SNI Proxy & Bind in Ubuntu

Discussion in 'Tutorials and Guides' started by HN-Matt, Sep 8, 2015.

  1. HN-Matt

    HN-Matt New Member Verified Provider

    611
    170
    Dec 19, 2013
    This quick guide may be useful to those looking for an alternative to VNC (e.g. https://vpsboard.com/topic/2786-running-a-lightweight-gui-on-your-vps/) or X2Go. In short you will be able to use your VPS as a DNS server and a selective proxy server, i.e. you'll have to specify the websites that Bind and SNI Proxy should communicate with. This will allow you to browse the internet with two different IP addresses depending on the websites you load.

    For the sake of brevity and amusement, the Bind config here is super minimal and the naming is non-standard. If you're new to DNS, you may want to supplement or cross reference it with something like https://www.digitalocean.com/community/tutorials/an-introduction-to-dns-terminology-components-and-concepts.

    The following has been tested in Ubuntu 14.04 32-bit. If you would prefer not to use Bind, a similar effect can be acheived with Dnsmasq. Okay, so,

    1. Install Bind.

    apt-get install bind9 bind9utils bind9-doc
    2. Install the required packages for sniproxy.

    apt-get install git build-essential autotools-dev cdbs debhelper dh-autoreconf dpkg-dev gettext libev-dev libpcre3-dev libudns-dev pkg-config fakeroot3. Build and install it.

    git clone https://github.com/dlundquist/sniproxy.git
    cd sniproxy
    ./autogen.sh && dpkg-buildpackage
    dpkg -i ../sniproxy_0.4.0_i386.deb4. Configure Bind. We will be using http://whatismyip.com for the test site (or any site of your choosing). Replace "1.2.3.4" with the IP address of your VPS.

    nano /etc/bind/named.conf.options

    options {
    directory "/var/cache/bind";

    recursion yes;
    allow-query { noetics; };

    dnssec-validation auto;

    auth-nxdomain no;
    listen-on-v6 { any; };
    };

    acl "noetics" {
    any;
    };
    Code:
        nano /etc/bind/zones.noetics
    
        zone "whatismyip.com." {
            type master;
            file "/etc/bind/db.noetics";
        };
    Code:
        nano /etc/bind/db.noetics
    
        $TTL  86400
    
        @   IN  SOA ns1 root (
                    1234561969  ; serial
                    604800      ; refresh 1w
                    86400       ; retry 1d
                    2419200     ; expiry 4w
                    86400       ; minimum TTL 1d
                    )
    
            IN  NS  ns1
        ns1 IN  A   1.2.3.4
        @   IN  A   1.2.3.4
        *   IN  A   1.2.3.4
    Code:
        nano /etc/bind/named.conf
    
        include "/etc/bind/named.conf.options";
        include "/etc/bind/named.conf.local";
        include "/etc/bind/named.conf.default-zones";
        include "/etc/bind/zones.noetics";
    5. Configure SNI Proxy. Again, sublate "1.2.3.4" into your VPS IP.

    nano /etc/sniproxy.conf

    user daemon
    pidfile /var/tmp/sniproxy.pid

    listen 1.2.3.4 80 {
    proto http
    fallback localhost:8080
    }

    listen 1.2.3.4 443 {
    proto tls
    }

    table {
    whatismyip\.com *
    }
    Code:
        nano /etc/default/sniproxy
    
        DAEMON_ARGS="-c /etc/sniproxy.conf"
        ENABLED=1
    6. Beep boop start it up and reboot your VPS.

    service bind9 start; service sniproxy restart; reboot
    7. Change the DNS settings on the device you use to connect to the internet to your new DNS server: 1.2.3.4.

    8. Go to http://whatismyip.com. If it worked, the IP address of your VPS will appear. Edit /etc/bind/zones.noetics and /etc/sniproxy.conf to add more sites. The End.
     
    Last edited by a moderator: Apr 30, 2017
    emdad and wind0zer like this.
  2. HN-Matt

    HN-Matt New Member Verified Provider

    611
    170
    Dec 19, 2013
    Guess I shouldn't necessarily describe this as an 'alternative' to a VNC server or X2Go. Maybe your privacy concerns have reached an extent where you would want to experiment with the above in conjunction with a remote desktop. This tutorial is only a basic example. The practical application and level of complexity is, of course, contextual and up to you.
     
