Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Squid question

    Scheduled Pinned Locked Moved Cache/Proxy
    34 Posts 4 Posters 6.0k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • ?
      Guest
      last edited by

      I get that, I searched for Netflix IP and such and came up with a massive list:

      108.175.32.0/24 Netflix Streaming Services Inc. 256
      108.175.33.0/24 Netflix Streaming Services Inc. 256
      108.175.34.0/24 Netflix Streaming Services Inc. 256
      108.175.35.0/24 Netflix Streaming Services Inc. 256
      108.175.38.0/24 Netflix Streaming Services Inc. 256
      108.175.39.0/24 Netflix Streaming Services Inc. 256
      108.175.40.0/24 Netflix Streaming Services Inc. 256
      108.175.41.0/24 Netflix Streaming Services Inc. 256
      108.175.42.0/24 Netflix Streaming Services Inc. 256
      108.175.43.0/24 Netflix Streaming Services Inc. 256
      108.175.44.0/24 Netflix Streaming Services Inc. 256
      108.175.46.0/24 Netflix Streaming Services Inc. 256
      108.175.47.0/24 Netflix Streaming Services Inc. 256
      185.2.220.0/24 Netflix Streaming Services Inc. 256
      185.2.221.0/24 Netflix Streaming Services Inc. 256
      185.2.222.0/24 Netflix Streaming Services Inc. 256
      185.2.223.0/24 Netflix Streaming Services Inc. 256
      185.9.188.0/24 Netflix Streaming Services Inc. 256
      185.9.189.0/24 Netflix Streaming Services Inc. 256
      185.9.190.0/23 Netflix Streaming Services Inc. 512
      192.173.112.0/20 Netflix Streaming Services Inc. 4,096
      192.173.64.0/20 Netflix Streaming Services Inc. 4,096
      192.173.64.0/24 Netflix Streaming Services Inc. 256
      192.173.80.0/20 Netflix Streaming Services Inc. 4,096
      192.173.96.0/20 Netflix Streaming Services Inc. 4,096
      198.38.100.0/24 Netflix Streaming Services Inc. 256
      198.38.101.0/24 Netflix Streaming Services Inc. 256
      198.38.102.0/23 Netflix Streaming Services Inc. 512
      198.38.102.0/24 Netflix Streaming Services Inc. 256
      198.38.108.0/24 Netflix Streaming Services Inc. 256
      198.38.109.0/24 Netflix Streaming Services Inc. 256
      198.38.110.0/24 Netflix Streaming Services Inc. 256
      198.38.111.0/24 Netflix Streaming Services Inc. 256
      198.38.112.0/24 Netflix Streaming Services Inc. 256
      198.38.113.0/24 Netflix Streaming Services Inc. 256
      198.38.114.0/24 Netflix Streaming Services Inc. 256
      198.38.115.0/24 Netflix Streaming Services Inc. 256
      198.38.116.0/24 Netflix Streaming Services Inc. 256
      198.38.117.0/24 Netflix Streaming Services Inc. 256
      198.38.118.0/24 Netflix Streaming Services Inc. 256
      198.38.119.0/24 Netflix Streaming Services Inc. 256
      198.38.120.0/24 Netflix Streaming Services Inc. 256
      198.38.121.0/24 Netflix Streaming Services Inc. 256
      198.38.122.0/24 Netflix Streaming Services Inc. 256
      198.38.123.0/24 Netflix Streaming Services Inc. 256
      198.38.124.0/24 Netflix Streaming Services Inc. 256
      198.38.125.0/24 Netflix Streaming Services Inc. 256
      198.38.96.0/24 Netflix Streaming Services Inc. 256
      198.38.97.0/24 Netflix Streaming Services Inc. 256
      198.38.98.0/24 Netflix Streaming Services Inc. 256
      198.38.99.0/24 Netflix Streaming Services Inc. 256
      198.45.48.0/24 Netflix Streaming Services Inc. 256
      198.45.49.0/24 Netflix Streaming Services Inc. 256
      198.45.52.0/24 Netflix Streaming Services Inc. 256
      198.45.53.0/24 Netflix Streaming Services Inc. 256
      198.45.54.0/24 Netflix Streaming Services Inc. 256
      198.45.55.0/24 Netflix Streaming Services Inc. 256
