Check for Breaches

We research all brands listed and may earn a fee from our partners. Research and financial considerations may influence how brands are displayed. Not all brands are included. Learn more.

  1. Technology
  2. VPN

What Is a VPN Protocol?

By:
Gabriel O. Rodriguez Cruz
10 min read
Ads by Money. We may be compensated if you click this ad.Ad
Presented by:
Norton Secure VPN protects your personal information such as passwords and credit card numbers. Start enjoying more secure and reliable access to the internet today.

Have you ever wondered how sensitive data stays safe as it makes its way across the internet? Imagine your data as a valuable package that needs to travel through a crowded city. Instead of sending it through busy public streets where anyone could intercept it, you send it through a private, secure underground tunnel that connects directly to its destination.

VPN protocols do just that: they create a protected connection called a “tunnel” between your device and its destination online, helping your data stay safe. They are one of the many benefits of VPN services, which are often used to maintain privacy online and access content that would be otherwise unavailable.

Ads by Money. We may be compensated if you click this ad.Ad
Norton Secure VPN lets you take control of your online privacy
Shield your internet traffic and experience private browsing with a top-performing VPN service that’s 2.5x faster than the average VPN. Get started today.
HawaiiAlaskaFloridaSouth CarolinaGeorgiaAlabamaNorth CarolinaTennesseeRIRhode IslandCTConnecticutMAMassachusettsMaineNHNew HampshireVTVermontNew YorkNJNew JerseyDEDelawareMDMarylandWest VirginiaOhioMichiganArizonaNevadaUtahColoradoNew MexicoSouth DakotaIowaIndianaIllinoisMinnesotaWisconsinMissouriLouisianaVirginiaDCWashington DCIdahoCaliforniaNorth DakotaWashingtonOregonMontanaWyomingNebraskaKansasOklahomaPennsylvaniaKentuckyMississippiArkansasTexas
VIEW PLANS

What are VPN protocols?

VPN protocols, properly known as tunneling protocols, are a set of rules and instructions that determine how your data should be packaged, encrypted and transported across the internet. Encryption means your information (like text, files, or data) will be turned into a scrambled format that can only be read by someone who has the right key to unscramble it.

VPN services use tunneling protocols to establish secure pathways between your device or private network and your destination on the internet. However, the exact level of data security varies based on the protocol used.

How do VPN protocols work?

When you use the internet, you constantly send and receive data to and from your device. This information can be found if unsecured and, in the wrong hands, might be used to identify, trace or even hack you. VPN tunnels work against this by encoding your data so that only its intended recipient can access it.

First, your device’s VPN software encrypts your data before sending it to a VPN server. The server decrypts your data and sends it to the internet as a query. When you receive a reply, the VPN server encrypts it again and securely sends it back to your device, decrypting the data to a form you understand.

Here’s a more detailed breakdown of how VPN tunnels work:

Types of tunneling protocols

It helps to think of tunneling protocols as a sophisticated postal service with very specific procedures for handling sensitive packages. Just as postal services have different methods for handling regular mail versus valuable packages, different VPN protocols offer varying levels of security, speed and reliability.

Here are some of the most well-known tunneling protocols:

Point-to-Point Tunneling Protocol (PPTP)

PPTP is the pioneer of tunneling protocols. Developed by Microsoft in the 1990s tunnel dial-up connections, this protocol was groundbreaking for its time but is now considered outdated. Its encryption method has been thoroughly broken by modern standards and while it can still offer very fast connections because of its minimal encryption, it's like leaving your front door secured with a simple latch: convenient but not very secure.

Layer 2 Tunneling Protocol and Internet Protocol Security (L2TP/IPSec)

L2TP was meant to be a replacement for PPTP since it’s compatible with AES 256-bit, one of the most secure data encryption algorithms to date. However, L2TP by itself doesn't provide encryption — it's just the tunneling part, creating a pathway for your data. That's where IPSec comes in by adding a strong layer of security to your connection.

The biggest drawback to L2TP/IPSec is that it’s not as fast as modern tunneling protocols. It may have solved some of the shortcomings of PPTP, but it’s also resource-intensive compared to modern tunneling protocols due to this double layered approach to transportation and encryption.

