I know this is very very early days with GL DPI but a few long term features id find useful:
DPI to shove certain services down specific tunnels. Example in the UK could put social media down a Proton or similar foreign tunnel to avoid restrictions/id/surveillance checks
DPI currently has a “block” option but this is global. Maybe a per client.
Fully understand all this is very early days but dont ask, dont get.
Hi
Thank you for your suggestions.
We do have plans for functionality along these lines, although it will take some time to implement. Stay tuned!
At the moment, device-specific content filtering can be achieved using Parental Controls, which allows filtering policies to be applied on a per-device basis.
I very like this idea, it may be not 100% bullet proof but alot better than general split tunnel routing with domain names.
if ai such as netify/dpi can make a routing decision on top of this, based on the ip and then route it this can fix certain leaking scenarios where ip is used on other services, alot of amazon aws but also cloudflare rotate the same ips, but the problem is that other sites with the same rotated ip start 'leaking', the domain policy only stores ip in a set, and then only traffic gets compared but the wrong domain name no longer gets verified and get a green pass.
But perhaps that needs to be a different type of policy.