      198.45.56.0/24 Netflix Streaming Services Inc. 256
      198.45.57.0/24 Netflix Streaming Services Inc. 256
      198.45.58.0/24 Netflix Streaming Services Inc. 256
      198.45.61.0/24 Netflix Streaming Services Inc. 256
      198.45.62.0/24 Netflix Streaming Services Inc. 256
      198.45.63.0/24 Netflix Streaming Services Inc. 256
      208.75.77.0/24 Netflix Streaming Services Inc. 256
      23.246.10.0/24 Netflix Streaming Services Inc. 256
      23.246.11.0/24 Netflix Streaming Services Inc. 256
      23.246.12.0/24 Netflix Streaming Services Inc. 256
      23.246.13.0/24 Netflix Streaming Services Inc. 256
      23.246.14.0/24 Netflix Streaming Services Inc. 256
      23.246.15.0/24 Netflix Streaming Services Inc. 256
      23.246.16.0/24 Netflix Streaming Services Inc. 256
      23.246.17.0/24 Netflix Streaming Services Inc. 256
      23.246.18.0/24 Netflix Streaming Services Inc. 256
      23.246.20.0/24 Netflix Streaming Services Inc. 256
      23.246.2.0/24 Netflix Streaming Services Inc. 256
      23.246.22.0/24 Netflix Streaming Services Inc. 256
      23.246.23.0/24 Netflix Streaming Services Inc. 256
      23.246.24.0/24 Netflix Streaming Services Inc. 256
      23.246.25.0/24 Netflix Streaming Services Inc. 256
      23.246.26.0/24 Netflix Streaming Services Inc. 256
      23.246.27.0/24 Netflix Streaming Services Inc. 256
      23.246.28.0/22 Netflix Streaming Services Inc. 1,024
      23.246.28.0/24 Netflix Streaming Services Inc. 256
      23.246.29.0/24 Netflix Streaming Services Inc. 256
      23.246.30.0/24 Netflix Streaming Services Inc. 256
      23.246.3.0/24 Netflix Streaming Services Inc. 256
      23.246.31.0/24 Netflix Streaming Services Inc. 256
      23.246.36.0/24 Netflix Streaming Services Inc. 256
      23.246.37.0/24 Netflix Streaming Services Inc. 256
      23.246.4.0/24 Netflix Streaming Services Inc. 256
      23.246.5.0/24 Netflix Streaming Services Inc. 256
      23.246.58.0/24 Netflix Streaming Services Inc. 256
      23.246.59.0/24 Netflix Streaming Services Inc. 256
      23.246.6.0/24 Netflix Streaming Services Inc. 256
      23.246.62.0/24 Netflix Streaming Services Inc. 256
      23.246.63.0/24 Netflix Streaming Services Inc. 256
      23.246.7.0/24 Netflix Streaming Services Inc. 256
      23.246.8.0/24 Netflix Streaming Services Inc. 256
      23.246.9.0/24 Netflix Streaming Services Inc. 256
      37.77.184.0/24 Netflix Streaming Services Inc. 256
      37.77.185.0/24 Netflix Streaming Services Inc. 256
      37.77.186.0/24 Netflix Streaming Services Inc. 256
      37.77.187.0/24 Netflix Streaming Services Inc. 256
      37.77.188.0/24 Netflix Streaming Services Inc. 256
      37.77.189.0/24 Netflix Streaming Services Inc. 256
      37.77.190.0/24 Netflix Streaming Services Inc. 256
      37.77.191.0/24 Netflix Streaming Services Inc. 256
      64.120.128.0/17 Netflix Streaming Services Inc. 32,768
      66.197.128.0/17 Netflix Streaming Services Inc. 32,768
      69.53.224.0/24 Netflix Streaming Services Inc. 256
      69.53.225.0/24 Netflix Streaming Services Inc. 256
      69.53.226.0/24 Netflix Streaming Services Inc. 256
      69.53.229.0/24 Netflix Streaming Services Inc. 256
      69.53.231.0/24 Netflix Streaming Services Inc. 256
      69.53.234.0/24 Netflix Streaming Services Inc. 256
      69.53.236.0/24 Netflix Streaming Services Inc. 256
      69.53.237.0/24 Netflix Streaming Services Inc. 256
      69.53.238.0/24 Netflix Streaming Services Inc. 256
      69.53.249.0/24 Netflix Streaming Services Inc. 256
      69.53.255.0/24 Netflix Streaming Services Inc. 256

