Block updates while retaining online play, app updates, eshop on Switch & others with Proxy

naddel81 · Jul 8, 2018

so what about al azif DNS for switch? has anybody info about it?

link42586 · Jul 14, 2018

So i'm on 4.1.0 and want to update rocket league to play locally..And even if that doesn't require firmware 5.1.0 it will ask me to update anyway? I have another switch on latest and the rocket league is updated to latest. Was going to try the local update thing. Also wonder if I can update my joycons with the latest update and still use them on 4.1.0 has that ever been tried? I wouldn't think that would matter but idk if that'll ask me to update. Better safe than sorry.

--------------------- MERGED ---------------------------

I also would like to know about the Al Azif DNS as I use that for my ps4 with the ESP8266. Would be nice to double up on the use of the device.

wsdyleon · Jul 14, 2018

Draxzelex said:
https://gbatemp.net/threads/gag-order-a-fix-for-supernag.505765/

thanks but it doesnot work for my ver4.0.1。。。
i used gamecard zelda ，does it have some update content itself？
also used cfw+clearlog but not work

Draxzelex · Jul 14, 2018

wsdyleon said:
thanks but it doesnot work for my ver4.0.1。。。
i used gamecard zelda ，does it have some update content itself？
also used cfw+clearlog but not work

Apparently, it is only confirmed to work on version 4.1. Others may or may not work. But you can try using it again and again until it does work. Clearing error logs won't work because that only clears the error logs. You are suffering from the super update nag which was recently implemented.

intellettuanale · Jul 15, 2018

Can I use the same RPI 0W I use for pihole?

scumdead · Jul 16, 2018

Work fine on my rasp pi, thank you.

intellettuanale · Jul 16, 2018

scumdead said:
Work fine on my rasp pi, thank you.

I can't download nintendont-squid files. Do you?

scumdead · Jul 17, 2018

I took those from post 32.

intellettuanale · Jul 17, 2018

It seems squid3 won't install correct.
It doesn't create etc/squid3 folder (I create it with mkdir) and I can' restart it.

scumdead · Jul 17, 2018

Sudo apt-get update
Sudo apt-get upgrade
Sudo apt-get install squid3
...

Works fine for me

ehnoah · Jul 17, 2018

So it blocks Firmware update? What else it blocks? Since Eshop etc. working.

scumdead · Jul 17, 2018

On 5.1.0, block updates, but not online play and eshop.

JConnor · Aug 15, 2018

Does this tutorial work with ftp?

Type_O_Dev · Aug 15, 2018

JConnor said:
Does this tutorial work with ftp?

yes and any other firmware

JConnor · Aug 15, 2018

Ok, but I'm having trouble to connect. Actualy, Filezilla connects but cannot list the files (I also tried Core FTP LE).
Filezilla is in active mode and annonymous login;
CCProxy is with FTP selected, port 8080. DNS is also selected. Do I have to configure socks4?
Any idea?

Type_O_Dev · Aug 16, 2018

JConnor said:
Ok, but I'm having trouble to connect. Actualy, Filezilla connects but cannot list the files (I also tried Core FTP LE).
Filezilla is in active mode and annonymous login;
CCProxy is with FTP selected, port 8080. DNS is also selected. Do I have to configure socks4?
Any idea?

what is CCProxy showing you under Monitor

JConnor · Aug 17, 2018

CCproxy monitor was empty. It only showed info in the tab ip.
When I changed the ftp client to flashfxp it logged:

