Wow. That is quite coincidence. Can you ask your friend to contact
CenturyLink and ask them why this happened. It appears no one has
experienced this or, at least, no one updated the Good/Bad ISP wiki
page with this[0].

You probably chose the meek-google pluggable transport[1]. Basically,
it takes advantage of the fact that someone can run a webserver on
Google's infrastructure (using AppEngine) such that when you establish
a HTTPS session with the webserver, your ISP only see the connection
to Google's servers and not the specific server you're connecting to;
the specific webserver (meek) is defined within the encrypted portion.
When Google receives the connection, it correctly passes the
connection to the meek webserver. From there, the webserver then sends
your connection to a Tor Bridge, which is your first hop into the Tor
network. It's a very cool idea and it seems to work very well. The
current Tor Browser also supports connecting to a meek instance running
on Amazon's EC2 infrastructure and on Microsoft's Azure infrastructure.

[0] https://trac.torproject.org/projects/tor/wiki/doc/GoodBadISPs
[1] https://trac.torproject.org/projects/tor/wiki/doc/meek#Overview
Sounds like it. It would be great if someone directly asks CenturyLink
about this.
It's interesting that resetting the modem allowed you to access the
internet again. I wonder if the internet connection block you
experienced was based on the modem's IP address, and when you reset
the modem it was given a new dynamic IP address - hence bypassing the
block. This reminds me a little of the way China handles connections[2],
but it's still a little early to make a serious comparison.

The more information we can get about this, the better.

[2] https://blog.torproject.org/blog/closer-look-great-firewall-china


Also, as a general aside, please remember that trying to run a
bittorrent client over Tor is a bad idea[3] (the first half is the
relevant portion). I'm not sure if this was the intention, but just a
a friendly reminder :)

[3] https://blog.torproject.org/blog/bittorrent-over-tor-isnt-good-idea

It sounds like they are cracking down on anonymity. I advise you to get
out now because it will only get much, much worse[1].

It would be really interesting if you could ask your friend to describe
the details regarding his Internet connection. What type is it
(fiber/adsl/cable), what kind of router is he using and does this also
happen if he uses another compatible third-party modem/router? And if
he is willing to experiment then it would be great if he could figure
out more details on exactly how they are doing this.

This does sound like some kind of traffic analysis which just breaks it
if it matches Tor? On a happy note, I am glad to hear that pluggable
transports work and allow people in suppressive fascist regimes like
the US to use Tor.

[1]
http://static.everdot.org/video/War_Of_Terror/favourite_AJ_segment.mp4

***@moltennetworks.co.uk wrote:
[...] I then enabled Pluggable Transports
(meet-google or something like that) and now I'm able to connect to
Tor without any issues. This really concerns me as I was able to
repeat the crash by launching Tor Browser Bundle and crash the router

again.

Did you try without using PT? Does this problem with connecting to Tor
directly also occur if you connect to a bridge directly. If they're
blocking Tor they should figure out the bridge is being used to access
Tor and you will shortly experience an offline/non-connectable bridge
or modem/router problem. It's also interesting you say you were
disconnected from the *router* -- what about everyone else. You might
be able to disable remote admin of router settings but that won't stop
them from resetting the device altogether (which might have the
symptom of appearing to be disconnected from the router).

--leeroy

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
As I understand the sequence of events:
1) Use BitTorrent
2) Connection drops
3) TBB cannot connect
4) You restart the router
5) You started using meek-google; everything is working

My first question is: between steps 4 and 5, did you try using Tor
without meek-google? If so, was it still unable to connect?

Some additional questions: Have you been able to replicate this issue
at all? Have you determined if it is BitTorrent which seems to cause
the connection to drop? Is it only downloading Tails that causes the
issue?

The reason I ask these questions is because I do have experience with
a wireless router that (to the extent I can determine) gets overloaded
by BitTorrent traffic. When this overload happens, the router
essentially stops relaying traffic and seems to drop the Wifi link.
However, the wireless router would continue to broadcast its SSID
(confirmed with airodump-ng), implying that it was still active to
some extent.

As you describe, other people using this router were unable to relay
traffic. Restarting the router would fix the problem.

I should also note that in this case the router is customer-supplied
and is separate from the modem supplied by the ISP.

Hopefully this is less alarming.

Austin

-----BEGIN PGP SIGNATURE-----
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=ExY7
-----END PGP SIGNATURE-----

I have had CenturyLink phone service for over 28 years. I had their DSL
for much of that time but I ended up suing them for not delivering on
our basic contracted plan. Century Link is nearly impossible to
contact. I took me 2 years of phone calls and on-line forms to get
caller ID. If anyone can penetrate their personnel firewall, please
disclose to this group. In most on my dealings, CenturyLink was too
under-employed to respond to my requests.

"Larry Brandt" wrote:
If anyone can penetrate their personnel firewall, please
disclose to this group. In most on my dealings, CenturyLink was too
under-employed to respond to my requests.

The problem hasn't even been confirmed as censorship of Tor and you
want to dox them publically using Tor-talk. Is that what you think
Tor-talk is for? Yes of course lets all get right on that for you--so
we can attack their privacy the way they may (or may not) be attacking
their client's? Wrong list. Wrong way of looking at this.

--leeroy