Menu
What's new
By:
Filters Better Search

Need IP addresses for Netflix and others for Policy Based Routing

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

D

DTS

Regular Contributor
How can I find the full list of the IP addresses to use for Netflix and other services (Hulu, Tidal, Pandora, etc.) when I enable policy-based routing as described in threads like this one?

For example, if I ping hulu.com, I get an IP address:
PING hulu.com (88.221.131.142)​
dig hulu.com gives me the same single IP address. But I'm sure they use multiple servers. So how do we find them all?

I've heard that dig is a way to do it. Here are my dig results for netflix:

dig netflix.com
netflix.com. 1 IN A 34.227.4.120
netflix.com. 1 IN A 34.232.235.235
netflix.com. 1 IN A 52.206.23.236
netflix.com. 1 IN A 34.236.214.109
netflix.com. 1 IN A 34.233.159.233
netflix.com. 1 IN A 107.23.104.215
netflix.com. 1 IN A 54.82.145.47
netflix.com. 1 IN A 52.3.32.33

However, compared to the reference post, every IP is different. None of them are in agreement.

Source IP 0.0.0.0 Destination IP 23.21.160.0/24 lface WAN
Source IP 0.0.0.0 Destination IP 54.204.43.0/24 lface WAN
Source IP 0.0.0.0 Destination IP 107.20.154.0/24 lface WAN
Source IP 0.0.0.0 Destination IP 54.243.253.0/24 lface WAN
Source IP 0.0.0.0 Destination IP 50.19.210.0/24 lface WAN
Source IP 0.0.0.0 Destination IP 23.23.191.0/24 lface WAN
Source IP 0.0.0.0 Destination IP 107.20.151.0/24 lface WAN
Source IP 0.0.0.0 Destination IP 54.204.2.0/24 lface WAN
Source IP 0.0.0.0 Destination IP 107.20.177.0/24 lface WAN
Source IP 0.0.0.0 Destination IP 54.225.192.0/24 lface WAN
Source IP 0.0.0.0 Destination IP 174.129.2.0/24 lface WAN
Source IP 0.0.0.0 Destination IP 75.101.139.0/24 lface WAN

Bottom line: how do we find the full list of IP addresses for a certain service for policy-based routing rules (in openvpn client)? It seems like many companies would want or need lists like this to block certain services from being used at work. I expected this would be an easy thing to look up, but I have not found it yet.
 
DTS said:
How can I find the full list of the IP addresses to use for Netflix and other services (Hulu, Tidal, Pandora, etc.) when I enable policy-based routing as described in threads like this one?

For example, if I ping hulu.com, I get an IP address:
PING hulu.com (88.221.131.142)​
dig hulu.com gives me the same single IP address. But I'm sure they use multiple servers. So how do we find them all?

I've heard that dig is a way to do it. Here are my dig results for netflix:

dig netflix.com
netflix.com. 1 IN A 34.227.4.120
netflix.com. 1 IN A 34.232.235.235
netflix.com. 1 IN A 52.206.23.236
netflix.com. 1 IN A 34.236.214.109
netflix.com. 1 IN A 34.233.159.233
netflix.com. 1 IN A 107.23.104.215
netflix.com. 1 IN A 54.82.145.47
netflix.com. 1 IN A 52.3.32.33

However, compared to the reference post, every IP is different. None of them are in agreement.

Source IP 0.0.0.0 Destination IP 23.21.160.0/24 lface WAN
Source IP 0.0.0.0 Destination IP 54.204.43.0/24 lface WAN
Source IP 0.0.0.0 Destination IP 107.20.154.0/24 lface WAN
Source IP 0.0.0.0 Destination IP 54.243.253.0/24 lface WAN
Source IP 0.0.0.0 Destination IP 50.19.210.0/24 lface WAN
Source IP 0.0.0.0 Destination IP 23.23.191.0/24 lface WAN
Source IP 0.0.0.0 Destination IP 107.20.151.0/24 lface WAN
Source IP 0.0.0.0 Destination IP 54.204.2.0/24 lface WAN
Source IP 0.0.0.0 Destination IP 107.20.177.0/24 lface WAN
Source IP 0.0.0.0 Destination IP 54.225.192.0/24 lface WAN
Source IP 0.0.0.0 Destination IP 174.129.2.0/24 lface WAN
Source IP 0.0.0.0 Destination IP 75.101.139.0/24 lface WAN

Bottom line: how do we find the full list of IP addresses for a certain service for policy-based routing rules (in openvpn client)? It seems like many companies would want or need lists like this to block certain services from being used at work. I expected this would be an easy thing to look up, but I have not found it yet.
Click to expand...
I need to update the README with this information.

You can lookup the ASN using the site https://bgp.he.net/AS6427. Type the name of the company you are looking for in the search box. For example, typing in Hulu returns a list which contains AS23286. You can then clone IPSET_Netflix.sh for the streaming service you want to selectively route. dnsmasq.log file is your friend. The method for mining dnsmasq is in the section IPSET_Netflix_Domains.sh
 
You must log in or register to reply here.

Similar threads

A
Policy-based port routing to bypass NordVPN client
Replies
10
Views
1K
Don->
D
J
Redirect internet traffic through tunnel - yes (all) vs. VPN director (policy rules)
Replies
0
Views
782
jschu2
J
R
Domain VPN Routing
2
Replies
24
Views
2K
Ranger802004
R
M
[SOLVED] RT-AX86U Port Forwarding issue
Replies
7
Views
2K
ColinTaylor
C
D
Wireguard policy rules
Replies
1
Views
1K
Martineau
Martineau

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 985 (members: 26, guests: 959)
Top