Is real public IP Address hidden when using a system wide proxy in Windows 10?In windows 8, my proxy server settings get enabled automatically, how do I turn this off?web filter issue of my Telecom ISPDirecting VPN and RDP traffic through wireless connection
Prisoner's dilemma formulation for children
Can I use Oko's ability targetting a creature with protection from green?
Is it unusual that English uses possessive for past tense?
Why is lambda return type not checked at compile time
Are there any Baryons that have quark-antiquark combinations?
Why is this a missed win?
Rules on "Pets on shoulder"
How can a stock trade for a fraction of a cent?
What is the white square near the viewfinder of the Fujica GW690?
Should I respond to a sabotage accusation e-mail at work?
Why did my relationship with my wife go down by two hearts?
Tear in RFs, not losing air
When was the famous "sudo warning" introduced? Under what background? By whom?
Linux Commands in Python
Matrix class in C#
How much energy is stored in a AA battery when its voltage has dropped to 1.2V?
Conveying the idea of "tricky"
Use GPLv3 library in a closed system (no software distribution)
What would a chair for a Human with a Tail look like?
I don't want my ls command in my script to print results on screen
Have the US and Russia (or USSR before it) co-vetoed a UN resolution before today?
How to pronounce correctly [b] and [p]? As well [t]/[d] and [k]/[g]
In the old name Dreadnought, is nought an adverb or a noun?
I run daily 5kms but I cant seem to improve stamina when playing soccer
Is real public IP Address hidden when using a system wide proxy in Windows 10?
In windows 8, my proxy server settings get enabled automatically, how do I turn this off?web filter issue of my Telecom ISPDirecting VPN and RDP traffic through wireless connection
.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty
margin-bottom:0;
For example if I am using a free VPN(I know vpn and proxy not the same) and it looses the connection, for this short period of time my real IP is exposed, before connecting back to VPN again.
Does this occur if I am using proxy server setup in Windows 10 settings?
Settings -> Network & Internet -> Proxy
OR
Internetoptions -> “Connections” -> “LAN-Settings”->“Extended Options”
If yes, can I somehow prevent it from doing so.
networking windows-10 vpn proxy
edited May 24 at 18:27
Nikhil_CV
5623 silver badges15 bronze badges
asked May 24 at 17:05
OjavOjav
614 bronze badges
add a comment
|
For example if I am using a free VPN(I know vpn and proxy not the same) and it looses the connection, for this short period of time my real IP is exposed, before connecting back to VPN again.
Does this occur if I am using proxy server setup in Windows 10 settings?
Settings -> Network & Internet -> Proxy
OR
Internetoptions -> “Connections” -> “LAN-Settings”->“Extended Options”
If yes, can I somehow prevent it from doing so.
networking windows-10 vpn proxy
edited May 24 at 18:27
Nikhil_CV
5623 silver badges15 bronze badges
asked May 24 at 17:05
OjavOjav
614 bronze badges
add a comment
|
For example if I am using a free VPN(I know vpn and proxy not the same) and it looses the connection, for this short period of time my real IP is exposed, before connecting back to VPN again.
Does this occur if I am using proxy server setup in Windows 10 settings?
Settings -> Network & Internet -> Proxy
OR
Internetoptions -> “Connections” -> “LAN-Settings”->“Extended Options”
If yes, can I somehow prevent it from doing so.
networking windows-10 vpn proxy
edited May 24 at 18:27
Nikhil_CV
5623 silver badges15 bronze badges
asked May 24 at 17:05
OjavOjav
614 bronze badges
For example if I am using a free VPN(I know vpn and proxy not the same) and it looses the connection, for this short period of time my real IP is exposed, before connecting back to VPN again.
Does this occur if I am using proxy server setup in Windows 10 settings?
