[118443] in North American Network Operators' Group
Re: ISP/VPN's to China?
daemon@ATHENA.MIT.EDU (Fred Baker)
Thu Oct 22 02:10:37 2009
From: Fred Baker <fred@cisco.com>
To: Alex Balashov <abalashov@evaristesys.com>
In-Reply-To: <CD1A397E-E22B-4953-B46B-CAEDBAC97C5E@evaristesys.com>
Date: Wed, 21 Oct 2009 23:09:40 -0700
Cc: "nanog@nanog.org" <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
They exist and for certain applications are pretty effective.
On Oct 21, 2009, at 6:47 PM, Alex Balashov wrote:
> I was not aware that tools or techniques to do this are widespread
> or highly functional in a way that would get them adopted in an
> Internet access control application of a national scope.
>
> Tell me more?
>
> --
> Sent from mobile device
>
> On Oct 21, 2009, at 9:27 PM, Adrian Chadd <adrian@creative.net.au>
> wrote:
>
>> On Wed, Oct 21, 2009, Alex Balashov wrote:
>>
>>>> oh my goodness. You're behind on your reading...
>>>
>>> I didn't mean DPI. I meant in a way that can be inferred from the
>>> headers themselves, and aside from the port number.
>>
>> You don't think that statistical analysis of traffic patterns
>> of your UDP traffic wouldn't identify it as a likely tunnel? :)
>>
>>
>>
>> Adrian
>>
