If the person could setup an SSL/IPSec tunnel(HTTPS proxy) it would be over 443 (Which was confirmed allowed) and encrypted(between client on proxy/vpn) to hide what types of traffic. I think a specifically configured VPN/Proxy would do the job just fine.