Seems like it will cost Mullvad more for bandwidth. Great feature overall, very similar to Monero's Dandelion++
this post was submitted on 30 Jan 2025
264 points (98.2% liked)
Technology
61227 readers
4355 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related content.
- Be excellent to each other!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, to ask if your bot can be added please contact us.
- Check for duplicates before posting, duplicates may be removed
- Accounts 7 days and younger will have their posts automatically removed.
Approved Bots
founded 2 years ago
MODERATORS
Once again mullvad proving they are the only good VPN
If they provided port forwarding I would also use them...
Hey they did support it until they were getting difficult legal contacts because some users were abusing it, and getting turned away by different hosting providers.
They shut it down to protect the rest of us who use it without abusing it.
https://mullvad.net/en/blog/removing-the-support-for-forwarded-ports
Unfortunately port forwarding also allows avenues for abuse, which in some cases can result in a far worse experience for the majority of our users. Regrettably individuals have frequently used this feature to host undesirable content and malicious services from ports that are forwarded from our VPN servers. This has led to law enforcement contacting us, our IPs getting blacklisted, and hosting providers cancelling us.
The result is that it affects the majority of our users negatively, because they cannot use our service without having services being blocked.
I know the port forwarding thing can be a deal-breaker for some people, but it's not Mullvad's fault that they needed to remove this to be able to continue providing quality services for the rest of their customer base.
This is sadly one of those "this is why we can't have nice things" type deals because when enough people abuse it, it becomes a problem. I have no ill will towards Mullvad for taking it away when it became financially and legally foolish to continue doing so.
How are other VPN services able to do port forwarding without having this problem?
They force you to pay with KYC money... No Pedo is stupid enough to be spreading CSAM on that VPN
Given how often I see articles where a pedo was caught because they were sending photos over telegram unencrypted or similar. I do think many are that stupid.
Much like other criminals, only the stupid ones get caught. Look at how many of those articles say that they'd been doing it for decades. Many more of them are out there right now.
AirVPN doesn't.
I think that's another reputable VPN?
Then my theory might be debunked or they will get forced to cut off port forwarding too
This is to be honest a huge barrier for me.
What’s the benefit of port forwarding when using a VPN?
When you torrent you can only connect to peers that have open ports, if your ports are closed. Which means it makes it a lot harder to upload if you rely on private trackers and maintaining a good ratio. One can still download and upload, but for especially older torrents it has a good chance to affect your speeds and ability to download.
This is accurate when using the BT protocol. However if you have uTP (Micro Transport Protocol) enabled, it has "support for NAT traversal using UDP hole punching between two port-restricted peers where a third unrestricted peer acts as a STUN server."
Agreed!
They have a great “Why privacy matters” guide I keep sending to people;
OVPN.com ain't bad either.
It will all end with us back on dialup speeds once the counter-DAITA throughput machine learning de-obfuscation analysis of defense against AI guided traffic analysis of proxy anomised packets starts. I think I might just read a book.
Imagine a future where you and your VPN connection maintain 10mbps of constant, uniform traffic at all times. That solves the problem too, if the noise is aways high, you can't see the signal
You can always see the signal in the noise, that is the point of the signal and therein lies the rub.
If ya do it right, you can't distinguish the signal from the noise. Encryption makes data look random. So if you send dummy random data then it just looks like constant random data. No signal is distinguishable.
Sure, but one of the benchmarks of a good cryptographic algorithm is to reduce the amount of meta information you can get from a random sampling. Most of the timing attacks are looking for traffic activity to pattern match ultimate source and receiver. If the encrypted tunnel is always exactly 10mbps of cryptographic traffic, then it would be much harder to identify
Yes as with almost everything the ability to do a thing is just a function of how much you want to do it.
It's nice, but it brought my speeds to a crawl.
DAAIGTA
If Mullvad only allowed port forwarding...
They did at one point, but they removed it due to constant abuse.
Threat actors ruin shit for freedom enjoyers again
Now I’m curious if the vpn I use will consider a similar approach going forward (PIA).