Sophos UTM / XG Allow Netflix Streaming On Mobile With Web Filtering Enabled [RESOLVED]

This method uses regex that includes all the IP addresses owned by Netflix. This does not include IP addresses owned by ISPs where the ISP is overriding the Netflix server with their own local server.

1. From the Sophos UTM navigate to “Web Protection” and then “Filtering Options” then “Exceptions”
2. Add the following URL’s (Note that they are in a slightly different format for XG compared to UTM)

Note : You may need to skip antivirus scanning also.

Sophos UTM

^https?://([A-Za-z0-9.-]*\.)?ne?t?fli?x(img|ext|video)?\.(com|net)/
^https?://23\.246\.([0-9]|[1-5][0-9]|6[0-3])\.[0-9]
^https?://37\.77\.(1(8[4-9]|9[0-1]))\.[0-9]
^https?://45\.57\.([0-9]|[1-9][0-9]|1([0-1][0-9]|2[0-7]))\.[0-9]
^https?://64\.120\.(1(2[8-9]|[3-9][0-9])|2([0-4][0-9]|5[0-5]))\.[0-9]
^https?://66\.197\.(1(2[8-9]|[3-9][0-9])|2([0-4][0-9]|5[0-5]))\.[0-9]
^https?://192\.173\.(6[4-9]|[7-9][0-9]|1([0-1][0-9]|2[0-7]))\.[0-9]
^https?://69\.53\.(2(2[4-9]|[3-4][0-9]|5[0-5]))\.[0-9]
^https?://108\.175\.(3[2-9]|4[0-7])\.[0-9]
^https?://185\.2\.(2(2[0-3]))\.[0-9]
^https?://185\.9\.(1(8[8-9]|9[0-1]))\.[0-9]
^https?://198\.38\.(9[6-9]|1([0-1][0-9]|2[0-7]))\.[0-9]
^https?://198\.45\.(4[8-9]|5[0-9]|6[0-3])\.[0-9]
^https?://208\.75\.(7[6-9])\.[0-9]

Sophos XG

^([A-Za-z0-9.-]*\.)?ne?t?fli?x(img|ext|video)?\.(com|net)/
^23\.246\.([0-9]|[1-5][0-9]|6[0-3])\.[0-9]
^37\.77\.(1(8[4-9]|9[0-1]))\.[0-9]
^45\.57\.([0-9]|[1-9][0-9]|1([0-1][0-9]|2[0-7]))\.[0-9]
^64\.120\.(1(2[8-9]|[3-9][0-9])|2([0-4][0-9]|5[0-5]))\.[0-9]
^66\.197\.(1(2[8-9]|[3-9][0-9])|2([0-4][0-9]|5[0-5]))\.[0-9]
^192\.173\.(6[4-9]|[7-9][0-9]|1([0-1][0-9]|2[0-7]))\.[0-9]
^69\.53\.(2(2[4-9]|[3-4][0-9]|5[0-5]))\.[0-9]
^108\.175\.(3[2-9]|4[0-7])\.[0-9]
^185\.2\.(2(2[0-3]))\.[0-9]
^185\.9\.(1(8[8-9]|9[0-1]))\.[0-9]
^198\.38\.(9[6-9]|1([0-1][0-9]|2[0-7]))\.[0-9]
^198\.45\.(4[8-9]|5[0-9]|6[0-3])\.[0-9]
^208\.75\.(7[6-9])\.[0-9]