Can an ISP still see what URLs one visits when using a VPN?When using a VPN, would my ISP still be able to...

Who is our nearest neighbor

What injury would be of little consequence to a biped but terrible for a quadruped?

Is it illegal in Germany to take sick leave if you caused your own illness with food?

Can infringement of a trademark be pursued for using a company's name in a sentence?

Does Linux have system calls to access all the features of the file systems it supports?

Silly Sally's Movie

Am I not good enough for you?

Is it true that real estate prices mainly go up?

validation vs test vs training accuracy, which one to compare for claiming overfit?

Why doesn't the EU now just force the UK to choose between referendum and no-deal?

Best approach to update all entries in a list that is paginated?

US to Europe trip with Montreal layover - is 52 minutes enough?

What happens with multiple copies of Humility and Glorious Anthem on the battlefield?

Should QA ask requirements to developers?

Draw arrow on sides of triangle

How is the Swiss post e-voting system supposed to work, and how was it wrong?

What has been your most complicated TikZ drawing?

Identifying the interval from A♭ to D♯

Can you reject a postdoc offer after the PI has paid a large sum for flights/accommodation for your visit?

Is it ok to include an epilogue dedicated to colleagues who passed away in the end of the manuscript?

Why don't MCU characters ever seem to have language issues?

Decoding assembly instructions in a Game Boy disassembler

Counter-example to the existence of left Bousfield localization of combinatorial model category

How could a female member of a species produce eggs unto death?



Can an ISP still see what URLs one visits when using a VPN?


When using a VPN, would my ISP still be able to read my internet traffic?Can my provider detect p2p traffic if I use OpenVPNCould local ISP capture my location whenever i launch a VPN to a VPN server?Can a website know whether one is accessing it through a VPN?Force all traffic through VPNCan ISPs still throttle torrent traffic when using socks?Can my ISP know if I'm using vpnFrom where does a VPN connection start encryption of traffic?What information can an ISP record solely from DNS queries?How to best stop problems when the VPN failsCan DHCP requests leak information to my ISP while I am connected to a VPN?













10















I mean if one uses a VPN, can the ISP still see or know what exact URLs one visits or
downloads from? By that I mean any URLs we type in our browser or even use URL Links in like jDownloader downloading data over HTTP.



For I think the Connection that the user makes to VPN goes through ISP only like this:



VPN Schematic



As we know VPN tunnels are encrypted, but how well encrypted are they really?



I read this and I didn't quite exactly understand, What he meant to say by corporate network and split tunnel. And what if one just uses net from home. What exactly did he mean to explain?




Yes the ISP can see your surfing traffic and DNS queries if your VPN is set up as split tunnel (where only traffic going to your corporate network goes over the encrypted VPN tunnel and every thing else goes out the regular internet path)




I also came to read this thing about URLs/IP Blocking:




To block content, all an ISP has to do is check the URL (website address) against a blacklist of banned sites, to decide whether the user should be accessing it. This same technology can be used to track people watching banned content as well. A method used to track the viewing of accessing a blacklisted website would trigger an alert.




So I wanted to know, while if accessing blocked/blacklisted URLs through a VPN, can it trigger an alert at the ISP end? I mean will they be able to see/know, what URLs
one has Visited?






vpn







share|improve this question




















  • 2





    If your ISP could listen in to your VPN traffic they would have called it Virtual Public Network :)

    – Jack
    Jun 19 '13 at 10:25






  • 2





    The answer to your question depends on if the connection to the VPN is secure. Just disregard somebody with 11 reputation who offered no additional details, and posted a single response. As for if a VPN connection is encrypted or not encrypted I have not seen any VPN service offered where it does not use encryption.

    – Ramhound
    Jun 19 '13 at 11:40













  • @Ramhound Citing anyone's reputation as part of your argument devalues it. You can call it what it is, not helpful, but even that argument is moot because it's a comment and not an answer.