  3. HalfEatenPie

    HalfEatenPie The Irrational One Retired Staff

    2,890
    1,385
    Mar 25, 2013
    HalfEatenPie
    Funny thing.  I actually use this on one of my VPS for Netflix and Spotify (DNS Server on my local home router of course).  Having the ability to set up selective routing via DNS is such a beautiful thing.  Now I no longer need to be on my VPN to access Netflix and Pandora.  Instead, I can watch Netflix while also access sites that don't require my proxy.  It's the best of both worlds.  Although you should really set up either a firewall rule or something because your configuration allows anyone to use the VPS as an open proxy (for the sites the SNI Proxy works for). 

    Overall, good post.  I use my SNI Proxy almost daily but I forgot about it mostly since it's practically invisible.  
     
    Last edited by a moderator: Sep 9, 2015
  4. HN-Matt

    HN-Matt New Member Verified Provider

    611
    170
    Dec 19, 2013
    Yeah, I was waiting for someone to jump in with that. If your needs involve erecting a wall of fire whilst Moses crosses the Red Sea, you may also want to consider adding an ACL group in named.conf.options to allow for only trusted connections.
     
    Last edited by a moderator: Sep 9, 2015
  5. HN-Matt

    HN-Matt New Member Verified Provider

    611
    170
    Dec 19, 2013
    To clarify, the above configuration doesn't really function as an open proxy.

    If you want it to, you can use wild cards instead of specifying domains.

    /etc/bind/zones.noetics

    zone "." { type master; file "/etc/bind/db.noetics"; };
    Code:
    /etc/sniproxy.conf
    
    table {
        .*\.com$ *
        .*\.net$ *
        .*\.org$ *
    }
    
    If you still want to firewall it up afterwards but don't feel comfortable in iptables, Ubuntu's 'Uncomplicated Firewall' might be a place to start.
     
    Last edited by a moderator: Oct 26, 2015
    HalfEatenPie likes this.
  6. HN-Matt

    HN-Matt New Member Verified Provider

    611
    170
    Dec 19, 2013
    Code:
    .*\.abogado *
    .*\.ac *
    .*\.academy *
    .*\.accountant *
    .*\.accountants *
    .*\.actor *
    .*\.ad *
    .*\.adult *
    .*\.ae *
    .*\.aero *
    .*\.af *
    .*\.africa *
    .*\.africa.com *
    .*\.ag *
    .*\.agency *
    .*\.ai *
    .*\.airforce *
    .*\.al *
    .*\.alsace *
    .*\.am *
    .*\.amsterdam *
    .*\.apartments *
    .*\.aq *
    .*\.archi *
    .*\.army *
    .*\.art.sn *
    .*\.as *
    .*\.asia *
    .*\.asso.mc *
    .*\.associates *
    .*\.at *
    .*\.attorney *
    .*\.auction *
    .*\.audio *
    .*\.aw *
    .*\.az *
    .*\.ba *
    .*\.band *
    .*\.bar *
    .*\.bargains *
    .*\.bayern *
    .*\.bb *
    .*\.be *
    .*\.beer *
    .*\.berlin *
    .*\.best *
    .*\.bf *
    .*\.bg *
    .*\.bh *
    .*\.bi *
    .*\.bid *
    .*\.bike *
    .*\.bingo *
    .*\.bio *
    .*\.biz *
    .*\.biz.id *
    .*\.biz.ki *
    .*\.biz.mm *
    .*\.biz.pr *
    .*\.biz.tr *
    .*\.bj *
    .*\.bj.cn *
    .*\.black *
    .*\.blackfriday *
    .*\.blog.br *
    .*\.blue *
    .*\.bm *
    .*\.bo *
    .*\.boutique *
    .*\.brussels *
    .*\.bs *
    .*\.build *
    .*\.builders *
    .*\.business *
    .*\.buzz *
    .*\.by *
    .*\.bz *
    .*\.bzh *
    .*\.ca *
    .*\.cab *
    .*\.cafe *
    .*\.camera *
    .*\.camp *
    .*\.capetown *
    .*\.capital *
    .*\.cards *
    .*\.care *
    .*\.careers *
    .*\.casa *
    .*\.cash *
    .*\.casino *
    .*\.cat *
    .*\.catering *
    .*\.cc *
    .*\.cd *
    .*\.center *
    .*\.ceo *
    .*\.cf *
    .*\.cg *
    .*\.ch *
    .*\.chat *
    .*\.cheap *
    .*\.christmas *
    .*\.church *
    .*\.ci *
    .*\.city *
    .*\.cl *
    .*\.claims *
    .*\.cleaning *
    .*\.click *
    .*\.clinic *
    .*\.clothing *
    .*\.cloud *
    .*\.club *
    .*\.cm *
    .*\.cn *
    .*\.co *
    .*\.co.ag *
    .*\.co.ao *
    .*\.co.at *
    .*\.co.az *
    .*\.co.bi *
    .*\.co.bw *
    .*\.co.ci *
    .*\.co.ck *
    .*\.co.cm *
    .*\.co.com *
    .*\.co.cr *
    .*\.co.cz *
    .*\.co.de *
    .*\.co.dm *
    .*\.co.ee *
    .*\.co.fk *
    .*\.co.gg *
    .*\.co.gl *
    .*\.co.gy *
    .*\.co.hu *
    .*\.co.id *
    .*\.co.il *
    .*\.co.im *
    .*\.co.in *
    .*\.co.it *
    .*\.co.je *
    .*\.co.jp *
    .*\.co.ke *
    .*\.co.kr *
    .*\.co.lc *
    .*\.co.ls *
    .*\.co.ma *
    .*\.co.mg *
    .*\.co.mu *
    .*\.co.mw *
    .*\.co.mz *
    .*\.co.na *
    .*\.co.ni *
    .*\.co.nl *
    .*\.co.no *
    .*\.co.nz *
    .*\.co.om *
    .*\.co.pn *
    .*\.co.ro *
    .*\.co.rs *
    .*\.co.rw *
    .*\.co.th *
    .*\.co.tj *
    .*\.co.tt *
    .*\.co.tz *
    .*\.co.ug *
    .*\.co.uk *
    .*\.co.uz *
    .*\.co.ve *
    .*\.co.vi *
    .*\.co.za *
    .*\.co.zm *
    .*\.co.zw *
    .*\.coach *
    .*\.codes *
    .*\.coffee *
    .*\.college *
    .*\.cologne *
    .*\.com *
    .*\.com.af *
    .*\.com.ag *
    .*\.com.ai *
    .*\.com.ar *
    .*\.com.au *
    .*\.com.az *
    .*\.com.bb *
    .*\.com.bd *
    .*\.com.bh *
    .*\.com.bi *
    .*\.com.bm *
    .*\.com.bn *
