Iran blocking essentially all encyrpted protocols

Marshall Eubanks marshall.eubanks at
Fri Feb 10 20:07:15 UTC 2012

And in response

(quoting) :

“Basically, say you want to look like an XMPP chat instead of SSL,” he
writes to me, referring to a protocol for instant messaging as the
decoy for the encrypted SSL communications. “Obfsproxy should start
up, you choose XMPP, and obfsproxy should emulate XMPP to the point
where even a sophisticated [deep packet inspection] device cannot find
anything suspicious.”


On Fri, Feb 10, 2012 at 2:03 PM, Shahab Vahabzadeh
<sh.vahabzadeh at> wrote:
> Yes I am from Iran and outgoing TCP/443 has been stoped ;)
> --
> Regards,
> Shahab Vahabzadeh, Network Engineer and System Administrator
> PGP Key Fingerprint = 8E34 B335 D702 0CA7 5A81  C2EE 76A2 46C2 5367 BF90
> On Feb 10, 2012, at 9:56 PM, Ryan Malayter <malayter at> wrote:
>> Haven't seen this come through on NANOG yet:
>> Can anyone with the ability confirm that TCP/443 traffic from Iran has
>> stopped?

More information about the NANOG mailing list