What sort of ”legitimate traffic” comes off AWS/Azure/DigitalOcean et al?
And how does the volume of that (and relevance of that traffic) compare to home add and mobile CGNAT ipaddresses?
Unless I’m selling something, dropping all cloud instance IP ranges doesn’t em like it’d block a lot of “legitimate traffic” to me, at least not enough to care about. If my choices were “spend time implementing a more sophisticated locking technique to reduce blogspam” or “write more blogposts”, I’d be triggerhappy blocking everybody using AWS o browse from and writing more content.
I use FSecure as a VPN, and I see it “do weird shit” at about the same rate as I see when I’m using a Hertzner box as a wire guard endpoint. (Most common thing there is I can’t order via menulog when I’ve got a vpn endpoint out of I am getting it delivered to, and I’ve just got used to switching off my phone’s vpn while ordering..)
Yeah, now consider living in a country which blocks stuff left and right (including vpn services) so that DO/Hetzner endpoint is the only endpoint outside you have.
What sort of ”legitimate traffic” comes off AWS/Azure/DigitalOcean et al?
And how does the volume of that (and relevance of that traffic) compare to home add and mobile CGNAT ipaddresses?
Unless I’m selling something, dropping all cloud instance IP ranges doesn’t em like it’d block a lot of “legitimate traffic” to me, at least not enough to care about. If my choices were “spend time implementing a more sophisticated locking technique to reduce blogspam” or “write more blogposts”, I’d be triggerhappy blocking everybody using AWS o browse from and writing more content.
I use FSecure as a VPN, and I see it “do weird shit” at about the same rate as I see when I’m using a Hertzner box as a wire guard endpoint. (Most common thing there is I can’t order via menulog when I’ve got a vpn endpoint out of I am getting it delivered to, and I’ve just got used to switching off my phone’s vpn while ordering..)