Paul Vixie describes the emergence of DNS over HTTPS (DoH), TLS 1.3 ESNI (Encrypted Server Name Indication), and HTTP/3 over the QUIC Internet transport protocol UDP as the harbinger of end times for conventional firewalls = the loss of privacy due to loss of visibility by managed private networks.
What is the collateral damage (if any) associated with pushing back now and blocking all UDP QUIC connections?
gk
DEC850 running Zenarmour + Intrusion detection (ET Pro, Snort et al)
https://www.youtube.com/watch?v=04Wugl7yb-k&ab_channel=NANOG
https://www.darkreading.com/risk/vixie-the-unintended-consequences-of-internet-privacy-efforts