Bypass Amazon Video and Netflix
Hi all,
I want to setup ExpressVPN on TunnelVPN so I am permanently going through a VPN, but I want Amazon Video and Netflix to bypass the tunnel. I have been adding the IP addresses from the Web report to the rules, but what condition do I add the URLs? At the moment I am adding them to Server Tagged.
Many thanks
I have tried looking through the Web reports for the IP addresses but this doesn't work. Obviously these would change depending on many factors. I have tried adding Netflix-user as a client tag but to no avail. Any hep would be appreciated.
I'm trying to do exactly the same thing. I am playing with Event triggers (Config -> Events -> Triggers) to "tag" certain traffic. Then in the Rules for the Tunnel VPN, I look for the tag/s set by the Event trigger. It does work, sometimes, but seems to take a while to switch over to the VPN tunnel to the WAN. I'm sure I'm probably not doing something correctly. Here's my Event trigger:
EventTrigger.png
And here is my Tunnel VPN Rule:
TunnelVpnRule.png
I can see the sessions tagged with "netflix" in the Sessions tab, but I still get the Netflix warning about VPN not allowed for streaming. I am not sure if all traffic from the tagged PC is now being tagged or just the netflix session. This is very confusing and the documentation is lacking regarding the different "classes". I've tried a few different ones for the event trigger including the ApplicationControlLogEvent, HttpRequestEvent, and SessionEvent, but I'm not sure which one to use.
Would you need to include this one too?Originally Posted by timohayes
NETFLXVD Netflix Video Stream
Any update on this? I copied your event trigger but not working, would also like to understand where you got this event trigger info so I can understand how it works and do some further testing.
I also need to bypass a couple of websites that do not allow anonymous access
Following...before buy a VPN account, i link to know i can bypass this kind of traffic.
One way to do this is to set up a rule matching the source IP of the box you want to watch netflix on and bypass the VPN for that box. This works well for smart tv's.
Still looking at this, has anyone had any luck? It makes sense to do the source IP from my amazon fire boxes, but would like to do this for the laptops in the house. Would prefer to be permanantely going through VPN except when access these sites.
Since I couldn't figure out how to get "alias" IP groups going in UT I spent some time using the session host table, a bit of ASN research for Amazon AWS and Netflix, and a whole bunch of "reloading Netflix" until I got enough CIDRs logged for a Netflix bypass of my VPN tunnel that I force all 80, 443, 53, etc. traffic out of. I discovered a minor gotcha - IPs can be separated by commas in one rule - each CIDR has to be a unique rule (I don't think I saw that in the documentation).
I tried using application and content trigger tags but it didn't seem to work. CIDR it is /sigh.
Anyway, here's my list (mix of AWS/Netflix ASNs)- seems to be working (US based):
45.57.0.0/17
223.246.0.0/18
37.77.184.0/21
64.120.128.0/17
66.197.128.0/17
69.53.224.0/19
108.175.32.0/20
185.2.220.0/22
185.9.188.0/22
192.173.64.0/18
198.38.96.0/19
198.45.48.0/20
52.44.0.0/15
52.4.0.0/14
3.80.0.0/12
52.0.0.0/15
52.70.0.0/15
52.54.0.0/15
35.153.0.0/16
35.168.0.0/13
34.224.0.0/12
54.208.0.0/15
52.72.0.0/15
52.20.0.0/14
54.172.0.0/15
52.200.0.0/13
23.43.160.0/22
Posting Permissions
LinkBack URL
About LinkBacks
