Technical

A History of Telegram Proxies (2018-2026)

How MTProto proxies evolved from a quick fix during the 2018 Russia ban to a global censorship-circumvention infrastructure.

TGFast Editorial Team

MTProto Proxy Engineers · Censorship Circumvention Researchers

Published April 27, 2026 Updated May 15, 2026 8 min read 386 words

Origin: the 2018 Russia ban

On April 13, 2018, a Russian court ordered Telegram blocked for refusing to hand over encryption keys. Within hours, Telegram's Pavel Durov announced support for community-run proxies and asked users to share spare server capacity. The MTProto proxy spec was published the same week. Within a month, hundreds of thousands of MTProto proxies were running worldwide. The Russian ban was technically ineffective — Telegram remained accessible — and was officially lifted in 2020.

2018-2019: the wild west

The first generation of MTProto proxies were simple: a single Go binary, a hardcoded port, no obfuscation beyond basic AES-CTR. Lists of proxies were shared on Telegram channels and quickly went stale as IPs were discovered and blocked. Many "free proxy" services were actually scraping connection metadata to sell. The community learned painful privacy lessons.

Get a free TGFast proxy

Browse the live country grid on the home page and tap any card to connect Telegram in one second — no signup, no logs.

Open the fleet

2020: the "dd" obfuscation upgrade

In 2020, Telegram updated the MTProto proxy protocol to use random-padded obfuscation (the "dd" prefix). This made packets look truly random to DPI systems and dramatically extended the survival time of well-managed proxies. Most modern proxies, including TGFast's default secrets, use "dd".

2021-2022: fake-TLS and "ee"

Iran began aggressive DPI-based blocking of MTProto in 2021. The community responded with "fake TLS" obfuscation, which makes the first packet impersonate a TLS 1.3 ClientHello to a configurable hostname. The "ee" prefix selects this mode. Coverage in Iran rebounded sharply. TGFast supports both "dd" and "ee" — we issue "ee" on request for users in Iran and China.

Stay updated

Join @FastTGProxyMT for instant alerts when servers move or new proxies launch.

Join Telegram Channel

2023: the consolidation

By 2023, the proxy ecosystem had matured. A handful of well-funded operators (TGFast, MTProxy.io, Proxiware) emerged as reliable services. The fly-by-night proxy lists faded. The total number of public proxies actually decreased while quality improved.

2024-2025: post-Twitter migration

The 2024 mass migration from Twitter/X to Telegram in Brazil, India and parts of Europe brought a new wave of users to the proxy ecosystem — many of whom needed proxies not for censorship but for performance reasons (overloaded ISP routes). TGFast usage tripled in 2024.

2026 and beyond

As of 2026, MTProto proxies remain the easiest tool to keep Telegram running anywhere in the world. The protocol is stable, the operator ecosystem is mature, and the censor-vs-circumvention arms race has reached an equilibrium where well-rotated proxies survive months at a time. We expect this stability to continue.

Frequently Asked Questions

How is MTProto different from SOCKS5 or Shadowsocks?

MTProto is Telegram's native protocol, so traffic looks indistinguishable from a normal Telegram connection to deep packet inspection. SOCKS5 is a generic proxy with a recognizable handshake; Shadowsocks adds obfuscation but still requires the operator to defend their port and keys against probing. MTProto with Fake-TLS adds a TLS-1.3-mimicking handshake that has proven the hardest of the three to fingerprint.

Why does the secret start with "dd" or "ee"?

The leading byte is a magic prefix that tells the Telegram client which obfuscation mode to negotiate. "dd" enables MTProto 2.0 random padding to defeat traffic analysis; "ee" indicates Fake-TLS mode where the entire session is wrapped in a TLS 1.3 handshake. Both are interoperable with all modern Telegram clients.

Can a network operator detect that I am using an MTProto proxy?

A determined operator can sometimes flag suspicious flows by timing analysis, but the encrypted payload itself is opaque. Fake-TLS makes detection significantly harder because the handshake mimics a real HTTPS site (including SNI, ALPN and certificate exchange). Even when flagged, blocking is per-IP, not per-protocol — which is why TGFast rotates IPs continuously.

Does an MTProto proxy add real cryptography or only obfuscation?

Both. The MTProto 2.0 transport adds AES-256-IGE encryption between client and server with per-session keys derived from the shared secret, and Fake-TLS wraps that channel inside a real TLS 1.3 handshake. Even if the proxy operator were malicious, they could not decrypt the inner Telegram session — that key is negotiated end-to-end with Telegram's data centres.

How does TGFast pick which servers to deploy and where?

We monitor latency and packet loss from probe nodes in 14 cities across the regions hit hardest by Telegram restrictions. New servers are spun up where the median latency to nearby ISPs falls below 80 ms and where the upstream provider has historically resisted ISP take-down requests. Capacity is rebalanced weekly.