[20:22:32] FlashFXP 5.4.0 (build 3970)
[20:22:32] Support Forums https://www.flashfxp.com/forum/
[20:22:32]
[20:22:32] Winsock 2.2 -- OpenSSL 1.1.0e 16 Feb 2017
[20:23:08] [R] Connecting to switch -> IP=192.168.1.6 PORT=5000
[20:23:17] [R] Connected to switch
[20:23:17] [R] 220 Hello!
[20:23:17] [R] USER anonymous
[20:23:17] [R] 230 OK
[20:23:17] [R] SYST
[20:23:17] [R] 215 UNIX Type: L8
[20:23:17] [R] FEAT
[20:23:17] [R] 211-
[20:23:17] [R] MDTM
[20:23:17] [R] MLST Type*;Size*;Modify*;Perm*;UNIX.mode;
[20:23:17] [R] PASV
[20:23:17] [R] SIZE
[20:23:17] [R] TVFS
[20:23:17] [R] UTF8
[20:23:17] [R]
[20:23:17] [R] 211 End
[20:23:17] [R] OPTS UTF8 ON
[20:23:17] [R] 200 OK
[20:23:17] [R] OPTS MLST Type;Size;Modify;Perm;UNIX.mode;
[20:23:17] [R] 200 MLST OPTS Type;Size;Modify;Perm;UNIX.mode;
[20:23:17] [R] PWD
[20:23:17] [R] 257 "/"
[20:23:17] [R] PASV
[20:23:17] [R] 227 192,168,1,6,155,2
[20:23:17] [R] Opening data connection IP: 192.168.1.6 PORT: 39682
[20:23:17] [R] MLSD
[20:23:17] [R] 150 Ready
[20:23:18] [R] 550 unavailable
[20:23:19] [R] List Error
[20:23:19] [R] PASV mode failed, trying PORT mode.
[20:23:19] [R] Listening on PORT: 13884, Waiting for connection.
[20:23:19] [R] PORT 192,168,1,3,54,60
[20:23:19] [R] 200 OK
[20:23:19] [R] MLSD
[20:23:22] [R] 150 Ready
[20:23:22] [R] 550 unavailable
[20:23:23] [R] List Error
[20:24:05] [R] TYPE I
[20:24:26] [R] Network Error (10054): Connection reset by peer
[20:24:26] [R] Connection Lost: switch (Duration: 1 minute 9 seconds / Idle: 22 seconds)
[20:24:26] [R] Transfer Failed: bootlogo.bmp
[20:24:26] [R] Connecting to switch -> IP=192.168.1.6 PORT=5000
[20:24:47] [R] Connection failed (Connection timed out)
[20:24:47] [R] Delaying for 10 seconds before reconnect attempt #1
[20:24:57] [R] Attempting to Reconnect.
[20:24:57] [R] Connecting to switch -> IP=192.168.1.6 PORT=5000 (attempt # 1)
[20:25:18] [R] Connection failed (Connection timed out)
[20:25:18] [R] Delaying for 120 seconds before reconnect attempt #2
[20:25:22] [R] Retry attempt Aborted
[20:25:29] [R] Connecting to switch -> IP=192.168.1.6 PORT=5000
[20:25:29] [R] Connected to switch
[20:25:29] [R] 220 Hello!
[20:25:29] [R] USER anonymous
[20:25:29] [R] 230 OK
[20:25:29] [R] SYST
[20:25:29] [R] 215 UNIX Type: L8
[20:25:29] [R] FEAT
[20:25:29] [R] 211-
[20:25:29] [R] MDTM
[20:25:29] [R] MLST Type*;Size*;Modify*;Perm*;UNIX.mode;
[20:25:29] [R] PASV
[20:25:29] [R] SIZE
[20:25:29] [R] TVFS
[20:25:29] [R] UTF8
[20:25:29] [R]
[20:25:29] [R] 211 End
[20:25:29] [R] OPTS UTF8 ON
[20:25:29] [R] 200 OK
[20:25:29] [R] OPTS MLST Type;Size;Modify;Perm;UNIX.mode;
[20:25:29] [R] 200 MLST OPTS Type;Size;Modify;Perm;UNIX.mode;
[20:25:29] [R] PWD
[20:25:29] [R] 257 "/"
[20:25:29] [R] CWD /
[20:25:29] [R] 200 OK
[20:25:29] [R] PWD
[20:25:29] [R] 257 "/"
[20:25:40] [R] CWD switch
[20:25:40] [R] 200 OK
[20:25:40] [R] PWD
[20:25:40] [R] 257 "/switch"
[20:25:40] [R] PASV
[20:25:40] [R] 227 192,168,1,6,114,224
[20:25:40] [R] Opening data connection IP: 192.168.1.6 PORT: 29408
[20:25:40] [R] MLSD
[20:25:40] [R] 150 Ready
[20:25:41] [R] 226 OK
[20:25:41] [R] List Complete: 859 bytes in 0,07 seconds (0,8 KB/s)
[20:26:55] [R] CWD /
[20:27:05] [R] Network Error (10054): Connection reset by peer
[20:27:05] [R] Connection Lost: switch (Duration: 1 minute 36 seconds / Idle: 10 seconds)
