OpenVPN and HTTPS on the same port.
Posted: Sun Apr 03, 2011 11:40 pm
I find myself in the situation of having to run both OpenVPN and HTTPS web server on TCP port 443.
Obviously, I have access to only one IP address, otherwise this wouldn't be an issue at all.
Also, I realize the latest community version of OpenVPN has a feature which does exactly this, but I'd prefer not to use this.
What I'd like to do is segregate OpenVPN and HTTPS traffic at the router level.
First of all, is this even possible? Is there anything distinctive about OpenVPN TCP packets that can be used to differentiate them from HTTPS?
I could go ahead and run some packet captures and come up with my own analysis, but I figure I'd wait to see if someone here already knows the answer before I spend time on this.
Obviously, I have access to only one IP address, otherwise this wouldn't be an issue at all.
Also, I realize the latest community version of OpenVPN has a feature which does exactly this, but I'd prefer not to use this.
What I'd like to do is segregate OpenVPN and HTTPS traffic at the router level.
First of all, is this even possible? Is there anything distinctive about OpenVPN TCP packets that can be used to differentiate them from HTTPS?
I could go ahead and run some packet captures and come up with my own analysis, but I figure I'd wait to see if someone here already knows the answer before I spend time on this.