    – Jack
    Jun 19 '13 at 22:53











  • @Jack - The quoted text was posted as an answer, without any supporting documentation, I disregard answers like that almost all the time. We really going not agree the quoted text is just wrong?

    – Ramhound
    Jun 20 '13 at 11:32













  • I agree the answer is crap, I thought you were referring to my comment :)

    – Jack
    Jun 20 '13 at 12:13
















10















I mean if one uses a VPN, can the ISP still see or know what exact URLs one visits or
downloads from? By that I mean any URLs we type in our browser or even use URL Links in like jDownloader downloading data over HTTP.



For I think the Connection that the user makes to VPN goes through ISP only like this:



VPN Schematic



As we know VPN tunnels are encrypted, but how well encrypted are they really?



I read this and I didn't quite exactly understand, What he meant to say by corporate network and split tunnel. And what if one just uses net from home. What exactly did he mean to explain?




Yes the ISP can see your surfing traffic and DNS queries if your VPN is set up as split tunnel (where only traffic going to your corporate network goes over the encrypted VPN tunnel and every thing else goes out the regular internet path)




I also came to read this thing about URLs/IP Blocking:




To block content, all an ISP has to do is check the URL (website address) against a blacklist of banned sites, to decide whether the user should be accessing it. This same technology can be used to track people watching banned content as well. A method used to track the viewing of accessing a blacklisted website would trigger an alert.




So I wanted to know, while if accessing blocked/blacklisted URLs through a VPN, can it trigger an alert at the ISP end? I mean will they be able to see/know, what URLs
one has Visited?






vpn







share|improve this question




















  • 2





    If your ISP could listen in to your VPN traffic they would have called it Virtual Public Network :)

    – Jack
    Jun 19 '13 at 10:25






  • 2





    The answer to your question depends on if the connection to the VPN is secure. Just disregard somebody with 11 reputation who offered no additional details, and posted a single response. As for if a VPN connection is encrypted or not encrypted I have not seen any VPN service offered where it does not use encryption.

    – Ramhound
    Jun 19 '13 at 11:40













  • @Ramhound Citing anyone's reputation as part of your argument devalues it. You can call it what it is, not helpful, but even that argument is moot because it's a comment and not an answer.

    – Jack
    Jun 19 '13 at 22:53











  • @Jack - The quoted text was posted as an answer, without any supporting documentation, I disregard answers like that almost all the time. We really going not agree the quoted text is just wrong?

    – Ramhound
    Jun 20 '13 at 11:32













  • I agree the answer is crap, I thought you were referring to my comment :)

    – Jack
    Jun 20 '13 at 12:13














10












10








10


2






I mean if one uses a VPN, can the ISP still see or know what exact URLs one visits or
downloads from? By that I mean any URLs we type in our browser or even use URL Links in like jDownloader downloading data over HTTP.



For I think the Connection that the user makes to VPN goes through ISP only like this:



VPN Schematic



As we know VPN tunnels are encrypted, but how well encrypted are they really?



I read this and I didn't quite exactly understand, What he meant to say by corporate network and split tunnel. And what if one just uses net from home. What exactly did he mean to explain?




Yes the ISP can see your surfing traffic and DNS queries if your VPN is set up as split tunnel (where only traffic going to your corporate network goes over the encrypted VPN tunnel and every thing else goes out the regular internet path)




I also came to read this thing about URLs/IP Blocking:




To block content, all an ISP has to do is check the URL (website address) against a blacklist of banned sites, to decide whether the user should be accessing it. This same technology can be used to track people watching banned content as well. A method used to track the viewing of accessing a blacklisted website would trigger an alert.




So I wanted to know, while if accessing blocked/blacklisted URLs through a VPN, can it trigger an alert at the ISP end? I mean will they be able to see/know, what URLs
one has Visited?






vpn







share|improve this question
















I mean if one uses a VPN, can the ISP still see or know what exact URLs one visits or
downloads from? By that I mean any URLs we type in our browser or even use URL Links in like jDownloader downloading data over HTTP.



