Vibrant Wifi problem (Clean Access) - Vibrant General

I have a stock Samsung Vibrant. It connects to my home wifi network just fine and is very fast.
At my school we have to register the mac address' of devices we have on their Clean Access servers. I have registered many devices that work fine.
I registered the mac address of my Vibrant, and it can connect to the wifi, but it will not load a web page. Does anyone have any idea of what is wrong.
I also registered my roommates Vibrant. His does not work either.
I work at the Schools Tech Support so I have access to register and edit my phone on their Clean Access servers.
Does anyone have any solutions?

are you using WPA/WPAv2 or WEP + RADIUS authentication? Does your vibrant obtain an IP address successfully? Can you ping the default router?

The wifi that works at my apartment is WPA2.
The wifi at school is an open network. I can fully connect to their wifi.
Status Connected
Speed 48Mbps
Signal Strength Good
Security Open
IP address (a real IP address)

Im going out on a limb here. I am going to say its the Clean access and your "open network". I assume on your schools computer you use your student ID and some password. Your phone would need the same thing if that is the case. I know at my school, iphones are the only phones that can access our clean access. If its not the case then i am sorry.

my school runs clean access and it works fine. but they have two networks a guest and a login. i use the guest cause i don't want to waste the time to login. but i can try it on monday. typically with linux (i.e. android) you have a web portal and have to agree to some antivirus bs by clicking a button and that's it (and login for the non guest network). one thing i have noticed, though, is that typically i have to turn wifi on, connect to the network, try to load a page, it doesn't work, then i turn wifi off then immediately back on and try to load a page and it takes me to the login/terms portal page.

GTASouthPark said:
The wifi that works at my apartment is WPA2.
The wifi at school is an open network. I can fully connect to their wifi.
Status Connected
Speed 48Mbps
Signal Strength Good
Security Open
IP address 140.209.21.68
Click to expand...
Click to collapse
You should remove the IP from post. Anyways, it seems like the handshake is good. Note down the address of redirected terms and conditions page you get when trying to go online from a laptop. Then enter the same address in vibrant's browser once you are connected through Wifi ( or set it as homepage) and see if that lets it through.

Probably an issue with Android's lack of native NTLM support. AFAIK this is still unresolved. Have you tried using Fennec rather than the stock browser? I've heard you can authenticate properly using it.

Siks said:
Probably an issue with Android's lack of native NTLM support. AFAIK this is still unresolved. Have you tried using Fennec rather than the stock browser? I've heard you can authenticate properly using it.
Click to expand...
Click to collapse
interesting. i use dolphin hd and it works for the clean access web authentication page.

Could be, if your school does not have a guest account login for devices, that you are getting on the segregated network because CA cannot verify the "cleanliness" of your device. When I setup CA it verified patch levels and such on the non-guest network, so unless CA comes out with a Android client/access list, it may not work.

watcher64 said:
Could be, if your school does not have a guest account login for devices, that you are getting on the segregated network because CA cannot verify the "cleanliness" of your device. When I setup CA it verified patch levels and such on the non-guest network, so unless CA comes out with a Android client/access list, it may not work.
Click to expand...
Click to collapse
except then it wouldn't allow osx or linux. clean access requires an app for windows to verify service pack and av and whatever, but for linux and osx it doesn't. it wouldn't be able to (at least for linux).

funeralthirst said:
except then it wouldn't allow osx or linux. clean access requires an app for windows to verify service pack and av and whatever, but for linux and osx it doesn't. it wouldn't be able to (at least for linux).
Click to expand...
Click to collapse
That is correct but it can ID the operating system and has exceptions for those flavors ...

Hey it's me again.
I don't think it's an android thing because I had my G1 on the servers.
Normally what happens if you aren't registered on Clean Access is, if you open a web browser, you will be automatically redirected to an authentication page where you put in your school ID and password. This would work fine and allow me to get on the wifi, but it never came up on the web browser, it just tries to load the page for awhile and goes to a 'Page cannot be displayed' page.
Also I have tried using different browsers, including Dolphin HD.
If I can just get to the authentication page even it will be fine, I could work with that.
Also the school does have a guest login, but you have to get to the authentication page, and I wouldnt want guest access since it limits time, bandwidth, and features.

That is exactly what I said my last reply...Try putting https infront of your authentication URL, and make sure the java-script etc. is on in your browser...Try clearing cache and hit refresh as well. Also, see what happens if you set that URL as homepage...

GTASouthPark said:
Hey it's me again.
I don't think it's an android thing because I had my G1 on the servers.
Normally what happens if you aren't registered on Clean Access is, if you open a web browser, you will be automatically redirected to an authentication page where you put in your school ID and password. This would work fine and allow me to get on the wifi, but it never came up on the web browser, it just tries to load the page for awhile and goes to a 'Page cannot be displayed' page.
Also I have tried using different browsers, including Dolphin HD.
If I can just get to the authentication page even it will be fine, I could work with that.
Also the school does have a guest login, but you have to get to the authentication page, and I wouldnt want guest access since it limits time, bandwidth, and features.
Click to expand...
Click to collapse
did you try turning on wifi, wait for it to connect, try to load a page (any page because it will redirect you), wait for it to time out, pull down the notification bar, turn wifi off, turn it back on and then reload the page? i know it sounds dumb, but this is the only way i've got it to work at my school and it works every time...

watcher64 said:
That is correct but it can ID the operating system and has exceptions for those flavors ...
Click to expand...
Click to collapse
to what flavors? i'm guessing android will show as linux since it's based off a linux kernel. more than likely it checks for windows, and if false goes to the default linux/osx page because to clean access those aren't threat os's.