[20:27:05] [R] Connecting to switch -> IP=192.168.1.6 PORT=5000
[20:27:05] [R] Connected to switch
[20:27:05] [R] 220 Hello!
[20:27:05] [R] USER anonymous
[20:27:05] [R] 230 OK
[20:27:05] [R] SYST
[20:27:05] [R] 215 UNIX Type: L8
[20:27:05] [R] FEAT
[20:27:05] [R] 211-
[20:27:05] [R] MDTM
[20:27:05] [R] MLST Type*;Size*;Modify*;Perm*;UNIX.mode;
[20:27:05] [R] PASV
[20:27:05] [R] SIZE
[20:27:05] [R] TVFS
[20:27:05] [R] UTF8
[20:27:05] [R]
[20:27:05] [R] 211 End
[20:27:05] [R] OPTS UTF8 ON
[20:27:05] [R] 200 OK
[20:27:05] [R] OPTS MLST Type;Size;Modify;Perm;UNIX.mode;
[20:27:05] [R] 200 MLST OPTS Type;Size;Modify;Perm;UNIX.mode;
[20:27:05] [R] PWD
[20:27:05] [R] 257 "/"
[20:27:05] [R] CWD /
[20:27:05] [R] 200 OK
[20:27:05] [R] PWD
[20:27:05] [R] 257 "/"
[20:27:05] [R] CWD /
[20:27:05] [R] 200 OK
[20:27:05] [R] PWD
[20:27:05] [R] 257 "/"
[20:27:05] [R] PASV
[20:27:05] [R] 227 192,168,1,6,221,148
[20:27:05] [R] Opening data connection IP: 192.168.1.6 PORT: 56724
[20:27:05] [R] MLSD
[20:27:05] [R] 150 Ready
[20:27:05] [R] 550 unavailable
[20:27:06] [R] List Error
[20:27:06] [R] PASV mode failed, trying PORT mode.
[20:27:06] [R] Listening on PORT: 14286, Waiting for connection.
[20:27:06] [R] PORT 192,168,1,3,55,206
[20:27:06] [R] 200 OK
[20:27:06] [R] MLSD
[20:27:06] [R] 150 Ready
[20:27:06] [R] 550 unavailable
[20:27:07] [R] List Error
[20:27:20] [R] CWD Nintendo
[20:27:20] [R] 200 OK
[20:27:20] [R] PWD
[20:27:20] [R] 257 "/Nintendo"
[20:27:20] [R] PASV
[20:27:20] [R] 227 192,168,1,6,195,27
[20:27:20] [R] Opening data connection IP: 192.168.1.6 PORT: 49947
[20:27:20] [R] MLSD
[20:27:20] [R] 150 Ready
[20:27:20] [R] 226 OK
[20:27:20] [R] List Complete: 295 bytes in 0,07 seconds (0,3 KB/s)
[20:27:28] [R] CWD /switch/games
[20:27:28] [R] 200 OK
[20:27:28] [R] PWD
[20:27:28] [R] 257 "/switch/games"
[20:27:28] [R] PASV
[20:27:28] [R] 227 192,168,1,6,179,52
[20:27:28] [R] Opening data connection IP: 192.168.1.6 PORT: 45876
[20:27:28] [R] MLSD
[20:27:28] [R] 150 Ready
[20:27:28] [R] 226 OK
[20:27:28] [R] List Complete: 1.000 bytes in 0,07 seconds (1,0 KB/s)
[20:28:03] [R] TYPE I
[20:28:22] [R] Network Error (10054): Connection reset by peer
[20:28:22] [R] Connection Lost: switch (Duration: 1 minute 17 seconds / Idle: 19 seconds)
[20:28:22] Transferred 0 Files (0 bytes) in 19 seconds (0,0 KB/s)
[20:28:22] [R] Transfer Failed: Mario + Rabbids Kingdom Battle [010067300059b001][v0][DLC].nsp
[20:28:24] [R] Attempting to Reconnect.
[20:28:24] [R] Connecting to switch -> IP=192.168.1.6 PORT=5000 (attempt # 1)
[20:28:39] [R] Connection canceled
[20:28:49] [R] Connecting to switch -> IP=192.168.1.6 PORT=5000
[20:28:58] [R] Connected to switch
[20:28:58] [R] 220 Hello!
[20:28:58] [R] USER anonymous
[20:28:58] [R] 230 OK
[20:28:58] [R] SYST
[20:28:58] [R] 215 UNIX Type: L8
[20:28:58] [R] FEAT
[20:28:58] [R] 211-
[20:28:58] [R] MDTM
[20:28:58] [R] MLST Type*;Size*;Modify*;Perm*;UNIX.mode;
[20:28:58] [R] PASV
[20:28:58] [R] SIZE
[20:28:58] [R] TVFS
[20:28:58] [R] UTF8
[20:28:58] [R]
[20:28:58] [R] 211 End
[20:28:58] [R] OPTS UTF8 ON
[20:28:58] [R] 200 OK
[20:28:58] [R] OPTS MLST Type;Size;Modify;Perm;UNIX.mode;
[20:28:58] [R] 200 MLST OPTS Type;Size;Modify;Perm;UNIX.mode;
[20:28:58] [R] PWD
[20:28:58] [R] 257 "/"
[20:28:58] [R] PASV