For I think the Connection that the user makes to VPN goes through ISP only like this:



VPN Schematic



As we know VPN tunnels are encrypted, but how well encrypted are they really?



I read this and I didn't quite exactly understand, What he meant to say by corporate network and split tunnel. And what if one just uses net from home. What exactly did he mean to explain?




Yes the ISP can see your surfing traffic and DNS queries if your VPN is set up as split tunnel (where only traffic going to your corporate network goes over the encrypted VPN tunnel and every thing else goes out the regular internet path)




I also came to read this thing about URLs/IP Blocking:




To block content, all an ISP has to do is check the URL (website address) against a blacklist of banned sites, to decide whether the user should be accessing it. This same technology can be used to track people watching banned content as well. A method used to track the viewing of accessing a blacklisted website would trigger an alert.




So I wanted to know, while if accessing blocked/blacklisted URLs through a VPN, can it trigger an alert at the ISP end? I mean will they be able to see/know, what URLs
one has Visited?






vpn




vpn






share|improve this question















share|improve this question













share|improve this question




share|improve this question








edited Mar 20 '17 at 10:16









Community

1




1










asked Jun 19 '13 at 7:19









SteveSteve

67136




67136








  • 2





    If your ISP could listen in to your VPN traffic they would have called it Virtual Public Network :)

    – Jack
    Jun 19 '13 at 10:25






  • 2





    The answer to your question depends on if the connection to the VPN is secure. Just disregard somebody with 11 reputation who offered no additional details, and posted a single response. As for if a VPN connection is encrypted or not encrypted I have not seen any VPN service offered where it does not use encryption.

    – Ramhound
    Jun 19 '13 at 11:40













  • @Ramhound Citing anyone's reputation as part of your argument devalues it. You can call it what it is, not helpful, but even that argument is moot because it's a comment and not an answer.

    – Jack
    Jun 19 '13 at 22:53











  • @Jack - The quoted text was posted as an answer, without any supporting documentation, I disregard answers like that almost all the time. We really going not agree the quoted text is just wrong?

    – Ramhound
    Jun 20 '13 at 11:32













  • I agree the answer is crap, I thought you were referring to my comment :)

    – Jack
    Jun 20 '13 at 12:13














  • 2





    If your ISP could listen in to your VPN traffic they would have called it Virtual Public Network :)

    – Jack
    Jun 19 '13 at 10:25






  • 2





    The answer to your question depends on if the connection to the VPN is secure. Just disregard somebody with 11 reputation who offered no additional details, and posted a single response. As for if a VPN connection is encrypted or not encrypted I have not seen any VPN service offered where it does not use encryption.

    – Ramhound
    Jun 19 '13 at 11:40













  • @Ramhound Citing anyone's reputation as part of your argument devalues it. You can call it what it is, not helpful, but even that argument is moot because it's a comment and not an answer.

    – Jack
    Jun 19 '13 at 22:53











  • @Jack - The quoted text was posted as an answer, without any supporting documentation, I disregard answers like that almost all the time. We really going not agree the quoted text is just wrong?

    – Ramhound
    Jun 20 '13 at 11:32













  • I agree the answer is crap, I thought you were referring to my comment :)

    – Jack
    Jun 20 '13 at 12:13








2




2





If your ISP could listen in to your VPN traffic they would have called it Virtual Public Network :)

– Jack
Jun 19 '13 at 10:25





If your ISP could listen in to your VPN traffic they would have called it Virtual Public Network :)

– Jack
Jun 19 '13 at 10:25




2




2





The answer to your question depends on if the connection to the VPN is secure. Just disregard somebody with 11 reputation who offered no additional details, and posted a single response. As for if a VPN connection is encrypted or not encrypted I have not seen any VPN service offered where it does not use encryption.

– Ramhound
Jun 19 '13 at 11:40







The answer to your question depends on if the connection to the VPN is secure. Just disregard somebody with 11 reputation who offered no additional details, and posted a single response. As for if a VPN connection is encrypted or not encrypted I have not seen any VPN service offered where it does not use encryption.

– Ramhound
Jun 19 '13 at 11:40















@Ramhound Citing anyone's reputation as part of your argument devalues it. You can call it what it is, not helpful, but even that argument is moot because it's a comment and not an answer.

– Jack
Jun 19 '13 at 22:53





@Ramhound Citing anyone's reputation as part of your argument devalues it. You can call it what it is, not helpful, but even that argument is moot because it's a comment and not an answer.

– Jack
Jun 19 '13 at 22:53













@Jack - The quoted text was posted as an answer, without any supporting documentation, I disregard answers like that almost all the time. We really going not agree the quoted text is just wrong?

– Ramhound
Jun 20 '13 at 11:32







@Jack - The quoted text was posted as an answer, without any supporting documentation, I disregard answers like that almost all the time. We really going not agree the quoted text is just wrong?

– Ramhound
Jun 20 '13 at 11:32















I agree the answer is crap, I thought you were referring to my comment :)

– Jack
Jun 20 '13 at 12:13





I agree the answer is crap, I thought you were referring to my comment :)

– Jack
Jun 20 '13 at 12:13










4 Answers
4






active

oldest

votes


















5














if it's correctly set up, all your traffic will get through the VPN and your ISP won't be able to see anything.






share|improve this answer
























  • so then does that means all data transmitted between VPN and ISP are also encrypted , that means "including" what typed URLs requests we make . so then does that means also in a way that - URLs also get encrypted ? so that ISP doesnt gets able to see URLs ?

    – Steve
    Jun 19 '13 at 7:48













  • yes, VPNs (AFAIK) are encrypted (with server and client keys), and all data (not only page content, but url, dns request, etc) go through the VPN...

    – pataluc
    Jun 19 '13 at 8:00











  • thanx @pataluc that was what i was bit concerned/bothered about; not just only data content like file or page content , but the data requests - url n dns thing. :) . thanx again !

    – Steve
    Jun 19 '13 at 8:24





















1














Split tunneling allows regular traffic to go directly via your ISP to process those requests, and any VPN traffic would go through the tunnel and is encrypted. Your ISP can only see that you have a connection established to a certain address, but not the content of traffic going through it.



If you want all your traffic to be encrypted, you force all network traffic to use the tunnel. Latency would be higher in this situation.



You can test this by checking your WAN IP address and see if it differs from your ISP and using a DNS leak test, to see what servers are serving your DNS queries or even doing packet traces.






share|improve this answer































    0














    I've used TcpView to check the connections from my machine to the web sites I connect to, while using a VPN. My machine connects "directly" to the web sites, meaning there is an all-the-way TCP connection set up, and the site name is looked up by TcpView and shown on the list of connections.



    This means two things:




    1. My VPN does not act as a proxy (i.e., does not act as the TCP endpoint and forward my traffic back and forth via a second TCP connection). The VPN themselves confirm this is the case.

    2. My Internet fiber provider, Google, will clearly be able to see what I'm connected to, because they don't need to know my IP address. They can judge this based on their router. In other words, they can know what I'm surfing by looking at what end-node of the network I am, instead of my IP.






    share|improve this answer

































      -6














      When a web site does use HTTPS, an ISP cannot see URLs and content in unencrypted form. However, ISPs can still almost always see the domain names that their subscribers visit. DNS queries are almost never encrypted.
      https://www.toolscat.com





      share








      New contributor




      Tania22 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
      Check out our Code of Conduct.




















