On Mon, 21 Jun 2004 10:03:46 +0100 "Christian de Larrinaga" <cdel@xxxxxxxxxxxxx> wrote: <snip> > A traveller cannot change ISP easily so either will just have to accept some > things cannot be done or will find a way. As it happens one can preplan and > setup a proxy service or a tunnel broker etc that can get round many of > these issues. > > Perhaps the IETF would be wiser to give a warning about the futility of > trying to break application transparency. "The Internet user may always find > a way to communicate on their own terms" ... using the following tunnel broker / VPN peer. The neat thing about it is that it uses SSL/TLS over UDP, and you can specify the UDP ports to use. As it uses UDP to encapsulate the IP packets, the outer IP header can be NATted. Also, as it uses UDP, and the ports are selectable, you may be able to "punch" a pipe through a firewall, by using UDP ports #53 a.k.a. DNS, depending on how well the firewall inspects DNS traffic. If that works out, "The Internet user may always find a way to communicate on their own terms", irrespective of NAT. http://openvpn.sourceforge.net/ Regards, Mark. _______________________________________________ Ietf@xxxxxxxx https://www1.ietf.org/mailman/listinfo/ietf