Skip to main content
Information Security

Questions tagged [dpi]

Ask Question

Deep packet inspection

17 questions
Newest Active Bountied Unanswered
1 vote
0 answers
384 views

Possible to determine who on the Internet is resetting (RST) my TCP connection? [closed]

I am investigating censorship in India, and know with a high degree of confidence that it is being blocked based on the SNI extension in the TLS ClientHello. I am in control of both the Client (in ...
poiasd's user avatar
poiasd
  • 63
0 votes
1 answer
333 views

Does the traffic tunnelled using Stunnel on port 443:TCP appear the same as normal HTTPS to DPI?

I wrapped my Socks5 traffic in TLS using Stunnel and the Stunnel server is listening on the port 443:tcp. I can connect successfully to Stunnel server and exchange Socks5 traffic. From the perspective ...
wiki's user avatar
wiki
  • 135
1 vote
2 answers
480 views

Can a VPN connection be detected (and get blocked) even after the key exchange happens

If the key exchange happens when using lets say Wireguard or any other protocols that use IKA, and the connection never drops, could the ISP still detect the VPN traffic using Deep Packet Inspection?
Emily1001's user avatar
Emily1001
  • 21
2 votes
0 answers
1k views

Best way to avoid DPI/tunnel detection?

guys, I live in Russia and that pretty much says it all. I was using a standard self-hosted VPN on a DO droplet, but now I'm afraid that since VPN usage in Russia started to spread like a wildfire ...
passingTHROUGH1263's user avatar
passingTHROUGH1263
  • 21
5 votes
1 answer
851 views

Can DPI block websites with ESNI?

I live in a country with censorship and was wondering if it's possible to bypass DPI by just enabling ESNI, DNS over HTTPS and Always HTTPS? If not, what else should I enable to bypass DPI firewall ...
Vivek Joshy's user avatar
Vivek Joshy
  • 153
4 votes
2 answers
3k views

Analyzing Tor traffic through Deep Packet Inspection?

I've just read about the detecting and blocking of Tor traffic by DPI but now I'm curious about analyzing the data you send over Tor and matching it with your true identity by deep-inspecting the data ...
h088bmIuXaskpzJEe3ld's user avatar
h088bmIuXaskpzJEe3ld
  • 41
1 vote
1 answer
293 views

Antivirus/DPI Solution with openvpn server

I wish to set up a system that I log into with openVPN on my Raspberry Pi 4. I have already set up an openVPN server with a PKI infrastructure as well as other services that run on the Pi (like pi ...
FalcoGer's user avatar
FalcoGer
  • 392
0 votes
4 answers
279 views

Disable Encrypted Protocols Through Firewall

In my company, we have two internal domains with a firewall between them. When requesting firewall rules for an application with components on domain A and domain B, I was told that encrypted ...
user225444's user avatar
user225444
  • 1
0 votes
1 answer
146 views

What kinds of web applications need dynamic packet filtering or deep packet inspection

I have some customers requesting that we put apply DPI or dynamic packet filtering in front of our web server. For the simplicity of my service, I'm feeling like this is over kill. What kinds of web ...
Brad's user avatar
Brad
  • 103
-1 votes
1 answer
275 views

Surveillance by mobile network provider

I am customer of Vodafone Germany as my mobile network provider. After extension of my RED S mobile contract i realized, that the option "Vodafone Secure Net" is enforced by the company without ...
alex's user avatar
alex
  • 101
3 votes
1 answer
2k views

Using VPN and hidding this fact from ISP.

My ISP blocked a bunch of networks I need to access. I installed VPS (unix box) outside of my ISP's network and I now can build VPN between my home router and VPS, but I want to hide this fact from my ...
user996142's user avatar
user996142
  • 318
2 votes
3 answers
723 views

How does a NG Firewall do application visibility and classification of TLS traffic without TLS interception and how reliable is this

How Does Application Visibility and Control Work? The application identification (App ID) classification engine and application signature pattern-matching engine operate at Layer 7 and inspect ...
emirjonb's user avatar
emirjonb
  • 121
-1 votes
1 answer
151 views

Identifying URL in SSL

http://qosmos.com/products/protocol-support/ state they are able to identify "Video, URL, date, duration, frame rate, +30 other metadata" for Youtube traffic. Duration, Frame Rate and date seems ...
psy's user avatar
psy
  • 115
3 votes
1 answer
475 views

can HPKP certificate pinning disable DPI inspection on firewall?

Is it possible that Firefox and Chrome disable pin validation for users who imported custom root certificates all pinning violations are ignored. What is impact of that? Will browser report any ...
user3654268's user avatar
user3654268
  • 31
0 votes
1 answer
2k views

VPN, ISP & deep packet inspection

If I use OpenVPN on port 443 (TCP or UDP), is it possible for my ISP with deep packet inspection to find out VPN usage? If so, what is the alternative?
Siavash dst's user avatar
Siavash dst
  • 3

15 30 50 per page
1
2