[20:28:58] [R] 227 192,168,1,6,106,210
[20:28:58] [R] Opening data connection IP: 192.168.1.6 PORT: 27346
[20:28:58] [R] MLSD
[20:28:58] [R] 150 Ready
[20:28:58] [R] 550 unavailable
[20:28:59] [R] List Error
[20:28:59] [R] PASV mode failed, trying PORT mode.
[20:28:59] [R] Listening on PORT: 14490, Waiting for connection.
[20:28:59] [R] PORT 192,168,1,3,56,154
[20:28:59] [R] 200 OK
[20:28:59] [R] MLSD
[20:28:59] [R] 150 Ready
[20:28:59] [R] 550 unavailable
[20:29:00] [R] List Error
[20:29:19] [R] PASV
[20:29:19] [R] 227 192,168,1,6,130,157
[20:29:19] [R] Opening data connection IP: 192.168.1.6 PORT: 33437
[20:29:19] [R] MLSD
[20:29:19] [R] 150 Ready
[20:29:19] [R] 550 unavailable
[20:29:20] [R] List Error
[20:29:20] [R] PASV mode failed, trying PORT mode.
[20:29:20] [R] Listening on PORT: 14526, Waiting for connection.
[20:29:20] [R] PORT 192,168,1,3,56,190
[20:29:20] [R] 200 OK
[20:29:20] [R] MLSD
[20:29:21] [R] 150 Ready
[20:29:21] [R] 550 unavailable
[20:29:22] [R] List Error
[20:29:23] [R] PASV
[20:29:23] [R] 227 192,168,1,6,209,96
[20:29:23] [R] Opening data connection IP: 192.168.1.6 PORT: 53600
[20:29:23] [R] MLSD
[20:29:23] [R] 150 Ready
[20:29:24] [R] 550 unavailable
[20:29:25] [R] List Error
[20:29:25] [R] PASV mode failed, trying PORT mode.
[20:29:25] [R] Listening on PORT: 14534, Waiting for connection.
[20:29:25] [R] PORT 192,168,1,3,56,198
[20:29:25] [R] 200 OK
[20:29:25] [R] MLSD
[20:29:25] [R] 150 Ready
[20:29:25] [R] 550 unavailable
[20:29:26] [R] List Error
[20:29:35] [R] PASV
[20:29:35] [R] 227 192,168,1,6,171,113
[20:29:35] [R] Opening data connection IP: 192.168.1.6 PORT: 43889
[20:29:35] [R] MLSD
[20:29:35] [R] 150 Ready
[20:29:35] [R] 550 unavailable
[20:29:36] [R] List Error
[20:29:36] [R] PASV mode failed, trying PORT mode.
[20:29:36] [R] Listening on PORT: 14554, Waiting for connection.
[20:29:36] [R] PORT 192,168,1,3,56,218
[20:29:36] [R] 200 OK
[20:29:36] [R] MLSD
[20:29:36] [R] 150 Ready
[20:29:36] [R] 550 unavailable
[20:29:37] [R] List Error
[20:29:40] [R] CWD switch
[20:29:40] [R] 200 OK
[20:29:40] [R] PWD
[20:29:40] [R] 257 "/switch"
[20:29:40] [R] PASV
[20:29:40] [R] 227 192,168,1,6,65,78
[20:29:40] [R] Opening data connection IP: 192.168.1.6 PORT: 16718
[20:29:40] [R] MLSD
[20:29:40] [R] 150 Ready
[20:29:40] [R] 226 OK
[20:29:40] [R] List Complete: 859 bytes in 0,07 seconds (0,8 KB/s)
[20:29:41] [R] CWD games
[20:29:41] [R] 200 OK
[20:29:41] [R] PWD
[20:29:41] [R] 257 "/switch/games"
[20:29:41] [R] PASV
[20:29:41] [R] 227 192,168,1,6,161,5
[20:29:41] [R] Opening data connection IP: 192.168.1.6 PORT: 41221
[20:29:41] [R] MLSD
[20:29:41] [R] 150 Ready
[20:29:42] [R] 226 OK
[20:29:42] [R] List Complete: 1.000 bytes in 0,07 seconds (1,0 KB/s)
[20:29:49] [R] TYPE I
[20:30:08] [R] Network Error (10054): Connection reset by peer
[20:30:08] [R] Connection Lost: switch (Duration: 1 minute 10 seconds / Idle: 19 seconds)
[20:30:08] Transferred 0 Files (0 bytes) in 19 seconds (0,0 KB/s)
[20:30:08] [R] Transfer Failed: Mario + Rabbids Kingdom Battle [010067300059b001][v0][DLC].nsp
[20:30:10] [R] Attempting to Reconnect.
[20:30:10] [R] Connecting to switch -> IP=192.168.1.6 PORT=5000 (attempt # 1)
[20:30:31] [R] Connection failed (Connection timed out)
[20:30:31] [R] Delaying for 120 seconds before reconnect attempt #2

