PDA

View Full Version : Technology explained

ChickenRun
26-11-2019, 06:24 PM
Sick and tired of all the various threads that complain about various sites being unable to access, so here's a quick primer on how the internet works.

Imagine you are at Expo, and somehow halls 4, 5 and 6 have been linked into one giant hall. The hall is filled with desks and chairs, like some school exam. You sit at one desk. You cannot talk to anyone else in the hall, but you can pass messages to the people right next to you, in front and behind you.

Your position in the hall (e.g. row 10, seat 10) is similar to what we call an IP address. Everyone in the hall has a unique position, and similarly everyone on the internet has a unique IP address. (Well some people don't, but let's not go there and complicate things.)

Your name is similar to what we call a domain name. Examples of domain names are google.com (not www.google.com), singtel.com.sg, sbf.net.nz. These are names that are easy to remember, but do not give any information on your position at all.

Now say you want to send a message to a friend (e.g. Tan Ah Kow) who is in the hall, but you have no idea where he is. However, there is a person (e.g. row 100 seat 100, nobody cares about his name, but everyone asks him for other people's positions anyway) designated in the hall to keep track of where everyone is. Also, everyone knows the exact position of this person in the hall. This person is like what we call a DNS server.

So, you write down on a piece of paper, "To: row 100 seat 100, From: row 10, seat 10, Message: Please tell me where Tan Ah Kow is". You then pass this paper to your neighbour, and he will pass it on to his neighbour, until it reaches row 100 seat 100. This poor bastard then looks up his record books, finds Tan Ah Kow's position, and sends this message to his neighbour:"To: row 10 seat 10, From: row 100, seat 100, Message: Tan Ah Kow is at row 50, seat 50".The message finds its way back to you, and now you can send messages to your friend, because you now know where he is.

This is basically how the internet works. There are a few points to note:

1. Without the DNS, nobody knows where anyone is, and no messages can be passed along. (in general)
2. Your message is in plain view of everyone who passes the message along. This is called an unencrypted connection.
3. Everyone who sees the message knows which position sent it, and which position it is going to.

Now, every internet service provider (ISP) in Singapore runs their own DNS. Normally, you will send the position requests to them. The government regulates what positions they are able to reply to you, and what they cannot. So, even though you know that some sites exist e.g. this forum, thisav.com etc, if the DNS doesn't tell you the position, you cannot send messages to them, they cannot send messages back to you, and you cannot surf these sites.

To get around this, you have to use other DNS that is not regulated by the government, i.e. Google DNS (8.8.8.8) or Cloudflare DNS (1.1.1.1). This solves point 1 above. Basically, instead of using row 100 seat 100, you use some other DNS e.g. row 400 seat 400 that the government cannot regulate.

To tackle point 2, we have what is called an encrypted connection. This is commonly done using https. Basically, you and your friend make a code that only the two of you know. Then, you code your messages so that even though people along the way know the two of you are communicating, nobody can understand what the message is.

Point 3 is where VPNs come into play. Because you don't want people to know who you are sending messages to, you get a middle man to do it. Instead of sending a message to Tan Ah Kow directly, you employ your VPN man, Sam Leong. He gives you a code that only he knows how to read, and his position. You write your coded message and send it to him. Everyone along the way knows you are sending Sam Leong a message, but nobody can understand what it says.

When Sam receives the message, he decrypts it and sends the plain message to Tan Ah Kow. Tan Ah Kow replies to him, but nobody knows that it is actually you who is sending the message. Sam receives his reply, encrypts it, and sends it back to you. Only you are able to decrypt the message.

I hope with this, we will see less threads of people asking why this/that site suddenly cannot access, and will not confuse DNS with VPN anymore.
koitea
26-11-2019, 06:54 PM
Wow great explanation bro chickenrun. It is so easy to understand now. Thanks!
RioDeJanuary
26-11-2019, 11:23 PM
Thanks bro ChickenRun, understand now :D
grouchycabi
27-11-2019, 06:05 AM
Thank you for putting it in such easy terms. Upped you!
Perepopy
27-11-2019, 06:12 AM
Very informative! Upped up for the great work.
sammyboyfor
27-11-2019, 09:06 AM
I can make it even simpler.

You want to send a parcel to Sylvia Lim of (WP) but you don't know her home address so you ask your favorite PAP MP whether he can tell you where to find her. His answer of course is "sorry I cannot help you!".

