Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 5 replies
  • Answers 3 answers
  • Subscribers 8 subscribers
  • Views 22627 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

spotify - app only offline mode, webplayer no music

#ID

Good Morning, Afternoon, Evening or Night

I tried to allow spotify, but it's not working yet. Maybe someone could point me in the right direction?

I tried the windows application as well as the web player. I can log in. The webplayer shows me my music but when I press play nothing happens. No error message nothing. In the windows application I get at least a warning that I am offline (code 4).

I made a firewall rule which allows traffic on port 4070 according to this spotify-community post and I skipped SSL scanning for the following URLs (recommended in a blog post):

^https?://[A-Za-z0-9.-]spotify.com/

^https?://([A-Za-z0-9.-].)?spotify.com/

^https?://194.68..:*

^https?://193.182..:*

^https?://193.235..:*

^https?://78.31.8.:*

^https?://78.31.12.:*

^https://193.235.232.103/

Anything else I could try?



This thread was automatically locked due to age.
  • 0

    So, the issue was RegEx. After consulting this article, I figured out how to write it correctly (I suppose, I'd be very thankful if someone could confirm that this RegEx works as supposed to and doesn't allow to much!).

    Port 4070 hasn't to be opened for the web player of Spotify, only for the app. Streaming works with just SSL-check skipping for the following addresses:

    ^https?://([A-Za-z0-9.-]*\.)?spotify\.com/
    ^https?://78\.31\.8\.[0-9][0-9][0-9]
    ^https?://193\.182\.8\.[0-9][0-9][0-9]
    ^https?://194\.68\.28\.[0-9][0-9][0-9]

  • 0 in reply to #ID

    I would have said:

    ^https?://[A-Za-z0-9.-]*spotify\.com/
    ^https?://78\.31\.8\.
    ^https?://193\.182\.8\.
    ^https?://194\.68\.28\.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to #ID

    Spotify ips:
    78.31.8.0/21
    193.182.8.0/21
    194.68.28.0/22
    from Here. approved here.

    I use this pattern for SSL-check skipping:
    ^https?://([A-Za-z0-9.-]*\.)?spotify\.com/
    ^https?://([A-Za-z0-9.-]*\.)?scdn\.co/ (because spotify is just the "referer")
    ^https?://78\.31\.([8-9]{1})\.([0-9]{1,3})
    ^https?://78\.31\.1([0-5]{1})\.([0-9]{1,3})
    ^https?://193\.182\.([8-9]{1})\.([0-9]{1,3})
    ^https?://193\.182\.1([0-5]{1})\.([0-9]{1,3})
    ^https?://194\.68\.2([8-9]{1})\.([0-9]{1,3})
    ^https?://194\.68\.3([0-1]{1})\.([0-9]{1,3})

    Works fine, so far...

  • 0

    Works perfect for me! 

     
    SFVH (SFOS 20.0.0 GA-Build222) - Last (re)boot on November 6th  2023
    Asus H410i-plus - Pentium 6605 Gold - 250GB M.2 PCIe NVMe SSD - 8GB - 3 ports
    [If any of my posts are helpful to you please use the 'Verify Answer' link]
  • 0

    I've been trying to isolate this issue for a while. Finally was able to get it to work. Only exception for HTTPS decryption I needed was: ^([A-Za-z0-9.-]*\.)?scdn\.co/?

Unfiltered HTML