What is a VPN?
A Virtual Private Network (VPN) creates an encrypted tunnel between your device and a VPN server. All internet traffic passes through this tunnel, hiding your real IP address and encrypting data from local network observers.
VPN vs Anonymity
VPNs do not provide anonymity. They shift trust from your ISP to the VPN provider. For true anonymity, use Tor or other anonymous networks. VPNs are primarily for privacy from local networks and accessing geo-restricted content.
How VPNs Work
- Connection: Your device connects to the VPN server
- Authentication: You authenticate (password, certificate, etc.)
- Tunnel Creation: An encrypted tunnel is established
- Traffic Routing: All traffic flows through the tunnel
- Exit: VPN server forwards traffic with its IP address
VPN Protocols
| Protocol | Security | Speed | Notes |
|---|---|---|---|
| WireGuard | Excellent | Very Fast | Modern, minimal code |
| OpenVPN | Excellent | Good | Proven, widely supported |
| IKEv2/IPSec | Good | Fast | Good for mobile |
| L2TP/IPSec | Moderate | Moderate | Legacy, avoid if possible |
| PPTP | Broken | Fast | Do not use |
WireGuard
WireGuard is the newest major VPN protocol, featuring:
- ~4,000 lines of code (vs 100,000+ for OpenVPN)
- Modern cryptography (ChaCha20, Curve25519)
- Built into Linux kernel
- Faster connections and reconnections
Choosing a VPN
Important Factors
- Logging Policy: Choose providers with audited no-logs claims
- Jurisdiction: Consider the legal environment
- Protocol Support: WireGuard or OpenVPN preferred
- Kill Switch: Prevents leaks if VPN disconnects
- DNS Handling: Should use private DNS servers
Free VPNs: Most free VPNs monetize user data. If you're not paying for the product, you are the product. Use reputable paid services or set up your own.
VPN Limitations
Not Anonymous
VPN provider sees your traffic
Browser Fingerprinting
Still identifiable by browser characteristics
Account Correlation
Logging into accounts reveals identity
DNS/WebRTC Leaks
Misconfiguration can expose real IP