FLINT 2 & VPN, NETFLIX, IPTV with SMASUNG TV

chamo · 2025-04-03T20:51:47.064Z

Hello everyone,
I have a FLINT 2 router which is installed in ROUTER mode behind my ISP box (Bouygues Telecom) which is used as a MODEM.
The connection between the MODEM and the router is via ethernet cable (modem output to router WAN input).

On the FLINT 2 I installed the VPN configuration file SURFSHARK for a ROUTER configuration. I tried WIREGARD and OPENP VPN with a location in Belgium and France.

I have a 2024 SAMSUNG TV with the TIZEN OS (it's not ANDROID TV).
I have installed the applications I need on my TV: NETFLIX and OQEE (IPTV application from the internet service provider FREE).

My aim is to protect all my PCs, phones, TVs, etc. by using a VPN on the router.
My problem is that as soon as I activate the SURFSHARK VPN on the Router, the connection to NETFLIX and OQEE is blocked:

NETFLIX cannot load its page.
OQEE recognises that I am using a VPN and blocks my connection. For information, according to OQEE's policy, it is possible to use OQEE in Europe, but you can't use OQEE with a VPN.

My SURFSHARK file that I use for the router contains the following information:
Surfshark_Wireguard_rout_en-par_1 en-par.prod.surfshark.com:51820

[Interface]
Address = 10.14.0.2/16
DNS = 162.252.172.57, 149.154.159.92

[Peer]
AllowedIPs = 0.0.0.0/0
Endpoint = en-par.prod.surfshark.com:51820
PersistentKeepalive = 25

It looks like one of the SURFSHARK DNS address above is in US and the other one in Germany. I don't know if it could be the root cause of this issue ?

Do you know how I can activate the SURFSHARK VPN on the FLINT2 ROUTER and still be able to use NETFLIX and OQEE on my SAMSUNG TV please?

Thanks for your help

image1361×668 35.6 KB

image591×321 8.67 KB

image582×309 8.42 KB

j2zero · 2025-04-04T19:23:50.734Z

It could well be that Netflix and OQEE have both discovered the sufshark VPN IP range and blacklisted them as known VPN addresses.

If you don't need to have your VPN on for those two services then change your VPN settings to "policy based routing" based on client device and choose to exclude the two devices via their MAC address.

docs.gl-inet.com

VPN Dashboard - GL.iNet Router Docs 4

Documentation for GL.iNet Router Productions

Renato · 2025-04-05T13:02:15.703Z

Many websites are blocking VPN...

This is an answer from Mullvad VPN:

Screenshot_20250405-140020864×642 78.2 KB

chamo · 2025-04-05T15:14:44.612Z

Thanks for your help. It looks a good idea.
What I have done:

-I changed the VPN configuration to Policy Mode and I selected this mode:
Based on the Target Domain or IP

image572×561 15.8 KB

And then I created a new rule to exclude NETFLIX and OQEE from the VPN encryption:

image571×629 11.4 KB

However, what looks difficult is to identify the "domain names" that should be added to this list...
I tried a "whois" with oqee.tv and I added them to the list.

Unfortunately, after enabling the VPN with this configuration, I still have the same problem with OQEE: the VPN is recognized and the application doesn't work.
However, it works for NETFLIX...

I think I didn't catch the full list of domain names for OQEE that should be added to the VPN exclusion list. I don't know how to get it, or maybe for some reasons OQEE is able to detect a VPN connection even if the OQEE domain is excluded from the list...very strange.

Does anyone has an idea please ?

thanks for your help

j2zero · 2025-04-05T17:35:33.216Z

As you have figured out, trying to exclude services like this via domain is going to be a bit frustrating. Different domains can be used to serve different parts of their services which can lead to whats happening.

If your TV supports running a native surfshark app you can do split tunnelling whereby you can exclude certain apps from using the VPN. You can't really do split tunneling on the router as you would be forever trying to figure out the domains.

If possible it's best to just exclude or include the whole device via MAC address for simplicity.

Again, if you need the TV to only route certain TV apps and you can't install the surfshark VPN then the next best thing would be to purchase a Fire TV stick as that runs on android and has a surfshark app which can be installed to allow split tunneling.

Surfshark

What is VPN split tunneling? All you need to know - Surfshark

VPN split tunneling allows you to send a part of your data directly to a specific website or app while the rest of it remains encrypted by a VPN.

chamo · 2025-04-06T08:59:32.700Z

Thanks j2zero.
Unfortunately, my TV is a SAMSUNG with their proprietary OS TIZEN.
I think I cannot use the SURFSHARK APK on it and this app is not in their TIZEN library...

Agree with you: a good option could be a FIRE STICK or any other ANDROID TV box with SURFSHARK APK installed on it.

I will read the documentation you sent me and will try again some other tests. For example:

I saw that after a Router and VPN modification, it could be necessary to clean the TV cache or to re-install the Netflix and OQEE apps...
The connection between my Router and TV is with a cable. However, in the Surfshark documentation, it seems we should connect with WIFI. I am not sure it will fix the problem but I can try.
I see also another option with the SMART DNS on SMART TV like LG or SMASUNG:
How to setup a VPN for a Samsung Smart TV - Surfshark
The problem in this case is that the connection is not encrypted...
I am discussing with Surfshark support team in parrallel to get some recommendations.

thank you

lsquare · 2025-06-23T02:41:09.133Z

That's the answer that Mullvad gives to me as well. It's frustrating because I figure they would at least make an effort to address the issue and come up with a fix.

mortneff · 2025-06-23T14:11:07.508Z

Run wireshark or maybe netstat or other ways to see what is being asked to unblock or manage URL or even IP.
I made my wan too secure and had to open it a bit to get things like Pluto.tv to run.