        Your Answer








        StackExchange.ready(function() {
        var channelOptions = {
        tags: "".split(" "),
        id: "3"
        };
        initTagRenderer("".split(" "), "".split(" "), channelOptions);

        StackExchange.using("externalEditor", function() {
        // Have to fire editor after snippets, if snippets enabled
        if (StackExchange.settings.snippets.snippetsEnabled) {
        StackExchange.using("snippets", function() {
        createEditor();
        });
        }
        else {
        createEditor();
        }
        });

        function createEditor() {
        StackExchange.prepareEditor({
        heartbeatType: 'answer',
        autoActivateHeartbeat: false,
        convertImagesToLinks: true,
        noModals: true,
        showLowRepImageUploadWarning: true,
        reputationToPostImages: 10,
        bindNavPrevention: true,
        postfix: "",
        imageUploader: {
        brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
        contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
        allowUrls: true
        },
        onDemand: true,
        discardSelector: ".discard-answer"
        ,immediatelyShowMarkdownHelp:true
        });


        }
        });














        draft saved

        draft discarded


















        StackExchange.ready(
        function () {
        StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f609406%2fcan-an-isp-still-see-what-urls-one-visits-when-using-a-vpn%23new-answer', 'question_page');
        }
        );

        Post as a guest















        Required, but never shown

























        4 Answers
        4






        active

        oldest

        votes








        4 Answers
        4






        active

        oldest

        votes









        active

        oldest

        votes






        active

        oldest

        votes









        5














        if it's correctly set up, all your traffic will get through the VPN and your ISP won't be able to see anything.






        share|improve this answer
























        • so then does that means all data transmitted between VPN and ISP are also encrypted , that means "including" what typed URLs requests we make . so then does that means also in a way that - URLs also get encrypted ? so that ISP doesnt gets able to see URLs ?

          – Steve
          Jun 19 '13 at 7:48













        • yes, VPNs (AFAIK) are encrypted (with server and client keys), and all data (not only page content, but url, dns request, etc) go through the VPN...

          – pataluc
          Jun 19 '13 at 8:00











        • thanx @pataluc that was what i was bit concerned/bothered about; not just only data content like file or page content , but the data requests - url n dns thing. :) . thanx again !

          – Steve
          Jun 19 '13 at 8:24


















        5














        if it's correctly set up, all your traffic will get through the VPN and your ISP won't be able to see anything.






        share|improve this answer
























        • so then does that means all data transmitted between VPN and ISP are also encrypted , that means "including" what typed URLs requests we make . so then does that means also in a way that - URLs also get encrypted ? so that ISP doesnt gets able to see URLs ?

          – Steve
          Jun 19 '13 at 7:48













        • yes, VPNs (AFAIK) are encrypted (with server and client keys), and all data (not only page content, but url, dns request, etc) go through the VPN...

          – pataluc
          Jun 19 '13 at 8:00











        • thanx @pataluc that was what i was bit concerned/bothered about; not just only data content like file or page content , but the data requests - url n dns thing. :) . thanx again !

          – Steve
          Jun 19 '13 at 8:24
















        5












        5








        5







        if it's correctly set up, all your traffic will get through the VPN and your ISP won't be able to see anything.






        share|improve this answer













        if it's correctly set up, all your traffic will get through the VPN and your ISP won't be able to see anything.







        share|improve this answer












        share|improve this answer



        share|improve this answer










        answered Jun 19 '13 at 7:39









        patalucpataluc

        570212




        570212













        • so then does that means all data transmitted between VPN and ISP are also encrypted , that means "including" what typed URLs requests we make . so then does that means also in a way that - URLs also get encrypted ? so that ISP doesnt gets able to see URLs ?

          – Steve
          Jun 19 '13 at 7:48













        • yes, VPNs (AFAIK) are encrypted (with server and client keys), and all data (not only page content, but url, dns request, etc) go through the VPN...

          – pataluc
          Jun 19 '13 at 8:00











        • thanx @pataluc that was what i was bit concerned/bothered about; not just only data content like file or page content , but the data requests - url n dns thing. :) . thanx again !

          – Steve
          Jun 19 '13 at 8:24





















        • so then does that means all data transmitted between VPN and ISP are also encrypted , that means "including" what typed URLs requests we make . so then does that means also in a way that - URLs also get encrypted ? so that ISP doesnt gets able to see URLs ?

          – Steve
          Jun 19 '13 at 7:48













        • yes, VPNs (AFAIK) are encrypted (with server and client keys), and all data (not only page content, but url, dns request, etc) go through the VPN...

          – pataluc
          Jun 19 '13 at 8:00











        • thanx @pataluc that was what i was bit concerned/bothered about; not just only data content like file or page content , but the data requests - url n dns thing. :) . thanx again !

          – Steve
          Jun 19 '13 at 8:24



















        so then does that means all data transmitted between VPN and ISP are also encrypted , that means "including" what typed URLs requests we make . so then does that means also in a way that - URLs also get encrypted ? so that ISP doesnt gets able to see URLs ?

        – Steve
        Jun 19 '13 at 7:48







        so then does that means all data transmitted between VPN and ISP are also encrypted , that means "including" what typed URLs requests we make . so then does that means also in a way that - URLs also get encrypted ? so that ISP doesnt gets able to see URLs ?

        – Steve
        Jun 19 '13 at 7:48















        yes, VPNs (AFAIK) are encrypted (with server and client keys), and all data (not only page content, but url, dns request, etc) go through the VPN...

        – pataluc
        Jun 19 '13 at 8:00





        yes, VPNs (AFAIK) are encrypted (with server and client keys), and all data (not only page content, but url, dns request, etc) go through the VPN...

        – pataluc
        Jun 19 '13 at 8:00













        thanx @pataluc that was what i was bit concerned/bothered about; not just only data content like file or page content , but the data requests - url n dns thing. :) . thanx again !

        – Steve
        Jun 19 '13 at 8:24







        thanx @pataluc that was what i was bit concerned/bothered about; not just only data content like file or page content , but the data requests - url n dns thing. :) . thanx again !

        – Steve
        Jun 19 '13 at 8:24















        1














        Split tunneling allows regular traffic to go directly via your ISP to process those requests, and any VPN traffic would go through the tunnel and is encrypted. Your ISP can only see that you have a connection established to a certain address, but not the content of traffic going through it.



        If you want all your traffic to be encrypted, you force all network traffic to use the tunnel. Latency would be higher in this situation.



        You can test this by checking your WAN IP address and see if it differs from your ISP and using a DNS leak test, to see what servers are serving your DNS queries or even doing packet traces.






        share|improve this answer




























          1














          Split tunneling allows regular traffic to go directly via your ISP to process those requests, and any VPN traffic would go through the tunnel and is encrypted. Your ISP can only see that you have a connection established to a certain address, but not the content of traffic going through it.



          If you want all your traffic to be encrypted, you force all network traffic to use the tunnel. Latency would be higher in this situation.



          You can test this by checking your WAN IP address and see if it differs from your ISP and using a DNS leak test, to see what servers are serving your DNS queries or even doing packet traces.






          share|improve this answer


























            1












            1








            1







            Split tunneling allows regular traffic to go directly via your ISP to process those requests, and any VPN traffic would go through the tunnel and is encrypted. Your ISP can only see that you have a connection established to a certain address, but not the content of traffic going through it.



            If you want all your traffic to be encrypted, you force all network traffic to use the tunnel. Latency would be higher in this situation.



            You can test this by checking your WAN IP address and see if it differs from your ISP and using a DNS leak test, to see what servers are serving your DNS queries or even doing packet traces.






            share|improve this answer













            Split tunneling allows regular traffic to go directly via your ISP to process those requests, and any VPN traffic would go through the tunnel and is encrypted. Your ISP can only see that you have a connection established to a certain address, but not the content of traffic going through it.



            If you want all your traffic to be encrypted, you force all network traffic to use the tunnel. Latency would be higher in this situation.