Your ISP's (Singnet, M1, Starhub etc) DNS is like the PAP. They will not help you find what they do not want you to see.

So instead of asking the PAP where sam's forum is you should ask a neutral party instead. There are a number of neutral parties on the net ie Cloudflare (1.1.1.1), Google (8.8.8.8), OpenDNS (208.67.222.222).

If you ask them where sam is residing on the www they will tell you straight away and Cloudflare does it more quickly than the rest.

To ask them instead of asking the PAP you have to change the DNS on your computer from your ISP's DNS to one of the neutral parties.

Cloudflare is the best option because they have an app that changes the DNS settings on your phone too ie https://1.1.1.1
fortuneo
27-11-2019, 09:58 AM
Thanks for sharing.
Moderator88
27-11-2019, 10:23 AM
Thanks for the layman explaination. Clear!:)
cricketeer
27-11-2019, 10:35 AM
Appreciate very much.
Tai_zi21
27-11-2019, 11:56 AM
I can make it even simpler.

You want to send a parcel to Sylvia Lim of (WP) but you don't know her home address so you ask your favorite PAP MP whether he can tell you where to find her. His answer of course is "sorry I cannot help you!".

Your ISP's (Singnet, M1, Starhub etc) DNS is like the PAP. They will not help you find what they do not want you to see.

So instead of asking the PAP where sam's forum is you should ask a neutral party instead. There are a number of neutral parties on the net ie Cloudflare (1.1.1.1), Google (8.8.8.8), OpenDNS (208.67.222.222).

If you ask them where sam is residing on the www they will tell you straight away and Cloudflare does it more quickly than the rest.

To ask them instead of asking the PAP you have to change the DNS on your computer from your ISP's DNS to one of the neutral parties.

Cloudflare is the best option because they have an app that changes the DNS settings on your phone too ie https://1.1.1.1

Went to download the app u intro
And I am finally back thank you boss
undergroundtree
27-11-2019, 04:09 PM
Thanks for the heads up!:)
wattalku
27-11-2019, 05:55 PM
Upped you bro chickenrun! awesome and simple explanation. Thanks so much!
diputs1269
27-11-2019, 06:26 PM
Upz TS ChickenRun's analogy like chicken feed, cheers!
SungJoongki
27-11-2019, 06:57 PM
Very good share, thks.
Palairment
27-11-2019, 10:36 PM
So complicated. :( Its all numbers. :p


Don't care la, as long can log in SBF :D
ChickenRun
28-11-2019, 11:00 PM
Upz for visibility. Feel free to direct people to this thread as well if they are having issues.
myluckyguy
28-11-2019, 11:14 PM
very good and interesting explaination of Technology :D
LordVader
29-11-2019, 10:21 AM
Sick and tired of all the various threads that complain about various sites being unable to access, so here's a quick primer on how the internet works.

Your explanation way too long bro.

How to explain DNS.

1. Everything on the internet has an address from 1.0.0.0 to 255.255.255.255 (some of which are reserved/special address).
2. Every website and device on the net has an ip address say 123.123.123.123
3. Pretty Hard for humans to remember numbers.
4. DNS servers translate those numbers to names and vice versa.
5. Taking SBF as an example, DNS servers will translate sbf.net.nz to 104.26.5.236


PS. Typically your internet provider will provide their own DNS servers. However in Singapore context they are subjected to MDA's meddling. In order to circumvent that, you can use google's dns servers 8.8.8.8 or 8.8.4.4
sammyboyfor
29-11-2019, 10:45 AM
Your explanation way too long bro.

How to explain DNS.

1. Everything on the internet has an address from 1.0.0.0 to 255.255.255.255 (some of which are reserved/special address).
2. Every website and device on the net has an ip address say 123.123.123.123
3. Pretty Hard for humans to remember numbers.
4. DNS servers translate those numbers to names and vice versa.
5. Taking SBF as an example, DNS servers will translate sbf.net.nz to 104.26.5.236


PS. Typically your internet provider will provide their own DNS servers. However in Singapore context they are subjected to MDA's meddling. In order to circumvent that, you can use google's dns servers 8.8.8.8 or 8.8.4.4


Just to add... previously in order to change the setting on a 3G/4G connection root access was required on a mobile device.

