What about surveillance with the help of ISPs? What about banning tunneling-techniques for private end-users?
That hasn't worked so well with
I2P &
Tor - and those are just the two most popular darknets. Deep packet inspection isn't effective for detecting properly encrypted tunnels, and is incapable of operating outside of its own network reach. Encrypted traffic can be made to look like HTTPS and a direct connection can be avoided by adding proxies.
Effectively hiding would necessitate a lot of bandwidth overhead (my theory mostly) which means that whatever traffic one wishes to transfer better be a smallish fraction of what one uses. Streaming porn might be a good carrier.
Secondly, it might take balls of steel to risk getting caught if the penalty is being hauled off to some work camp somewhere.
While these are theoretical issues at this point, and probably will remain so, they are not improbably enough to completely ignore. IMHO.