-
Notifications
You must be signed in to change notification settings - Fork 80
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Shutdown in Kazakhstan since 2022-01-05, with brief periods of connectivity #99
Comments
I have not been able to find out yet whether even DNS is blocked during the shutdown. I am reminded of the 2019 shutdown in Iran, where DNS was not blocked and DNS tunnels might have worked. If it is not blocked, then we can perhaps help with setting up tunnels for people in Kazakhstan to use. |
There has been reported that telegram works using some SOCKS proxy during the shutdown. Not sure if it was shadowsocks or not. Also, it seems that some resources hosted in Kazakhstan are available within the country. Online banking from kaspi.kz and media tengrinews.kz |
Thanks. Do you know what ISP or network it was on? On the NTC thread, there is a report that dnstt (a DNS tunnel) is working for at least one user in Kazakhstan. I posted instructions for others to test whether it might work for them. https://ntc.party/t/network-shutdown-all-around-kazakhstan/1601/8
https://ntc.party/t/network-shutdown-all-around-kazakhstan/1601/11
Apparently ICMP does not work: https://ntc.party/t/network-shutdown-all-around-kazakhstan/1601/13
|
@wkrp SOCKS proxies over 3785 port work on many ISP in different regions now. |
In the past 3 days the pattern of accessibility has been more regular, beginning at 02:30 UTC (08:30 Almaty time) and ending at 06:00 or 10:00 UTC (12:00 or 16:00 Almaty time). Times are approximate, made by eyeballing the chart.
https://ioda.caida.org/ioda/dashboard#lastView=overview&view=inspect&entity=country/KZ&from=1641317887&until=1641748027 The Cloudflare blog post has been updated with information about the first three temporary restorations of access. It says the timing of periods of restored access corresponds with government announcements.
|
It's reported that a Tor obfs4 bridge on port 3785 works as well. Some other ports to try are 179, 646, 3784, 4784, 5060. I did an Nmap port scan of the /24 neighborhood of gov.kz, which the Cloudflare blog post reported as being inaccessible from outside, to see if any would respond on port 3785. There was one hit:
Then I scanned that host to see which other ports were responsive:
This by itself is not conclusive evidence that these ports always get special treatment. For example, it could be that this IP address is special, or it could be that incoming packets are treated differently than outgoing packets. But these other ports are at least worth a try. A port scan can also serve as a tool to see what ports might be reachable from inside Kazakhstan, if you can a host that is responsive (sends a SYN/ACK or a RST) on every port, like scanme.nmap.org. The ports that have a
|
It's night in Kazakhstan. No one to scan with nmap. One person has tested all ports with SOCKS proxy except 3785 all others are not available. My contact could scan with nmap a bit later. |
It has been reported that 179 port is open |
The Tor Project has posted a guide, in Russian and English, on how to get bridges that work in Kazakhstan. Because, at this point, access requires specific port numbers, you cannot simply use the normal BridgeDB or Moat interface. Instead, email frontdesk@torproject.org with the subject "bridge kz". I suppose you will have to send the email during the few hours each day when there is normal access.
@adamfisk writes that Lantern servers are now listening on specific ports to try to work around the shutdown:
I opened ports 179 and 3785 on an obfs4 bridge. But the address of this bridge is public and it may be easily blocked, so for regular use it's better to ask the Tor frontdesk for a private bridge.
|
Just noting for posterity something that I haven't seen reported on. The address of the president of Kazakhstan of 2022-01-01 (the one with the "open fire without warning" statement) declares the intention for a controlled and partial restoration of Internet access at specific times. The impression I get from the English version of the address is that the plan is more circumscribed than what the CNN article says: "internet is gradually being restored as the situation stabilizes." I also want to record archive links for the page, because gov.kz is not accessible from outside while the shutdown is in effect. At the moment it's online. https://www.gov.kz/news/details/309489?lang=kk (archive)
https://www.gov.kz/news/details/309489?lang=ru (archive)
https://www.gov.kz/news/details/309489?lang=en (archive)
It's also perhaps noteworthy that access had been restored for limited times even before the "I have decided" of the 2022-01-07 address. |
It appears that the shutdown has ended since 2022-01-11 00:00, about 67 hours ago. https://ioda.caida.org/ioda/dashboard#lastView=overview&view=inspect&entity=country/KZ&from=1641168000&until=1642032000 https://twitter.com/OliverLinow/status/1481536681656426497
Although there was only limited success in gaining access during this shutdown, what success there was gives me a hopeful feeling. Even in a reputed shutdown, all is not necessarily lost. Let's keep these lessons in mind for the future. |
@anadahz pointed me to a RIPE Labs blog post by @emileaben on the shutdown. It notes that despite being "shut down," networks in Kazakhstan were still present in the global BGP routing tables, which matches our experience with certain ports being unblocked. It also has some analysis of different levels of access in e.g. data centers versus residential connections. https://labs.ripe.net/author/emileaben/the-kazakhstan-outage-as-seen-from-ripe-atlas/
The comments on the post link to an interactive notebook for analyzing outages using RIPE Atlas. https://observablehq.com/@aguformoso/internet-outages-as-seen-by-ripe-atlas |
An article by Katia Patin gives some details about how working ports were discovered, and efforts to establish proxies. 2022-01-27
I found Katia's article as a reference in the paper Government Internet Shutdowns Are Changing. How Should Citizens and Democracies Respond? (2022-03-31), which was recommended by @fortuna. |
The government is Kazakhstan has imposed an Internet shutdown since 2022-01-05 10:30 (16:30 Almaty time). Since then, it looks like access has been occasionally restored, for about 3 hours at a time, at irregular intervals. About 20 hours before the full shutdown, there was a partial shutdown of mobile ISPs.
The Cloudflare blog post has some good details and a graph.
https://radar.cloudflare.com/kz (archived 2022-01-08 04:44)
You can see in the Cloudflare graph that traffic has risen above zero 3 times, for about 3 hours at a time, since the start of the shutdown. This looks kind of like an Internet curfew (as has happened, for example, in Myanmar), except that the intervals of access do not occur at the same time of day. The IODA dashboard graph shows that a fourth interval of access started about 2.5 hours ago, at 2022-01-08 02:30.
The text was updated successfully, but these errors were encountered: