googlevideo.com and split-tunnel

amnezia-vpn / amnezia-client

Amnezia VPN Client (Desktop+Mobile)

https://amnezia.org

GNU General Public License v3.0

4.2k stars 276 forks source link

googlevideo.com and split-tunnel #910

Open BlackLordRoo opened 1 month ago

BlackLordRoo commented 1 month ago

Describe the bug googlevideo.com don't go through VPN when using "site-based" split-tunnel

To Reproduce Steps to reproduce the behavior:

Set VPN in mode when everything goes through Amnezia VPN.
Check http://redirector.googlevideo.com/report_mapping?di=no and see that it show location of VPN server.
Change VPN mode to split tunnel and add googlevideo.com into list.
Check again http://redirector.googlevideo.com/report_mapping?di=no and now it shows my local network location!
Check different vpn - addon based Browsec VPN. Same mode (Site-based) and same site in list (googlevideo.com). Check again and it shows that VPN location. So it is clearly problem of Amnezia client.

Expected behavior Google should to use VPN location instead of my real network location.

Desktop (please complete the following information):

OS: Windows 10
Version 4.6.0.3

Additional context Add any other context about the problem here.

Bushroott commented 1 month ago

Split tunneling never worked, lol.

iHold commented 1 month ago

I added to the split tunneling list all the Google IP ranges I found here: https://support.google.com/a/answer/10026322?product_name=UnuFlow&hl=en&visit_id=637920197716360242-2343045394&rd=1&src=supportwidget0&hl=en more precisely: https://www.gstatic.com/ipranges/goog.json

Now if I check https://redirector.googlevideo.com/report_mapping?di=no it shows VPN location and split tunneling works fine

Attached a file to import the list GoogleIPsFULL.json

winkyBrain commented 1 month ago

I added to the split tunneling list all the Google IP ranges I found here: https://support.google.com/a/answer/10026322?product_name=UnuFlow&hl=en&visit_id=637920197716360242-2343045394&rd=1&src=supportwidget0&hl=en more precisely: https://www.gstatic.com/ipranges/goog.json

Now if I check https://redirector.googlevideo.com/report_mapping?di=no it shows VPN location and split tunneling works fine

Attached a file to import the list GoogleIPsFULL.json

That's work fine, but just youtube.com in that list will be better

nenkoru commented 1 month ago

I have created a gh repo[1] which utilises NetBlockTool[2] and automatically builds a json file to import into Amnezia for net blocks of the companies(atm Google, Facebook, Twitter, see gather.sh:3 file). You could just grab the file from the latest release[3] and it would always be the up-to-date list of IPs for those companies net blocks.

[1] https://github.com/nenkoru/amnezia_split_tunnel [2] https://github.com/NetSPI/NetblockTool [3] https://github.com/nenkoru/amnezia_split_tunnel/releases/latest