درباره NSA یا آژانس سه حرف دیگر نگران نیستم. فقط می خواهم برای بازدید از سایت و دانلود مطالب بدون ISP من کجا بروم و چکار دانستن.
7 دیدگاه برای “VPN جلوگیری از ISP من از سایت های که برای دیدار و چه برای دانلود? چگونه می تواند که باشد تا”
دیدگاهها بسته شدهاند.
Yes and no. A VPN will obfuscate the websites you’re visiting, but visiting a website is a multi-step process and parts of those steps may not be hidden from your ISP. Let me explain.
Say you want to go to google.com. After you type the address out in your browser and press the Return key/click the go button, your internet enabled device needs to look up the IP address of google.com through an internet protocol called DNS, or Domain Name System. Most ISPs have their own DNS servers that handle these lookup requests and they’re usually not obfuscated by VPNs by default. A quick workaround is to manually route requests through Google public DNS server at 8.8.8.8. Read https://www.dnsleaktest.com/what-is-a-dns-leak.html and https://hackernoon.com/what-youre-revealing-to-your-isp-why-a-vpn-isn-t-enough-and-ways-to-avoid-leaking-it-503816542951 for more information.
tl;dr: if you’re going to use a VPN, be sure it’s not leaking DNS requests.
It creates a “tunnel” between your computer and the address. It veils the address your computer sends and receives traffic with.
Any traffic routed through the VPN is encrypted so the ISP can’t tell what it is.
I use Private Internet Access which has several features that I like. It uses OpenVPN’s encryption protocols, it has its own DNS service which also doubles as an ad and malware blocker, it has a killswitch, and I can use it on Android, Windows, and Mac.
Even with it however, there is still potential for my browsing habits to be discoverable by my ISP.
WebRTC, which is a feature in Chrome browser, has to be disabled as well, or your IP address can leak. Sites like Facebook can put what’s called a “Super cookie” aka persistent cookie in my browser to monitor the sites I visit that are even remotely affiliated with Facebook (same for all major tech websites, like Google, Amazon, etc.). And finally, my device itself has both a “Device ID” (Android OS. Google feels it is necessary to allow for advertisers to be able to target my device specifically for ads taylored to my browsing habits . Thanks Google! /S) and a device “fingerprint” which can allow tracking of my device accross multiple websites as well.
A VPN is nice, but only a small first step towards maintaining privacy and, more importantly to me at least, security. And using the absolute best settings, from a security standpoint, ie the ones with the strongest encryption, usually come at the price of slowing your connection speed way down. So it’s a trade-off between being secure but slow and being insecure but faster.
As far as I understand the way how a VPN works is that it creates a secure (encrypted) connection to a gateway / proxy server (the so-called “tunnel”) which belongs to your VPN provider. All your internet traffic is routed through that proxy. The only thing that that your ISP should be able to to “see” is your connection to that VPN/proxy server, but not what’s happening beyond that. Also the content that you exchange or download through the proxy should be obfuscated to your ISP, due to the encryption. So your ISP should only be logging your connections to your VPN provider.
Of course your traffic might be logged by the VPN provider, so you basically need to find one that looks trustworthy to you and makes you feel comfortable (which is the major challenge). And you should make sure that there is no DNS or RTC leaking and that there is a kill-switch. There are various sites to check the appearance of your IP address and other information you provide while surfing (e.g. ipleak.net). For further reading I recommend thatoneprivacyguy’s site.
It depends on the VPN configuration. You can configure whenever all traffic is routed through the VPN or not, whenever traffic to the VPN server is encrypted or not, and whenever to use a specific set of DNS server or not.
The VPN services I tried all encrypted and routed all traffic and set specific DNS servers. In this case no DNS requests are send to your ISP DNS.
All the ISP will see is a connection to the VPN server.
What you’re asking isn’t hard to achieve. The VPN will get you most of the way there. But you have to take additional precautions.
See this FAQ from one of the VPN companies. It’s easier than typing it all out.
http://www.surfbouncer.com/personal_vpn_faq.htm