[HACK] UDP tunneling over TCP for WireGuard

Ximin Luo ximin at dfinity.org
Wed Apr 18 18:36:58 CEST 2018

(reposting to the list, not used to gmail)

On Wed, Apr 18, 2018 at 1:55 PM, Luca Beltrame <lbeltrame at kde.org> wrote:

> [..]
> Very hacky, but gets the job done. Any suggestions on how to make it
> better?

I wonder if anyone has written a program (likely it has to be a kernel
module) to tunnel UDP packets over "fake TCP" i.e. just put the UDP data in
a TCP packet but not actually run TCP. I'm not sure how deeply firewalls
check TCP headers to see if they are "actually" running TCP "properly", but
I'd guess it's possible to fake enough aspects of it so that it "looks
legit" and no firewall would be able to tell the difference.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.zx2c4.com/pipermail/wireguard/attachments/20180418/465c30b5/attachment.html>

More information about the WireGuard mailing list