VICosPhi said:
That is exactly what I said my last reply...Try putting https infront of your authentication URL, and make sure the java-script etc. is on in your browser...Try clearing cache and hit refresh as well. Also, see what happens if you set that URL as homepage...
Click to expand...
Click to collapse
they don't have the authentication URL on their homepage so I don't know what it is, it should automatically redirect me to it.
Also when I connect to wifi, try to load a page, let it time out, turn off wifi, turn it back on and connect again, and then refresh the page.. nothing happens it times out again.

Ok so I did find out the authentication page URL. Typed it into my phone. I had high hopes when a page saying "You are being redirected to the network authentication page. If you are not redirected automatically, then please click HERE".
Anyway it did redirect me, to a "Web page not available"... etc.
In the default browser it gave me the error... "Data connectivity problem. A secure connection could not be established". umm wtf?

Can you communicate with other protocols/ports? I used to be able to exploit a bug with our school's CCA servers where I could just connect unauthenticated and use SSH. (Maybe it was a feature?)

I can't use any other web protocols.

Bump. Okay. I've figured out how to do this . '
it's a t mobile vibrant either kernel or rom problem. My phone connected the very first time I tried to use it at an argosy site, then never ever ever again.
so. I used wifi manager to find out what the ip, gateway, subnet mask, and dns 1 and 2 were. I went to settings, wifi, options key to go to advanced options, from there selected static ip and entered all the info I gathered
bam! ! Connected every time.
Oh and btw, the reason I say its a tmobile vibrant rom or kernel problem is that on fusion, Eugene's and bionix final, I was able to connect right away, every time . And on my f friends att fascinate and verizon captivate, they never had to enter the static ip like I did. They connected right away every time . Yet everyone I know that had s vibrant kept having the same proble. m i did .
Tmobile. What a piece of ****. Anyway I figured nobody had this figured out so I'd jump in.
Hope this helps out some people. GL

Related

ATT rolling my IP address every few seconds on wap.cingular

Hello,
If I connect via wap.cingular (my account cannot connect on isp.cingular) I am having major issues using outlook web access, rapidshare, and a few other web apps. this is apparently due to ATT rolling my IP address every few seconds.
If I go on my phone (HTC FUZE/RAPHAEL) to http://whatismyip.com/ and refresh the page a few times, I get a different IP almost every time. it is always in the same subnet, so far (only the last numbers change ie, aaa.bbb.ccc.xxx, where xxx changes all the time, and a, b, and c, don't).
I use a huge load of data. Have they put me on some blacklist because I stream media all the time? This actually doesn't affect streaming media, but it screws up legitimate work usage.
Is there some keepalive utility I could use that would fix this as a countermeasure? Is anyone else running into this, or am I just special?
Thanks in advance for your help
wwwes said:
Hello,
If I connect via wap.cingular (my account cannot connect on isp.cingular) I am having major issues using outlook web access, rapidshare, and a few other web apps. this is apparently due to ATT rolling my IP address every few seconds.
If I go on my phone (HTC FUZE/RAPHAEL) to http://whatismyip.com/ and refresh the page a few times, I get a different IP almost every time. it is always in the same subnet, so far (only the last numbers change ie, aaa.bbb.ccc.xxx, where xxx changes all the time, and a, b, and c, don't).
I use a huge load of data. Have they put me on some blacklist because I stream media all the time? This actually doesn't affect streaming media, but it screws up legitimate work usage.
Is there some keepalive utility I could use that would fix this as a countermeasure? Is anyone else running into this, or am I just special?
Thanks in advance for your help
Click to expand...
Click to collapse
I'll plead ignorance on this, but I always switch off the proxy for the media net and get great usage for doing that. I don't know if you have tried it yet, but here is what I do.
Start/settings/connections/connections
Once it brings up the page, click advanced on the bottom.
Select networks
I use media net for both drop down. Click on edit. Select Proxy Settings on the bottom. Uncheck this network uses a proxy server to connect to the internet.
If you cannot get to the edit because it is not available, all you need to do is install the HTC Connection Setup and run it. Soft reset and the settings are available. It just rewrites the information but undoes what AT&T did to the phone.
Hope this helps.
Thanks for the reply.
I also use media net without the proxy. I only have issues with timeouts on my outlook web access server, and sites like rapidshare that make you wait 30 seconds to download a file and then complain of session timeouts.
With the proxy I get an IP address range in the 162.xxx.xxx.xxx family, which interestingly enough whois reports to be a verizon dsl modem address.
Without the proxy I get an IP address range in the 32.xxx.xxx.xxx family, which is ATT.
Either way, the address rolls every few seconds.
one workaround I have found is that Opera mini apparently uses an opera-run proxy server to access the internet, and opera mini does not have this logout issue on my outlook web access server even when the IP address rolls, since the proxy is not changing.
I believe the ISP.cingular APN would also fix this issue, but I have yet to find anyone at ATT willing to add it to my account so I can try it out, since they sell it with a tethering plan as an extra feature. I would have to convince my employer to add this to my plan, which is not likely.