Settings -> Network & Internet -> Proxy
OR
Internetoptions -> “Connections” -> “LAN-Settings”->“Extended Options”
If yes, can I somehow prevent it from doing so.
networking windows-10 vpn proxy
networking windows-10 vpn proxy
edited May 24 at 18:27
Nikhil_CV
5623 silver badges15 bronze badges
asked May 24 at 17:05
OjavOjav
614 bronze badges
edited May 24 at 18:27
Nikhil_CV
5623 silver badges15 bronze badges
asked May 24 at 17:05
OjavOjav
614 bronze badges
edited May 24 at 18:27
Nikhil_CV
5623 silver badges15 bronze badges
edited May 24 at 18:27
Nikhil_CV
5623 silver badges15 bronze badges
edited May 24 at 18:27
Nikhil_CV
5623 silver badges15 bronze badges
5623 silver badges15 bronze badges
asked May 24 at 17:05
OjavOjav
614 bronze badges
asked May 24 at 17:05
OjavOjav
614 bronze badges
asked May 24 at 17:05
OjavOjav
614 bronze badges
614 bronze badges
add a comment
|
add a comment
|
3 Answers
3
active
oldest
votes
No. The proxy settings are 1) completely optional, 2) not applicable to most non-HTTP-based protocols. (For example, protocols built on top of UDP are outright incompatible with HTTP proxies.)
answered May 24 at 18:27
grawitygrawity
268k42 gold badges559 silver badges626 bronze badges
add a comment
|
Other people have discussed the network side, so I will point out a different issue: Applications.
Even if you could set up an airtight network setup where your public IP is never exposed, that doesnt guarantee that an application you are running doesnt expose it. Even a program from a developer you trust can accidentally expose your information. An application might have a security flaw, a bug, the user misconfigured it, or even by design, which exposes the public IP of the user. Here is one example of this.
Unless you can sniff the unexcrypted packets being sent by an application, its really hard to tell what information they are sending.
answered May 24 at 19:07
KeltariKeltari
54.1k20 gold badges126 silver badges173 bronze badges
This is a little pessimistic. You could combine the VPN with some kind of NAT-like contraption, so that the only device aware of the "public IP" is the router(?) that is implementing the combined VPN/NAT functionality. The PC gets a private IP and has no idea it's even on a VPN. The private IP could be exposed, but since lots of IPv4 hosts are on NATs anyway, that's not terribly interesting to the average attacker.
– Kevin
May 25 at 4:55
@Kevin pessimistic or not, its true. It might not be in every case, but it is something to be mindful of.
– Keltari
May 26 at 16:58
@Kevin: It becomes quite interesting when the network also runs IPv6 (as the app might accidentally report your global IPv6 prefix).
– grawity
May 27 at 6:27
add a comment
|
Does this occur if I am using proxy server setup in Windows 10 settings?
Yes.
If yes, can I somehow prevent it from doing so.
No.
There are several reasons for this:
The way a proxy works, is that instead of connecting to the server directly, you connect to the proxy and the proxy connects to the server. In order to do this, the proxy needs to understand the protocol you are using to connect to the server.
The particular settings you are talking about, are for web proxies, i.e. proxies that implement proxying for typical web protocols such as HTTP, HTTPS, FTP, FTPS, WS, WSS, and Gopher.
So, that should already tell you the first limitation: it only works for a limited set of protocols, i.e. for web protocols, IOW it only works for web browsing and related things, and not, for example, for Email, or Skype, or Teamspeak, or multiplayer games, or a myriad of other protocols.
Also, in order for the proxy to be used, an application has to actually, well, use the proxy. Internet Explorer and Edge, for example, they read those settings you talked about, but not every browser does. Some browsers have their own, browser-specific proxy settings.
Lastly, the protocol itself could contain the original IP address (or other identifying data) in encrypted form, and there is nothing the proxy can do about that. For example, the WhatsApp Messenger uses end-to-end encryption, so the proxy can not look inside the protocol. And the protocol is proprietary, so nobody knows what it actually sends. It is entirely possible that it might send the original IP address, or the telephone number.
