "clobbering" important medical information. Not quite OMGTHINKOFTHECHILDREN, but close. Why should grandma's refresh on the "crosswords galore" website have priority over, say, an encrypted conference between 2 hospitals?

Re:don't blame

[feldsteins]

I like this line of thinking, however, two small points must be made:

1. There's no way for the IT department to say "sorry, you're in 56k land now" when the student is complaining to his/her parents/dean/professor/pope that they can't get their homework done on our network even though they pay $20k a year in tuition. The only way to limit individual network ports is to do it on a moment-by-moment throttling, not "use it up, you're screwed until the first of next month."

2. It takes a lot more than downloading a television episode to cause the kind of problems we're talking about. We're talking about having gigs of media files downloading and uploading day and night. It's commonplace.

Re:brownout heavy users during peak times

[shmlco]

"The real problem is ISP's overselling their bandwidth for years..."

No, the real problem is that ISPs started throttling p2p users who were consuming all of the available bandwidth and the "geniuses" who just had to have free tunes and movies and software said, "Well, we'll just encrypt all our traffic. That'll show 'em!"

Yeah, that showed them alright. Now everyone is paying for the parasites...

Re:brownout heavy users during peak times

[jafiwam]

Yeah, well in my area both the cable and DSL providers advertise "DOWNLOAD MOVIES IN MINUTES!!!1!!" get all the greatest tunes! Lightning fast games blah blah blah.

Basically, saying they endorse lots of file sharing-like activity in the ads and not just implying faster surfing, but more, and bigger downloads as part of the point of their service.

Which makes tying the ads with the false unlimited claim less forgivable.

But, pretty much everybody should be aware that all telcos and all cable companies are pretty much large industrial fraud engines in the first place. Corrupt and incompetent to the core is the norm in the industry.

That doesn't make the policies and ads any less of a lie though.

Re:If everyone flushed their toilets at one time

[Ph33r th3 g(O)at]

I certainly wouldn't eat there more than once.

And if it had been an all-you-care-to-eat buffet and I had been removed before I was done, I would have disputed the charge for the meal with my credit card company. Why are people such sheep that they put up with this kind of crap?

Re:Ummm, it is not "unlimited".

[Anonymous Coward]

No kidding. Agreed. I would kill that bandwidth in a day.

Also - the suggestion to tier the network would be called a violation of net neutrality to some. What people forget is that this is a private network, and they have to manage it.

Furthermore, I doubt that they are throttling all encrypted traffic. It probably has to reach a threshold. Chances are that traffic that is encrypted beyond that threshold is p2p related. Quit whining and go back to dial-up.

Oh yeah - and overselling bandwidth? Of course! How else would you run an ISP? Charge the REAL price it would cost to guarantee DS-3 speeds to every customer? Seems to me that you'd pay the same price as a DS-3 then. Don't act like such a victim.

Re:Why aren't the companies smarter?

[arminw]

.......there is a chance they can make more money by crippling the system.......

The solution of course is for EVERYBODY to use encryption all the time for everything. Not only would that make ISPs unable to selectively enforce arbitrary levels of service, but it would also make the whole Internet more resistant to malware and spying by governments and corporations. I wonder whether this idea would work technologically? Governments most likely would make it illegal however.

Re:Civil rights my arse

[Anonymous Coward]

It is the distaste of every single human being that is not a paeodphile.

Incorrect. I can cite a number of examples from Judith Levine to Dr Fred Berlin, to my uncle (who told me in confidence, of a fond friendship he had for his neighbor when hew as kid). There are entire cultures that are permissive of this group. There have been entire cultures in the past that encouraged this.

The REAL fact is that most people in our culture agree with you. Stating more than that is simply a bald faced exageration.

Because genetically, memetically and instinctively human beings are coded to be disgusted by paedophilia

Incorrect. No less than two dozen cultures in recorded human history took a neutral view of the act of adults having sex with children. No less than four cultures in recorded human history (several quite long lasting) took a positive view of it. It is very difficult to argue for a genetic aversion with these facts in mind.

We don't even want you in our species so we're not likely to give a shit about your civil rights ever.

There is not much a point of the concept of "rights" unles they are accorded to everyone. If they are not, then they are, by definition, NOT "rights", but "conditional entitlements" or "likely situations" or somesuch nonsense.

No parent wants to even countenance the prospect of anyone that is "attracted to children" being anywhere near their kids.

This is patently false. Dutch researcher Theo Sandfort found that almost one quarter of parents knew of their child's interaction and relationship with a pedophile in his study Boys on their Contacts with Men [amazon.com]. This was in 1970s Amsterdam, which was a very permissive culture. I think there is some truth to your statement in modern American culture, but it is not, as you so fervently claim, a biological imperative. It is simply your desire to believe it is so that your revulsion is more properly justified.

Furthermore we, and yes I do feel apt to speak on behalf of the entire human race, don't want anyone to get even the slightest impression that eroticising infants or engaging in sexual acts with minors is in any way acceptable or tolerable. Nor will it ever be.

I guess I may as well point out that throughout human history, it was more often than not common for a monther to masturbate or fellate their young boys to comfort them. It was actually reasonably common in SE Asian and South Pacific cultures until just a few years ago after the import of many customs and values of western countries. While this is not by my definition "sexualizing" them, it does fall into "sexual acts" as you mention and though I'm glad you purport to speak on behalf of the entire human race, I find it a bit of a *yawn* since you clearly have no context from which to speak, except your own.

Paedophiles are not 'a people'. They do not represent a body of individuals united by race, gender, religion or creed.

Even if you feel that pedophiles deserve no standing or special protections, it is hard to reconcile the message of your post with the wording of your post, because the two directly contradict eachother. You frequently refer to pedophiles as "a group" having special characteristics, but then lash out to claim that they are not a group, but merely a "collection" of sickos. Your indignation and distaste make your post almost patently absurd on face, except that you garner a degree of sympathy for the fact that most people will tend to agree with some of your assertions.

As long as there is a human race, those conducting acts of paedophilia or indeed confessing to be paedophiles will be persecuted and/or prosecuted.

Re:Ummm, it is not "unlimited".

[smilindog2000]

Also - the suggestion to tier the network would be called a violation of net neutrality to some.

I'm sure you already know this, as do almost all /.-ers out there, but just to clarify: the original meaning of "network neutrality" was simply not to discriminate against content providers based on their IP address. In other words, don't block Google and allow Microsoft web sites (because Microsoft pays the ISP, and Google doesn't). Only the new definition pushed by the phone companies in order to vilify the term "network neutrality" would make it illegal to charge different prices for different access plans. It's complete and total BS, and it's working.