On Mon, Jun 24, 2024 at 1:19 PM Paul Vixie <paul= 40redbarn....@dmarc.ietf.org> wrote:
> I've blocked UDP in every edge network I've operated since the late 1980s > because it could be used to facilitate firewall bypass in the style of > quic. I might not be alone. Quic is something I'll expect my ALG to use, > because it's a great thing. > > > Many (most?) large govt agencies are just blocking it outright on the firewall. THe same with large corporations. I feel like security tooling may not be up to snuff and it's easier to just force the connection over TLS...simpler for sure... John