novalkun · Aug 22, 2018

Type_O_Dev said:
This guide is a updated version of @Tgames [TUTORIAL] Blocking online updates and play online with CCProxy over at GBAtemp
A DNS workaround didnt seem to work so this is the solution.
Game updates will only work on latest firmware as this cannot avoid Nintendo firmware check
Supernag can be cleared using this

INSTRUCTIONS

Windows Linux or Raspberri PI MacOS Configure Switch

Windows

Requirements:

Windows XP or above (tested and running on 10)

A PC with same wifi access point as 3ds,wiiu and/or switch

PC needs to stay on to keep proxy running

Download Nintendo Server List

Download and install CCProxy v8.0

Click on "Options"

Fill it like the picture:

Set the proxy port to 8080, the other related ports will change.

You can set to different port if 8080 is being used (808, 1080, etc)

The ip address to the right of the port should show your ip. may work on 0.0.0.0

Click on "Advanced" then choose "Networks" tab.
Check "Disable External Users" for security reasons.

If you want to allow external users (friends, family, internet) to use your proxy server, uncheck this. You may need router modifications for this to work.

Click on "OK" and then again on "OK"

You come back here:

Click "Account"

Under Permit Category Set the option to "Permit only" users using proxy based on Auth Type "MAC Address"
Click on "Web Filter"

Fill it like the picture:

Set the name for your filter

Check "Site Filter"

Set "Forbidden Sites" radio choice

Click the ... and select downloaded nintendo_filter.txt This list will block all Nintendo eShop access and updates on wii, wiiu, 3ds and switch. You can open nintendo_filter.txt and add more

Click on "OK"

You will come back here
Click on "New"

Fill it like the picture:

Set a User name for this account (Nintendo Switch)

Enable this account

Filter by MAC Address (enter the WiiU or Switch MAC address here)

Check "Web Filter" and select the previously defined filter rule.

In this picture, the MAC address for CCProxy is 8ccde8886752 (no spaces, hyphen or colon)

Click "OK"

You can create another Account for another console if you want. Just follow above steps with New name and MAC address, be sure you check Web Filter and select previously used rule.

Now the PC is hosting a proxy server

Lets move onto the switch, Click the "Configure switch proxy tab

If everything went correct you should now see a active connection in your CCProxy panel. To truly see if Nintendo update server request are ignored.

Click "Monitor"

You should see all traffic with rejections in red.

