Russia's communications watchdog plans to block Virtual Private Networks (VPNs) from March 1 next year, a Russian senator for the ruling United Russia party said on Tuesday.
Yep, precisely this. It’s extremely hard to block arbitrary internet traffic and everyone who thinks China lives in a propagandized bubble with no exit is deluding themselves.
FWIW, VPN enforcement is much more strict in Xinjiang and Tibet so I think Chinese authorities have the capability, they just choose to not exert it most of the time (to avoid an ever-escalating arms race lol).
If they did, I haven’t heard about it. China has been trying and failing to block tor for decades though, so I kinda doubt Russia managed to beat them to it overnight.
Both astrill and protonvpn sashayed straight past the great firewall when I visited. There was some free Chinese vpn, greenvpn I think, that worked too, but was slow.
What’s the reasoning for this? Surely it’s not that difficult to block all traffic pointing to “vpn.protonvpn.com” (simplified url for the sake of argument)
Even if a VPN provider had 100 URLs to tunnel traffic through, they would all be found in a matter of time, no?
The difficulty is that a VPN isn’t just a product like ProtonVPN, it’s a huge family of software and protocols.
You can block vpn.protonvpn.com, but since most operating systems come with VPN functionality out of the box, you’d have to start listening to all traffic (not just DNS lookups) and blocking ALL packets that might be VPN traffic without causing regular disruption to non-vpn traffic.
TL;DR: it’s easy to prevent unmotivated users from downloading a VPN app. It’s practically impossible to block a motivated user from using a VPN, and they’re the users you particularly care about.
I’m just a user, but afaik if the server you’re routing through is outside of China, they have no right to block the traffic.
I think it’s some international agreement that no country is allowed to block external traffic because that interferes in other countries’ affairs something something, but I don’t know the specifics.
China has been trying for a decade with zero success, best of luck
Yep, precisely this. It’s extremely hard to block arbitrary internet traffic and everyone who thinks China lives in a propagandized bubble with no exit is deluding themselves.
FWIW, VPN enforcement is much more strict in Xinjiang and Tibet so I think Chinese authorities have the capability, they just choose to not exert it most of the time (to avoid an ever-escalating arms race lol).
Got any suggestions for software?
I run openvpn normally and I’ve tried shadowsocks but neither have gotten through the vpn blocks I’ve tested against.
Tor. It’s free, it works, and there’s nobody to sell you out when the cops come knocking.
I’m looking for something self-hosted for secure access to my LAN, not just to reach open internet unfortunately.
If you’re just looking for remote access, openvpn on port 443 should (in theory) be indistinguishable from normal https traffic.
Wasn’t Russia able to block traffic from Tor?
If they did, I haven’t heard about it. China has been trying and failing to block tor for decades though, so I kinda doubt Russia managed to beat them to it overnight.
Both astrill and protonvpn sashayed straight past the great firewall when I visited. There was some free Chinese vpn, greenvpn I think, that worked too, but was slow.
What’s the reasoning for this? Surely it’s not that difficult to block all traffic pointing to “vpn.protonvpn.com” (simplified url for the sake of argument)
Even if a VPN provider had 100 URLs to tunnel traffic through, they would all be found in a matter of time, no?
The difficulty is that a VPN isn’t just a product like ProtonVPN, it’s a huge family of software and protocols.
You can block vpn.protonvpn.com, but since most operating systems come with VPN functionality out of the box, you’d have to start listening to all traffic (not just DNS lookups) and blocking ALL packets that might be VPN traffic without causing regular disruption to non-vpn traffic.
TL;DR: it’s easy to prevent unmotivated users from downloading a VPN app. It’s practically impossible to block a motivated user from using a VPN, and they’re the users you particularly care about.
I’m just a user, but afaik if the server you’re routing through is outside of China, they have no right to block the traffic.
I think it’s some international agreement that no country is allowed to block external traffic because that interferes in other countries’ affairs something something, but I don’t know the specifics.
Lmao.