grpc, HTTP/2 and corporate firewalls

[m...@andrewmichaelsmith.com]

Hi

I'm evaluating grpc for use in an application that will see my client potentially distributed behind a number of corporate firewalls.

From experience in the past I know these firewalls (specifically the ones that man in the middle traffic) can often break things like TLS and websockets, but I have never experimented with HTTP/2.

Has anyone had any good or bad experiences with this? My concern is that HTTP/2 may not be supported or may be explicitly blocked and my grpc clients won't be able to communicate across the internet with my server.

Thanks

[Eric Anderson]

For those who didn't see the IRC conversation, MITM proxies (those that decrypt the TLS and reencode) would likely cause trouble for gRPC. If websockets over TLS were broken in an environment, I'd expect gRPC to also be broken. While I expect those proxies still exist, I don't have any data for how common they are.

--
You received this message because you are subscribed to the Google Groups "grpc.io" group.
To unsubscribe from this group and stop receiving emails from it, send an email to grpc-io+unsubscribe@googlegroups.com.
To post to this group, send email to grp...@googlegroups.com.
Visit this group at https://groups.google.com/group/grpc-io.
To view this discussion on the web visit https://groups.google.com/d/msgid/grpc-io/7f6a8864-b10f-41a8-afe5-c26a23d00425%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

[falco...@gmail.com]

Our (pretty big) company switched to Zscaler half a year ago, which (sadly) uses MITM proxy. Leading not only to common problems with reencoding but also for pages using HTTP Public Key Pinning (HPKP) when you just want to use the web...