How can phone companies detect tethering?

Android connects to the phone network using a different type of connection (DUN) to send tethered data.<p>The code to do that is in android here:<p><a href="https:&#x2F;&#x2F;github.com&#x2F;aosp-mirror&#x2F;platform_frameworks_base&#x2F;blob&#x2F;355dbae680994002c48d7a66cb276a65393ecbbb&#x2F;services&#x2F;core&#x2F;java&#x2F;com&#x2F;android&#x2F;server&#x2F;connectivity&#x2F;Tethering.java#L1090" rel="nofollow">https:&#x2F;&#x2F;github.com&#x2F;aosp-mirror&#x2F;platform_frameworks_base&#x2F;blob...</a><p>There is a setting you can set to disable it and make the provider treat all traffic as if it is non-tethered.<p><pre><code> adb shell settings put global tether_dun_required 0 </code></pre> Considering how knowledgeable the HN crowd is on all things networking, it surprises me to see so much uncertainty on something so easy to check in the code!

Last year I called T-Mobile for some relatively minor reason and then got into a conversation about this &quot;upgrade&quot; I could get that would knock my bill down $20 a month, provide option X, Y and Z.<p>It sounded too good to be true so I just kept asking if I&#x27;d lose anything. I was assured, no, it&#x27;s all benefit.<p>In the past if I had an internet outage at home I&#x27;d switch to to tethered phone and have no drop in speed. In fact, it was faster than work or home.<p>I recently moved and while waiting for internet installation suddenly found my tethered rate went down to .25&#x2F;mpbs, whereas in the past it was up around 40mbps up and down. My phone itself reached these speeds via LTE. It became immediately apparent what I&#x27;d signed up for in my &quot;upgrade&quot; the year prior. I had been on some grandfathered plan that had no such restriction, and by &quot;upgrading&quot; sacrificed my ability to tether without moving to a One Plus plan.<p>Of course in the heat of all of this I asked myself that same question: &quot;how does T-Mobile know?&quot; Some of the suggestions here seem unlikely since I&#x27;m still able to get good speeds via the phone <i>simultaneously</i> while limited via computer. The MAC address thing seems compelling but I&#x27;m obviously not going to go around spoofing anything just because I got duped by my provider.<p>I&#x27;ve been a T-Mobile customer forever, but that kind of deception was really, really insulting.

&gt;MAC address inspection<p>AFAIK this wouldn&#x27;t work because MAC addresses don&#x27;t get forwarded to the next network segment. On android, the phone acts as a router (with its own DHCP server assigning devices a local IP address), so I doubt that information is getting passed on.<p>&gt;Inspecting the network packets for their TTL (time to live)<p>&gt;TCP&#x2F;IP Stack Fingerprinting<p>&gt;Looking at the Destination IP&#x2F;URL<p>Probably works, but I&#x27;d imagine it&#x27;s pretty easy to bypass by proxying your connection through the phone.

Isn&#x27;t paying for tethering the digital version of buying apples, but I have to pay a premium if I want to use them in a recipe?

Oh hell yeah, this is my topic. I really really really hate Comcast&#x27;s poor reliability and cost in my area (seriously you can see me bitch on usenet today: <a href="https:&#x2F;&#x2F;groups.google.com&#x2F;forum&#x2F;#!topic&#x2F;alt.online-service.comcast&#x2F;nS0m4rEJDLo" rel="nofollow">https:&#x2F;&#x2F;groups.google.com&#x2F;forum&#x2F;#!topic&#x2F;alt.online-service.c...</a> ) so I rely on a stack of various LTE providers that are comparable in speed.<p>I&#x27;m tethered right now to Sprint which really doesn&#x27;t appear to give a shit. Their network is encapsulated to all hell since it&#x27;s ipv6-only so I recommend decreasing MTU&#x27;s when connecting to it (something like 1320 seems to work or sites like duckduckgo get blackholed). Sprint sucks unless you&#x27;re line of sight to a band 41 tower and&#x2F;or have a HPUA device.<p>T-Mobile detects tethering a matter of ways. I use a Moto E LTE 2015 (surnia) as a dedicated modem phone for them. I modified lineageOS 14.1 for my specific use case (namely just to add TTL as a target in the kernel for iptables). I also use Network Signal Guru to lock it to the meatiest band in my area (band 4 broadcasts at 20mhz)<p>The magical iptables option to pass is: iptables -t mangle -A POSTROUTING -j TTL --ttl-set 65<p>They detect certain services like playstation network, so you have to VPN that so it isn&#x27;t counted. I disable ipv6 on the t-mobile APN too as an added layer of protection. Average use is around 250-300gb&#x2F;mo, this is rural so it&#x27;s unlikely it causes any quality of service issues (and I don&#x27;t end up subject to deprioritization issues after 50GB)<p>EDIT: Should also mention at least T-Mobile used to do DPI on the User Agent sent by browser years ago. They don&#x27;t appear to do that anymore (widespread HTTPS made that pretty useless). Back then I used to just get around port blocking by ramming my traffic through SSH dynamic port forwarding on port 143, normally used for IMAP. This was for T-Zones service level in the early 2000&#x27;s.<p>Oh and for AT&amp;T in the later 2000&#x27;s I used to buy import phones that weren&#x27;t in their system and use them on the non-smartphone unlimited plan until they got wise to that.<p>EDIT2: If you find ethics of this questionable, can&#x27;t be hassled to figure this stuff out, and&#x2F;or still want to use LTE unlimited where money is not a concern there&#x27;s plans for that: <a href="https:&#x2F;&#x2F;unlimitedville.com&#x2F;" rel="nofollow">https:&#x2F;&#x2F;unlimitedville.com&#x2F;</a>

There is only one justified reason for phone companies to check if you are using your phone as a router, and that is when they provide unlimited data to your contract. Unlimited data is provided given that you are going to use it on your personal devices and not to act as an ISP to everyone around you. Other than that you generally pay for X GB of data and it is none of their business how you spend it.

