Results 1 to 3 of 3
  1. #1
    Untanglit
    Join Date
    Mar 2017
    Posts
    24

    Default bypass route normally streaming video services (please add others)

    As you may have experienced on full tunnels, Streaming Video service providers (Hulu, Netflix, Amazon Prime Video) have been detecting and blocking VPN providers so you can't watch movies. Here's what I found to work (so far) to work for Netflix, please post others to add the rules if you have them. YMMV!

    These IP address's are all for netflix (subject to change!)

    Source IP 0.0.0.0 Destination IP 23.21.160.0/24 lface WAN
    Source IP 0.0.0.0 Destination IP 54.204.43.0/24 lface WAN
    Source IP 0.0.0.0 Destination IP 107.20.154.0/24 lface WAN
    Source IP 0.0.0.0 Destination IP 54.243.253.0/24 lface WAN
    Source IP 0.0.0.0 Destination IP 50.19.210.0/24 lface WAN
    Source IP 0.0.0.0 Destination IP 23.23.191.0/24 lface WAN
    Source IP 0.0.0.0 Destination IP 107.20.151.0/24 lface WAN
    Source IP 0.0.0.0 Destination IP 54.204.2.0/24 lface WAN
    Source IP 0.0.0.0 Destination IP 107.20.177.0/24 lface WAN
    Source IP 0.0.0.0 Destination IP 54.225.192.0/24 lface WAN
    Source IP 0.0.0.0 Destination IP 174.129.2.0/24 lface WAN
    Source IP 0.0.0.0 Destination IP 75.101.139.0/24 lface WAN

  2. #2
    Untanglit
    Join Date
    Sep 2017
    Posts
    25

    Default

    Interesting. I wonder how often the IP addresses change. It would be pretty cool to have some sort of whitelist service that we could integrate with that dynamically updated and would integrate with Untangle, although that could open the door for some security concerns.

    I've been using triggers to tag devices/host that visit "netflix.com", then using a VPN rule to route all devices/hosts tagged with "netflix" normally. it has been working fairly well, but isnt' fullproof.

  3. #3
    Untanglit
    Join Date
    Mar 2017
    Posts
    24

    Default

    Quote Originally Posted by ryan.haver View Post
    Interesting. I wonder how often the IP addresses change. It would be pretty cool to have some sort of whitelist service that we could integrate with that dynamically updated and would integrate with Untangle, although that could open the door for some security concerns.

    I've been using triggers to tag devices/host that visit "netflix.com", then using a VPN rule to route all devices/hosts tagged with "netflix" normally. it has been working fairly well, but isnt' fullproof.
    Yeah, it could turn out to be cat and mouse trying to maintain all these IP Addresses. Since there's no easy way to say group them by application type (Streaming Video), this is hit and miss.

    I haven't tried Tagging, but I like that idea. My devices are all AD managed, so I'm not sure how I can tag them in that case. will have to look closer. Have you tried other services with your method, Hulu, Vudu, Amazon Prime Video, etc... Those are driving me crazy trying to find a way to bypass VPN

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

SEO by vBSEO 3.6.0 PL2