Posted May 03, 2018
TL; DR: Is there a minimal list of IP addresses that have to be allowed through the firewall to be able to unlock achievements in the Galaxy client?
----
Achievements in the Galaxy client don't register if the game is firewalled. They work if the game is completely allowed. However, some games also try to connect to non-GOG third party servers, which I don't want to allow. I mostly trust GOG, I don't trust every single game studio. I don't need nor want any kind of online accounts, multiplayer, news, leaderboards, tracking, or any other non-local feature. I would like to have achievements, and only achievements.
From the firewall logs of several games, I managed to pinpoint some of the GOG servers (e.g., 194.110.240.185), but allowing those didn't help. The games also try to connect to a bunch of other IPs belonging to Akamai and Amazon AWS, however, those are CDNs which means that a) the IPs tend to change on every run, so creating a minimal firewall rule is pretty much impossible, and b) more importantly, I can't be sure that it's GOG on the other side.
Any solutions (preferably, a list of first-party IP addresses) or workarounds, or is it a black-and-white choice of "block everything" vs "leak all the data to everyone"?
(Of course, the best solution would be to have the game report achievements to the Galaxy client, then have the client contact the GOG servers. The current implementation is horrible for security and privacy. I do not understand the reasoning behind it. Unfortunately, this is not a solution I can do myself. :( )
----
Achievements in the Galaxy client don't register if the game is firewalled. They work if the game is completely allowed. However, some games also try to connect to non-GOG third party servers, which I don't want to allow. I mostly trust GOG, I don't trust every single game studio. I don't need nor want any kind of online accounts, multiplayer, news, leaderboards, tracking, or any other non-local feature. I would like to have achievements, and only achievements.
From the firewall logs of several games, I managed to pinpoint some of the GOG servers (e.g., 194.110.240.185), but allowing those didn't help. The games also try to connect to a bunch of other IPs belonging to Akamai and Amazon AWS, however, those are CDNs which means that a) the IPs tend to change on every run, so creating a minimal firewall rule is pretty much impossible, and b) more importantly, I can't be sure that it's GOG on the other side.
Any solutions (preferably, a list of first-party IP addresses) or workarounds, or is it a black-and-white choice of "block everything" vs "leak all the data to everyone"?
(Of course, the best solution would be to have the game report achievements to the Galaxy client, then have the client contact the GOG servers. The current implementation is horrible for security and privacy. I do not understand the reasoning behind it. Unfortunately, this is not a solution I can do myself. :( )
No posts in this topic were marked as the solution yet. If you can help, add your reply