            You can test this by checking your WAN IP address and see if it differs from your ISP and using a DNS leak test, to see what servers are serving your DNS queries or even doing packet traces.







            share|improve this answer












            share|improve this answer



            share|improve this answer










            answered Aug 28 '14 at 5:04









            Jack crawfordJack crawford

            111




            111























                0














                I've used TcpView to check the connections from my machine to the web sites I connect to, while using a VPN. My machine connects "directly" to the web sites, meaning there is an all-the-way TCP connection set up, and the site name is looked up by TcpView and shown on the list of connections.



                This means two things:




                1. My VPN does not act as a proxy (i.e., does not act as the TCP endpoint and forward my traffic back and forth via a second TCP connection). The VPN themselves confirm this is the case.

                2. My Internet fiber provider, Google, will clearly be able to see what I'm connected to, because they don't need to know my IP address. They can judge this based on their router. In other words, they can know what I'm surfing by looking at what end-node of the network I am, instead of my IP.






                share|improve this answer






























                  0














                  I've used TcpView to check the connections from my machine to the web sites I connect to, while using a VPN. My machine connects "directly" to the web sites, meaning there is an all-the-way TCP connection set up, and the site name is looked up by TcpView and shown on the list of connections.



                  This means two things:




                  1. My VPN does not act as a proxy (i.e., does not act as the TCP endpoint and forward my traffic back and forth via a second TCP connection). The VPN themselves confirm this is the case.

                  2. My Internet fiber provider, Google, will clearly be able to see what I'm connected to, because they don't need to know my IP address. They can judge this based on their router. In other words, they can know what I'm surfing by looking at what end-node of the network I am, instead of my IP.






                  share|improve this answer




























                    0












                    0








                    0







                    I've used TcpView to check the connections from my machine to the web sites I connect to, while using a VPN. My machine connects "directly" to the web sites, meaning there is an all-the-way TCP connection set up, and the site name is looked up by TcpView and shown on the list of connections.



                    This means two things:




                    1. My VPN does not act as a proxy (i.e., does not act as the TCP endpoint and forward my traffic back and forth via a second TCP connection). The VPN themselves confirm this is the case.

                    2. My Internet fiber provider, Google, will clearly be able to see what I'm connected to, because they don't need to know my IP address. They can judge this based on their router. In other words, they can know what I'm surfing by looking at what end-node of the network I am, instead of my IP.






                    share|improve this answer















                    I've used TcpView to check the connections from my machine to the web sites I connect to, while using a VPN. My machine connects "directly" to the web sites, meaning there is an all-the-way TCP connection set up, and the site name is looked up by TcpView and shown on the list of connections.



                    This means two things:




                    1. My VPN does not act as a proxy (i.e., does not act as the TCP endpoint and forward my traffic back and forth via a second TCP connection). The VPN themselves confirm this is the case.

                    2. My Internet fiber provider, Google, will clearly be able to see what I'm connected to, because they don't need to know my IP address. They can judge this based on their router. In other words, they can know what I'm surfing by looking at what end-node of the network I am, instead of my IP.







                    share|improve this answer














                    share|improve this answer



                    share|improve this answer








                    edited Aug 30 '18 at 19:50









                    Jason Aller

                    2,22652121




                    2,22652121










                    answered Aug 30 '18 at 19:20









                    Maynard G. KrebsMaynard G. Krebs

                    11




                    11























                        -6














                        When a web site does use HTTPS, an ISP cannot see URLs and content in unencrypted form. However, ISPs can still almost always see the domain names that their subscribers visit. DNS queries are almost never encrypted.
                        https://www.toolscat.com





                        share








                        New contributor




                        Tania22 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
                        Check out our Code of Conduct.

























                          -6














                          When a web site does use HTTPS, an ISP cannot see URLs and content in unencrypted form. However, ISPs can still almost always see the domain names that their subscribers visit. DNS queries are almost never encrypted.
                          https://www.toolscat.com





                          share








                          New contributor




                          Tania22 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
                          Check out our Code of Conduct.