So, in short:
- The use of the proxy is completely voluntary. Only applications which read those settings and want to use the proxy will use it.
- The proxy generally only works for web protocols.
- Applications may still send the IP address as part of the application protocol.
answered May 25 at 5:28
Jörg W MittagJörg W Mittag
1,0662 gold badges12 silver badges15 bronze badges
1
There are two kinds of HTTPS proxies. The classic kind, which Windows InternetOptions +IE/Edge/etc is intended to support, creates a TCP-level relay with CONNECT, see RFC2817 sec5, then does HTTPS end-to-end over that relay, so server sees the (last) proxy IP but browser gets the real cert. You are talking about the newer kind of 'proxy' that is really an interceptor used by many organizations or people to 'inspect' traffic (for things like personal use, porn, malware, secret or restricted data) and those require browser trust the interceptor's (fake) CA cert. ...
– dave_thompson_085
May 25 at 7:36
1
... HTTP CONNECT could be used for other TCP-based protocols, but I don't know anything (at least on Windows) that does so.
– dave_thompson_085
May 25 at 7:37
@dave_thompson_085: Thanks. Removed. You're right, I completely forgot about that. The last time I set up a proxy was 20 years ago, and that was a filtering proxy, so it needed access to the content of both the request and the response.
– Jörg W Mittag
May 25 at 7:50
add a comment
|
Your Answer
StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "3"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);
else
createEditor();
);
function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader:
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/4.0/"u003ecc by-sa 4.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
,
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);
);
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f1440863%2fis-real-public-ip-address-hidden-when-using-a-system-wide-proxy-in-windows-10%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
3 Answers
3
active
oldest
votes
3 Answers
3
active
oldest
votes
active
oldest
votes
active
oldest
votes
No. The proxy settings are 1) completely optional, 2) not applicable to most non-HTTP-based protocols. (For example, protocols built on top of UDP are outright incompatible with HTTP proxies.)
answered May 24 at 18:27
grawitygrawity
268k42 gold badges559 silver badges626 bronze badges
add a comment
|
No. The proxy settings are 1) completely optional, 2) not applicable to most non-HTTP-based protocols. (For example, protocols built on top of UDP are outright incompatible with HTTP proxies.)
answered May 24 at 18:27
grawitygrawity
268k42 gold badges559 silver badges626 bronze badges
add a comment
|
No. The proxy settings are 1) completely optional, 2) not applicable to most non-HTTP-based protocols. (For example, protocols built on top of UDP are outright incompatible with HTTP proxies.)
answered May 24 at 18:27
grawitygrawity
268k42 gold badges559 silver badges626 bronze badges
No. The proxy settings are 1) completely optional, 2) not applicable to most non-HTTP-based protocols. (For example, protocols built on top of UDP are outright incompatible with HTTP proxies.)
answered May 24 at 18:27
grawitygrawity
268k42 gold badges559 silver badges626 bronze badges
answered May 24 at 18:27
grawitygrawity
268k42 gold badges559 silver badges626 bronze badges
answered May 24 at 18:27
grawitygrawity
268k42 gold badges559 silver badges626 bronze badges
answered May 24 at 18:27
grawitygrawity
268k42 gold badges559 silver badges626 bronze badges
268k42 gold badges559 silver badges626 bronze badges
add a comment
|
add a comment
|
Other people have discussed the network side, so I will point out a different issue: Applications.
Even if you could set up an airtight network setup where your public IP is never exposed, that doesnt guarantee that an application you are running doesnt expose it. Even a program from a developer you trust can accidentally expose your information. An application might have a security flaw, a bug, the user misconfigured it, or even by design, which exposes the public IP of the user. Here is one example of this.
