OpenVPN - Layer7 Filterting
Posted: Sun Oct 31, 2010 4:43 am
dear community,
i'm running openvpn-server 2.1.1 on my dd-wrt box at home.. working (nearly) fine so far..
sometimes I need to connect to this server from a network that has "high" access-restrictions.
foreign network-characteristics:
* I have public IP while connected there
* The network does not allow UDP traffic at all
* It blocks well known VPN-ports (1723 for pptp is blocked, 1194 for openvpn is blockedm..)
* But allows anything that is not blocked explicitly
I configured my open-vpn server to use a tcp-port in the upper range (for example 36421) to avoid those restrictions.
If I do so, I can connect for a couple of seconds, the link gets established, but then it gets killed.
When I try to reconnect to that port after my connection has been killed, it's blocked (can't even telnet it then, no answer).
If I change the server-port again, I can connect again for a couple of seconds.
This sounds like Layer7-Filtering to me.
(Layer7 = Inspecting packet-content to determine type)
I was thinking traffic going across the OpenVPN link is fully encrypted... how can it be detected?
Are there some kind of non encrypted keep-alive packets?
Any ideas on how to "keep my connection" secret?
thanks a lot
i'm running openvpn-server 2.1.1 on my dd-wrt box at home.. working (nearly) fine so far..
sometimes I need to connect to this server from a network that has "high" access-restrictions.
foreign network-characteristics:
* I have public IP while connected there
* The network does not allow UDP traffic at all
* It blocks well known VPN-ports (1723 for pptp is blocked, 1194 for openvpn is blockedm..)
* But allows anything that is not blocked explicitly
I configured my open-vpn server to use a tcp-port in the upper range (for example 36421) to avoid those restrictions.
If I do so, I can connect for a couple of seconds, the link gets established, but then it gets killed.
When I try to reconnect to that port after my connection has been killed, it's blocked (can't even telnet it then, no answer).
If I change the server-port again, I can connect again for a couple of seconds.
This sounds like Layer7-Filtering to me.
(Layer7 = Inspecting packet-content to determine type)
I was thinking traffic going across the OpenVPN link is fully encrypted... how can it be detected?
Are there some kind of non encrypted keep-alive packets?
Any ideas on how to "keep my connection" secret?
thanks a lot