WLAN :: Browser authentication trouble

Hey guys,
At my school the students have access to an open WiFi network. The internet connection is routed through a local proxy, and when we first open the web browser we are presented with an authentication page where we input username and password. Using Firefox, Chrome, or any other browser on a regular computer, this works just fine.
On my Hero however, something prevents it from working correctly. I get the authentication screen, input my username and password, I click Login, but from here nothing seems to work.
The proxy spits out a message saying something like "authentication successful, logging you on to the network", but then it says something about a DNS timeout, and that I have to restart my browser to gain internet access.
Obviously, that doesn't work. I tried once to load google.com, using its IP and it worked I think (given that the browser didn't load it from the cache). I guess the problem somehow relates to the way Android handles DNS.
My Hero is not rooted, and for various reasons I'm not planning to do it either. Running latest official ROM.
Any assistance would be greatly appreciated, as IT on my school doesn't seem to actually know anything about the authentication process.
I also have problem with secure login but in my case I can't load the securelogin page where I need to enter the user name and password.
Non android phone don't see this problem and also I don't have this problem with my android at my home with open WIFI.
I am using HTC Hero G3 with official android 1.5.
Hi, has anyone been able to make this work?
I'm also having the same experience but with my x10mp.
the browser login page is not displaying so i'm unable to use the wifi.
shameless self bump.
i have already tried 2 apps (Open Wifi Login and Browser Wifi Login) that should have solved this but did not.
can anybody help with this issue?

Proxy Login

I have no idea what I did before this happen since I only need the service at certain places, so here goes...
I work at an airport that offers free WiFi to travelers. The WiFi is open without a key but when browsing, it redirects you to their proxy which has you click on a button that says you accept their User Agreement. Then you have full access to the Internet.
At school, the same thing. An unsecured WiFi access point, with a proxy that requires me to login with my school user id and password.
The reason I know it's the phone and not the connection, is that my Samsung Jack finds the proxy at work.
Please help,
Thanks
You never really stated what the problem was... is it not finding the proxy, or not letting you log in?
WM doesn't have proxy autoconfig script support, but Opera Mobile does. You need to type in the proxy settings yourself manually (by setting it to "Work" network). When you use the browser it should prompt you for credentials automatically.
Talk about rambling without saying anything at all...
My problem is finding the proxy server. Both IE and Opera found it. Once I get to the page, accepting the agreement and logging on worked fine. I never had to manually configure proxy settings when it did work.
I hope when I am able to get to the page I won't have that problem too.
Thanks
I figured it out. I remembered that I had installed Lookout Mobile Security and checked the Firewall settings. I disabled it and it worked.
Is a security app really necessary on a mobile?
I've never found the need for AV/Firewall software on a mobile (didn't even know firewalls for WinMo existed!)
There are very, very few WinMo viruses around and I've never got one. Then again, I've never got a Windows (PC) virus either... as long as you don't install suspicious software then you should be fine.