                            -6












                            -6








                            -6







                            When a web site does use HTTPS, an ISP cannot see URLs and content in unencrypted form. However, ISPs can still almost always see the domain names that their subscribers visit. DNS queries are almost never encrypted.
                            https://www.toolscat.com





                            share








                            New contributor




                            Tania22 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
                            Check out our Code of Conduct.










                            When a web site does use HTTPS, an ISP cannot see URLs and content in unencrypted form. However, ISPs can still almost always see the domain names that their subscribers visit. DNS queries are almost never encrypted.
                            https://www.toolscat.com






                            share








                            New contributor




                            Tania22 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
                            Check out our Code of Conduct.








                            share


                            share






                            New contributor




                            Tania22 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
                            Check out our Code of Conduct.









                            answered 7 mins ago









                            Tania22Tania22

                            1




                            1




                            New contributor




                            Tania22 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
                            Check out our Code of Conduct.





                            New contributor





                            Tania22 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
                            Check out our Code of Conduct.






                            Tania22 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
                            Check out our Code of Conduct.






























                                draft saved

                                draft discarded




















































                                Thanks for contributing an answer to Super User!


                                • Please be sure to answer the question. Provide details and share your research!

                                But avoid



                                • Asking for help, clarification, or responding to other answers.

                                • Making statements based on opinion; back them up with references or personal experience.


                                To learn more, see our tips on writing great answers.




                                draft saved


                                draft discarded














                                StackExchange.ready(
                                function () {
                                StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f609406%2fcan-an-isp-still-see-what-urls-one-visits-when-using-a-vpn%23new-answer', 'question_page');
                                }
                                );

                                Post as a guest















                                Required, but never shown





















































                                Required, but never shown














                                Required, but never shown












                                Required, but never shown







                                Required, but never shown

































                                Required, but never shown














                                Required, but never shown












                                Required, but never shown







                                Required, but never shown







                                -

                                Popular posts from this blog

                                Couldn't open a raw socket. Error: Permission denied (13) (nmap)Is it possible to run networking commands...

                                Image
                                Why didn't Boeing produce its own regional jet? What is the most common color to indicate the input-field is disabled? Theorists sure want true answers to this! What is the opposite of "eschatology"? What do you call someone who asks many questions? Is there a hemisphere-neutral way of specifying a season? Is this draw by repetition? Bug? String.split chopping off empty trailing value Is it inappropriate for a student to attend their mentor's dissertation defense? How dangerous is XSS Why do I get negative height? Is it possible to map
                                Read more

                                VNC viewer RFB protocol error: bad desktop size 0x0I Cannot Type the Key 'd' (lowercase) in VNC Viewer...

                                Image
                                risk of flooding in petra in november How to get directions in deep space? How could a planet have erratic days? 15% tax on $7.5k earnings. Is that right? Did the UK lift the requirement for registering SIM cards? Is it allowed to activate the ability of multiple planeswalkers in a single turn? Stack Interview Code methods made from class Node and Smart Pointers Non-trope happy ending? What is the highest possible scrabble score for placing a single tile Open a doc from terminal, but not by its name The IT department bottlenecks progress, how should I handle this?
                                Read more

                                Why not use the yoke to control yaw, as well as pitch and roll? Announcing the arrival of...

                                Image
                                Does the Mueller report show a conspiracy between Russia and the Trump Campaign? Relating to the President and obstruction, were Mueller's conclusions preordained? How much damage would a cupful of neutron star matter do to the Earth? Nose gear failure in single prop aircraft: belly landing or nose landing? Should a wizard buy fine inks every time he want to copy spells into his spellbook? Can you force honesty by using the Speak with Dead and Zone of Truth spells together? A trigonometry question from STEP examination Special flights What is the "studentd" process? systemd and copy (/bin/cp): no such file or directory
                                Read more