WebRTC (Web Real-Time Communication) is an API drafted by the W3C that supports browser-to-browser applications for voice calling, video chat, and P2P file sharing (without the need of either internal or external plugins). WebRTC implements STUN (Session Traversal Utilities for Nat), a protocol that allows the discovery of your externally assigned IP address (to facilitate the applications above).
Due to the way in which Windows selects the adapter when sending traffic (source IP address selection), the request to the STUN server may leak outside of the VPN and expose your ISP issued IP address. However, if you are using a VPN firewall, such as the IVPN Firewall available in our apps, then these leaks will be blocked.
To test whether you are vulnerable please visit this demo page.
- Type about:config in the address bar.
- Scroll down to media.peerconnection.enabled, double click to set it to false.
No action is necessary.
- In your Chrome address bar type chrome://flags/#disable-webrtc and hit Enter
- WebRTC Stun origin header should be set to Enabled
- Restart your Chrome browser for changes to take into effect.