OPNsense Forum

English Forums => Intrusion Detection and Prevention => Topic started by: guernseybunker on December 03, 2022, 05:32:15 pm

Title: block udp quic connections - collateral damage? + the end of firewalls
Post by: guernseybunker on December 03, 2022, 05:32:15 pm: Paul Vixie describes the emergence of DNS over HTTPS (DoH), TLS 1.3 ESNI (Encrypted Server Name Indication), and HTTP/3 over the QUIC Internet transport protocol UDP as the harbinger of end times for conventional firewalls = the loss of privacy due to loss of visibility by managed private networks.

What is the collateral damage (if any) associated with pushing back now and blocking all UDP QUIC connections?

gk
DEC850 running Zenarmour + Intrusion detection (ET Pro, Snort et al)

https://www.youtube.com/watch?v=04Wugl7yb-k&ab_channel=NANOG
https://www.darkreading.com/risk/vixie-the-unintended-consequences-of-internet-privacy-efforts

SMF 2.0.19 | SMF © 2021, Simple Machines
Privacy Policy