L
L
lezgiman2018-05-07 13:16:44
VPN
lezgiman, 2018-05-07 13:16:44

What is the most secure VPN protocol for maintaining online privacy?

Good afternoon!
Which VPN protocol should you use for maximum privacy? L2TP, IKEv2, OpenVPN or something else?
The Tor network is not interested.
PS I'm not going to do anything illegal. I just don't want my ISPs or anyone else to know that I'm visiting and not see my data from sites that don't have SSL installed.

Answer the question

In order to leave comments, you need to log in

3 answer(s)
C
CityCat4, 2018-05-07
@CityCat4

Horses and people mixed up in a bunch ...
OpenVPN is not a protocol at all, but a program. IKEv2 is a cryptographic key exchange protocol, an auxiliary tool for IPSec. Any of the currently existing VPNs provides sufficient privacy, but your task will still remain unsolved :)
Because the provider will still see - in this case, what went to the VPN. Of course, this is not prohibited by law, but ... if you have questions, they may require answers to them :)

M
Maxim Grishin, 2018-05-07
@vesper-bot

Regarding HTTP data, any VPN tunnel that is configured with AES256 or higher data encryption is suitable for data encryption. L2TP (naked) is out, L2TP/IPsec is fine. In any case, the provider will only see the VPN channel. But, all DNS traffic will need to be wrapped in a VPN, and on Windows 8 or higher, configure the DNS resolver so that it does not send requests outside the channel, otherwise the provider will receive information about visited nodes through them (not pages, but sometimes there are enough nodes to do far-reaching conclusions).
Anonymity is not about VPNs, it's more about the browser and its "incognito" mode, and that is, ways to match the user by actions in the browser and stored temporary cookies.

S
Stanislav Bodrov, 2018-05-07
@jenki

What is the most secure VPN protocol for maintaining online privacy?
It is not so important which protocol is used to protect data, but what protection algorithm it uses.
I just don't want my ISPs or anyone else to know that I'm visiting and not see my data from sites that don't have SSL installed
As funny as it sounds, try solutions based on domestic algorithms . There are elliptic curves and generally good algorithms . The openssl and libressl solutions support them. Further traffic in stunnel on a harmless port (for example, on-line toys) and let them try the ECC tooth in 512 bits.

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question