Bypassing Throttling in Lebanon

WhatUsername961

I finally managed to bypass ISP throttling in Lebanon to reach the max speeds of your internet plan. After many and many test, my data showed that Cloudflare's CDN is unthrottled in Lebanon. All you need is any VPS (outside of Lebanon), a domain and a Cloudflare account. Proxy your domain behind Cloudflare and add the origin server to be your VPS. Setup NGINX as a reverse proxy and v2ray server on your VPS. Install V2ray client on your client and all of your traffic will pass through Cloudflare's CDN network UNTHROTTLED 24/7. This is a general tutorial. If you need a specific tutorial on how to set everything up, hit me up. I already set my network like this and throttling has disappeared and now getting the speeds that I SHOULD'VE gotten in the first place.

fadijm

WhatUsername961 would you do a unlisted video on youtube explaining step by step what to do for this community? please, i only beg.

fadijm

WhatUsername961
Hey,

I reached out to you before regarding bypassing ISP throttling in Lebanon using Cloudflare, and I’ve implemented everything as you suggested. However, I’m still not getting full speeds.

Since our last discussion, here’s exactly what I’ve done:
1️⃣ VPS & Domain Setup

VPS located outside Lebanon.
Domain proxied through Cloudflare (A record with the orange cloud enabled).

2️⃣ NGINX Reverse Proxy & V2Ray Setup

Installed NGINX and set it up as a reverse proxy.
Installed V2Ray with WebSocket (WS) + TLS, routing traffic through Cloudflare.
Used Certbot to obtain Let’s Encrypt SSL certificates.

3️⃣ Configuration Details
NGINX (/etc/nginx/sites-enabled/default)

server {
listen 80;
server_name (domain is private));
return 301 https://$host$request_uri;
}

server {
listen 443 ssl;
server_name (domain is private));;

ssl_certificate /etc/letsencrypt/live/(domain is private)/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/(domain is private)/privkey.pem;

ssl_protocols TLSv1.2 TLSv1.3;
ssl_ciphers HIGH:!aNULL:!MD5;
ssl_prefer_server_ciphers on;

location /v2ray {
    proxy_redirect off;
    proxy_pass http://127.0.0.1:10000;
    proxy_http_version 1.1;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection "upgrade";
    proxy_set_header Host $host;
}

}

V2Ray (/usr/local/etc/v2ray/config.json)

{
"inbounds": [{
"port": 10000,
"protocol": "vmess",
"settings": {
"clients": [{
"id": "32d5ce33-646e-40b6-8e60-afdd728ca4a9",
"alterId": 64
}]
},
"streamSettings": {
"network": "ws",
"wsSettings": {
"path": "/v2ray"
}
}
}],
"outbounds": [{
"protocol": "freedom",
"settings": {}
}]
}

4️⃣ Cloudflare Settings

A record for (domain is private) set to my VPS IP and proxied (orange cloud enabled).
TLS mode: Full (strict).
Using Cloudflare’s CDN to proxy traffic.

5️⃣ Client Configuration (v2rayN on Windows)

Transport: WebSocket (ws)
TLS: Enabled (tls)
Host: (domain is private)
Path: /v2ray
Port: 443
ALPN: http/1.1
Fingerprint: chrome

6️⃣ Testing & Issues

✅ Connection works
❌ Speeds are still throttled
✅ WebSockets work (wscat test successful)
✅ TCP congestion control set to BBR (sysctl net.ipv4.tcp_congestion_control)
✅ Cloudflare traffic is encrypted and proxied correctly
❌ Still not reaching full ISP speeds

The ISP in Lebanon uses a lot of caching, but even with Cloudflare, I can’t reach the speeds I should be getting. Since you managed to get full speeds, do you have any additional tweaks that could help? Maybe specific Cloudflare rules, NGINX optimizations, or a different V2Ray config?

Would really appreciate your insights again.

Thanks,

samer

Hi WhatUsername961, welcome to LebGeeks and thanks for sharing!

Have you also tested Cloudflare's Warp+ service? It's basically a WireGuard tunnel to whatever Cloudflare data center is closest to you. If that works, you would not have to maintain a VPS.

WhatUsername961

I tried it and it is throttled. The IP ranges of Cloudflare Warp+ are throttled by all ISPs in Lebanon but Cloudflare's CDN ips aren't.

samer

WhatUsername961 wroteI tried it and it is throttled. The IP ranges of Cloudflare Warp+ are throttled by all ISPs in Lebanon but Cloudflare's CDN ips aren't.

Interesting. Thanks for reporting back! The cool thing is that Cloudflare actually peers with other ISPs at the Beirut IX, so they have a local presence: https://blog.cloudflare.com/marhaba-beirut-cloudflares-121st-location

WhatUserAmI

Although its peers, its non-CDN ips are throttled heavily by all Lebanese ISPs. You can try downloading a test file from a server that is behind a Cloudflare CDN and do a speedtest while on Cloudflare Warp+ and the speed difference is insane! Cloudflare's global cdn is unthrottled so i use that to my advantage to bypass any ISP throttling/monitoring by encapsulating and proxying all of my traffic through an ssl/tls tunnel through Cloudflare's CDN to my origin server. Pretty awesome and the best thing is; it works in Lebanon. 24/7 high speed uninterrupted, unthrottled and secure internet all the time.

WhatUserAmI

I am willing to do but it is a lot of setup/configuration on the cloud (VPS) so before i go into this tedious endeavor, you can try it as PoC and when you confirm it is working, i will do it.

fadijm

WhatUserAmI with my limited knowledge on networking and server setups i tried but it did not seem to work for me. Name your price and we can discuss other things later on. I hope we can come to an agreement. If you can't it is fine and thank you for putting up with a guy like me

fadijm

fadijm what i wanted to say is that can you please make one for me?

WhatUserAmI

Yes, i could make one for you. Regarding the price, i prefer to discuss things privately.

fadijm

WhatUserAmI how may you want to contact me? Telegram?

WhatUserAmI

Sure. That'll work. My number on Telegram is (...) If you would like me to contact you on Telegram, drop your number here and i will message you.

Admin edit: please don't publically post personal information. You can check a user's email in their profile (only visible when logged in).

zizo99

Hey, is this legitimate and working? What if your ISP provider figures it out?

WhatUserAmI

It is 100% legitimate and working for all ISPs in Lebanon. My ISP cannot figure it out cause all he can is my IP connecting to a Cloudflare CDN IP and requesting some encrypted resources. Nothing sketchy to him.