nanog mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Netflix VPN detection - actual engineer needed

From: joel jaeggli <joelja () bogus com>
Date: Tue, 7 Jun 2016 07:06:57 -0700
On 6/7/16 6:55 AM, Cryptographrix wrote:

As I said to Netflix's tech support - if they advocate for people to turn
off IPv6 on their end, maybe Netflix should stop supporting it on their end.

It's in the air whether it's just an HE tunnel issue or an IPv6 issue at
the moment, and if their tech support is telling people to turn off IPv6,
maybe they should just instead remove their AAAA records.


it clearly works with prefixes delegated from other isps.
...
http://i.imgur.com/sJUM7tn.png


(or fail back to ipv4 when v6 looks like a tunnel)



On Tue, Jun 7, 2016 at 9:22 AM Mark Felder <feld () feld me> wrote:




On Jun 6, 2016, at 22:25, Spencer Ryan <sryan () arbor net> wrote:

The tunnelbroker service acts exactly like a VPN. It allows you, from any
arbitrary location in the world with an IPv4 address, to bring traffic

out

via one of HE's 4 POP's, while completely masking your actual location.



Perhaps Netflix should automatically block any connection that's not from
a known residential ISP or mobile ISP as anything else could be a server
someone is proxying through. It's very easy to get these subnets -- the
spam filtering folks have these subnets well documented. /s

--
  Mark Felder
  feld () feld me

Attachment: signature.asc
Description: OpenPGP digital signature

Previous By Date Next
Previous By Thread Next

Current thread: