Quote:
Originally Posted by photon
The routers can't decrypt the packets though, that's the whole point of the encryption is the only one that can decrypt it is the browser and the web server.
It could be that the SSL packets aren't being shaped because they don't know what they are and they leaving port 443 at a high priority, but that'd be a choice because I'm sure they could push the priority of the encrypted packets down even if they can't be decrypted. Might slow down online banking too, but that's probably low enough usage that it'd be a fair enough tradeoff to ensure the entire network doesn't deteriorate.
But yeah need more info, and I'm not a network guy either so I could be completely off track.
|
Like I said I'll have to ask for more information. But it could be that because the SSL packets weren't being shaped, numerous people using onion routers were using up bandwidth that they couldn't restrict.
I would assume you CAN buy an appliance that will shape SSL traffic though.
Tor might only run at 20KB/s, but if you have numerous DIFFERENT people using it, or HSS, or FreeVPN, or any other similar service, it all adds up.