Done!
Now Configure Switch

This will block firmware downloading from nintendo's update server. This will work with Nintendo 3ds, Wii U and Switch

If anyone figures out more addresses to block post results here
for nintendo switch following two servers were denied i also added google sun.hac.lp1.d4c.nintendo.net beach.hac.lp1.eshop.nintendo.net googletagmanager.com google-analytics.com

Linux

Requirements:

Linux or your favorite distro

A Device with same wifi access point as 3ds,wiiu and/or switch

Device needs to stay on to keep proxy running

Squid3

Install Squid3

Code:

sudo apt install squid3

Download nintendont-squid.conf.txt

Code:

sudo apt-get install wget cd /etc/squid3/ wget http://www.filedropper.com/nintendont-squidconf mv nintendont-squid.conf.txt squid.conf

Download nintendont-squid-blacklist.txt

Code:

cd /etc/squid3/ wget http://www.filedropper.com/nintendont-squid-blacklist mv nintendont-squid-blacklist.txt nintendont-blacklist.aci

Restart squid

Code:

systemctl restart squid3 or /etc/init.d/squid3 restart

Configure proxy in Switch Settings (Port: 3128, no authentication)

Confirmed working using Squid Version 3.3.8 (Docker image: sameersbn/squid)

If you want to use your own squid.conf, just add these two lines to your existing squid.conf:

Code:

acl bad_url dstdomain "/etc/squid3/nintendont-blacklist.acl" http_access deny bad_url

Done!
Now configure Switch

Macintosh

Requirements:

MacOS

A Device with same wifi access point as 3ds,wiiu and/or switch

Computer needs to stay on to keep proxy running

Squidman

nintendont-squid-blacklist

Download nintendont-squid-blacklist

Copy this file to your Documents folder

Rename nintendont-squid-blacklist.txt to bad-sites.squid

Download SquidMan

After downloading SquidMan open the dmg file and move the SquidMan application into your Applications folder.

Configure your proxy

Click Clients > Preferences. Then click on "New" and add your IP range.

Add ip adresses of your console range

exp: switch is 192.168.1.24 and 3ds is 192.168.1.11

So range we will cover is 192.168.1.0 to 192.168.1.24

Click Template

Find and edit ACCESS CONTROL scroll down look for %DIRECTHOSTS%

and under put in
As shown in example below.

Scroll a little down from above to http_access par and add

Your Template should look like this

Code:

# Access Control lists acl SSL_ports port 443 acl Safe_ports port 80 # http acl Safe_ports port 21 # ftp acl Safe_ports port 443 # https acl Safe_ports port 70 # gopher acl Safe_ports port 210 # wais acl Safe_ports port 1025-65535 # unregistered ports acl Safe_ports port 280 # http-mgmt acl Safe_ports port 488 # gss-http acl Safe_ports port 591 # filemaker acl Safe_ports port 777 # multiling http acl CONNECT method CONNECT %ALLOWEDHOSTS% %DIRECTHOSTS% acl bad_url dstdomain "/users/usernamegoeshere/documents/bad-sites.squid" # Only allow cachemgr access from localhost http_access allow localhost manager http_access deny manager http_access deny bad_url

Start the proxy server

Done!
Now configure Switch

Switch

Click "System Settings"

Select "internet"

Click "Internet Settings"

Click "Wireless network name"

Click "Change Settings"

Turn "Proxy Settings" to ON

Set server to the ip address of your computer (your internal network ip 192.168.*.*)

Set the port to 8080 if you didn't use alternative 808, 1080 or 3128 (Linux)

Leave "Auto-authentication" OFF

Click Save

CONGRATULATIONS!

the nintendont-squid-blacklist for MACos cannot be accessed anymore

Type_O_Dev · Aug 22, 2018

novalkun said:
the nintendont-squid-blacklist for MACos cannot be accessed anymore

when I get on my mac I will edit this post and re-upload

larcrider · Aug 23, 2018

Does is work on "in game update" such as Fifa 18 squad roster/transfer update?

Well-Known Member

Well-Known Member

Active Member

Well-Known Member

Well-Known Member

Member

Well-Known Member

Member

Well-Known Member

Member

Well-Known Member

Member

Member

Developer

Member

Developer

Member

Well-Known Member

Developer

Well-Known Member

Similar threads

Popular threads in this forum