Demystifying Pacenet (login based browsing session) And Speeding Up Peer to Peer Sharing

Vyom

The Power of x480
Staff member
Admin
So year my first resolution became shifting from MTNL's unfriendly service to some (and later any) Broadband. And I shifted to Pacenet.
I am on a Rs 930, 1 Mbps Unlimited plan. (No FUP).

As with any new stuff, I am learning stuff that I never knew and trying to figure out the best way to use something. Pacenet requires you to login from a URL with your credentials before your net is activated. After which you can surf the Internet like normal.
But this login based browsing have a very annoying disadvantage. After sometime, you run of the session, and so you need to login again before using the Internet.

I purchased a TP-Link router (thanks to members at this thread). And configured it myself. It was very easy with the guide which came with the router.

As observed by me I can also login from my phone and Internet gets activated on all the other devices to which the router is connected to. But I require to login from the IP of Pacenet only. So this means suppose if my dad tells me that he can't access the Internet, I can't login from my job. He have to do that himself while connected to the connection provided by Pacenet.

Now this experience have raised following questions. I would be glad if members here can try to answer it for me.

1. How long does the session expire.
I can login from my PC and access Internet. And Even after shutting PC down in night, I can access Internet from my other devices. But when I wake up in the morning I am disconnected. So there must be some time before it gets reset.


2. Can I do some tweak in the router itself that I don't need to manually login each time the session expires?


3. I quote for this:
The high speed in peer to peer file sharing on lan , is because of Local peer discovery protocol of torrent clients.
you can sense the packets in wireshark to see if there are such activities happening on the network.
ps , this won't work if you are using router . Its a broadcast , which the router will not allow to pass in to your PC .

So how exactly do we sense the packets through wireshark, and can router be tweaked to allow the packets?


4. How exactly do we make a DC hub using DC++? (as a point raised by Utkarsh2008)


5. What steps you take to ensure that you always use HTTPS? Can someone steal the credentials if the pages I browse are not secure but the login was?
Eg: I login to TDF using secure page. But now I am browsing on HTTP.


I am not used to this session based browsing. MTNL was good in this regard. It was an always-on-ready-to-connect Internet. I miss it already. :p

PS: It's not required to answer everything at one go. We can discuss it over time. :oops:
 

Hrishi

******************
Well actually those LPD packets are not exactly broadcast but instead a multi-cast packet. I am not sure if this will work if you have separated your downloading machine from the rest of the network ( ISP's LAN where local peers are directly available ) using a router.
Maybe Port-Forwarding on the router should fix this and allow LPD to work.

5. What steps you take to ensure that you always use HTTPS? Can someone steal the credentials if the pages I browse are not secure but the login was?
Eg: I login to TDF using secure page. But now I am browsing on HTTP.
Yes , most likely and if vulnerabilities are present then it would be damn easy for any fool with basic knowledge of compute tools.
It can be done within seconds.
This is a big disadvantage of being in an open network. You can use a VPN , But it's expensive.

The reason why you have to login every morning if you computer network is idle ( Internet Usage.) , is because of the fact that the connection timeout / session timeout for your idle account.I think the duration is around 2 Hours/120 minutes. Although this varies a lot , depending on how the account is configured.
While I was using spectranet , they had options in their UAC Panel to increase this idle timeout duration.
AFAIK , the only way to keep it consistent and not timeout is to maintain a data flow from the internet. I keep UTorrent switched on always to avoid this.
I think maybe someone can script a program that logs you into your account automatically as soon as you switch your PC on.

I have no idea about various home routers . But maybe some may have those "keepalive" feature in them.

BTW , have you swept your LAN to see how many users are there in your LAN in daytime ? ( When you are directly connected to the ethernet cable coming to your home,)
 
Last edited:
OP
Vyom

Vyom

The Power of x480
Staff member
Admin
Well, two hours is too low. I do run torrents or something else that the session will not be timeout. But I can't keep the session active when my PC is down.
I will need to teach this login thing to others in my family so that they can surf Internet at alternate PC while I am out.
I can create scripts to auto login on PC, but I don't know if I can do that on mobile.. especially on my dad's windows mobile. :p

Yes , most likely and if vulnerabilities are present then it would be damn easy for any fool with basic knowledge of compute tools.
It can be done within seconds.
This is a big disadvantage of being in an open network. You can use a VPN , But it's expensive.

