Exactly why it's called holepunch. It fuzzes firewall protocols with certain packets and timing to convince firewalls that it's an acceptable stream of data regardless of the firewall settings. I saw a conference talk on it a while ago. It was super interesting