Unless you can sniff the unexcrypted packets being sent by an application, its really hard to tell what information they are sending.
answered May 24 at 19:07
KeltariKeltari
54.1k20 gold badges126 silver badges173 bronze badges
This is a little pessimistic. You could combine the VPN with some kind of NAT-like contraption, so that the only device aware of the "public IP" is the router(?) that is implementing the combined VPN/NAT functionality. The PC gets a private IP and has no idea it's even on a VPN. The private IP could be exposed, but since lots of IPv4 hosts are on NATs anyway, that's not terribly interesting to the average attacker.
– Kevin
May 25 at 4:55
@Kevin pessimistic or not, its true. It might not be in every case, but it is something to be mindful of.
– Keltari
May 26 at 16:58
@Kevin: It becomes quite interesting when the network also runs IPv6 (as the app might accidentally report your global IPv6 prefix).
– grawity
May 27 at 6:27
add a comment
|
Other people have discussed the network side, so I will point out a different issue: Applications.
Even if you could set up an airtight network setup where your public IP is never exposed, that doesnt guarantee that an application you are running doesnt expose it. Even a program from a developer you trust can accidentally expose your information. An application might have a security flaw, a bug, the user misconfigured it, or even by design, which exposes the public IP of the user. Here is one example of this.
Unless you can sniff the unexcrypted packets being sent by an application, its really hard to tell what information they are sending.
answered May 24 at 19:07
KeltariKeltari
54.1k20 gold badges126 silver badges173 bronze badges
This is a little pessimistic. You could combine the VPN with some kind of NAT-like contraption, so that the only device aware of the "public IP" is the router(?) that is implementing the combined VPN/NAT functionality. The PC gets a private IP and has no idea it's even on a VPN. The private IP could be exposed, but since lots of IPv4 hosts are on NATs anyway, that's not terribly interesting to the average attacker.
– Kevin
May 25 at 4:55
@Kevin pessimistic or not, its true. It might not be in every case, but it is something to be mindful of.
– Keltari
May 26 at 16:58
@Kevin: It becomes quite interesting when the network also runs IPv6 (as the app might accidentally report your global IPv6 prefix).
– grawity
May 27 at 6:27
add a comment
|
Other people have discussed the network side, so I will point out a different issue: Applications.
Even if you could set up an airtight network setup where your public IP is never exposed, that doesnt guarantee that an application you are running doesnt expose it. Even a program from a developer you trust can accidentally expose your information. An application might have a security flaw, a bug, the user misconfigured it, or even by design, which exposes the public IP of the user. Here is one example of this.
Unless you can sniff the unexcrypted packets being sent by an application, its really hard to tell what information they are sending.
answered May 24 at 19:07
KeltariKeltari
54.1k20 gold badges126 silver badges173 bronze badges
Other people have discussed the network side, so I will point out a different issue: Applications.
Even if you could set up an airtight network setup where your public IP is never exposed, that doesnt guarantee that an application you are running doesnt expose it. Even a program from a developer you trust can accidentally expose your information. An application might have a security flaw, a bug, the user misconfigured it, or even by design, which exposes the public IP of the user. Here is one example of this.
Unless you can sniff the unexcrypted packets being sent by an application, its really hard to tell what information they are sending.
answered May 24 at 19:07
KeltariKeltari
54.1k20 gold badges126 silver badges173 bronze badges
answered May 24 at 19:07
KeltariKeltari
54.1k20 gold badges126 silver badges173 bronze badges
answered May 24 at 19:07
KeltariKeltari
54.1k20 gold badges126 silver badges173 bronze badges
answered May 24 at 19:07
KeltariKeltari
54.1k20 gold badges126 silver badges173 bronze badges
54.1k20 gold badges126 silver badges173 bronze badges
This is a little pessimistic. You could combine the VPN with some kind of NAT-like contraption, so that the only device aware of the "public IP" is the router(?) that is implementing the combined VPN/NAT functionality. The PC gets a private IP and has no idea it's even on a VPN. The private IP could be exposed, but since lots of IPv4 hosts are on NATs anyway, that's not terribly interesting to the average attacker.
