v1.8.91-d84675c
← Back to Glossary

WebRTC Leak

Security

Definition

A WebRTC leak occurs when the WebRTC protocol in your browser exposes your real IP address, bypassing the proxy through STUN server requests for peer-to-peer connections.

What is a WebRTC Leak?

A WebRTC leak occurs when the WebRTC (Web Real-Time Communication) protocol in your browser exposes your real IP address, bypassing the proxy or VPN you are using. WebRTC establishes peer-to-peer connections that can reveal local and public IPs through STUN server requests.

How WebRTC Bypasses Your Proxy

WebRTC is built into modern browsers for real-time audio, video, and data communication. To establish peer connections, WebRTC uses STUN/TURN servers to discover the client's public IP address. This discovery process happens at the browser level, outside the proxy connection, meaning the STUN request can bypass the proxy and reveal the user's real public IP. JavaScript on any web page can trigger WebRTC IP discovery through the RTCPeerConnection API, making it a common fingerprinting and de-anonymization technique.

You might be routing all HTTP traffic through gate.hexproxies.com:8080 with a clean residential IP, but a target website runs a simple JavaScript snippet that queries WebRTC. The STUN request goes directly to a Google STUN server, bypassing the proxy entirely, and returns your real public IP to the page's script.

Mitigating WebRTC Exposure

WebRTC leaks are one of the most overlooked privacy vulnerabilities when using proxies. Even with a high-anonymity elite proxy, a WebRTC leak reveals your true IP to any website that checks. Hex Proxies users should disable WebRTC in their browser settings or use browser extensions that block WebRTC when operating through proxy connections.

Related Terms

DNS Leak

A DNS leak occurs when your device sends DNS resolution queries outside the proxy tunnel, revealing the websites you visit to your ISP despite using a proxy.

Browser Fingerprint

A browser fingerprint is a unique identifier created from the combination of your browser's technical attributes, used by websites to track users even when they change IP addresses.

Anonymous Proxy

An anonymous proxy hides the client's real IP address from the target server but identifies itself as a proxy in request headers, providing moderate anonymity.

Put Your Knowledge Into Practice

Explore proxy plans optimized for your workflow.

Create AccountView Pricing

Related Resources

Proxy Authentication and Security Best Practices

A comprehensive security guide for proxy users covering authentication methods (username/password, IP whitelisting, token-based), credential rotation, TLS verification, DNS and WebRTC leak prevention, and a production security checklist.

Residential Proxies

High-quality residential proxies with rotating IPs from 100+ countries. Perfect for web scraping, data collection, and market research.

ISP Proxies

Ultra-fast ISP proxies with static IPs and unlimited bandwidth. Optimized for sneaker sites, social media, and high-speed tasks.

Rotating Proxies

Automatic IP rotation with every request or on a timed interval. Built for large-scale scraping and data collection.

Cookie Preferences

We use cookies to ensure the best experience. You can customize your preferences below. Learn more