Menu
▾
▴
Re: [Openbts-discuss] Forcing handsets to camp
|
From: Sylvain M. <24...@gm...> - 2009-11-19 21:34:41
|
> I should have said that I want to achieve consistent behavior from live,
> non-expired official SIM cards. As I said, some timesI get a connection from
> a local SIM card, in spite of it being within it's provider's coverage. But
> its inconsistent and non-repeatable.
I doubt you can achieve that without special commands on the phone
(like the BTS test mode of the 3310).
The GSM has control on which cell it connects to and if it prefers
another cell than yours there is not much you can do about it.
The only way as you say is to appear to the the only carrier :
- Either by jamming everyone else (and the bts most likely monitors
its own channel so if they see them being jammed, the operator may
investigate what's going on)
- By being alone with the BTS in RF shielded room (or in an area with
zero cell coverage)
- By using a handset that doesn't work in any official band (e.g. a
GSM1900 handest in a zone with only 1800 signals)
- By forcing a bad clock offset so the MS sees only you or the
official net. And then you force it to be you by writing your ARFCN on
the SIM as the last ARFCN used. This will be repeatable as long as you
don't connect to another network in the mean time.
Sylvain
|
