Netflix VPN detection - actual engineer needed

Owen DeLong owen at delong.com
Wed Jun 8 17:35:40 UTC 2016 

Why? I use Mobile Hotspot… It’s part of the service I pay for. If Cameron can’t make that
work, then that’s T-Mobile’s problem, not mine.

Owen

> On Jun 8, 2016, at 1:25 PM, joel jaeggli <joelja at bogus.com> wrote:
> 
> On 6/8/16 9:13 AM, Owen DeLong wrote:
>> As of last week, I still wasn’t getting an IPv6 address by default on my iPhone 6S+
>> on T-Mobile.
> 
> turn off mobile hotspot...
> 
>> Just saying.
>> 
>> Owen
>> 
>>> On Jun 7, 2016, at 11:00 AM, Ca By <cb.list6 at gmail.com> wrote:
>>> 
>>> On Tuesday, June 7, 2016, Cryptographrix <cryptographrix at gmail.com> wrote:
>>> 
>>>> Very true - I was being a bit extremist out of frustration, but I think
>>>> you're spot on - he.net tunnels and even 6to4 are toys to provide IPv6
>>>> support, not actually IPv6 support.
>>>> 
>>>> And I'm quite frustrated because there's so little actual v6 support, and
>>>> I *do* actually need it on a daily basis for work.
>>>> 
>>>> Because there's no actual ISP IPv6 support anywhere else (in parts of the
>>>> US that *have* multiple ISPs), you can't even make the case to your ISP
>>>> that it's a legitimate requirement for you because they know you're not
>>>> really going to get v6 elsewhere.
>>>> 
>>>> 
>>> I think we have different definitions of "no actual isp ipv6 support"
>>> 
>>> Again, a helpful akamai blog
>>> https://blogs.akamai.com/2016/06/four-years-since-world-ipv6-launch-entering-the-mainstream.html
>>> 
>>> fixed line: Comcast, AT&T, TWC, just to name the largest in the nation have
>>> meaningful deployments of ipv6. The only thing holding back greater
>>> deployment for those networks are legacy CPE that will age out slowly.
>>> 
>>> All 4 of the national mobile operator have ipv6 default on for most
>>> new phone models.
>>> 
>>> Yes, many gaps to fill still. But, on "my network" with shy of 70 million
>>> users, everything has ipv6 except the iPhone, and that will change RSN. And
>>> for users with v6, the majority of their traffic is ipv6 e2e since the
>>> whales (google, fb, netflix, increasingly Akamai) are dual stack.
>>> 
>>> CB
>>> 
>>> 
>>>> 
>>>> 
>>>> On Tue, Jun 7, 2016 at 10:22 AM Ca By <cb.list6 at gmail.com
>>>> <javascript:_e(%7B%7D,'cvml','cb.list6 at gmail.com');>> wrote:
>>>> 
>>>>> 
>>>>> 
>>>>> On Tuesday, June 7, 2016, Cryptographrix <cryptographrix at gmail.com
>>>>> <javascript:_e(%7B%7D,'cvml','cryptographrix at gmail.com');>> wrote:
>>>>> 
>>>>>> As I said to Netflix's tech support - if they advocate for people to turn
>>>>>> off IPv6 on their end, maybe Netflix should stop supporting it on their
>>>>>> end.
>>>>>> 
>>>>>> It's in the air whether it's just an HE tunnel issue or an IPv6 issue at
>>>>>> the moment, and if their tech support is telling people to turn off IPv6,
>>>>>> maybe they should just instead remove their AAAA records.
>>>>>> 
>>>>>> (or fail back to ipv4 when v6 looks like a tunnel)
>>>>>> 
>>>>>> 
>>>>> I think you need to reset your expectations of a free tunnel service.
>>>>> 
>>>>> he.net tunnels are a toy for geeks looking to play with v6. In terms of
>>>>> Netflix subcriber base, it is amazing insignificant number of users.
>>>>> 
>>>>> At the end of the day, anonymous tunnels, just like linux, are not
>>>>> supported by Netflix. And, he.net tunnel users are hurting ipv6 overall
>>>>> just like 6to4 by injecting FUD and other nonesense complexity.... For a
>>>>> toy.
>>>>> 
>>>>> Move on to a real issue instead of beating this dead horse.
>>>>> 
>>>>> CB
>>>>> 
>>>>> 
>>>>>> 
>>>>>> 
>>>>>> On Tue, Jun 7, 2016 at 9:22 AM Mark Felder <feld at feld.me> wrote:
>>>>>> 
>>>>>>> 
>>>>>>>> On Jun 6, 2016, at 22:25, Spencer Ryan <sryan at arbor.net> wrote:
>>>>>>>> 
>>>>>>>> The tunnelbroker service acts exactly like a VPN. It allows you,
>>>>>> from any
>>>>>>>> arbitrary location in the world with an IPv4 address, to bring
>>>>>> traffic
>>>>>>> out
>>>>>>>> via one of HE's 4 POP's, while completely masking your actual
>>>>>> location.
>>>>>>>> 
>>>>>>> 
>>>>>>> Perhaps Netflix should automatically block any connection that's not
>>>>>> from
>>>>>>> a known residential ISP or mobile ISP as anything else could be a
>>>>>> server
>>>>>>> someone is proxying through. It's very easy to get these subnets -- the
>>>>>>> spam filtering folks have these subnets well documented. /s
>>>>>>> 
>>>>>>> --
>>>>>>> Mark Felder
>>>>>>> feld at feld.me
>>>>>>> 
>>>>>>> 
>>>>>> 
>>>>> 
>> 
>> 
> 
>

More information about the NANOG mailing list