China — Great Firewall of China (GFW)#

Overview#

The Chinese GFW, also known as the Great Firewall of China, is the most sophisticated firewall in the world. It employs techniques such as injecting TCP RST packets, DNS poisoning, SNI blocking, and DPI to detect and block circumvention traffic.

What Doesn’t Work#

  • Google, NYT, Twitter, etc., obviously don’t work.
  • OpenVPN and WireGuard are readily detected and blocked.
  • SSH tunneling is short-lived and unreliable.
  • Shadowsocks is easily detected without obfuscation.

What Works#

  1. CDN + VMESS + WS — does work but can be technically detected.
  2. Hysteria 2 — effective but may be unstable.
  3. Any VLESS with TLS or XTLS — strong option.
  4. NaiveProxy — functional for basic use.
  5. Trojan — works but fingerprint may be identified.

Notes#

  1. Cloudflare CDN is sometimes slow.
  2. Hysteria 2 can be unstable but works.
  3. Some provinces have extra firewall blocking and employ a whitelist.
Backward Scenarios Russia (Sovereign Internet) Forward
© 2026 Zenith Rifle