Finlander

As I mentioned, I don't use the VPN necessarily to anonymize but to have a static IP, which my Internet provider doesn't offer for home customers. I need a static IP to be able to whitelist it on some of my work-related firewalls. It may be possible to route application-specific traffic outside of the VPN tunnel; at least, it can be done on Linux, maybe on Mac/Windows, too. But I don't feel I would need to for a product like Evernote. For a comparison, Joplin (joplincloud) works fine over the same VPN tunnel, and as I already use Joplin for all my personal technical documentation/notes, unless corrected by the next renewal date, this may push me to migrate my non-technical notes from Evernote to Joplin as well. The only thing I'd miss is the better web clipper.

In my case, that cannot be the case because, as I said, I'm using a dedicated IP from NordVPN (https://nordlayer.com/dedicated-ip/) and have had the same IP for the last seven months. Evernote worked earlier while using it but is no longer connecting while the VPN is on. This blocking would be done on Evernote's end; the VPN provider does not block outbound destinations. Perhaps Evernote servers are using some kind of auto-blacklist system that blocks entire CIDR blocks for known hacker activity. In any case, it makes Evernote use a pain. I think it's a terrible idea to employ IP blocking practices for a SaaS because you never know what IPs the customers are using. Stop blocking IPs and instead have the servers sufficiently hardened against hacking attempts.

Correct, not my local IP, but NordVPN and some other VPN providers now offer static outbound endpoints at an extra fee where the user gets assigned a static public IP the traffic from that user then always exits from. This is useful, for example, when needing to be able to whitelist an IP at a remote firewall while using a typical internet provider, say Verizon FiOS, whose assigned IPs periodically change. I'm using such an assigned IP, so I know that this IP isn't being used by anyone else (and hasn't been used for a while as I've had the IP now for over six months). Of course, the data center CIDR around "my" IP could have been. If I select a random exit point at NordVPN, even geologically close to my assigned static IP, then Evernote works. No, local software doesn't interfere, and in fact, the remote response appears to come from a firewall device as I get a 403 response. But what you're saying is that Evernote (on the service side) doesn't block IPs, such as those from VPN providers, as a policy?

Hi, Evernote on my Mac is not syncing when I'm connected to a VPN. I've seen it suggested in other comments that some VPC data centers may be blacklisted by Evernote. Why do you care? I'm using NordVPN so that I can have a static IP at home, as I need one for work. The IP is dedicated, so nobody else is using the same IP, and yet when connected to the VPN, I can't even connect to https://evernote.com ("403 Forbidden"). With the VPN off, Evernote works, but as I said, I'm generally always connected, which makes use of Evernote a pain. Can you whitelist specific static IP even if it is within a CIDR block of a blacklisted data center?