Now many families have more than one computer, and multiple computers need to share the Internet. In the past, most people used routers to share the Internet with multiple computers. However, with the increase of broadband users, china Telecom in various regions began to block the multi-host internet sharing of domestic users, which made many consumers quite confused. Do we need to install multiple broadband lines on several computers in the home to access the Internet? I believe that the practice of blocking internet sharing by China Telecom is unreasonable. I have collected some methods on the Internet to crack the restrictions on Internet sharing by China Telecom. If you need it, try again.
First, let's take a look at how China Telecom restricts multi-host internet access. Many ISPs use a software called "Network Vanguard" to restrict Internet sharing. Network Vanguard uses a variety of methods to detect whether users use shared Internet access, thus limiting. The test methods are as follows: 1. check whether there are different MAC addresses in the data packets of the same IP address. If so, the user is considered to have multiple computers sharing the Internet; 2, SNMP (Simple Network Management Protocol) is used to discover multi-host internet access. 3. The number of concurrent ports is monitored. If the number of concurrent ports exceeds the set number, the Internet access is considered to be shared.
Manual method
For the first method, the solution is to change the Mac location of each computer to the same. In the XP system, most NICs can change their MAC addresses by modifying the NIC attributes in the control panel. In Device Manager, right-click the NIC icon to modify the MAC address and select the properties/Advanced tab. In the "properties" area, you can see a project called "network address" or another similar name. Click it and click it at the bottom of the "value" on the right, enter the MAC address to be specified. You must enter 12 hexadecimal numbers or letters consecutively. Do not enter "-". After the system is restarted, the setting takes effect.
In addition, you can also use some free MAC address modification software, such as SMAC and Super Rabbit magic settings, which is easy to use and equally effective for different systems.
For the second method, some routers and ADSL cats are built into the SNMP service. You can use the corresponding tools to check whether users share the service. Check whether the SNMP service is enabled on the vro or cat. You can use ipscan or superscan to check whether port 161 is enabled. If yes, the solution is to disable port 161 of SNMP. If you use a vro or enable the ADSL Cat's route mode to share the Internet, you can go to the management interface and turn it off with the SNMP option. If the management interface of the cat does not turn off the SNMP option, you can buy a router without the SNMP service, such as the TP-LINK TL-R400, put in the middle of ADSL Moden and hub.
If we encounter the third method to restrict Internet access, we can only sigh. In this setting, "Network Vanguard" continuously scans the number of ports opened by users. If the number is greater than the set value, it is considered to be Internet sharing. Even if the number of ports accessed by a single user exceeds the set value, we also think it is shared. In this case, we can only call the customer service department to complain.
Page 1: Software Used
Use software
Yundun is a good software for breaking through the shared block. It is easy to use. It uses the underlying network drive and packet Camouflage Technology of windows to effectively break through various network blockages, it also provides powerful firewall functions to protect user security.
The software is very easy to use. You only need to disable the SNMP service of the router or proxy server, select the NIC used for accessing the Internet, and specify the static Nat port specified for the local machine on the Broadband Router, you can save the configuration and use it easily by cainiao.
Shared Alibaba Cloud security breaks through sharing restrictions
Yundun allows you to view the network bandwidth Status and Application Firewall Status to detect the upload traffic, download traffic, upstream speed, download speed, and firewall details logs.
Shared network bandwidth status
The shared security firewall can filter most malicious websites. Its firewalls are divided into HTTP firewalls and FTP firewalls. Both firewalls provide different security levels.
Shared Security Application Firewall
As long as shared shield is installed on each computer in the LAN, the Internet can be shared. However, we should remind you that the restrictions of China Telecom will also be upgraded, therefore, you must pay attention to the synchronous upgrade of the software to ensure the camouflage effect. Of course, China Telecom may have different restrictions. The above methods are collected from the Internet for reference only. You can try them out.
Unity
Battle MAC address
「 Telecom shield 」
Scan MAC address
Generally, we use a vroadsl to share the Internet access through ADSL through NAT (address translation). Through the adslmodem or NAT Function of the vro, we encapsulate a valid public IP address in the packets sent from the original Intranet computer, this IP address is used to access the Internet, and the original MAC address and IP address are used as the original address. Nat forwards the IP address to the specified Intranet computer, and the Internet cannot know the Intranet situation. By constantly scanning, telecom operators can check whether the same IP address packet contains multiple MAC addresses to determine whether users share the internet.