– Kevin
May 25 at 4:55
@Kevin pessimistic or not, its true. It might not be in every case, but it is something to be mindful of.
– Keltari
May 26 at 16:58
@Kevin: It becomes quite interesting when the network also runs IPv6 (as the app might accidentally report your global IPv6 prefix).
– grawity
May 27 at 6:27
add a comment
|
This is a little pessimistic. You could combine the VPN with some kind of NAT-like contraption, so that the only device aware of the "public IP" is the router(?) that is implementing the combined VPN/NAT functionality. The PC gets a private IP and has no idea it's even on a VPN. The private IP could be exposed, but since lots of IPv4 hosts are on NATs anyway, that's not terribly interesting to the average attacker.
– Kevin
May 25 at 4:55
@Kevin pessimistic or not, its true. It might not be in every case, but it is something to be mindful of.
– Keltari
May 26 at 16:58
@Kevin: It becomes quite interesting when the network also runs IPv6 (as the app might accidentally report your global IPv6 prefix).
– grawity
May 27 at 6:27
This is a little pessimistic. You could combine the VPN with some kind of NAT-like contraption, so that the only device aware of the "public IP" is the router(?) that is implementing the combined VPN/NAT functionality. The PC gets a private IP and has no idea it's even on a VPN. The private IP could be exposed, but since lots of IPv4 hosts are on NATs anyway, that's not terribly interesting to the average attacker.
– Kevin
May 25 at 4:55
This is a little pessimistic. You could combine the VPN with some kind of NAT-like contraption, so that the only device aware of the "public IP" is the router(?) that is implementing the combined VPN/NAT functionality. The PC gets a private IP and has no idea it's even on a VPN. The private IP could be exposed, but since lots of IPv4 hosts are on NATs anyway, that's not terribly interesting to the average attacker.
– Kevin
May 25 at 4:55
@Kevin pessimistic or not, its true. It might not be in every case, but it is something to be mindful of.
– Keltari
May 26 at 16:58
@Kevin pessimistic or not, its true. It might not be in every case, but it is something to be mindful of.
– Keltari
May 26 at 16:58
@Kevin: It becomes quite interesting when the network also runs IPv6 (as the app might accidentally report your global IPv6 prefix).
– grawity
May 27 at 6:27
@Kevin: It becomes quite interesting when the network also runs IPv6 (as the app might accidentally report your global IPv6 prefix).
– grawity
May 27 at 6:27
add a comment
|
Does this occur if I am using proxy server setup in Windows 10 settings?
Yes.
If yes, can I somehow prevent it from doing so.
No.
There are several reasons for this:
The way a proxy works, is that instead of connecting to the server directly, you connect to the proxy and the proxy connects to the server. In order to do this, the proxy needs to understand the protocol you are using to connect to the server.
The particular settings you are talking about, are for web proxies, i.e. proxies that implement proxying for typical web protocols such as HTTP, HTTPS, FTP, FTPS, WS, WSS, and Gopher.
So, that should already tell you the first limitation: it only works for a limited set of protocols, i.e. for web protocols, IOW it only works for web browsing and related things, and not, for example, for Email, or Skype, or Teamspeak, or multiplayer games, or a myriad of other protocols.
Also, in order for the proxy to be used, an application has to actually, well, use the proxy. Internet Explorer and Edge, for example, they read those settings you talked about, but not every browser does. Some browsers have their own, browser-specific proxy settings.
Lastly, the protocol itself could contain the original IP address (or other identifying data) in encrypted form, and there is nothing the proxy can do about that. For example, the WhatsApp Messenger uses end-to-end encryption, so the proxy can not look inside the protocol. And the protocol is proprietary, so nobody knows what it actually sends. It is entirely possible that it might send the original IP address, or the telephone number.
So, in short:
- The use of the proxy is completely voluntary. Only applications which read those settings and want to use the proxy will use it.
- The proxy generally only works for web protocols.
