Google Safe Browsing IP Blocking

[ReturnZero]

I have a Synology Router with the Safe Access app on it, which integrates the Google Safe Browsing and Threat Intelligence database to block suspicious traffic on my network. It works pretty well, but pretty regularly it blocks my Model S from connecting to various IP addresses in the middle of the night.

I'm guessing these are Tesla's IP addresses and it's trying to upload Autopilot data or perhaps do firmware updates or something. These are the IPs I've discovered and whitelisted so far:

168.1.23.122
83.161.67.152
138.201.64.208

I would prefer to just tell the system to allow any traffic from the Model S MAC address but I can't whitelist on a device basis, only add destination rules that say allow this traffic. Has anyone put together a list of Tesla's IP addresses that should be whitelisted?

 

[mb300sd]

Can you whitelist a source ip? I assigned the Tesla a static dhcp entry to monitor its traffic easily.

 

[ReturnZero]

Unfortunately no, that would have been my preferred solution but the router doesn't take the origin into account, only the destination.

 

[mb300sd]

I set up sflow on my switches the other day. Here's the list of IPs the car's talked to lately.

• 205.234.31.77
• 239.255.255.250
• 205.234.31.26
• 205.234.31.61
• 34.215.35.189
• 54.68.224.2
• 100.25.62.91
• 13.35.119.76
• 205.234.31.19
• 216.58.194.74
• 3.85.154.158
• 34.202.206.236
• 34.209.58.201
• 52.36.7.211

Tesla uses AWS, so there's probably no way to get a comprehensive list since they'll keep changing. If you can whitelist by domain, https to the ips and get the domains from the certificates. Those might stay static.

 

[ReturnZero]

This is really useful, thanks!