This guide is for those seeking to unlock geo-blocked content by Disney+ and Netflix. Or these services are not available in your country. The concept in this guide applies to other streaming services, but we will focus on the aforementioned.
Why not just route all traffic to the VPN?
This guide will use streaming devices (e.g., Apple TV) as the primary target group. Some apps may break due to VPN usage. So, we want to route specific traffic.
Prerequisite:
UniFi OS 3.0+.
VPN Provider (I use ProtonVPN).
DNS setting set to auto for the network you want to manage traffic.
This guide will not work with a custom DNS setting. If you prefer to keep a custom DNS, set it at the WAN level.
You can create as many VPN clients as you want, but you may be limited to the concurrent VPN connections you pay for. I picked Canada and UK as starters. Pro tip: The Disney+ app includes Hulu content for Canadian users.
Go to Settings
Teleport & VPN
VPN Client > Create VPN Client
Give it a Name, Input your VPNs Username and Password, and Upload your VPN Configuration File.
Different VPNs will have different configurations. I did not have to modify my ProtonVPN config file. From mactelecomnetworks’ video, you’ll see that he had to adjust the ExpressVPN file.
Configure Traffic Management
I created two routes, one for Disney+ and one for Netflix.
Go to Traffic Management
Routes > Create New Route
What to Route > Specific Traffic
Category - Domain Name
Domain Name - Batch Add (see below for each service)
Target - Your endpoints. In my case, Apple TVs in the house.
Interface - The VPN connection you created earlier.
Name - Give it a name (e.g., Route Disney+ to VPN)
Reboot your streaming devices if necessary. Give it a whirl!
Resources:
I used these lists to get the domain names. However, they were missing some domain names. I used mitmproxy to find the missing domains.
This subreddit is here to provide unofficial technical support to people who use or want to dive into the world of Ubiquiti products. If you haven’t already been descriptive in your post, please take the time to edit it and add as many useful details as you can.
Please read and understand the rules in the sidebar, as posts and comments that violate them will be removed. Please put all off topic posts in the weekly off topic thread that is stickied to the top of the subreddit.
If you see people spreading misinformation, trying to mislead others, or other inappropriate behavior, please report it!
This is an amazing write up but imma be honest, I ain’t doing all this work just to watch something. Especially since if I’m going to have to put some effort in, I think the seas are a better use of my effort.
Great guide! I tried to do something similar but I was missing some of the Netflix domains. Thanks to you I don’t need to go thru hustle to discover them on my own.
Two things, I don’t do it by domain, but by device. All traffic from Apple TV and Roku devices goes over my VPN. I’m not sure a commercial VPN service will work very long, however as Netflix and stream to block them so I have mine and my parents routing through my office. That works particularly well because at night when we’re watching TV there’s not a lot of traffic at the office anyway.
This is great! Can you tell more about how you went about getting the domain-names required, for the service til work (Netflix/Disney+)? I would love to replicate this sollution to other streaming services, fx. BBC.
Apple tvOS now supports VPN but I don’t use it some I need to find a way to only route the Netflix App through a VPN on my UDM-Pro, not all traffic. I can route all device traffic but cannot seem to find how to do just one App. Any suggestions?
I made an earlier comment here. Give that a try, and let me know. There’s probably other ways to do packet capture, but I found that method relatively easy.