    .*\.com.bo *
    .*\.com.br *
    .*\.com.bs *
    .*\.com.by *
    .*\.com.bz *
    .*\.com.ci *
    .*\.com.cm *
    .*\.com.cn *
    .*\.com.co *
    .*\.com.cv *
    .*\.com.cw *
    .*\.com.cy *
    .*\.com.de *
    .*\.com.do *
    .*\.com.dz *
    .*\.com.ec *
    .*\.com.ee *
    .*\.com.eg *
    .*\.com.es *
    .*\.com.et *
    .*\.com.fj *
    .*\.com.ge *
    .*\.com.gh *
    .*\.com.gi *
    .*\.com.gl *
    .*\.com.gp *
    .*\.com.gr *
    .*\.com.gt *
    .*\.com.gy *
    .*\.com.hk *
    .*\.com.hn *
    .*\.com.hr *
    .*\.com.ht *
    .*\.com.iq *
    .*\.com.jm *
    .*\.com.jo *
    .*\.com.kg *
    .*\.com.kh *
    .*\.com.ki *
    .*\.com.kw *
    .*\.com.ky *
    .*\.com.kz *
    .*\.com.lb *
    .*\.com.lc *
    .*\.com.lk *
    .*\.com.lv *
    .*\.com.ly *
    .*\.com.mg *
    .*\.com.mk *
    .*\.com.mm *
    .*\.com.mo *
    .*\.com.mt *
    .*\.com.mu *
    .*\.com.mv *
    .*\.com.mw *
    .*\.com.mx *
    .*\.com.my *
    .*\.com.na *
    .*\.com.nf *
    .*\.com.ng *
    .*\.com.ni *
    .*\.com.nl *
    .*\.com.np *
    .*\.com.nr *
    .*\.com.om *
    .*\.com.pa *
    .*\.com.pe *
    .*\.com.ph *
    .*\.com.pk *
    .*\.com.pl *
    .*\.com.pr *
    .*\.com.ps *
    .*\.com.pt *
    .*\.com.py *
    .*\.com.qa *
    .*\.com.ro *
    .*\.com.ru *
    .*\.com.sa *
    .*\.com.sb *
    .*\.com.sc *
    .*\.com.se *
    .*\.com.sg *
    .*\.com.sl *
    .*\.com.sn *
    .*\.com.sv *
    .*\.com.tc *
    .*\.com.tj *
    .*\.com.tn *
    .*\.com.tr *
    .*\.com.tt *
    .*\.com.tw *
    .*\.com.ua *
    .*\.com.uy *
    .*\.com.uz *
    .*\.com.vc *
    .*\.com.ve *
    .*\.com.vi *
    .*\.com.vn *
    .*\.com.ye *
    .*\.com.zm *
    .*\.community *
    .*\.company *
    .*\.computer *
    .*\.condos *
    .*\.construction *
    .*\.consulting *
    .*\.contractors *
    .*\.cooking *
    .*\.cool *
    .*\.coop *
    .*\.corsica *
    .*\.country *
    .*\.coupons *
    .*\.courses *
    .*\.cpa.pro *
    .*\.cr *
    .*\.credit *
    .*\.creditcard *
    .*\.cricket *
    .*\.cruises *
    .*\.cv *
    .*\.cw *
    .*\.cx *
    .*\.cymru *
    .*\.cz *
    .*\.dance *
    .*\.date *
    .*\.dating *
    .*\.de *
    .*\.deals *
    .*\.degree *
    .*\.delivery *
    .*\.democrat *
    .*\.dental *
    .*\.dentist *
    .*\.desi *
    .*\.design *
    .*\.diamonds *
    .*\.diet *
    .*\.digital *
    .*\.direct *
    .*\.directory *
    .*\.discount *
    .*\.dj *
    .*\.dk *
    .*\.dm *
    .*\.do *
    .*\.dog *
    .*\.domains *
    .*\.download *
    .*\.durban *
    .*\.dz *
    .*\.earth *
    .*\.ec *
    .*\.eco.br *
    .*\.edu *
    .*\.edu.py *
    .*\.edu.sn *
    .*\.education *
    .*\.ee *
    .*\.eg *
    .*\.email *
    .*\.energy *
    .*\.eng.pro *
    .*\.engineer *
    .*\.engineering *
    .*\.enterprises *
    .*\.equipment *
    .*\.es *
    .*\.estate *
    .*\.etics *
    .*\.eu *
    .*\.eus *
    .*\.events *
    .*\.exchange *
    .*\.expert *
    .*\.exposed *
    .*\.express *
    .*\.fail *
    .*\.faith *
    .*\.fans *
    .*\.farm *
    .*\.fashion *
    .*\.fee *
    .*\.fi *
    .*\.film *
    .*\.fin.ec *
    .*\.finance *