Nexus 7's Chrome will not redirect for Wifi Authentication

The wifi at my university either prompts devices for a log in or redirects the browser to a log in page to fully access the wifi. I cannot for the life of me, get my nexus 7 to fully connect. No prompts and chrome will not redirect. Any help would be appreciated!!
Typically on my laptop or other tablets in my University, whenever I connect to the Wi-Fi either a pop-up prompt appears where I can enter my log in info or I go on to my browser (also chrome) and enter a website liek facebook or yahoo and it will redirect to the University's Wifi page and I can log in from there.
My Nexus 7 doesn't have a pop-up prompt when I connect to the wifi nor does the Chrome redirect. Any tips?
That's weird. I connected to the harvard medical school network at where I work and when I tried going to a web page (espn), the redirect occurred and I could sign in. Don't know why it isn't working for you
bammarata89 said:
That's weird. I connected to the harvard medical school network at where I work and when I tried going to a web page (espn), the redirect occurred and I could sign in. Don't know why it isn't working for you
Click to expand...
Click to collapse
I have no idea why, I'm connected to Cornell Medical School wifi as well, and typically i'd have to type in my log in and my password when Chrome redirects me but it's not redirecting. It keeps saying This Webpage is Not Available because the DNS Look up failed."
I get an error on the bottom of Chrome stating: "Error 105 (net::ERR_NAME_NOT_RESOLVED): Unable to resole the server's DNS address."
Trying using Firefox to authenticate instead. Once you do Chrome will work fine (just not for the authentication part).
Quick idea:
At Eastern Washington University there's an open access AP and a secure AP. When you use open, you are redirected to a student sign on page.
When you use secure, there is no page redirect, as you login using some fancy WiFi security protocol with the same user/pass combo from open. (Tablet remembers network auth and auto-reconnects when in range with no redirects) Maybe just check to see if you have that available?
Also, try forgetting/disconnecting from your network so it doesn't reconnect; then manually reconnect to it. This would hopefully flush any DNS configuration your tablet may have erroneously stored.
Sent from my Nexus 7 using xda premium
xfinrodx said:
Quick idea:
At Eastern Washington University there's an open access AP and a secure AP. When you use open, you are redirected to a student sign on page.
When you use secure, there is no page redirect, as you login using some fancy WiFi security protocol with the same user/pass combo from open. (Tablet remembers network auth and auto-reconnects when in range with no redirects) Maybe just check to see if you have that available?
Also, try forgetting/disconnecting from your network so it doesn't reconnect; then manually reconnect to it. This would hopefully flush any DNS configuration your tablet may have erroneously stored.
Sent from my Nexus 7 using xda premium
Click to expand...
Click to collapse
Thanks everyone, for suggesting the use of other browsers such as Opera to help me redirect. However, I downloaded Opera and Dolphin browser (couldn't find Firefox for some reason) and both of them will not redirect me to the log in page. But my iPhone is able to connect. Any tips? Any help would be appreciated!! (Sorry this is my first Android device)
Can someone please solve this issue? Or at least give an explanation why the nexus 7 has issues with certain open networks?
If you're going to an encrypted (https) page, you won't redirect. Try going to www.google.com instead of your homepage (gmail can be set to https).
Its not encrypted. Just a standard login. I really have no clue what is going on. I tried setting a static IP and using google's DNS as well as open DNS which helped a bit (I occasionally get th elogin screen now, but it doesn't do anything for me).
Has anyone ever solved this issue?
Mine redirects just fine. I have to select the network in the WiFi settings, and then open the browser, though.
Sent from my Nexus 7 using xda premium
Sunburn74 said:
Its not encrypted. Just a standard login. I really have no clue what is going on. I tried setting a static IP and using google's DNS as well as open DNS which helped a bit (I occasionally get th elogin screen now, but it doesn't do anything for me).
Has anyone ever solved this issue?
Click to expand...
Click to collapse
Not sure from your answer if you understood me. If the page you're trying to get redirected FROM is HTTPS, it won't redirect. Navigate to google.com and see if you redirect (since that's never https).
That page is not https. It is standard HTTP.
Before I wouldn't even get that page. Now I reliably get that page (the authentication/acceptance of policy page) since I changed the DNS settings for open DNS (another site recommended using google's DNS or using open DNS). However after I hit accept, it doesn't do anything and just times out after 5 mins or so.
This should work
idk if I'm late in answering this but next time you log in from any device look for the router number and type that in the web browser on the device it isn't connecting on and that should redirect you
Is there any hope? Android is just impossible when it comes to wifi. Sometimes it brings up the login page. But if it doesn't bring up the login page, you will never get connected.
Here's a sample experience.
I'm at a coffee shop trying to connect my oneplus one, which has cyanogen12.0-yng1tas17l
Some things I tried: I opened wpa_supplicant.conf with a text editor and deleted this coffee shop's network. I tried to connect using the app "wifi browser login." I went to settings--modify network--advanced options--ip settings to find the gateway, ip address and dns of the coffee shop, and tried typing them into the browser. Nothing works.
This failure to load the login page is a problem that affects android in general, not just the oneplus one or cyanogen. I have problems with the nexus 7 sometimes too. I've been searching for a solution for years. The silence is deafening.

