net4people
Some way to save masque.
Cloudflare warp is banned in china, you know. but quic is not while cloudflare ips are mostly not.
Many tools toodifying the packets such as fragment and fake packets with wrong checksum or low ttl are proved to be useful to protect tcp+tls from gfw. So can we make a tool to protect masque on quic? Anyone else is interested?
some challenges proxying udp are not supported in many clients such as chromium. But modifying quic is easier than tcp since it can be controlled by the user.
我认为 Cloudflare 推出的这些 VPN 目的就不是为了绕过任何 GFW,甚至故意设置了无法混淆的明显特征以便于被审查系统区分
因为 Cloudflare 完全有能力允许用任意的 SNI、IP,包括 ECH 也是如此,但它不允许这么做
此外,这些 VPN 基本上是免费的,但 Cloudflare 希望将控制权留在自己手中,前段时间它加上了禁止用其服务搭建 VPN 的条款
I think that Cloudflare's introduction of these VPNs is not intended to bypass any GFW, and even deliberately sets obvious features that cannot be confused to facilitate identification by censorship systems
because Cloudflare is fully capable of allowing arbitrary SNI and IP, including ECH, but it does not allow this
In addition, these VPNs are basically free, but Cloudflare wants to keep control in its own hands. Some time ago, it added a clause prohibiting the use of its services to set up VPNs.
我认为 Cloudflare 推出的这些 VPN 目的就不是为了绕过任何 GFW,甚至故意设置了无法混淆的明显特征以便于被审查系统区分
因为 Cloudflare 完全有能力允许用任意的 SNI、IP,包括 ECH 也是如此,但它不允许这么做
此外,这些 VPN 基本上是免费的,但 Cloudflare 希望将控制权留在自己手中,前段时间它加上了禁止用其服务搭建 VPN 的条款
i know. but since http3 is more and more widely use, and censor may began to censor them, we may need move some ways to protect it like tcp.
Cloudflare warp is banned
I haven't known if it's the default endpoint (likely engage.cloudflareclient.com) was blocked or the MASQUE itself was.
- https://github.com/net4people/bbs/issues/418#issuecomment-2609157031
Very likely not the protocol itself.