    .*\.financial *
    .*\.fish *
    .*\.fishing *
    .*\.fit *
    .*\.fitness *
    .*\.flights *
    .*\.florist *
    .*\.flowers *
    .*\.fm *
    .*\.fo *
    .*\.foo *
    .*\.football *
    .*\.forsale *
    .*\.foundation *
    .*\.fr *
    .*\.frl *
    .*\.fum *
    .*\.fund *
    .*\.furniture *
    .*\.futbol *
    .*\.fyi *
    .*\.ga *
    .*\.gal *
    .*\.gallery *
    .*\.game *
    .*\.garden *
    .*\.gd *
    .*\.ge *
    .*\.gent *
    .*\.gf *
    .*\.gg *
    .*\.gi *
    .*\.gift *
    .*\.gifts *
    .*\.gives *
    .*\.gl *
    .*\.glass *
    .*\.global *
    .*\.gm *
    .*\.gold *
    .*\.golf *
    .*\.gp *
    .*\.gq *
    .*\.gr *
    .*\.gr.jp *
    .*\.graphics *
    .*\.gratis *
    .*\.green *
    .*\.gripe *
    .*\.gs *
    .*\.gt *
    .*\.guide *
    .*\.guitars *
    .*\.guru *
    .*\.gy *
    .*\.hamburg *
    .*\.haus *
    .*\.healthcare *
    .*\.help *
    .*\.hiphop *
    .*\.hiv *
    .*\.hk *
    .*\.hm *
    .*\.hn *
    .*\.hockey *
    .*\.holdings *
    .*\.holiday *
    .*\.horse *
    .*\.host *
    .*\.hosting *
    .*\.house *
    .*\.how *
    .*\.hr *
    .*\.ht *
    .*\.hu *
    .*\.id *
    .*\.ie *
    .*\.im *
    .*\.immo *
    .*\.immobilien *
    .*\.in *
    .*\.in.rs *
    .*\.in.th *
    .*\.industries *
    .*\.info *
    .*\.info.ec *
    .*\.info.hu *
    .*\.info.ke *
    .*\.info.ki *
    .*\.info.ni *
    .*\.info.pr *
    .*\.info.tr *
    .*\.info.ve *
    .*\.ink *
    .*\.institute *
    .*\.insure *
    .*\.int *
    .*\.international *
    .*\.investments *
    .*\.io *
    .*\.iq *
    .*\.irish *
    .*\.is *
    .*\.isla.pr *
    .*\.it *
    .*\.it.ao *
    .*\.je *
    .*\.jetzt *
    .*\.jewelry *
    .*\.jo *
    .*\.jobs *
    .*\.joburg *
    .*\.jp *
    .*\.juegos *
    .*\.kaufen *
    .*\.kg *
    .*\.ki *
    .*\.kim *
    .*\.kitchen *
    .*\.kiwi *
    .*\.kiwi.nz *
    .*\.kn *
    .*\.koeln *
    .*\.kr *
    .*\.ky *
    .*\.kyoto *
    .*\.kz *
    .*\.la *
    .*\.land *
    .*\.lat *
    .*\.law *
    .*\.law.pro *
    .*\.lawyer *
    .*\.lc *
    .*\.lease *
    .*\.legal *
    .*\.lgbt *
    .*\.li *
    .*\.life *
    .*\.lighting *
    .*\.limited *
    .*\.limo *
    .*\.link *
    .*\.live *
    .*\.lk *
    .*\.loan *
    .*\.loans *
    .*\.lol *
    .*\.london *
    .*\.love *
    .*\.lt *
    .*\.ltda *
    .*\.lu *
    .*\.luxury *
    .*\.lv *
    .*\.ly *
    .*\.ma *
    .*\.maison *
    .*\.management *
    .*\.market *
    .*\.marketing *
    .*\.markets *
    .*\.mba *
    .*\.mc *
    .*\.md *
    .*\.me *
    .*\.me.uk
    .*\.med.br *
    .*\.med.pro *
    .*\.media *
    .*\.meet *
    .*\.melbourne *
    .*\.memorial *
    .*\.men *
    .*\.menu *
    .*\.mg *
    .*\.miami *
    .*\.mk *
    .*\.ml *
    .*\.mn *
    .*\.mo *
    .*\.mobi *
    .*\.moda *
    .*\.moe *
    .*\.money *
    .*\.mortgage *
    .*\.moscow *
    .*\.movie *
    .*\.mp *
    .*\.mq *
    .*\.mr *
    .*\.ms *
    .*\.msk.ru *
    .*\.mu *
    .*\.museum *
    .*\.mv *
    .*\.mw *
    .*\.mx *
    .*\.my *
    .*\.my.id *
    .*\.na *
    .*\.nagoya *
    .*\.name *
    .*\.navy *