T-Mobile Hotspot "Upsell" - TOTAL Workaround

If you're like me, then you have a data plan with T-Mobile that includes only 2.5GB of data for tethering. After you 2.5GB is up,T-Mobile begins redirecting all of your tethered traffic to a webpage prompting you to buy more tethering data.
T-Mobile does this by reading all of the headers on every HTTP request. It analyzes each one and reads the User-Agent string. This is what tells websites how to deliver their content for you and is why you only get mobile versions of webpages on your phone and not on your laptop. So, many people got around this by spoofing the user agent with a browser plugin to make it look like your laptop was requesting the mobile version of websites (so T-Mobile would think that it's a phone requesting the data, not a tethered laptop.) However this solution only works for that specific browser. Other browsers, applications, and devices that do not support User-Agent spoofing were left without a solution. Was I really the only one trying to tether my PS3 for Netflix and gaming?
So some people turned to VPNs which basically act as a secure proxy so that T-Mobile could not read the traffic and tell what the User-Agent was. But this often costs money and/or slows down your network speed. Seeing as how people who are looking for a tether workaround are trying to not spend money, and are trying to use T-Mobile's lightning fast LTE, this isn't really a practical solution.
So after spending hours and hours looking for a solution, I came to the conclusion that there was none yet.
I deduced that the obvious solution would be to modify the packets on the fly and change the user-agent string of every HTTP request as it came to the phone before forwarding it on to T-Mobile. Luckily for us, all HTTP requests that have no User-Agent string or a string of "null/null" etc. are automatically accepted! So all that needed to be done was to strip the user-agent string of all of the outgoing HTTP requests - on the fly.
My first thought was that hopefully there was an android app that could do this.
There isn't.
And I am not capable of making one but if you find one or can make one, please tell me and I will adjust this explanation because that would make things a bit simpler. However, since we don't live in a perfect world, we have to run a program on a computer and route all traffic through that program. This wonderful little program that I came across called "Fiddler" (it won't let me post the link but it's www[dot]fiddler2[dot]com) is just what we need. It's a completely free program.
Go download and install fiddler. This program will allow us to monitor and 'fiddle' with the network traffic on the fly!
First, fire up your tethering app on your phone and connect your computer. I personally use android WiFi tether but I suppose it probably doesn't matter which one you use. Once you've connected your computer. Open up fiddler, go to "Rules," "User-Agents," and select "Custom..." A window will pop up. Leave this blank and click okay. Now, all of the network traffic from that computer with have its user-agent string modified to "User-Agent:[blank]" Test this out on any browser on your computer and you should not be redirected to the upsell page.
Now for all of your other devices! I was particularly concerned with my PS3 but any device that supports proxy use will work. That's a hell of a lot more devices than the number that support UA spoofing haha. Go to "Connection Settings" on your PS3 and select "Manual"
Go through your setup as usual and connect to your phone's wifi hotspot. When you come to the page that says "Proxy Settings" select "Use"
For the IP address go back to your computer and look at Fiddler. In the top-right corner there is an image of two computers and it says "Online" next to it. Hover over that icon and it will have an IP address listed. This is the virtual proxy that Fiddler has set up for auxillary incoming traffic on the local network. Type that IP address into the PS3's proxy settings and use port 8888 (you may have to configure your computer firewall to allow incoming traffic on that address/port)
Also, in Fiddler go to the AutoResponder tab and check the box that says "Unmatched requests passthrough." This is so that HTTP requests that come in without a User-agent already defined will just be passed on. If this box is not checked you may get frequent 404 errors.
Finish up the connection settings on the PS3 and let it fly! You can watch the traffic on Fiddler in real time!
This is my first post on XDA and this workaround is brand new as far as I can tell so there may be some kinks that need to be worked out.
Let me know if you have any questions or problems!
Respectfully,
Hunter.
TexasState said:
If you're like me, then you have a data plan with T-Mobile that includes only 2.5GB of data for tethering. After you 2.5GB is up,T-Mobile begins redirecting all of your tethered traffic to a webpage prompting you to buy more tethering data.
T-Mobile does this by reading all of the headers on every HTTP request. It analyzes each one and reads the User-Agent string. This is what tells websites how to deliver their content for you and is why you only get mobile versions of webpages on your phone and not on your laptop. So, many people got around this by spoofing the user agent with a browser plugin to make it look like your laptop was requesting the mobile version of websites (so T-Mobile would think that it's a phone requesting the data, not a tethered laptop.) However this solution only works for that specific browser. Other browsers, applications, and devices that do not support User-Agent spoofing were left without a solution. Was I really the only one trying to tether my PS3 for Netflix and gaming?
So some people turned to VPNs which basically act as a secure proxy so that T-Mobile could not read the traffic and tell what the User-Agent was. But this often costs money and/or slows down your network speed. Seeing as how people who are looking for a tether workaround are trying to not spend money, and are trying to use T-Mobile's lightning fast LTE, this isn't really a practical solution.
So after spending hours and hours looking for a solution, I came to the conclusion that there was none yet.
I deduced that the obvious solution would be to modify the packets on the fly and change the user-agent string of every HTTP request as it came to the phone before forwarding it on to T-Mobile. Luckily for us, all HTTP requests that have no User-Agent string or a string of "null/null" etc. are automatically accepted! So all that needed to be done was to strip the user-agent string of all of the outgoing HTTP requests - on the fly.