「 Netizens 」
Modify MAC address
For such restrictions, the common method of cracking is to change the MAC address of each server to the same one, commonly known as copying MAC addresses. First, you need to obtain the MAC address of the Local Machine by right-clicking "Network Neighbor" and selecting "properties", right-clicking "Local Connection", selecting "status", and clicking the "support" tab, the "actual address" displayed in the "details" tab is the MAC address of the local machine. There are three specific modification methods.
1. Modify the Registry
Enthusiastic netizens said that by modifying the registry, users can avoid sharing restrictions on telecom users.
For example, run the Windows Registry Editor under winodws98 and expand "HKEY_LOCAL_MACHINE/system/CurrentControlSet/services/class/net ", the subkeys similar to "0000, 0001, and 0002" are displayed. Click the "0000" sub-key and search for the content of the "driverdesc" sub-key until the information about the NIC registry is exactly the same as that of the target. After the correct Nic is found, click "Edit/New/string" in the drop-down menu and the name of the string is "networkad-dress ", double-click the name of the newly created networkaddress string to enter a value. Enter the new MAC address value you want to specify. Add a string value "paramdesc" under "networkaddress", which will be used as the description of "networkaddress". The value can be set to "macaddress ". Modify the content you want and restart the computer.
2. Modify Nic attributes
Most NICs can change their MAC addresses by modifying the NIC attributes in the control panel. Right-click the NIC icon in the Device Manager and choose the NIC icon to modify the MAC address, and select the "properties/advanced" tab. In the "attribute" area, you can see a project called "networkaddress". After opening the project, enter the MAC address value to be specified under the "value" on the right, it takes effect after restart.
3. Use third-party software
If you are a Windows/XP user, you can use the MAC address to modify the software SMAC. After running SMAC, the list box in the window lists the working NICs on the computer. After selecting the NIC to be modified, enter a new MAC address in the six input boxes below the list box, and click "updatemac" on the right. After the modification is complete, you also need to restart the system to make the settings take effect.
Round 2
Battle SNMP (Simple Network Management Protocol)
「 Telecom shield 」
View SNMP
Some telecom operators use more advanced detection methods to view SNMP (Simple Network Management Protocol ). Some routers and adslmodem have the built-in SNMP service, and some use the "161" product as the service port. The operator can view and determine the number of computers that share the Internet through the ADSL line through the software.
「 Netizens 」
Disable SNMP
If the Web management interface of adslmodem contains the SNMP option, disable it. If you cannot disable it on adslmodem, you can also disable the SNMP service on the router to achieve the same effect. You can disable the SNMP option on the "management" and "service" interfaces of the vro.
Round 3
Battle dialing software
「 Telecom shield 」
Star speed
The new generation of wide and narrow band user Desktop client software, which is researched and developed by Guangdong Telecom. Its main function is to provide broadband and narrowband dialing functions in the existing Windows operating system environment, and provide a wide range of value-added services in the client, including through the active cooperation with various sp, applications with rich content and diverse interests are integrated into the client in the form of plug-ins, and the browsers commonly used by Internet users are seamlessly integrated into the client in a customized form.
However, according to the user's report, once installed, there is no difference between this and other dial-up software based on the pppoe protocol, the user will not be able to share the Internet with the router. A technician who analyzed the software told reporters that it had set up a password-Protocol converter internally. After installing the software and dialing the software, the system will automatically bind the broadband phone number and account, connect to China Telecom's central data center and encrypt and convert users' passwords. This parameter is changed and then connected to the local terminal settings of China Telecom. The dual password is used to implement sharing restrictions.
「 Netizens 」
Convert password and then dial
It is reported that the "Star speed" password Converter uses MD5 for conversion, that is, to calculate a string of MD5 code for the user name, add it to the end of the user's original password, in this way, a real dial-up password is formed, so that the common password entered on the router cannot pass the verification.
Currently, the common attack method on the Internet is to use the MD5 Code Converter to generate MD5, add it to the real password, and place it on the router for dialing.