- Applications may still send the IP address as part of the application protocol.
answered May 25 at 5:28
Jörg W MittagJörg W Mittag
1,0662 gold badges12 silver badges15 bronze badges
1
There are two kinds of HTTPS proxies. The classic kind, which Windows InternetOptions +IE/Edge/etc is intended to support, creates a TCP-level relay with CONNECT, see RFC2817 sec5, then does HTTPS end-to-end over that relay, so server sees the (last) proxy IP but browser gets the real cert. You are talking about the newer kind of 'proxy' that is really an interceptor used by many organizations or people to 'inspect' traffic (for things like personal use, porn, malware, secret or restricted data) and those require browser trust the interceptor's (fake) CA cert. ...
– dave_thompson_085
May 25 at 7:36
1
... HTTP CONNECT could be used for other TCP-based protocols, but I don't know anything (at least on Windows) that does so.
– dave_thompson_085
May 25 at 7:37
@dave_thompson_085: Thanks. Removed. You're right, I completely forgot about that. The last time I set up a proxy was 20 years ago, and that was a filtering proxy, so it needed access to the content of both the request and the response.
– Jörg W Mittag
May 25 at 7:50
add a comment
|
Does this occur if I am using proxy server setup in Windows 10 settings?
Yes.
If yes, can I somehow prevent it from doing so.
No.
There are several reasons for this:
The way a proxy works, is that instead of connecting to the server directly, you connect to the proxy and the proxy connects to the server. In order to do this, the proxy needs to understand the protocol you are using to connect to the server.
The particular settings you are talking about, are for web proxies, i.e. proxies that implement proxying for typical web protocols such as HTTP, HTTPS, FTP, FTPS, WS, WSS, and Gopher.
So, that should already tell you the first limitation: it only works for a limited set of protocols, i.e. for web protocols, IOW it only works for web browsing and related things, and not, for example, for Email, or Skype, or Teamspeak, or multiplayer games, or a myriad of other protocols.
Also, in order for the proxy to be used, an application has to actually, well, use the proxy. Internet Explorer and Edge, for example, they read those settings you talked about, but not every browser does. Some browsers have their own, browser-specific proxy settings.
Lastly, the protocol itself could contain the original IP address (or other identifying data) in encrypted form, and there is nothing the proxy can do about that. For example, the WhatsApp Messenger uses end-to-end encryption, so the proxy can not look inside the protocol. And the protocol is proprietary, so nobody knows what it actually sends. It is entirely possible that it might send the original IP address, or the telephone number.
So, in short:
- The use of the proxy is completely voluntary. Only applications which read those settings and want to use the proxy will use it.
- The proxy generally only works for web protocols.
- Applications may still send the IP address as part of the application protocol.
answered May 25 at 5:28
Jörg W MittagJörg W Mittag
1,0662 gold badges12 silver badges15 bronze badges
1
There are two kinds of HTTPS proxies. The classic kind, which Windows InternetOptions +IE/Edge/etc is intended to support, creates a TCP-level relay with CONNECT, see RFC2817 sec5, then does HTTPS end-to-end over that relay, so server sees the (last) proxy IP but browser gets the real cert. You are talking about the newer kind of 'proxy' that is really an interceptor used by many organizations or people to 'inspect' traffic (for things like personal use, porn, malware, secret or restricted data) and those require browser trust the interceptor's (fake) CA cert. ...
– dave_thompson_085
May 25 at 7:36
1
... HTTP CONNECT could be used for other TCP-based protocols, but I don't know anything (at least on Windows) that does so.
– dave_thompson_085
May 25 at 7:37
@dave_thompson_085: Thanks. Removed. You're right, I completely forgot about that. The last time I set up a proxy was 20 years ago, and that was a filtering proxy, so it needed access to the content of both the request and the response.
– Jörg W Mittag
May 25 at 7:50
add a comment
|
Does this occur if I am using proxy server setup in Windows 10 settings?
Yes.
If yes, can I somehow prevent it from doing so.