Very interesting! I&#x27;m on a budget mobile service provider (Cricket), and only recently discovered that they disable using my phone as a hotspot on my plan.<p>I called them up, because I wouldn&#x27;t mind paying a small amount extra every month to have that ability. However, they told me that they actually <i>couldn&#x27;t</i> provide it with my <i>phone</i> even if I paid, because they didn&#x27;t support my phone (Pixel). Then they tried to upsell me on &quot;compatible phones&quot;...<p>I used this phone as a hotspot with my previous provider, so I know it <i>can</i> be a hotspot. But I don&#x27;t know much about the technical side of this. Does anyone know if what they&#x27;re saying is plausible? (Ie, they can&#x27;t offer it for my specific phone)<p>I briefly tried a few apps for this purpose, but none of them worked.

TTL is a nice cheap trick. I figure you can bypass it by adjusting your TTL to be +1 on the computer, or by running a VPN client that acts as a proxy on the phone.<p>This is another excellent question from the earlier days of stackexchange that are all now &quot;offtopic&quot;. Its sad to see it consistently lose informative questions. Stackexchange&#x27;s policy shift toward marking any slightly general question as offtopic is a sad state of affairs.

I am still annoyed (at Apple, to be clear) at the fact that my iPhone asks for carrier permission before functioning as a WWAN-to-WiFi NAT.<p>I have to carry two devices because of this. :(<p>Also in this list: Apple allowing video players to disable seeking in ads. It’s my hardware, fuckers.

Another note: just because you have a VPN running on your phone and have enabled Android&#x27;s &quot;always on VPN&quot; and &quot;block non-VPN traffic&quot; options doesn&#x27;t mean that devices connected to the phone hotspot will send their data over the VPN. You need to have it configured on the guest device as well.

&gt;&gt; This question exists because it has historical significance, but it is not considered a good, on-topic question for this site so please do not use it as evidence that you can ask similar questions here.<p>What reasoning would they have for that? It&#x27;s an Android stackexchange after all.

Many years ago, on a UK network (I think it was o2, but might have been GiffGaff) I couldn&#x27;t and didn&#x27;t tether.<p>However, one app would make calls out with a User Agent that looked like IE6 which caused the network to disconnect my data and require me to phone up to get it unblocked.

I put Cyanogenmod on a device and tethered for years without any carrier warnings. Then I accidentally got a device with a locked bootloader and tethered by rooting it to switch a flag; I got a warning from that one. Then I got another open device, put LineageOS on it and tethered uneventfully for another couple years.<p>I&#x27;m sure my custom ROMs played some games to disguise the traffic, but at least on AT&amp;T it seemed to work without a hitch.

I used to have the old AT&amp;T unlimited plan. A few years ago, they cancelled it due to tethering. I called in to complain, as I know how to tether “illegally”, but hadn’t been doing it. Eventually realized that I’d connected my phone to my mother in-laws new Jeep Grand Cherokee, and the Jeep must have been making IP connections through my phone. Just to spite AT&amp;T, I switched to Verizon.

I don&#x27;t think it works anymore, but it used to be that you could get around tether-blocking in MetroPCS by simply setting your user-agent string to Chrome Android; they moved to something more clever because I guess enough dorks like me figured it out.

After several years of good service, I was accused by my telco (Cricket) of tethering without paying the special fee and my phone was disabled. Found this out in the middle of a trip.<p>The thing is, my plan did not require the extra fee when I signed up, and so that had been grandfathered in.<p>When the telco does this, you can switch to another one, but you cannot port your number. This would be like the postal service owning your street address. If they took a dislike to you, they could prevent you from using the address!

One thing others haven&#x27;t mentioned is DNS. If your phone is trying to lookup Windows Update it&#x27;s a surefire way of knowing this didn&#x27;t originate in the phone.

I never had this issue in EU. Is there a common EU mandate that prohibits carriers to discriminate tethered or untethered traffic?

One of my previous providers was literally looking at the browser user-agent header. If I just connected as normal via my phone, I was blocked very quickly. If I used developer tools in Chrome to pretend to be an iPhone or Android, it worked without complaint.<p>I&#x27;m not sure there is much else with which the network can tell is there?

I don&#x27;t necessarily understand it, but for my Samsung note 8, I used a settings&#x2F;flag editor and added &#x27;DUN&#x27; to my LTE settings and was able to turn on Tethering, whereas normally, it would turn itself off after enabling &quot;mobile hotspot&quot;.

My carrier started blocking requests from my tethered computer if they are made through a VPN ... that doesn&#x27;t seem like it obviously fits into any category? Any guesses as to how they can do that?

At the turn of this year, my provider started blocking requests made through a VPN. Boo

Yeah, I recently had to change TTL on my laptop to 65 to avoid tethering fees.

Set your ttl lower than your phones or 1 higher

If mobile ISP is snooping on your traffic and violates net neutrality by forbidding tethering and the like, just use a VPN.

A VPN solves it.

Ttl

The actual answer nobody is giving:<p>Q: How can phone companies detect tethering?<p>A: by working with Google and Apple to inject code in android and IOS to serve that purpose.