    .*\.nc *
    .*\.ne *
    .*\.ne.jp *
    .*\.ne.kr *
    .*\.net *
    .*\.net.ag *
    .*\.net.au *
    .*\.net.bd *
    .*\.net.bo *
    .*\.net.br *
    .*\.net.bz *
    .*\.net.ci *
    .*\.net.cm *
    .*\.net.cn *
    .*\.net.co *
    .*\.net.cw *
    .*\.net.ec *
    .*\.net.gy *
    .*\.net.hn *
    .*\.net.ht *
    .*\.net.im *
    .*\.net.in *
    .*\.net.kh *
    .*\.net.ki *
    .*\.net.lb *
    .*\.net.mg *
    .*\.net.mu *
    .*\.net.my *
    .*\.net.nl *
    .*\.net.nz *
    .*\.net.pe *
    .*\.net.pl *
    .*\.net.pn *
    .*\.net.pr *
    .*\.net.ps *
    .*\.net.py *
    .*\.net.ru *
    .*\.net.rw *
    .*\.net.sl *
    .*\.net.ua *
    .*\.net.uk *
    .*\.net.uy *
    .*\.net.uz *
    .*\.net.ve *
    .*\.net.ye *
    .*\.network *
    .*\.news *
    .*\.nf *
    .*\.ng *
    .*\.ni *
    .*\.ninja *
    .*\.nl *
    .*\.no *
    .*\.nom.co *
    .*\.nom.es *
    .*\.nr *
    .*\.nrw *
    .*\.nu *
    .*\.nyc *
    .*\.nz *
    .*\.okinawa *
    .*\.om *
    .*\.one *
    .*\.onl *
    .*\.online *
    .*\.or.bi *
    .*\.or.kr *
    .*\.org *
    .*\.org.ag *
    .*\.org.bd *
    .*\.org.bi *
    .*\.org.bo *
    .*\.org.br *
    .*\.org.ci *
    .*\.org.cn *
    .*\.org.es *
    .*\.org.il *
    .*\.org.ki *
    .*\.org.kz *
    .*\.org.lb *
    .*\.org.mg *
    .*\.org.mm *
    .*\.org.mu *
    .*\.org.mx *
    .*\.org.my *
    .*\.org.na *
    .*\.org.pe *
    .*\.org.pl *
    .*\.org.pn *
    .*\.org.pr *
    .*\.org.ps *
    .*\.org.ru *
    .*\.org.rw *
    .*\.org.sl *
    .*\.org.sn *
    .*\.org.ua *
    .*\.org.uk *
    .*\.org.uy *
    .*\.org.uz *
    .*\.org.ve *
    .*\.org.ye *
    .*\.organic *
    .*\.osaka *
    .*\.pa *
    .*\.paris *
    .*\.partners *
    .*\.parts *
    .*\.party *
    .*\.pe *
    .*\.pf *
    .*\.ph *
    .*\.pharmacy *
    .*\.photo *
    .*\.photography *
    .*\.photos *
    .*\.physio *
    .*\.pics *
    .*\.pictures *
    .*\.pink *
    .*\.pizza *
    .*\.pk *
    .*\.pl *
    .*\.place *
    .*\.plumbing *
    .*\.plus *
    .*\.pm *
    .*\.pn *
    .*\.poker *
    .*\.porn *
    .*\.pp.ru *
    .*\.pr *
    .*\.press *
    .*\.pro *
    .*\.productions *
    .*\.properties *
    .*\.property *
    .*\.ps *
    .*\.pt *
    .*\.pub *
    .*\.pw *
    .*\.qa *
    .*\.qpon *
    .*\.quebec *
    .*\.racing *
    .*\.radio.am *
    .*\.radio.fm *
    .*\.re *
    .*\.recipes *
    .*\.red *
    .*\.rehab *
    .*\.reise *
    .*\.reisen *
    .*\.rent *
    .*\.rentals *
    .*\.repair *
    .*\.report *
    .*\.republican *
    .*\.rest *
    .*\.restaurant *
    .*\.review *
    .*\.reviews *
    .*\.rich *
    .*\.rio *
    .*\.rip *
    .*\.ro *
    .*\.rocks *
    .*\.rodeo *
    .*\.rs *
    .*\.ru *
    .*\.ruhr *
    .*\.run *
    .*\.rw *
    .*\.ryukyu *
    .*\.sa *
    .*\.saarland *
    .*\.sale *
    .*\.sarl *
    .*\.sc *
    .*\.school *
    .*\.schule *
    .*\.science *
    .*\.scot *
    .*\.se *
    .*\.services *
    .*\.sex *
    .*\.sexy *
    .*\.sg *
    .*\.sh *
    .*\.sh.cn *
    .*\.shiksha *
    .*\.shoes *
    .*\.show *
    .*\.si *
    .*\.singles *
    .*\.site *
    .*\.sk *
    .*\.ski *
