Excuse my ignorance, but in this case what would be the benefit of having the wireguard server run inside a Docker? Wouldn’t running the server directly on the remote VM achieve the same result?
You can’t inspect encrypted packets, what China does is network traffic analysis - examining headers and figuring out patterns based on metadata. They don’t care much about what’s being transmitted if using a VPN alone is enough to land you in trouble.
Given how easy it is to set up a Docker-based wireguard server on a small remote VM, I suspect this will achieve very little.
Excuse my ignorance, but in this case what would be the benefit of having the wireguard server run inside a Docker? Wouldn’t running the server directly on the remote VM achieve the same result?
Yeah it would do the same thing. Using Docker just makes it easier and faster to deploy
Exactly. Setting it up via Docker is like a 2 minute operation.
I run everything on bare metal the way god intended
What’s the difference?
One less layer of abstraction.
I was being facetious … but about 3%
I know you were joking, but fuck that, never going back to that hellscape.
Deep packet inspection is a thing, AFAIK people in China uses a software called v2ray to counter that.
You can’t inspect encrypted packets, what China does is network traffic analysis - examining headers and figuring out patterns based on metadata. They don’t care much about what’s being transmitted if using a VPN alone is enough to land you in trouble.
i think US carriers do the same thing to counter unauthorized hotspotting so even using a VPN didnt help
It would be better to use a time gated version of Manx to produce a stack elevated free server.