Netflix VPN detection - actual engineer needed

• Previous message (by thread): Netflix VPN detection - actual engineer needed
• Next message (by thread): Netflix VPN detection - actual engineer needed
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

In message <Pine.LNX.4.61.1606052240290.6833 at soloth.lewis.org>, Jon Lewis write
s:
> On Sun, 5 Jun 2016, Owen DeLong wrote:
> 
> > What is non-standard about an HE tunnel? It conforms to the relevant RFCs a
> nd
> > is a very common configuration widely deployed to many thousands of locatio
> ns
> > around the internet.
> >
> > Itÿÿs not that Netflix happens to not work with these tunnels, the problem is
> > that they are taking deliberate active steps to specifically block them.
> 
> It's not a question of standard vs non-standard.  If Netflix is blocking 
> HE IPv6 space (tunnel customers), I suspect they're doing so because this 
> is effectively an IPv6 VPN service that masks the end-user's real IP 
> making invalid any IP-based GEO assumptions Netflix would like to make 
> about customer connections in order to satisfy their content licenses.

What's not "real" about the HE allocated IPv6 address?  They are
more stable that most IPv4 addresses you get from residential ISP's.
I've had the oldest of my addresses for 13 years.  The /48 is
slightly newer but it is stable across IPv4 renumberings.  They
don't change on power cycle of the modem / router.  My IPv4 address
changes periodically with no notice with the ISP not even honouring
the DHCP lease requiring me to take corrective measures.

Just because they are not in a big geoip friendly IP block doesn't
make them not "real".  They are stable addresses and if Netflix or
any other geoip based service did their homework they could workout
where the addresses are located.  The only reason they don't work
is that Netflix is lazy and would rather annoy their customers
rather than deliver a paid for service.

> > Soÿÿ I donÿÿt know how many ÿÿnormal usersÿÿ use HE tunnels vs. ÿÿgeeksÿÿ or how one
> > would go about defining the difference. I can tell you that there are an aw
> ful
> > lot of people using HE tunnels, and based on what I saw while working at HE
> ,
> > I donÿÿt believe they are all geeks. While I would say that geeks are a large
> r
> 
> You have to be at least somewhat of a geek to even care about IPv6 and 
> know that HE provides free IPv6 tunnels for those who can't get it 
> natively from their own ISP.  Ideally, HE's v6 tunnel service should 
> become more or less redundant as more service provider networks dual-stack 
> their customers.
> 
> 
> ----------------------------------------------------------------------
>   Jon Lewis, MCP :)           |  I route
>                               |  therefore you are
> _________ http://www.lewis.org/~jlewis/pgp for PGP public key_________
-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: marka at isc.org

• Previous message (by thread): Netflix VPN detection - actual engineer needed
• Next message (by thread): Netflix VPN detection - actual engineer needed
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]