OpenVPN technology: how to hide traffic
Together with wide opportunities the Internet carries a number of dangers. First of all, when it comes to anonymity and security. If information is transmitted over an unprotected channel, your data may well become the property of intruders - it is, for example, about personal correspondence in social networks.
Another unpleasant moment is a ban on access to a number of resources, which, at its own discretion, is imposed by the government of certain countries. Even methods of blocking VPN-networks are used. Despite the fact that the information passing through the tunnels is hidden from the outside eye, the packets can still be deciphered by applying DPI techniques.
Both of these problems can be solved with the help of OpenVPN technology, which offers several effective ways to hide traffic. However, most of them require changing the settings of the server itself, but there are also those that are available to each user. About them in more detail.
Using TCP port 443 for forwarding
The method is extremely simple. By default, traffic to the VPN passes through TCP port 80. It is checked by firewalls that do not skip encrypted data. The HTTPS protocol redirects information through port 443: it does not threaten blocking, because then it will not be possible to access the Internet at all. This port for data protection is used by banks, megacorporations and large Internet resources like Gmail and Twitter.
Opportunities 443 are also used by OpenVPN. Switch to it will not be difficult for any customer service.
The only obstacle can arise if censors check packages in-depth method. Then the probability of recognizing your traffic is high, because the standard SSL method is not used in OpenVPN. In this case, it is worth thinking about additional protection.
How to hide traffic using Obfsproxy
The basis is the strategy Tor, used to bypass the lock in China. The method is based on obfuscation, which makes it impossible to detect traces of OpenVPN.
Obfsproxy is installed on both the server and the user's computer - it's easy to do. The degree of security is lower than in tunneling, but you will not have to face the congestion of the channel.
SSL tunneling: dual protection
A viable alternative to OpenVPN can be SSL - the protocol for protecting sockets. With it, the use of the VPN will be completely hidden. But since there are serious differences between the protocol and the standard SSL channels, it can be detected by deep packet inspection. Exit - adding an additional level of encryption: independent layers of SSL channels for DPI are not available.
You can always find out about the possibilities of VPN to hide traffic from your ISP. And on our site you can easily find detailed information about all services that use OpenVPN technology.