With https://1.1.1.1 all you need to do is install the app.

The whole of Singapore should be on an alternative DNS because those provided by the ISP are slow, inefficient and heavily censored.
ChickenRun
02-12-2019, 01:41 AM
Your explanation way too long bro.

True, however I was trying to make it easier to visualize. Also, my example extends further than just DNS, but also encryption and VPN.
drslump99
14-12-2019, 10:52 AM
Great Scott, Holy Batman!
This is 1 Hell of an explanation
Thanks for taking time to explain all this



Sick and tired of all the various threads that complain about various sites being unable to access, so here's a quick primer on how the internet works.

Imagine you are at Expo, and somehow halls 4, 5 and 6 have been linked into one giant hall. The hall is filled with desks and chairs, like some school exam. You sit at one desk. You cannot talk to anyone else in the hall, but you can pass messages to the people right next to you, in front and behind you.

Your position in the hall (e.g. row 10, seat 10) is similar to what we call an IP address. Everyone in the hall has a unique position, and similarly everyone on the internet has a unique IP address. (Well some people don't, but let's not go there and complicate things.)

Your name is similar to what we call a domain name. Examples of domain names are google.com (not www.google.com), singtel.com.sg, sbf.net.nz. These are names that are easy to remember, but do not give any information on your position at all.

Now say you want to send a message to a friend (e.g. Tan Ah Kow) who is in the hall, but you have no idea where he is. However, there is a person (e.g. row 100 seat 100, nobody cares about his name, but everyone asks him for other people's positions anyway) designated in the hall to keep track of where everyone is. Also, everyone knows the exact position of this person in the hall. This person is like what we call a DNS server.

So, you write down on a piece of paper, "To: row 100 seat 100, From: row 10, seat 10, Message: Please tell me where Tan Ah Kow is". You then pass this paper to your neighbour, and he will pass it on to his neighbour, until it reaches row 100 seat 100. This poor bastard then looks up his record books, finds Tan Ah Kow's position, and sends this message to his neighbour:"To: row 10 seat 10, From: row 100, seat 100, Message: Tan Ah Kow is at row 50, seat 50".The message finds its way back to you, and now you can send messages to your friend, because you now know where he is.

This is basically how the internet works. There are a few points to note:

1. Without the DNS, nobody knows where anyone is, and no messages can be passed along. (in general)
2. Your message is in plain view of everyone who passes the message along. This is called an unencrypted connection.
3. Everyone who sees the message knows which position sent it, and which position it is going to.

Now, every internet service provider (ISP) in Singapore runs their own DNS. Normally, you will send the position requests to them. The government regulates what positions they are able to reply to you, and what they cannot. So, even though you know that some sites exist e.g. this forum, thisav.com etc, if the DNS doesn't tell you the position, you cannot send messages to them, they cannot send messages back to you, and you cannot surf these sites.

To get around this, you have to use other DNS that is not regulated by the government, i.e. Google DNS (8.8.8.8) or Cloudflare DNS (1.1.1.1). This solves point 1 above. Basically, instead of using row 100 seat 100, you use some other DNS e.g. row 400 seat 400 that the government cannot regulate.

To tackle point 2, we have what is called an encrypted connection. This is commonly done using https. Basically, you and your friend make a code that only the two of you know. Then, you code your messages so that even though people along the way know the two of you are communicating, nobody can understand what the message is.

Point 3 is where VPNs come into play. Because you don't want people to know who you are sending messages to, you get a middle man to do it. Instead of sending a message to Tan Ah Kow directly, you employ your VPN man, Sam Leong. He gives you a code that only he knows how to read, and his position. You write your coded message and send it to him. Everyone along the way knows you are sending Sam Leong a message, but nobody can understand what it says.

When Sam receives the message, he decrypts it and sends the plain message to Tan Ah Kow. Tan Ah Kow replies to him, but nobody knows that it is actually you who is sending the message. Sam receives his reply, encrypts it, and sends it back to you. Only you are able to decrypt the message.

I hope with this, we will see less threads of people asking why this/that site suddenly cannot access, and will not confuse DNS with VPN anymore.
JordonSpeith
15-12-2019, 08:24 AM
Thanks all bros for the explanation, good work!! :D
Jakelam737
15-03-2020, 08:55 AM
Thanks for sharing