Questions tagged [dpi]
Deep packet inspection
17
questions
1
vote
0
answers
392
views
Possible to determine who on the Internet is resetting (RST) my TCP connection? [closed]
I am investigating censorship in India, and know with a high degree of confidence that it is being blocked based on the SNI extension in the TLS ClientHello.
I am in control of both the Client (in ...
- 131k
0
votes
1
answer
338
views
Does the traffic tunnelled using Stunnel on port 443:TCP appear the same as normal HTTPS to DPI?
I wrapped my Socks5 traffic in TLS using Stunnel and the Stunnel server is listening on the port 443:tcp.
I can connect successfully to Stunnel server and exchange Socks5 traffic.
From the perspective ...
- 204k
1
vote
2
answers
491
views
Can a VPN connection be detected (and get blocked) even after the key exchange happens
If the key exchange happens when using lets say Wireguard or any other protocols that use IKA, and the connection never drops, could the ISP still detect the VPN traffic using Deep Packet Inspection?
CommunityBot
- 1
2
votes
0
answers
1k
views
Best way to avoid DPI/tunnel detection?
guys, I live in Russia and that pretty much says it all.
I was using a standard self-hosted VPN on a DO droplet, but now I'm afraid that since VPN usage in Russia started to spread like a wildfire ...
1
vote
1
answer
295
views
Antivirus/DPI Solution with openvpn server
I wish to set up a system that I log into with openVPN on my Raspberry Pi 4. I have already set up an openVPN server with a PKI infrastructure as well as other services that run on the Pi (like pi ...
CommunityBot
- 1
5
votes
1
answer
858
views
Can DPI block websites with ESNI?
I live in a country with censorship and was wondering if it's possible to bypass DPI by just enabling ESNI, DNS over HTTPS and Always HTTPS? If not, what else should I enable to bypass DPI firewall ...
- 11.6k
4
votes
2
answers
3k
views
Analyzing Tor traffic through Deep Packet Inspection?
I've just read about the detecting and blocking of Tor traffic by DPI but now I'm curious about analyzing the data you send over Tor and matching it with your true identity by deep-inspecting the data ...
- 8,143
0
votes
4
answers
279
views
Disable Encrypted Protocols Through Firewall
In my company, we have two internal domains with a firewall between them. When requesting firewall rules for an application with components on domain A and domain B, I was told that encrypted ...
- 51
0
votes
1
answer
146
views
What kinds of web applications need dynamic packet filtering or deep packet inspection
I have some customers requesting that we put apply DPI or dynamic packet filtering in front of our web server. For the simplicity of my service, I'm feeling like this is over kill. What kinds of web ...
- 682
-1
votes
1
answer
275
views
Surveillance by mobile network provider
I am customer of Vodafone Germany as my mobile network provider. After extension of my RED S mobile contract i realized, that the option "Vodafone Secure Net" is enforced by the company without ...
- 18.7k
2
votes
3
answers
724
views
How does a NG Firewall do application visibility and classification of TLS traffic without TLS interception and how reliable is this
How Does Application Visibility and Control Work? The application
identification (App ID) classification engine and application
signature pattern-matching engine operate at Layer 7 and inspect ...
CommunityBot
- 1
3
votes
1
answer
2k
views
Using VPN and hidding this fact from ISP.
My ISP blocked a bunch of networks I need to access. I installed VPS (unix box) outside of my ISP's network and I now can build VPN between my home router and VPS, but I want to hide this fact from my ...
- 7,892
-1
votes
1
answer
151
views
Identifying URL in SSL
http://qosmos.com/products/protocol-support/ state they are able to identify "Video, URL, date, duration, frame rate, +30 other metadata" for Youtube traffic. Duration, Frame Rate and date seems ...
- 2,274
3
votes
1
answer
476
views
can HPKP certificate pinning disable DPI inspection on firewall?
Is it possible that Firefox and Chrome disable pin validation for users who imported custom root certificates all pinning violations are ignored. What is impact of that? Will browser report any ...
CommunityBot
- 1
3
votes
1
answer
3k
views
Socket closed depending on data. Am I facing an active firewall? (DPI - Deep Packet Inspection)
Following my troubleshooting of making a TLS connection (See: Testing TLS with openssl), it looks like there might be an active firewall in place.
The connection on that port works with nc on both ...
- 351