No.
There are several reasons for this:
The way a proxy works, is that instead of connecting to the server directly, you connect to the proxy and the proxy connects to the server. In order to do this, the proxy needs to understand the protocol you are using to connect to the server.
The particular settings you are talking about, are for web proxies, i.e. proxies that implement proxying for typical web protocols such as HTTP, HTTPS, FTP, FTPS, WS, WSS, and Gopher.
So, that should already tell you the first limitation: it only works for a limited set of protocols, i.e. for web protocols, IOW it only works for web browsing and related things, and not, for example, for Email, or Skype, or Teamspeak, or multiplayer games, or a myriad of other protocols.
Also, in order for the proxy to be used, an application has to actually, well, use the proxy. Internet Explorer and Edge, for example, they read those settings you talked about, but not every browser does. Some browsers have their own, browser-specific proxy settings.
Lastly, the protocol itself could contain the original IP address (or other identifying data) in encrypted form, and there is nothing the proxy can do about that. For example, the WhatsApp Messenger uses end-to-end encryption, so the proxy can not look inside the protocol. And the protocol is proprietary, so nobody knows what it actually sends. It is entirely possible that it might send the original IP address, or the telephone number.
So, in short:
- The use of the proxy is completely voluntary. Only applications which read those settings and want to use the proxy will use it.
- The proxy generally only works for web protocols.
- Applications may still send the IP address as part of the application protocol.
answered May 25 at 5:28
Jörg W MittagJörg W Mittag
1,0662 gold badges12 silver badges15 bronze badges
Does this occur if I am using proxy server setup in Windows 10 settings?
Yes.
If yes, can I somehow prevent it from doing so.
No.
There are several reasons for this:
The way a proxy works, is that instead of connecting to the server directly, you connect to the proxy and the proxy connects to the server. In order to do this, the proxy needs to understand the protocol you are using to connect to the server.
The particular settings you are talking about, are for web proxies, i.e. proxies that implement proxying for typical web protocols such as HTTP, HTTPS, FTP, FTPS, WS, WSS, and Gopher.
So, that should already tell you the first limitation: it only works for a limited set of protocols, i.e. for web protocols, IOW it only works for web browsing and related things, and not, for example, for Email, or Skype, or Teamspeak, or multiplayer games, or a myriad of other protocols.
Also, in order for the proxy to be used, an application has to actually, well, use the proxy. Internet Explorer and Edge, for example, they read those settings you talked about, but not every browser does. Some browsers have their own, browser-specific proxy settings.
Lastly, the protocol itself could contain the original IP address (or other identifying data) in encrypted form, and there is nothing the proxy can do about that. For example, the WhatsApp Messenger uses end-to-end encryption, so the proxy can not look inside the protocol. And the protocol is proprietary, so nobody knows what it actually sends. It is entirely possible that it might send the original IP address, or the telephone number.
So, in short:
- The use of the proxy is completely voluntary. Only applications which read those settings and want to use the proxy will use it.
- The proxy generally only works for web protocols.
- Applications may still send the IP address as part of the application protocol.
answered May 25 at 5:28
Jörg W MittagJörg W Mittag
1,0662 gold badges12 silver badges15 bronze badges
edited May 25 at 7:49
answered May 25 at 5:28
Jörg W MittagJörg W Mittag
1,0662 gold badges12 silver badges15 bronze badges
answered May 25 at 5:28
Jörg W MittagJörg W Mittag
1,0662 gold badges12 silver badges15 bronze badges
answered May 25 at 5:28
Jörg W MittagJörg W Mittag
1,0662 gold badges12 silver badges15 bronze badges
1,0662 gold badges12 silver badges15 bronze badges
1
There are two kinds of HTTPS proxies. The classic kind, which Windows InternetOptions +IE/Edge/etc is intended to support, creates a TCP-level relay with CONNECT, see RFC2817 sec5, then does HTTPS end-to-end over that relay, so server sees the (last) proxy IP but browser gets the real cert. You are talking about the newer kind of 'proxy' that is really an interceptor used by many organizations or people to 'inspect' traffic (for things like personal use, porn, malware, secret or restricted data) and those require browser trust the interceptor's (fake) CA cert. ...
