Menu
What's new
By:
Filters Better Search

Skynet Best practice for unblocking limitless hosts on a domain

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

dave14305 said:
It depends on how often the machine running the vpn client makes a dns query for the nordvpn hostname to dnsmasq.
Click to expand...
My router kills and make a new connection with a different city each night at 1am. Most times, the hostnames it connects to are not the same as the night before.

Spud said:
Could it be that only the NordVPN IPs currently in use are being whitelisted?

Digging around, all appear under "Networks and IPs" on this Netify page, attributed to NordVPN - https://www.netify.ai/resources/applications/nordvpn. These aren't the IPs that appear in my OpenVPN clients (maybe to do with NordVPN's IP sharing?).
Click to expand...
That doesn't seem the case. The ones I have listed are ones that I've whitelisted previously. And looking at the netify list, that does not seem right, or complete. NordVPN has servers for 15 cities within the US, and each of these cities have multiple vpn servers for each... There should be like a hundred entries in this list, at least?
 
Viktor Jaep said:
My router kills and make a new connection with a different city each night at 1am. Most times, the hostnames it connects to are not the same as the night before.


That doesn't seem the case. The ones I have listed are ones that I've whitelisted previously. And looking at the netify list, that does not seem right, or complete. NordVPN has servers for 15 cities within the US, and each of these cities have multiple vpn servers for each... There should be like a hundred entries in this list, at least?
Click to expand...
What’s in /etc/resolv.conf?
 
dave14305 said:
If you’re using VPNMgr, is it updating the VPN Client with an IP or a hostname?
Click to expand...
It updates it with an IP... and I'm pretty sure vpnmgr does all its calls through an API, so there may be very little DNS lookup going on...
 
Last edited:
Viktor Jaep said:
It updates it with an IP...
Click to expand...
Ok, so the router never attempts to resolve the name to IP, because I think @Jack Yaz scrapes it from a ovpn file or something non-DNS related. Maybe vpnmgr can update Skynet’s whitelist or trigger a whitelist refresh.
 
dave14305 said:
Ok, so the router never attempts to resolve the name to IP, because I think @Jack Yaz scrapes it from a ovpn file or something non-DNS related. Maybe vpnmgr can update Skynet’s whitelist or trigger a whitelist refresh.
Click to expand...
Just found a great resource on how to pull all this NordVPN info through the API... https://sleeplessbeastie.eu/2019/02/18/how-to-use-public-nordvpn-api/

This would be the command to generate a list of US-based NordVPN servers:
Code: 
curl --silent "https://api.nordvpn.com/v1/servers?limit=16384"  | jq --raw-output '.[] | select(.locations[].country.name == "United States") | .hostname'

Would there be any way to redirect the results of this command into the Skynet NordVPN whitelist?
 
Last edited:
Viktor Jaep said:
Would there be any way to redirect the results of this command into the Skynet NordVPN whitelist?
Click to expand...
So I'm reading up... apparently I could output the results of this with a command like this to a text file:

Code: 
curl http://{one,two}.example.com -o "file_#1.txt"

Then, possibly import this text file using this command:

Code: 
firewall import whitelist myfile.txt

Sound viable? I'll give it shot... ;)
 
Viktor Jaep said:
Sound viable? I'll give it shot... ;)
Click to expand...
OK... I figured it out. I'll get this added to my scripts...

To extract a list of US-based NordVPN server IPs and save it to a txt file:
Code: 
curl --silent "https://api.nordvpn.com/v1/servers?limit=16384"  | jq --raw-output '.[] | select(.locations[].country.name == "United States") | .station' > NordVPN-US.txt

Then, using the firewall command to import said txt file:
Code: 
firewall import whitelist NordVPN-US.txt

Bada bing. ;)
 
You must log in or register to reply here.

Similar threads

Viktor Jaep
VPNMON VPNMON-R3 Custom Server List Generation Tutorials and Examples
2
Replies
37
Views
2K
salvo
S
aru
Skynet Practice displaying a world map on a webpage using an addon-api.
2
Replies
33
Views
2K
Quoc Huynh
Q
Viktor Jaep
VPNMON VPNMON-R3 v1.3.3 -Apr 2, 2024- Monitor WAN/Dual-WAN/VPN Health & Reset Multiple OpenVPN Connections (Now available in AMTM!)
9 10 11
Replies
203
Views
21K
Viktor Jaep
Viktor Jaep
Spud
Skynet How do I use a VPN blocklist as a VPN whitelist instead?
Replies
16
Views
2K
Viktor Jaep
Viktor Jaep
V
So what would be best practice for my specific situation: VPN into home network and DDNS
Replies
11
Views
1K
vmachiel
V
Similar threads
Thread starter Title Forum Replies Date
J Best practices when using add-ons? Asuswrt-Merlin AddOns 21
C CakeQOS Best CPU to improve cake_qos's 250M download speed? Asuswrt-Merlin AddOns 6
D Which addon is best suited for manually blocking a handful of domains, and nothing else? Asuswrt-Merlin AddOns 8
aru Skynet Practice displaying a world map on a webpage using an addon-api. Asuswrt-Merlin AddOns 33
Wishmaster1965 Skynet Unblocking my comanies Jira site Asuswrt-Merlin AddOns 2

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 979 (members: 26, guests: 953)
Top