    .*\.sl *
    .*\.sm *
    .*\.sn *
    .*\.soccer *
    .*\.social *
    .*\.software *
    .*\.solar *
    .*\.solutions *
    .*\.soy *
    .*\.space *
    .*\.spb.ru *
    .*\.sr *
    .*\.srl *
    .*\.st *
    .*\.studio *
    .*\.study *
    .*\.style *
    .*\.su *
    .*\.sucks *
    .*\.supplies *
    .*\.supply *
    .*\.support *
    .*\.surf *
    .*\.surgery *
    .*\.sv *
    .*\.swiss *
    .*\.sx *
    .*\.sydney *
    .*\.systems *
    .*\.taipei *
    .*\.tatar *
    .*\.tattoo *
    .*\.tax *
    .*\.taxi *
    .*\.tc *
    .*\.team *
    .*\.tech *
    .*\.technology *
    .*\.tel *
    .*\.tel.ki *
    .*\.tennis *
    .*\.tf *
    .*\.tg *
    .*\.theater *
    .*\.tickets *
    .*\.tienda *
    .*\.tips *
    .*\.tires *
    .*\.tirol *
    .*\.tj *
    .*\.tk *
    .*\.tl *
    .*\.tm *
    .*\.tm.mc *
    .*\.tn *
    .*\.to *
    .*\.today *
    .*\.tokyo *
    .*\.tools *
    .*\.top *
    .*\.tours *
    .*\.town *
    .*\.toys *
    .*\.trade *
    .*\.trading *
    .*\.training *
    .*\.travel *
    .*\.tt *
    .*\.tv *
    .*\.tv.br *
    .*\.tv.tr *
    .*\.tw *
    .*\.ua *
    .*\.ug *
    .*\.uk *
    .*\.university *
    .*\.uno *
    .*\.us *
    .*\.uy *
    .*\.uz *
    .*\.vacations *
    .*\.vc *
    .*\.vegas *
    .*\.ventures *
    .*\.versicherung *
    .*\.vet *
    .*\.vg *
    .*\.viajes *
    .*\.video *
    .*\.villas *
    .*\.vision *
    .*\.vlaanderen *
    .*\.vn *
    .*\.vodka *
    .*\.vote *
    .*\.voting *
    .*\.voto *
    .*\.voyage *
    .*\.vu *
    .*\.wales *
    .*\.wang *
    .*\.watch *
    .*\.web.id *
    .*\.web.ni *
    .*\.web.tr *
    .*\.web.ve *
    .*\.webcam *
    .*\.website *
    .*\.wedding *
    .*\.wf *
    .*\.whoswho *
    .*\.wien *
    .*\.wiki.br *
    .*\.wiki *
    .*\.win *
    .*\.work *
    .*\.works *
    .*\.world *
    .*\.ws *
    .*\.wtf *
    .*\.xxx *
    .*\.xyz *
    .*\.ye *
    .*\.yoga *
    .*\.yokohama *
    .*\.yt *
    .*\.zone *
    .*\.москва *
    .*\.شبكة *
    .*\.موقع *
    .*\.みんな *
    .*\.中文网 *
    .*\.商标 *
    .*\.在线 *
    .*\.移动 *
    
     
    Last edited by a moderator: Oct 27, 2015
  7. emdad

    emdad New Member

    13
    0
    May 1, 2014
    Thanks Matt, will try this tonight. Definitely will be better than connecting to VPN for using only 2 site. 
     
  8. mobifree

    mobifree New Member

    1
    0
    Feb 8, 2016
    Sorry to re-open an old thread, but does this still work (in light of recent Netflix Proxy blocks?)
     
  9. HalfEatenPie

    HalfEatenPie The Irrational One Retired Staff

    2,890
    1,385
    Mar 25, 2013
    HalfEatenPie
    I don't see why not.  Netflix blocks specific VPN/Proxy IPs if I recall correctly.  They don't block the SNI Proxy system (or more like can't).
     
    Last edited by a moderator: Feb 8, 2016
  10. WeirdG

    WeirdG New Member

    1
    0
    Feb 23, 2016
    Instead of adding all of that, why not just add the following?


    .*/.* *


    BTW, this will only work with Netflix if your VPS' IP range hasn't been blacklisted.  Make sure you don't sub to DigitalOcean, Linode, or BuyVM if you want Netflix US access.