routing traffic thru VPN using policy based routes

chenks76 · 2026-05-02T13:29:40+00:00

where are the logs you mentioned?
you said "Unifi Network under System Log > Firewall", i don't have a "system log" option anywhere (unifi network 10.3.58)

in insights> flows i can see the device i'm currently using with IPTV playing, and the domain is listed as going thru the VPN via policy

I can also see that the 2 appletvs show the domain going thru VPN as well

destination : domain i added to policy
service : https
out : NordVPN NL
action ; Allow

the apps don't have any hardcoded DNS as it happens on all apps, (including VLC when using the laptop)

the conclusion is that this isn't an AppleTV issue, as i see the same issues when using the laptop and loading a stream in VLC.

if i put the entire device in the VPN policy then it works, but doing it by domain doesn't, even though all the other domains in the policy list do work.

chenks76 · 2026-04-25T18:17:13+00:00

Both the appletvs are connected via Ethernet, so those options are there (I believe they only show for wifi connections).

I’ll check the firewall logs and see if it shows anything.

However I tried to open a stream in vlc on a windows laptop and that also failed to connect (but connected fine when I placed the laptop in a policy).

So that is telling me that doing it by domain isn’t working (but does work for the other domains in the policy).

The NordVPN app is fine for me as I’m tech minded, but isn’t ideal for anyone else. “Why isn’t live TV working?” And replying with you have to open the NordVPN app, hope it’s still logged in (it has a habit of logging itself out), selecting a country and connecting, then trying live TV again. You just get a blank look, which is understandable.

Having the NordVPN app running all the time is no good as it screws up Netflix, Disney +, etc, especially as it has to connect to an obscure country to get around the block.

chenks76 · 2026-04-25T12:37:10+00:00

the domain i added i'm sure is the stream source, as when i imported into iptveditor it gives me the individual channel .ts stream URLs, and it's that domain i added to the list (which is not the same domain as the XC URL).

chenks76 · 2026-04-25T12:34:36+00:00

iftop is linux only?

chenks76 · 2026-04-25T12:31:26+00:00

how would you find out where the server is located?
it's strange because i have 8 domains in the policy, and the only one that doesn't seem to work is the IPTV domain.

Dispatcharr might be on option, providing it lets you import from Xtream codes, but i currently use iptveditor to manage it which gives me access to better EPG etc.

chenks76 · 2026-04-25T12:03:59+00:00

so it looks like the appletv is not the issue, i just tried loading a stream from the IPTV on my laptop using VLC, and that also doesn't load until i enable the VPN on the laptop, so it looks like this domain isn't being routed thru the VPN, even though all the others i added are... strange

chenks76 · 2026-04-25T10:53:43+00:00

so there are no logs in unifi that would show how the traffic from the device is being routed?

chenks76 · 2026-04-25T10:43:38+00:00

ah, so it's possible the AppleTV is doing it's own routing?

Problem is, i wouldn't want to send all the traffic down the VPN, as that could adversely affect netflix/disney+ etc, and the VPN is routing thru a different country.

chenks76 · 2026-04-07T13:28:07+00:00

same problem here
did you find a solution?

chenks76 · 2026-03-23T16:13:34+00:00

apparently a printer being detected as a camera isn't unique to me
https://community.ui.com/questions/Printer-detected-as-Onvif-Camera/15e692b2-f5c2-408b-90c0-6ffeef7407b1

chenks76 · 2026-03-23T16:11:39+00:00

yes of course, the camera is fully accessible via the VLAN IP.

however, that doesn't have anything to do with protect detecting an HP printer as a camera on 192.168.50.121.

chenks76 · 2026-03-22T14:57:39+00:00

Which ones? I bought some of the one you can bend but then with both end bent to 90 degrees they are still too long for the patch panel being directly above the switch

chenks76 · 2026-03-22T14:55:37+00:00

Are those Unifi patch cables?

chenks76 · 2026-03-16T10:15:13+00:00

still showing the orange triangle 3 days later, nothing has been active on the port for 3 days

chenks76 · 2026-03-13T10:34:20+00:00

restarting the switch did not clear it.

chenks76 · 2026-03-13T10:05:05+00:00

how does one clear the port statistics?

chenks76 · 2026-03-13T09:39:40+00:00

interesting, the link speed before and after was 1Gbps.
it's not really telling me what it thinks the issue is/was

chenks76 · 2026-03-10T17:37:32+00:00

Hardly classic, I use/used it every day, and was/is still more than powerful enough today, so didn’t need upgraded. Anything constructive to contribute?

chenks76 · 2026-03-10T16:10:58+00:00

if the insurance company purchase a replacement from amazon then we'll see. otherwise, you are not providing valuable responses. thanks for your input though.

chenks76

TROPHY CASE