Security Socket Tunneling Protocol (SSTP)

SSTP is Microsoft's modern answer to the security problems of PPTP. This tunneling protocol stands out from the rest because it uses a secure sockets layer (SSL) and AES-256 to encrypt and send data. SSL is one of the safest ways to send data between a browser and a website.

While SSTP encrypts data reliably, it’s also resource-intensive and requires excess bandwidth to perform at decent speeds. Another limitation is that the protocol was primarily designed for Windows systems. Though other platforms have added support over time, its source code is not openly available for auditing, so VPN providers often find it hard to create connections for it.

OpenVPN

OpenVPN is like the Swiss Army knife of VPN protocols. It can be configured in countless ways to match your specific needs and supports multiple operating systems, including Windows, MacOS, iOS and Android. It’s also supported by many VPN providers since the protocol's code is open source, meaning VPN service providers and other interested parties can easily audit it.

OpenVPN creates secure point-to-point and site-to-site connections using some of the most secure encryption ciphers, which makes it one of the safest protocols available. Additionally, it disguises VPN traffic as ordinary browsing, making OpenVPN hard to flag or block. The protocol’s main drawback is that it’s fairly hard to set up manually.

Proprietary VPN protocols

Many VPN services have started to release custom protocols, like NordLynx (based on WireGuard) from NordVPN or Lightway from ExpressVPN. The advantage of these VPN protocols is that they can be optimized for each provider's server infrastructure and network.

For example, NordLynx takes the high-speed, efficient WireGuard protocol and adds additional privacy features specific to NordVPN's service. Unfortunately, since these protocols are often closed-source, you’ll have to trust the provider's claims about their security and efficiency.

Choosing the right VPN protocol

Understanding how different VPN protocols perform in practice is important when choosing which one to use for an online session. For instance, if you're in a country with strong internet restrictions, SSTP might be your best choice because it's harder to block. Meanwhile, if your primary concern is security and don't mind a slight speed reduction, L2TP/IPSec would be a solid choice.

OpenVPN provides an excellent balance of security and speed for most users, while proprietary protocols can offer unique advantages if you're committed to a particular VPN service. Lastly, those who prioritize speed, such as gamers or streamers, may appreciate WireGuard's efficient design.

If your main concern is… … You should use:
Security Open VPN or WireGuard
Speed WireGuard or proprietary protocols
Flexibility OpenVPN
Compatibility IKEv2/IPSec

How to set up a VPN protocol

You may need a VPN if you intend to access a virtual server or create a private network that can also access the internet safely. A private VPN is ideal for certain situations, like establishing secure connections between a router and other devices in a home or organization.

Setting up a VPN tunnel might seem daunting, but it's actually quite straightforward in most cases. If you’re using a VPN service’s software, you won’t even have to bother with choosing a protocol—though you can change it if you want to—since VPN clients often automate much of this process. All you’ll have to do is:

  1. Subscribe to a VPN service
  2. Install the VPN client software on your device
  3. Configure the VPN’s setting if necessary (e.g. changing your preferred protocol)
  4. Enter the necessary credentials.

Finally, you'll want to test your connection and verify that everything is working as expected. Many VPN clients include built-in tools for this purpose. Remember to maintain your VPN setup by keeping software updated and regularly verifying your security settings. Think of it as routine maintenance for your digital security system.

For configuring a VPN connection without a software application, read our guide on how to set up a VPN on any device.

Ads by Money. We may be compensated if you click this ad.Ad
Encrypt your internet traffic with a top-performing VPN that provides a more secure connection
Enjoy safer and private access to the internet with Norton Secure VPN. With content unlocking, you can change the location from which you appear to be connecting with just one click.
VIEW PLANS

Summary of Money’s What Is a VPN Protocol

A VPN protocol is a great way to encrypt and secure the data you send and receive. It can help you stay safe and anonymous on the internet. However, for the VPN tunnel to serve you best, make sure it uses the most secure protocol and encryption method while offering the features you need.

Featured
Is Your Personal Data at Risk? Find Out, and What You Need to Do if it is

Tags