Clampdown on TV 'Dodgy Boxes'

jmcc · 03-05-2026 04:40PM

https://www.boards.ie/discussion/comment/124439487#Comment_124439487

dodgybox → ISP → VPN → dodgybox service.

The ISP is an essential link in the chain. Without it, the dodgybox would not be able to connect to the VPN service unless it has an alternative Internet connection. The ISP sees the traffic from the subscriber's router as being to and from the assigned IP address. The VPN service effectively acts as a proxy and the dodgybox service will see an IP from the VPN service rather than the ISP subscriber's IP.

This is what you claimed:

"Its dodgybox - VPN - ISP - dodgybox service."

That is wrong. You confused the VPN client software running on the subscriber's side with the VPN service. The software allows a connection to the VPN service via the ISP. In your incorrect version, the subscriber's IP address would still be connecting directly to the dodgybox service.

As for buffering on an ISP, it is possible for ISPs to identify the IP addresses used by a dodgybox service. It could block traffic from the ISP to and from those IPs at specific times or even completely. With a VPN service acting as a proxy, blockking the VPN service IPs would be slightly more difficult. That is not a problem with the subscriber's WiFi connection. One of the main causes of buffering is typically insufficient bandwidth with too many users at connecting at the same time.

Benedict XVI · 03-05-2026 05:28PM

https://www.boards.ie/discussion/comment/124440843#Comment_124440843

The VPN service effectively acts as a proxy and the dodgybox service will see an IP from the VPN service rather than the ISP subscriber's IP.

But it doesn't matter what IP the dodgy box service sees.

The task is to fool the ISP into thinking you are not connecting to the dodgy box service.

I can't square the circle that you can use a VPN to do two different things, convince a destination that you are coming from somewhere you are not and convince your ISP that you are going to somewhere you are not.

irishgeo · 03-05-2026 05:56PM

https://www.boards.ie/discussion/comment/124440843#Comment_124440843

Your wrong. The client software establishes the VPN tunnel it is not done at the server side, where do you think the tunnel is created?
The client creates the VPN tunnel and then the dodgybox traffic is routed via the ISP in an encrypted tunnel to the server. When does your public IP change, when you connect via the client. Not not ISP.router making the VPN unless its setup like that but its rare to do it that way.

If the ISP is blocking all the traffic to the IPs how would you get logged in the first place and if they were blocked they would not load. If they know the IPs I would think the ISPs would be informed to block them not just throttle them. The ISPs are not actively searching for IPTV bar maybe sky. They are just obligated to block them when they are given them.

jmcc · 03-05-2026 07:26PM

https://www.boards.ie/discussion/comment/124441147#Comment_124441147

What seems to be missing is the concept of routes. This is a very simplified version (leaving out a lot of stuff) of what happens.

subscriber IP - ISP route - dodgybox service

subscriber IP - ISP route - streaming service

The IP is the one assigned by the ISP. Traffic to and from an IP addresses on the Internet effectively follows routes.

At the most simple, a route is where data to a particular range of IP addresses goes. A router will essentially send the data for a particular range of IP addresses to a gateway for those IP addresses.

Without the association of IPs with routes and thinking of things as being just a connection of one IP address to another, that might be causing the confusion. (There can be multiple routes but that is not necessary for this simple explanation.)

With the examples above, the traffic from the dodgybox service goes to the subscriber's IP via the ISP's route. The traffic from the streaming service goes to the subscriber's IP via the ISP's route. Think of routes as roads and the subscriber IPs as being houses. With the above, the data from the dodgybox service/streaming service takes the road to Dublin in order to get to the subscriber's house.

With the VPN service between the ISP and the dodgybox service/streaming service, there is an extra route for the data from the dodgybox service/streaming service.

Subscriber IP - ISP route - VPN route - dodgybox service

Subscriber IP - ISP route - VPN route - streaming service

In the examples above, the dodgybox service / streaming service send the data via the VPN service's route. The VPN service then sends that data to the subscriber's IP via the ISP's route. The dodgybox service/streaming service sees the IP from the VPN service and sends the data to that IP via the route for the VPN service's IPs.

The ISP effectively sees the subscriber's IP connecting to the VPN service's IPs rather than connecting directly to the dodgybox service/streaming service's IPs. To reuse the road analogy, the data from the dodgybox service/streaming service now takes the road to Cork first and is then redirected to Dublin by the VPN service. It is a very simplified explanation but the concept of the routes that the data takes and how it relates to IP addresses may have been what was causing some of the confusion.

With geo-fencing, a streaming service might only accept connections from IP addresses that are associated with a particular country. It is possible for an IP range owner to reflag an IP address or range of IP addresses. It typically requires the streaming service to either maintain its own IP-country database or use a geolocation service.

jmcc · 03-05-2026 09:12PM

https://www.boards.ie/discussion/comment/124441260#Comment_124441260

The subscriber's router/modem typically uses Network Address Translation to translate all the traffic to and from its internal private IP network, including the dodgybox and the device running the VPN client software, to the subscriber's public ISP IP address. As far as the ISP is concerned, the encrypted tunnel endpoints are the subscriber's IP address and that of the the VPN service. The subscriber's IP address does not change frequently. For most non-business subscribers, the IP address may change every few days or so.

If the subscriber's ISP IP address changed during a connection to the VPN service then the encrypted tunnel to the VPN service would, in most cases, stop working. The VPN service connects to the dodgybox service via one of its IP addresses and then sends that data from the dodybox service to the subscriber's IP address where it is then translated to the private IP of the device running the VPN client software and then to the private IP of the dodyboxl. The dodgybox service only sees the IP address of the VPN service and not the subscriber's ISP IP address.

ISPs could divert requests to particular IP addresses to another IP or a website. A few years ago, some ISPs were doing this for URLs with non-existent domain names and monetiising that traffic with PPC advertising. ISPs have a lot of control over their networks. As for blocking, they don't block without good reason. Sky may hae a reason to do that.

NewClareman · 04-05-2026 02:02PM

https://www.boards.ie/discussion/comment/124441147#Comment_124441147

“But it doesn't matter what IP the dodgy box service sees. “

That depends on whether the “dodgy box service” is geoblocked.

“The task is to fool the ISP into thinking you are not connecting to the dodgy box service.”

That could be the task. The task could also be to stop the ISP identifying the type of traffic. For example, some ISP’s restrict streaming, or streaming from certain areas…

Note that we are talking about the end user’s ISP, the ‘Dodgy Box Service’ will have their own ISP.

“I can't square the circle that you can use a VPN to do two different things, convince a destination that you are coming from somewhere you are not and convince your ISP that you are going to somewhere you are not.”

The end user (e.g. a ‘Dodgy Box with VPN Client SW‘), at Location A, creates an ‘Encrypted Tunnel’ over the Internet to a VPN Server belonging to the VPN Service Provider. Typically this is their nearest location (say Location B) where the VPN Service Provider has equipment (or a ‘network node’).

The end user’s ISP only knows that the end user is connecting to the IP Address associated with Location B. Because of the encryption it has no idea what type of data is involved, or the ultimate destination.

If the service the end user is accessing is available from Location B (which could be in Ireland) then the end user can connect directly to that service from their nearest VPN Provider's node - job done!

Let’s say the end user wants to connect to a service (e.g. BBC iPlayer) that is geoblocked and not available in Location B. The VPN Service Provider could route the traffic internally to a location (Location C, say London) where the service is offered. The VPN Service Provider then forwards the information to the desired service, over the public Internet. In this case the BBC iPlayer thinks the requests are coming from the IP Address associated with Location C.

All this is simplified, but gives the general principles…

longrunn · 06-05-2026 04:01PM

Are ye sure that the ISP blocking is done based on IP addresses of the streaming servers? I'd have thought it was DNS rather than IP, as is much easier to sinkhole DNS. All DNS traffic on my home networks is redirected through DoQ so the ISP can't see it.

dulpit · 06-05-2026 07:31PM

https://www.boards.ie/discussion/comment/124448412#Comment_124448412

Hmm, that's a good shout. I used have DNS settings set to google or 1.1.1.1 with previous ISP, but can't remember if I did that with the new sky router I got. Will check and test and report back tomorrow.

WoopWooWoo · 07-05-2026 07:57PM

yes it’s the DNS they are targeting not IPs. Let’s not throw away from the sophistication of these setups. They can change the IPs of their services just as simple as you can get a new SIM card with a new phone number.

the might buy a bunch of a 50 public IPs on monthly subscriptions or yearly subscriptions. Usually around 20 euro a month. They can cancel anyone and go onto a different subnet completely from a different provider who provide the public IPs.

Its a never ending loop

longrunn · 08-05-2026 09:03AM

https://www.boards.ie/discussion/comment/124448836#Comment_124448836

Your ISP can (probably are) hijack DNS. Even if you set your OS or router DNS to 8.8.8.8 or 1.1.1.1 the ISP can intercept it and send back to you a different response, faked to look like it's coming from 8.8.8.8 or 1.1.1.1. You can check by setting your DNS to 8.8.8.8 or 1.1.1.1 and visiting https://whoismydns.com/ (if the result isn't Google or Cloudflare you're being hijacked), or by using quad9 (9.9.9.9) and visiting this page https://on.quad9.net/.

The only sure way to prevent this is using DoT, DoH, or DoQ, as they encrypt the DNS query.

doughef · 14-05-2026 04:30PM

Im led to believe a lot of these so called dodgy boxes providers have gone down since yesterday ??

asking for a friend of course …….

SteM · 14-05-2026 04:35PM

https://www.boards.ie/discussion/comment/124468184#Comment_124468184

Just checked with a friend and both of his are still up and running.

NIMAN · 14-05-2026 04:36PM

My friends was down yesterday for a few hours. Came back late evening yesterday.

He says some channels still not working and VOD not quite there yet but improving.

doughef · 14-05-2026 04:39PM

My friends is completely gone. His provider has to get new servers and rebuild.
Happened a few years ago too and can take a while to get back up and running

NIMAN · 14-05-2026 04:42PM

https://www.boards.ie/discussion/comment/124468210#Comment_124468210

This was the same as my friends. It could have been down longer but my friend doesn't watch TV during the day and wouldn't have noticed it being down.

Was only when tried to watch spl footy last night. But saw the 2nd half.

shmeee · 14-05-2026 04:53PM

There was damage at a data centre in Europe which has effected so many friends IPTV. A good provider has a back up server, so my friends are still active. Will be a few weeks to rebuild and re-upload all the on demand content.

Dr.Tom · 14-05-2026 05:05PM

https://www.boards.ie/discussion/comment/124468184#Comment_124468184

Is your friend in Cork?

My friend in Cork has the same issue

doughef · 14-05-2026 05:35PM

https://www.boards.ie/discussion/comment/124468269#Comment_124468269

No, he’s in Dublin .
A few of his friends in Dublin are also affected

John arse · 14-05-2026 06:03PM

Oh no, it's not the dreaded clampdown again???😳

Dr.Tom · 14-05-2026 08:32PM

My friend in Cork has partial service restored

Rocket_GD · 14-05-2026 08:47PM

My friends service is down at the moment.

Mine is functioning fine.

TheW1zard · 15-05-2026 12:17AM

Mine is down, but using the backup so not really affected. Watched a bit of Norsemen. Will be back fully in a few days.

100euro for the year still worth it lol

Sn@kebite · 15-05-2026 02:43AM

My one was having issues with UK channels but they're getting it back. They have a backup too. Must be someone going after dns/ips.

Manc-Red_ · 15-05-2026 05:25AM

Slowly coming back online. Not a door that will be kept closed for long.

shmeee · 15-05-2026 12:31PM

https://www.boards.ie/discussion/comment/124469390#Comment_124469390

A fire in a data centre I've heard reports of. And so many providers use the same source.

John arse · 15-05-2026 01:29PM

https://www.boards.ie/discussion/comment/124470228#Comment_124470228

Someone from SKY arson around???😳

jeffk · 16-05-2026 08:42AM

Any chance of a link or DM of where to get a Xiaomi TV Box please (very cautious of getting a fake)

Mistore Ireland no stock and almost two weeks emailing them to be told wait or we are checking

In Navan so no Harvey Norman and dont fancing almost E80 when you see them online for around E65

Thanks

Nowso · 16-05-2026 09:27AM

https://www.boards.ie/discussion/comment/124472511#Comment_124472511

try some of the foreign phone shops see what they have there are a few in navan , if not online - a firestick 4k max still works and will for 4 years at least if you know how to do it

jeffk · 16-05-2026 09:31AM

https://www.boards.ie/discussion/comment/124472575#Comment_124472575

Yeah I have a few firesticks thanks, but playing the higher end audio formats via passthrough is breaking my heart, that and its getting to the stage the stick seems to lag a lot (stripped apps etc right down)

SteM · 16-05-2026 09:33AM

Needed one for my brother so picked it up in HN for €80 a few weeks ago. He's been happy with it since.

Clampdown on TV 'Dodgy Boxes'

Comments