      If delete all but the IP address and past them into that box, squid guard errors out when i try to save it. If i past the Netflix in there is accepts that but i have no idea if that works since the site shows the service have different names.

      https://ipinfo.io/AS2906

      I have also been looking for amazon prime streaming service IP but unable to locate those. Additionally, I need the same for PlayStation network as well.

      1 Reply Last reply Reply Quote 0
      • ?
        Guest
        last edited by

        You can also be inserting the domain only and then I think all IPs that will be used by this domain name
        will also not to be cached! Would be much easier as millions of IP addresses to insert in. Like this;

        https://openconnect.netflix.com
        https://www.netflix.com/
        bgp.he.net/AS2906

        1 Reply Last reply Reply Quote 0
        • ?
          Guest
          last edited by

          Should I select null for caching? How do I make this allow PSN traffic?

          1 Reply Last reply Reply Quote 0
          • ?
            Guest
            last edited by

            How do I make this allow PSN traffic?

            Perhaps sniffing with WireShark in your network which IP addresses will be used for this
            if a game is started and then you could enter those IP addresses or you find out the domain
            from the PSN.

            1 Reply Last reply Reply Quote 0
            • ?
              Guest
              last edited by

              Been witnessing some strange behavior everyday for the last few days. Basically, squid and squid guard service stops for some unknown reason. Messing around with the setting doesn't seem to make it start and stay started. The first day it happened I was scratching my head for over an our, messing with stuff, I decided to click on update blacklist and then both services restarted on there own and will stay started till the next day. What is the cause of this? How do I fix it?

              1 Reply Last reply Reply Quote 0
              • ?
                Guest
                last edited by

                Another thing I am noticing. I installed lightsquid to mess around with it. I have configured wpad as mentioned earlier but when I open the proxy report for lightsquid, my computers don't show up in the real time report. If I I set the proxy setting in my browser though, my pc pops up right away in the proxy report. Why is this? Is my wpad configured correctly or is this normal behavior?

                1 Reply Last reply Reply Quote 0
                • ?
                  Guest
                  last edited by

                  I found this which concerns auto updating the blacklists. Can you explain exactly how to do this?

                  https://forum.pfsense.org/index.php?topic=35479.0

                  It is from 2011 and I am not sure if it is relevant anymore.

                  1 Reply Last reply Reply Quote 0
                  • ?
                    Guest
                    last edited by

                    I would to be truthful about it, if you starts installing a firewall such as pfSense and configuring this then
                    later with some clicks and it works for you is not in my meaning to be proper with or familiar with.
                    If things going deeper you will find out very fast that pfSense is very powerful on the one site but
                    also very complex and not a lightweight. So many things can really be false but the entire pfSense
                    is up and running proper for you. But if then things such Squid & SquidGuard or perhaps snort
                    coming on top of this it would be never able to find out that something is not matching in pfSense
                    correctly.

                    So I really suggest you now the following,

                    • bring up the pfSense firewall stable, smooth and liquid running
                      – then save the settings (from time to time and at the end)
                    • Set then up Squid & SquidGuard and bring them also liquid running
                      -- save this settings (from time to time and at the end) and so on.

                    Basically, squid and squid guard service stops for some unknown reason.

                    And this is exactly what I was talking about some lines above!
                    – with no saved config, you can not easily jump back to a well known working configuration
                    -- you will be not absolutely sure that the pfSense configuration is not the guilty one

                    But on the other side you do one question after the next one, and more, and more, and more
                    and then at one time no one will be able to some closer to the point to help you.

                    One tip at least from me on that, please start one thread and if this one is solved and/or clear
                    then please start the next one please under another topic so peoples would be easily jump in
                    and get a quick overview and is able to bing the solution to you. This is not the willing to bother
                    with you, it is more another very but truthful way to help you out of your situation and not let you
                    deeper and deeper running in the forest of configurations. Step by Step is the solution.

                    I really don´t want to come to near to you and related to my poor english language skills it
                    could be sounding a little bit strange, trust me please it is not so.

                    I don´t know what you want to do in the winter time, but this is the time peoples often reading
                    books! So would it be in your budget to get two or three book about this themes?
                    pfSense the definitive guide
                    Squid a beginners guide
                    snort IDS/IPS toolkit

                    1 Reply Last reply Reply Quote 0
                    • ?
                      Guest
                      last edited by

                      I understand you your speaking quite well as I have a few family members by marriage of German decent. I have spent a great deal of time with and have come to be able to pickup what they are saying quite easily. As far as the reading you mentioned goes, reading is not the issue. The issue is understanding the terminology and most writings about pfsense, don't go into great detail " in laymen's terms " on what things do in the program. When coming to these threads, one really has to rely on the quality of the responses which can be shaky at times. Answers are answers; but if they are not intelligible by the reader, then they haven't provided the help desired and this is my biggest issue so far. I really appreciate that you have taken time to assist and it has definitely pushed me to tinker a little harder and see what does what.

                      For squid and squid guard. since I figured out that the blacklist requires daily updating, I followed the instructions I mentioned for cron and it seems to be doing what it is supposed to. Frankly, I'm a little blown away that squid doesn't have a native option for this.

                      For proxy and wpad. I worked my way through he directions and the proxy works. WPAD not so much. Even though I created the files, placed them in the correct directories and added the DHCP rule, my computers still bypass the proxy unless I go into the internet option on my browsers and point them to the proxy. I can verify this using light squid. Additionally, with squid guard, the rules set for website types don't pickup unless, I add the setting for the proxy in the browser.

                      These above are the issues that still remain and I'm not ruling out user error in my settings. Just really hoping that someone else has experience the same issues and can pass along what they did to fix them.

                      1 Reply Last reply Reply Quote 0
                      • B
                        backL Banned
                        last edited by

                        This post is deleted!
                        1 Reply Last reply Reply Quote 0
                        • First post
                          Last post
                        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.