My first thought was that hopefully there was an android app that could do this.
There isn't.
And I am not capable of making one but if you find one or can make one, please tell me and I will adjust this explanation because that would make things a bit simpler. However, since we don't live in a perfect world, we have to run a program on a computer and route all traffic through that program. This wonderful little program that I came across called "Fiddler" (it won't let me post the link but it's www[dot]fiddler2[dot]com) is just what we need. It's a completely free program.
Go download and install fiddler. This program will allow us to monitor and 'fiddle' with the network traffic on the fly!
First, fire up your tethering app on your phone and connect your computer. I personally use android WiFi tether but I suppose it probably doesn't matter which one you use. Once you've connected your computer. Open up fiddler, go to "Rules," "User-Agents," and select "Custom..." A window will pop up. Leave this blank and click okay. Now, all of the network traffic from that computer with have its user-agent string modified to "User-Agent:[blank]" Test this out on any browser on your computer and you should not be redirected to the upsell page.
Now for all of your other devices! I was particularly concerned with my PS3 but any device that supports proxy use will work. That's a hell of a lot more devices than the number that support UA spoofing haha. Go to "Connection Settings" on your PS3 and select "Manual"
Go through your setup as usual and connect to your phone's wifi hotspot. When you come to the page that says "Proxy Settings" select "Use"
For the IP address go back to your computer and look at Fiddler. In the top-right corner there is an image of two computers and it says "Online" next to it. Hover over that icon and it will have an IP address listed. This is the virtual proxy that Fiddler has set up for auxillary incoming traffic on the local network. Type that IP address into the PS3's proxy settings and use port 8888 (you may have to configure your computer firewall to allow incoming traffic on that address/port)
Also, in Fiddler go to the AutoResponder tab and check the box that says "Unmatched requests passthrough." This is so that HTTP requests that come in without a User-agent already defined will just be passed on. If this box is not checked you may get frequent 404 errors.
Finish up the connection settings on the PS3 and let it fly! You can watch the traffic on Fiddler in real time!
This is my first post on XDA and this workaround is brand new as far as I can tell so there may be some kinks that need to be worked out.
Let me know if you have any questions or problems!
Respectfully,
Hunter.
Click to expand...
Click to collapse
Yeah, that's a workaround indeed, however the setup is long and extensive for anyone. We're still trying to find a QUICK solution that doesn't require a mass setup of every device. I only bounce to my tethering when there's an outage at home or I'm on the road, neither are the best solutions to be spending time switching everything over when I could have just as easily opened the browser on my phone to take care of everything. I found this post from the link you posted in the other thread where we weren't discussing hard solutions, just concepts and ideas, theoretical solutions (hence why there was never a post like this there). It's great to see that the one thing we know is the catalyst has been confirmed once again (HTTP USER-AGENT) as what T-Mo and every other carrier is doing, so this is a solution for not just T-Mo, but every provider. Again, it's a hell of a setup and requires that you keep at least one computer active during the ENTIRE tethering session, also, it appears T-Mo doesn't block Playstation 3 from what I can tell, at least we were able to watch like 3-4 hours of Netflix when we had the 500mb tethering cap without a problem.
This affect nat type? If I use this program? Ps3 online game though
Sent from my SGH-T889 using XDA Premium 4 mobile app
It seems T-Mobile has caught onto using different agents. I was trying to use mobile hotspot on my laptop yesterday. It didn't matter if my UA was android handset or Googlebot, it redirected me to a hotspot upsell page.
Dr. Hax said:
It seems T-Mobile has caught onto using different agents. I was trying to use mobile hotspot on my laptop yesterday. It didn't matter if my UA was android handset or Googlebot, it redirected me to a hotspot upsell page.
Click to expand...
Click to collapse
Go into your APNs and select the tethering APN, if you can edit the hostname from epc.tmobile.com to fast.t-mobile.com or whatever your normal APN is, there are a bunch of threads talking about how to get tethering working, this is just the LAST step, don't come here thinking this is the FIRST step, you're going at it backwards.
TexasState said:
If you're like me, then you have a data plan with T-Mobile that includes only 2.5GB of data for tethering. After you 2.5GB is up,T-Mobile begins redirecting all of your tethered traffic to a webpage prompting you to buy more tethering data.
T-Mobile does this by reading all of the headers on every HTTP request. It analyzes each one and reads the User-Agent string. This is what tells websites how to deliver their content for you and is why you only get mobile versions of webpages on your phone and not on your laptop. So, many people got around this by spoofing the user agent with a browser plugin to make it look like your laptop was requesting the mobile version of websites (so T-Mobile would think that it's a phone requesting the data, not a tethered laptop.) However this solution only works for that specific browser. Other browsers, applications, and devices that do not support User-Agent spoofing were left without a solution. Was I really the only one trying to tether my PS3 for Netflix and gaming?
So some people turned to VPNs which basically act as a secure proxy so that T-Mobile could not read the traffic and tell what the User-Agent was. But this often costs money and/or slows down your network speed. Seeing as how people who are looking for a tether workaround are trying to not spend money, and are trying to use T-Mobile's lightning fast LTE, this isn't really a practical solution.
So after spending hours and hours looking for a solution, I came to the conclusion that there was none yet.
I deduced that the obvious solution would be to modify the packets on the fly and change the user-agent string of every HTTP request as it came to the phone before forwarding it on to T-Mobile. Luckily for us, all HTTP requests that have no User-Agent string or a string of "null/null" etc. are automatically accepted! So all that needed to be done was to strip the user-agent string of all of the outgoing HTTP requests - on the fly.
