02 Apr

Railtel-Google free railway station wifi using 49Gbps!

Railtel (the telecom arm of Indian railways) is running free wifi hotspots across the country in collaboration with Google.¬† It’s there since last two years and started with the MoU between Railtel and Google (news here) back in 2015.

Fast forward to 2018 – the free wifi project railway stations seems to be doing quite well with so many users using it. The project covers 361 stations and is expected to reach it’s target of 400 stations soon. The IP network for the service is under the name “Mahataa Information India Private Limited” and originates IP pools from AS134426 – https://bgp.he.net/AS134426#_asinfo. It is a single homed network behind Railtel’s AS24186.

 

 

Google’s free wifi at Indian railway stations is better than most of the country’s paid services

 

I put an RTI to Railtel asking them about MoU details as well as bandwidth consumption for each state. In their reply, Railtel denied the request for MoU under the exemption from disclosure as well as NDAs they have with Google but they did share detailed of state wise bandwidth consumption.

 

 

 

Some interesting points

 

  1. This data is peak bandwidth usage and not average bandwidth.
  2. Highest usage seems to be of Maharashtra which very likely is because of high usage in Mumbai.
  3. Second highest in Uttar Pradesh which isn’t surprising based on the size of the state.
  4. Rajasthan, as well as Punjab, seem quite low against their size.
  5. It seems to be mostly 0 for North East states – Arunachal Pradesh, Mizoram, Meghalaya, Manipur, Tripura & Sikkim. The only traffic is in Assam (450Mbps) and Nagaland (90Mbps).¬† In Assam there are 5 active stations under the project and Nagaland there’s just one (Dimapur) station. 90Mbps usage for one station is interesting.
  6. Total bandwidth consumption of 49.68Gbps looks like a nice number. Hard to predict the cost of the bandwidth since a significant part of this would be local cached/peered traffic like Google, Facebook, Akamai, Amazon etc. My guess would be that 35% of the 49.68Gbps i.e ~ 17Gbps would be the IP transit expense part of it which would be much cheaper against the long haul network Railtel is maintaining.

 

For anyone interested in raw RTI, I have posted the reply from Railtel here which includes my question & their replies. Document hides my personal details like phone number & address. So far impact seems good but I very much wish to know the cost of offering such service for free and if it is sustainable or not.

22 Dec

DNS hack of Google, Facebook & more sites in .bd

Yesterday Google’s Bangladeshi¬†website google.com.bd was hacked and this happened via DNS. It was reported on the bdNOG mailing list at morning in a thread started by Mr Omar Ali where he shared this screenshot:

 

 

This clearly shows how authoritative DNS for “com.bd.” (which is same as bd. btw) was poisoned and was reflecting attackers authoritative DNS. Later Mr Farhad Ahmed posted a screenshot of google.com.bd showing hackers page:

 

 

Later Mr Sumon Ahmed mentioned that it happened because web frontend of .bd was compromised. This was an interesting hijack as attacker attacked the key infrastructure of the registry instead of Google or Facebook servers. It’s also a warm reminder of the way DNS depends on the hierarchal structure by design and at this stage, we need to focus on DNSSEC to add on the security to the current system.

 

Lately .bd domain faced issues multiple time this year. I hope it will have a good stable time in the upcoming year. In terms of stability it is being backed by PCH’s anycast infrastructure but PCH’s DNS servers are just published in NS records of it’s existing auth servers, but not on the parent zone (which is root zone). Thus the point of failure remains and is yet to be fixed.