– dave_thompson_085
May 25 at 7:36
1
... HTTP CONNECT could be used for other TCP-based protocols, but I don't know anything (at least on Windows) that does so.
– dave_thompson_085
May 25 at 7:37
@dave_thompson_085: Thanks. Removed. You're right, I completely forgot about that. The last time I set up a proxy was 20 years ago, and that was a filtering proxy, so it needed access to the content of both the request and the response.
– Jörg W Mittag
May 25 at 7:50
add a comment
|
1
There are two kinds of HTTPS proxies. The classic kind, which Windows InternetOptions +IE/Edge/etc is intended to support, creates a TCP-level relay with CONNECT, see RFC2817 sec5, then does HTTPS end-to-end over that relay, so server sees the (last) proxy IP but browser gets the real cert. You are talking about the newer kind of 'proxy' that is really an interceptor used by many organizations or people to 'inspect' traffic (for things like personal use, porn, malware, secret or restricted data) and those require browser trust the interceptor's (fake) CA cert. ...
– dave_thompson_085
May 25 at 7:36
1
... HTTP CONNECT could be used for other TCP-based protocols, but I don't know anything (at least on Windows) that does so.
– dave_thompson_085
May 25 at 7:37
@dave_thompson_085: Thanks. Removed. You're right, I completely forgot about that. The last time I set up a proxy was 20 years ago, and that was a filtering proxy, so it needed access to the content of both the request and the response.
– Jörg W Mittag
May 25 at 7:50
1
1
There are two kinds of HTTPS proxies. The classic kind, which Windows InternetOptions +IE/Edge/etc is intended to support, creates a TCP-level relay with CONNECT, see RFC2817 sec5, then does HTTPS end-to-end over that relay, so server sees the (last) proxy IP but browser gets the real cert. You are talking about the newer kind of 'proxy' that is really an interceptor used by many organizations or people to 'inspect' traffic (for things like personal use, porn, malware, secret or restricted data) and those require browser trust the interceptor's (fake) CA cert. ...
– dave_thompson_085
May 25 at 7:36
There are two kinds of HTTPS proxies. The classic kind, which Windows InternetOptions +IE/Edge/etc is intended to support, creates a TCP-level relay with CONNECT, see RFC2817 sec5, then does HTTPS end-to-end over that relay, so server sees the (last) proxy IP but browser gets the real cert. You are talking about the newer kind of 'proxy' that is really an interceptor used by many organizations or people to 'inspect' traffic (for things like personal use, porn, malware, secret or restricted data) and those require browser trust the interceptor's (fake) CA cert. ...
– dave_thompson_085
May 25 at 7:36
1
1
... HTTP CONNECT could be used for other TCP-based protocols, but I don't know anything (at least on Windows) that does so.
– dave_thompson_085
May 25 at 7:37
... HTTP CONNECT could be used for other TCP-based protocols, but I don't know anything (at least on Windows) that does so.
– dave_thompson_085
May 25 at 7:37
@dave_thompson_085: Thanks. Removed. You're right, I completely forgot about that. The last time I set up a proxy was 20 years ago, and that was a filtering proxy, so it needed access to the content of both the request and the response.
– Jörg W Mittag
May 25 at 7:50
@dave_thompson_085: Thanks. Removed. You're right, I completely forgot about that. The last time I set up a proxy was 20 years ago, and that was a filtering proxy, so it needed access to the content of both the request and the response.
– Jörg W Mittag
May 25 at 7:50
add a comment
|
Thanks for contributing an answer to Super User!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f1440863%2fis-real-public-ip-address-hidden-when-using-a-system-wide-proxy-in-windows-10%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