My first thought was that hopefully there was an android app that could do this.
There isn't.
And I am not capable of making one but if you find one or can make one, please tell me and I will adjust this explanation because that would make things a bit simpler. However, since we don't live in a perfect world, we have to run a program on a computer and route all traffic through that program. This wonderful little program that I came across called "Fiddler" (it won't let me post the link but it's www[dot]fiddler2[dot]com) is just what we need. It's a completely free program.
Go download and install fiddler. This program will allow us to monitor and 'fiddle' with the network traffic on the fly!
First, fire up your tethering app on your phone and connect your computer. I personally use android WiFi tether but I suppose it probably doesn't matter which one you use. Once you've connected your computer. Open up fiddler, go to "Rules," "User-Agents," and select "Custom..." A window will pop up. Leave this blank and click okay. Now, all of the network traffic from that computer with have its user-agent string modified to "User-Agent:[blank]" Test this out on any browser on your computer and you should not be redirected to the upsell page.
Now for all of your other devices! I was particularly concerned with my PS3 but any device that supports proxy use will work. That's a hell of a lot more devices than the number that support UA spoofing haha. Go to "Connection Settings" on your PS3 and select "Manual"
Go through your setup as usual and connect to your phone's wifi hotspot. When you come to the page that says "Proxy Settings" select "Use"
For the IP address go back to your computer and look at Fiddler. In the top-right corner there is an image of two computers and it says "Online" next to it. Hover over that icon and it will have an IP address listed. This is the virtual proxy that Fiddler has set up for auxillary incoming traffic on the local network. Type that IP address into the PS3's proxy settings and use port 8888 (you may have to configure your computer firewall to allow incoming traffic on that address/port)
Also, in Fiddler go to the AutoResponder tab and check the box that says "Unmatched requests passthrough." This is so that HTTP requests that come in without a User-agent already defined will just be passed on. If this box is not checked you may get frequent 404 errors.
Finish up the connection settings on the PS3 and let it fly! You can watch the traffic on Fiddler in real time!
This is my first post on XDA and this workaround is brand new as far as I can tell so there may be some kinks that need to be worked out.
Let me know if you have any questions or problems!
Respectfully,
Hunter.
Click to expand...
Click to collapse
Doesn't work on ps3...obtaining ip address succeeds but internet connection fails..i added the ip and port 8888 to the fire wall and allowed connection. and when i hover over the two computers it shows two ip addresses i have tried both and same results
metro pcs upsell, lg optimus f3/JB 4.1.2
I'm on the Metro PCS network, i used to have the lg motion and that phone would hotspot my ps3 with no problems. I figured that I would upgrade my phone to the lg optimus F3 and keep hotspoting on the $60 unlimited plan. Much to my surprise I have ran into the same issue many have others have ran into, the tmobile upsell page. mine now says metro pcs upsell. so I have tried many Apps in the store with no possible way around the upsell page. After hours and days of research, its apperhant that tmobile and metro pcs are not restricting the tethering function. I can obtain an ip address but not gain internet access. As have many others. I've rooted my phone using motochopper, i installed titanium backup pro, and rom toolbox pro. I backed up all my apk's to the external and went root browsing for anything that has to do with wifi, hotspot or tether. I wasnt getting anywhere untill today. My LG Optimus F3 runs on JB 4.1.2, instead of finding tethering features i found the open source codes on sharing data and http rules. I dont have much experience with altering codes, but i do know this would be a great starting point for bypassing the upsell reroute. By using romtools pro, i finally found myself using the app manager, from there i clicked on the file networking apk, i scrolled the app display to the right to get to romtools special features, clicked on explore apk. Every rule was laid out in plain text using a notepad. Javax/servlets/resources. Every file in this folder can be read with notepad. There is tons of info regarding internet sharing, web browsing, and what runs and triggers the infamous upsell codes. I've read a few post where developers are trying to find the source of upsell, i hope this helps as a starting point. (Besides that) i was also able to enter the lg hidden menu and uninstall all metro pcs apps with one click
"(Besides that) i was also able to enter the lg hidden menu and uninstall all metro pcs apps with one click""" ????
i am in exact same boat , metropcs , rooted with all tricks tried , and still upsell page .
one interesting thing though is my lg motion can use the F3 wifi for ip camera apps . tried other apps but no go .
"IP camera viewer" has no issues accessing internet by way of a wifi tether on the F3 using my non active LG motion , strange .......the other apps report network errors or just fail to start ( netflix ) perhaps this will help in hunting a bypass on the UPsell crap
Thanks but...
Thanks for providing the most current news about this problem with Tmobile, I have been using HMA / foxfi since Aug 2013. Just a few hours ago it stopped working, couldn't even login to VPN. I lost my useragent switcher when I upgraded Chrome, and couldn't fall back on that either, so thanks for the tip about fiddler.
I am currently online because I caved to the upsell. So my question is, has Tmobile "improved" security on its upsell to the point that VPN's and UA spoofs dont work anymore, and do I have to learn the answer to this by community or by blowing my data limit again? Does anyone have a fresh strategy, or know what's going on in Tmobile business? Do they even care about people like us?
I live by this connection, since other ISP's around here are not worthwhile, and I maintain mobile business with my laptop, and I would prefer to process GB's without having to scavenge for someone else's wifi.
petedude2lu3 said:
