Quick answer: A WebRTC leak is a browser vulnerability that reveals your real public and local IP addresses, even when using a VPN. If our scan shows a public IP while your VPN is on, your privacy is compromised.
What is WebRTC?
WebRTC (Web Real-Time Communication) is an open-source project that provides web browsers and mobile applications with real-time communication via simple application programming interfaces (APIs). It allows audio and video communication to work inside web pages by allowing direct peer-to-peer communication, eliminating the need to install plugins or download native apps.
While incredible for technology like Zoom, Google Meet, and Discord, it creates a massive privacy loophole: WebRTC needs to know your actual IP address to establish a direct connection between you and the person you're communicating with.
How WebRTC Leaks Your IP
The WebRTC API can be commanded by any website to send "STUN" (Session Traversal Utilities for NAT) requests. These requests return your real public IP address and your local network IP (like 192.168.1.5).
How to Disable WebRTC
Depending on your browser, disabling WebRTC can range from easy to technical:
about:config in the address bar. Search for media.peerconnection.enabled and set it to false.Frequently Asked Questions
Sources & References
BestVPNRadar Editorial
Our team of security researchers and network engineers works to uncover the truth about VPN privacy and performance.