That is too scary a thought. :|
I refuse to believe that this would be so darn easy! I hope my router and firewall keeps me safe. Since I can't use VPN all the time. :(

How do I "sweep" my LAN?

Did I mention I was noob in networking? :p
 

Hrishi

******************
Vyom , I will send you few pics/ videos tomorrow through PM. ( in office right now.)
PS : I am also a beginner in this domain.

Well, two hours is too low. I do run torrents or something else that the session will not be timeout. But I can't keep the session active when my PC is down.
I will need to teach this login thing to others in my family so that they can surf Internet at alternate PC while I am out.
I can create scripts to auto login on PC, but I don't know if I can do that on mobile.. especially on my dad's windows mobile. :p



That is too scary a thought. :|
I refuse to believe that this would be so darn easy! I hope my router and firewall keeps me safe. Since I can't use VPN all the time. :(

How do I "sweep" my LAN?

Did I mention I was noob in networking? :p
Routers should keep you safe from several attacks , as it segments you .
It's usually not such a good idea to directly plug your device into the open network . Using a Router and firewall should offer you a level of protection . [ I think at least protection from Layer 2 attacks , which involves ARP poisoning attacks. But if the next router is connected via Ethernet ( instead of Serial) then it may not be helpful.]
 
Last edited:

sksundram

In the zone
There must be a provision of changing the timeout value. Change it to anything like 999999 seconds. Open networks are vulnerable but it ain't that easy to hack it. So don't worry much. Don't expose your id/password.
 

whitestar_999

Super Moderator
Staff member
*www.eff.org/https-everywhere

uTorrent(i suggest v2.0.4 or v2.2.1,download from filehippo utorrent previous versions pages) should be able to find local peers(Local Peer Discovery feature enabled by default i think) & once connected to them it will have no speed limits while transferring data to/from local peers.

in your router access management enable access control & limit router access to ip range(e.g.192.168.1.2-192.168.1.8 which lies within dhcp range & fix your main pc ip by associating it to mac address in router lan setting).
 

Hrishi

******************
@Vyom is it possible for you to add static entries for the MAC ID for your local router or gateway ?? This can help you prevent those ARP poisoning attacks. [ the ones I mentioned you in the PM.]
 

Gollum

Collector
@Vyom is it possible for you to add static entries for the MAC ID for your local router or gateway ?? This can help you prevent those ARP poisoning attacks. [ the ones I mentioned you in the PM.]

I see wifi routers have an option to block mac addresses.
 

Hrishi

******************
I am not talking about blocking mac address . Though that also is an aspect of security , but what I am asking about is of using static entries of the destination gateway in the MAC table. This will probably prevent spoofing and MAC table poisoning , which my friend is a real PITA in an open network with some noob script kiddies around. They can use simple methods and your steal your plaintext passwords just like that.
 

Hrishi

******************
Once when I downloading a movie from p2p I got almost 300 times speed than usual.Why is that?

This is because someone in your neighbourhood was seeding the file to you at the bandwidth of your LAN , i.e. Say if you had a 100mbps Ethernet LAN , the speed would have been 8-10MBps .!!!!
This is because of the Local Peer Discovery feature in your BitTorrent clients. Minimize the load on your ISP , and make better use of a LAN's bandwidth.
 
Last edited:
OP
Vyom

Vyom

The Power of x480
Staff member
Admin
Vyom , I will send you few pics/ videos tomorrow through PM. ( in office right now.)
PS : I am also a beginner in this domain.

Routers should keep you safe from several attacks , as it segments you .
It's usually not such a good idea to directly plug your device into the open network . Using a Router and firewall should offer you a level of protection . [ I think at least protection from Layer 2 attacks , which involves ARP poisoning attacks. But if the next router is connected via Ethernet ( instead of Serial) then it may not be helpful.]

I have one router connected to PC directly. The cable coming from Pacenet is connected to the router. Is it serial?

There must be a provision of changing the timeout value. Change it to anything like 999999 seconds. Open networks are vulnerable but it ain't that easy to hack it. So don't worry much. Don't expose your id/password.

Mine doesn't have such options in UAC. In Fact the control panel is pathetic in this ISP.

Yup.. control panel of Pacenet not even provides a bare minimum of options. The only thing you can see there is "total data usage". :p

@Vyom is it possible for you to add static entries for the MAC ID for your local router or gateway ?? This can help you prevent those ARP poisoning attacks. [ the ones I mentioned you in the PM.]

The router settings page have options to enter all the details like IP Address, Subnet Mask, Default Gateway, MTU Size, and DNS etc.
Also on another page, I can enter IP Address and Subnet mark for MAC Address. Currently its set like this:

*i.minus.com/ibhcyWcMsOYOhj.JPG

So what should I change?

Edit: I saw this page too:
*i.minus.com/iuwHnsC0IBtjP.JPG

*www.eff.org/https-everywhere

uTorrent(i suggest v2.0.4 or v2.2.1,download from filehippo utorrent previous versions pages) should be able to find local peers(Local Peer Discovery feature enabled by default i think) & once connected to them it will have no speed limits while transferring data to/from local peers.

in your router access management enable access control & limit router access to ip range(e.g.192.168.1.2-192.168.1.8 which lies within dhcp range & fix your main pc ip by associating it to mac address in router lan setting).

I have started to use HTTPS Everywhere Add-on. Thanks for the link.
I will work on the Local Peer Discovery feature.

Also installing Wireshark to detect live traffic.

Update: I am overwhelmed by the sheer number of settings that I can do on my router and perplexed with the terms like DHCP, DMZ, Statis Routing list, System Routing Table etc... etc...
Will need a lot of time and guidance to fully understand the concepts. :oops:
 
Last edited:

Hrishi

******************
I have one router connected to PC directly. The cable coming from Pacenet is connected to the router. Is it serial?
Nah , They don't.

In one of the pictures you have a feature to reserve the MAC ID and associate it to a specific IP.
Get the MAC ID of the up-gateway router , and reserve it with it's IP address.

Also if you don't use too many devices in your home , then it would be better to not use DHCP , instead use static config.
 
OP
Vyom

Vyom

The Power of x480
Staff member
Admin
Also if you don't use too many devices in your home , then it would be better to not use DHCP , instead use static config.

I do use a lot of devices.
My Android phone
My Nexus 7 tab
Company's laptop sometimes
Dad's Windows phone
Secondary PC connected via Wifi card
Sometimes my friend's phone and cousin's iPhone.

Thats a *lot* of devices, isn't it. :p

I want to limit the usage of broadband to these devices only. I think I will have to do a lot of reading on DHCP stuff!
 

Piyush

Lanaya
What is your time interval between 2 login sessions? For example, as for me, if my network remains idle for 30 mins, it will ask for login and in use, it will again ask for login after 12 hrs. Hathway isp btw.
 
OP
Vyom

Vyom

The Power of x480
Staff member
Admin
What is your time interval between 2 login sessions? For example, as for me, if my network remains idle for 30 mins, it will ask for login and in use, it will again ask for login after 12 hrs. Hathway isp btw.

I sleep late at night. Around 1 AM. Then only login in the morning 8 AM. Sometimes I can't connect to Internet without login. Other times I can. It may depend on if my tab makes a connection during the time I was in standby mode. :)P)
When I return in the evening from office, I need to login depending if someone else in my family were using the net.

So since other members of the family also use net, I can't accurately decide the time-out time.

@vyom try learning CCNA. It's easy and fun. Download cbtnuggets video series on ICND 1 and 2.

Thanks for the suggestion. I will definitely want to watch those!
 
Top Bottom