Thanks for providing the most current news about this problem with Tmobile, I have been using HMA / foxfi since Aug 2013. Just a few hours ago it stopped working, couldn't even login to VPN. I lost my useragent switcher when I upgraded Chrome, and couldn't fall back on that either, so thanks for the tip about fiddler.
I am currently online because I caved to the upsell. So my question is, has Tmobile "improved" security on its upsell to the point that VPN's and UA spoofs dont work anymore, and do I have to learn the answer to this by community or by blowing my data limit again? Does anyone have a fresh strategy, or know what's going on in Tmobile business? Do they even care about people like us?
I live by this connection, since other ISP's around here are not worthwhile, and I maintain mobile business with my laptop, and I would prefer to process GB's without having to scavenge for someone else's wifi.
Click to expand...
Click to collapse
VPN's no longer work for me either. I'm not getting the upsell page just no internet access at all while tethering.
Thanks TexasState, this was very valuable information that got me completely through T-Mobile's "walled garden" on their unlimited high-speed plan (for phones only) in an area where we don't have any good land-line options. :good:
What are some proactive approaches to making sure T-Mobile doesn't block my line? I'm using a phone basically as a makeshift wifi-router and all our computers run Fiddler. Is there anything else that T-Mobile might do to sniff out cheaters in the future? Is user-agent the only thing they can look at to determine if you're cheating?
Greetings first post here on XDA I have been able to tether via usb on metro/tmobile in OKC ,I am on a rooted F3 (LGMS659) I have tried just about everything a little luck with open garden but too slow for me ,downloaded foxfi wifi ap point no go ,redirected to upsell , tried usb with level one settings ,it works . but I may have done something when I entered the hidden menu 3548#*659# in settings those last two are interesting to me Upsell Url and ATS Start Property On
Took me about 8-10 hours to figure it out but i did it so heres how you get your tether back.
1.Open up your hidden menu.
2.Open Wlan test.
3. Click on UpSell and turn it off.
And turn on your tether app and have fun.
JUN10R831 said:
Took me about 8-10 hours to figure it out but i did it so heres how you get your tether back.
1.Open up your hidden menu.
2.Open Wlan test.
3. Click on UpSell and turn it off.
And turn on your tether app and have fun.
Click to expand...
Click to collapse
After half a day on the unlimited plan with Tea Mobile, this seems to have worked for me. Had to reinstall hiddenmenu.apk on my LG phone because I removed it earlier as bloatware but even after a reinstall as a user (as opposed to system) app, it worked.
Procedure was slightly different due to different model of phone/hidden menu but same basic procedure. BTW, it's unlimited but with 2.5 gb cap for hotspot. Let's just say I'm over the cap.
EDIT: So I got to almost 6 gb in one day, but then I got the redirect of death. I will troubleshoot when I have time later.
dbozam said:
After half a day on the unlimited plan with Tea Mobile, this seems to have worked for me. Had to reinstall hiddenmenu.apk on my LG phone because I removed it earlier as bloatware but even after a reinstall as a user (as opposed to system) app, it worked.
Procedure was slightly different due to different model of phone/hidden menu but same basic procedure. BTW, it's unlimited but with 2.5 gb cap for hotspot. Let's just say I'm over the cap.
Click to expand...
Click to collapse
What model did you use? Mine was in the Hidden Menu --> Settings menu.. and i chose "Upsell Try Off" with no avail.
LG G2 for Tmobile.
S4 "Hidden" Menu
I'm having the same issues as presented above but I'm unable to get into the "hidden" menu using the key code mentioned. I'm running Wicked V10 (it's great). Would love to test this out if I could access the right menu. So far I've gotten into the service menu but that's it.
This is by far the best work around I have found. Everything works. And if you are clever you can edit your user agent rules so they are automatic. Then turn fiddler into a windows service so ya never have to see it again and it just works. Excellent tutorial. The only thing I wish I could do is figure out how to get my Xbox 360 to connect to fiddlers proxy. If anyone knows please post it.
Thanks again OP
-Polluti0n
Sent from my SAMSUNG-SGH-T879 using XDA Premium 4 mobile app
Blank UA causes 403s and ASP issues.
This method works fantastic overall. I have my phone tethered to a router and run fiddler on all needed devices - no upsell message thus far (40GB+ down)
The issue I've run into is that some websites user the User Agent string to serve different content - by using a blank UA many ASP.net websites fail (on _doPostBack, in particular) and several give 403 errors (docs.WooThemes com) so I switched to a mobile UA but then sites serve mobile versions of their content (Amazon com). The next option is a desktop UA, but then I may as well not even switch it at ll?
I'm wondering - does anyone know what specifically T-Mobile looks for in the UA field, or know of a valid UA string that avoids detection but doesn't register as mobile (or give 403's)?
brn2drv99 said:
This method works fantastic overall. I have my phone tethered to a router and run fiddler on all needed devices - no upsell message thus far (40GB+ down)
The issue I've run into is that some websites user the User Agent string to serve different content - by using a blank UA many ASP.net websites fail (on _doPostBack, in particular) and several give 403 errors (docs.WooThemes com) so I switched to a mobile UA but then sites serve mobile versions of their content (Amazon com). The next option is a desktop UA, but then I may as well not even switch it at ll?
I'm wondering - does anyone know what specifically T-Mobile looks for in the UA field, or know of a valid UA string that avoids detection but doesn't register as mobile (or give 403's)?
Click to expand...
Click to collapse
Googlebot and safari 5 for windows work great and are undetected by T-Mobile.
Sent from my SAMSUNG-SGH-T879 using XDA Premium 4 mobile app
Polluti0n said:
Googlebot and safari 5 for windows work great and are undetected by T-Mobile.
Click to expand...
Click to collapse
Seems to work perfectly. Thanks!
For anyone needing it, here's a bare-bones CustomRules js file for Fiddler.
Code:
import System;
import Fiddler;
class Handlers
{
static function OnBeforeRequest(oSession: Session) {
// User-Agent Overrides
oSession.oRequest["User-Agent"] = "Mozilla/5.0 (compatible; Googlebot/2.1; +tp://w.google.com/bot.html)";
// Add 'ht' after the + and make it 3 'w's instead of just one
}
}

Categories

Resources