Airvpn is not in normal use in China (Mainland) I found that based on the openvpn protocol, there are also ssl, ssh (forget it put in China) Maybe you think about supporting the wiregurad protocol, or participating in support. And consider similar v2ray confusing traffic technology Https://github.com/v2ray/v2ray-core I know that the client can set the pre-agent I prefer a fundamental solution (although it is difficult) The Chinese firewall IPS part is the easiest to prevent too simple "settings" (such as ssh, ssl pre-proxy settings) SSL-SNI full verification promotion has not been seen on the ssl platform recently. Idea: distributed (perhaps blockchian) tcp/udp protocol extension development + ML to handle routing and detection being attacked or blocked (both done at the bottom layer rather than at the application layer, not centralized but decentralized)... Goodluck