Comments (7)
setupminimal
commented on May 26, 2024
I know (my school's firewall at least) doesn't block anything on 80 or 443 even if it's not HTTP(S). They do block the high TCP and UDP ports, as those are commonly used for peer-to-peer applications. So just using low ports as a fall-back might work.
from zerotierone.
adamierymenko
commented on May 26, 2024
setupminimal: do you know if they block UDP on 80 or 443? I've been tempted to make supernode traffic use UDP/443 but this is a double-edged sword... it would make the traffic look very weird and suspicious to many IT network people.
from zerotierone.
adamierymenko
commented on May 26, 2024
Also: do you know if they block low-numbered UDP ports in general? Like what about UDP port 993?
from zerotierone.
setupminimal
commented on May 26, 2024
I could do some testing, if you'd like, but I don't know about low UDP. I do know that TCP ports 80 and 443 are unfiltered except for certain 'inappropriate' domains. I think that almost all the other ports are closed. I haven't bothered testing exhaustively, but, for instance, 25565 (Minecraft), 8080 (YACY), and 9993 (Zerotier-one) are all blocked.
As far as UDP on 443 . . . DNS uses UDP on 53, and computers do legitimately make a lot of DNS requests. There are ports that I'm certain must be open, for basic internet service, that use UDP, so using one of those could be good camouflage.
from zerotierone.
adamierymenko
commented on May 26, 2024
I'm probably just going to stick to TCP. That will work everywhere. It will be slower, but that's the penalty for being behind a nasty firewall.
from zerotierone.
adamierymenko
commented on May 26, 2024
Almost done with this... will be in next release. I made it look like TLS and it will talk to supernodes over port 443, so this will tunnel past everything except SSL-in-the-middle BlueCoat. Chances are if you have BlueCoat on your network you are behind a corporate firewall and would need to get IT permission to run this anyway.
As far as countries with firewall fascism on the national level, getting around that is beyond the scope of this project. Consider Tor. Using TCP tunneling it would be possible to use ZeroTier over Tor.
from zerotierone.
adamierymenko
commented on May 26, 2024
Closing as this is working, will be in next release! (Probably sometime next week.)
from zerotierone.
Related Issues (20)
- [WIN] zerotier lost connection when windows is under `Modern Standby` state.
- Tagged but no release HOT 2
- [Linux] Build requirements didn't mention.
- 在central创建网络发现Subnet重复 HOT 3
- zerotier-one should support systemd notification HOT 1
- Install Zerotier: Add support for Ubuntu 24 (noble) [Feature Request]
- Problem with metrics in daemonize (-d) mode HOT 4
- High CPU usage on Windows when there is no internet connection available HOT 2
- MTU issue with some mobile operators HOT 4
- Set TAP adapter speed to 1Gbit or 10Gbit HOT 1
- Sometimes losing connection to ZT network when Android device changes from WiFi to cellular
- compatibility for android with ndk toolchain
- Unstable SSH connection although ping is ok HOT 1
- The problem with the minecraft plasmo voice udp port HOT 2
- Zerotier Central down, unable to log in trough the web portal, and API requests are failing. HOT 13
- zerotier windows - not ajusting interface mtu HOT 7
- Zerotier Android - some internet traffic gets disrupter when Zerotier network is active
- Receiving/being assigned a local IPv4 address takes 15-20 seconds after joining a network. Changing system time after zerotier service has started on windows makes joining networks impossible. HOT 5
- Version Naming inconsistency issue HOT 5
- Zerotier Central down HOT 3
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from zerotierone.