[dr_pardee]

Ten years ago, I was working for a US post-production company that produced a one-off game show in China. We used OpenVPN to monitor our servers, but it was being blocked. I ended up setting up a new OpenVPN server using obfsproxy, and it worked. It might be worth trying in your situation: https://community.openvpn.net/openvpn/wiki/TrafficObfuscatio...

[Covzire]

It should be an OS-level implemented feature at the TCP/IP layer so all non-local traffic is unrecognizable to anyone but the true recipient.

IDS/IPS's are virtually worthless these days anyway so I can't see much downside if every Window's, Mac's and Linux OS's network traffic appeared to be completely random/obfuscated out-of-box.

[b112]

But sir, how will they protect the children, if the OS does that?

[vsgherzi]

Good one

[yjftsjthsd-h]

I've heard it claimed that IPv6 was supposed to bake in IPsec as part of the core protocol which I think would have given you what you want, but 1. obviously that's not how history actually turned out, and 2. honestly I'm kind of glad that it didn't because I would rather not be stuck with IPsec forever.