Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Perils of pfBlockerNG VPN bypass for Netflix

    Scheduled Pinned Locked Moved Routing and Multi WAN
    2 Posts 2 Posters 375 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      satisifed.stew
      last edited by

      Re: Routing Disney+/Netflix Over Non-VPN Interface

      So I'm still at a loss. Thanks again for the recommendation with ntopng, @jstride! That helped me refine some of my troubleshooting.

      I tried to cast a wide net even just to get Netflix working. I started completely from scratch. Below are my rules:

      rules.png

      Also set the Custom Destination to my Devices I want to stream from, with the custom protocol of TCP/UDP and a Custom Gateway of the WAN.

      I saved the rule and forced an update on pfBlockerNG, and then validated that the rules that were automatically created were near the top of the WAN, LAN, OVPNC, and OpenVPN. All the rules have the gateway set to the
      WAN.

      ovpn.png

      Then I tried testing and going to netflix and the page wouldn't even load. I then rescinded the rules and used ntopng to look at the device when netflix was running.

      I cross referenced the DNS names and IP addresses that came across ntopng, and validated that it associated to the ASN, and if not added it to the rule. Screenshot below is after I was running Netflix on a port that completely bypassed the VPN (not the ideal situation - given multiple devices need to stream, but wanted to use for testing). All of these IPs were associated with ASNs already that I had passed.

      WAN rule:
      wan.png

      LAN rule:
      lan.png

      OpenVPN rule:
      ntopng_2.png

      I'm at a bit of a loss how I could further troubleshoot. Is it perhaps how I have my VPN configured? Is pfBlockerNG covering the wrong interfaces? Any tips or guidance would be greatly appreciated

      1 Reply Last reply Reply Quote 0
      • D
        DominicL Banned
        last edited by

        This post is deleted!
        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.