RestorePrivacy

Resources to stay safe and secure online

If you buy through links on this site, we may earn a commission, which helps support our mission.

7 Best Multi-Hop and Double VPNs in 2023 (Max Privacy)

By 36 Comments
multi-hop double vpn

As the threats from advanced tracking and state-sponsored surveillance continue to grow, some privacy enthusiasts are looking for more protection in the form of multi-hop VPNs. If you consider the resources being spent by surveillance agencies to de-anonymize users, choosing a VPN service that offers a higher level of anonymity is indeed a valid consideration.

A multi-hop VPN simply encrypts your connection across two or more servers (multiple hops) before exiting on to the regular internet. Routing your traffic through two or more servers in separate jurisdictions gives you a higher level of privacy and security – even if one server were to be compromised.

In this guide we will explain why people are using multi-hop VPNs and how they can help you achieve higher levels of privacy and security. The key factor when considering whether you need a multi-hop VPN is your threat model. How much privacy do you need and want for your unique situation?

However, for those interested in achieving higher levels of privacy and security, there are multi-hop VPNs.

The best multi-hop and double VPN services in 2023

Below we are going to go into more detail on this topic, showing you exactly what we mean with multi-hop and double VPN in the context of VPN services. But firs, for those in a hurry, these are the best VPN services that offer multi-hop and double VPN features:

Double-hop VPN services (fixed locations, not self-configurable)

  1. NordVPN – $3.29 per month (with this 63% off coupon); based in Panama; 31 double VPN configurations (see the NordVPN review)
  2. Surfshark – $3.29 per month; based in The Netherlands; 15 double-VPN server configurations (see the Surfshark VPN review)
  3. ProtonVPN – $8.00 per month; based in Switzerland; 48 double VPN servers (see the ProtonVPN review)
  4. VPN.ac – $3.75 per month; based in Romania; 22 double VPN configurations (see the VPN.ac review)

Self-configurable VPN services:

  1. Perfect Privacy – Up to four servers, plus the NeuroRouting feature; $8.95 per month; based in Switzerland (Perfect Privacy review)
  2. OVPN – Up to two servers; $7.00 per month (but the multi-hop feature is a paid add-on for $5.00/month); based in Sweden
  3. IVPN – Up to two servers; $8.33 per month; based in Gibraltar

Now let’s dive into the details and specifically answer why you need a multi-hop or double VPN.

Surveillance and advanced online anonymity

A multi-hop VPN is a good privacy tool against targeted monitoring and other theoretical attack vectors we will discuss below. It may also be useful for those in dangerous situations, such as journalists or political dissidents living in oppressive countries.

One key question is whether you can trust the data center where the VPN server is located.

VPN services will rent, lease, or colocate servers in data centers all over the world for their network. These servers will be fully encrypted, secured, and under control of the VPN provider, thereby preventing third-party access to sensitive user data and traffic.

What can the data center see with an encrypted VPN server?

Even with strong encryption of the VPN server, the data center (host) – or perhaps an external state surveillance agency – could potentially monitor incoming and outgoing traffic on the server.

While this may seem alarming, it would still be very difficult for the data center (or third party) to gather useful information because:

  • The traffic remains securely encrypted on the VPN tunnel, which right now is considered to be unbreakable (AES-256 encryption with the OpenVPN protocol, for example).
  • Correlating outgoing traffic with incoming traffic is extremely difficult. Theoretically, traffic correlation for some users may be possible through advanced statistical analysis and studying traffic patterns. However, this remains difficult, especially on a large scale, even for powerful adversaries.
  • Most VPNs utilize shared IPs, with many users on a given server (and IP address) at the same time, with all traffic being mixed. (Note: this is also why you should not “roll your own VPN” that only you will be using).

Even though a standard, single-hop VPN configuration will be adequate for the vast most users, incoming/outgoing traffic correlation may still be possible – at least in theory.

vpn servers privacy double vpn

Are data centers really being targeted for traffic correlation attacks?

We have no way to know for sure. In many cases when authorities wanted customer data, they simply went to the data center and physically seized the server:

In other cases, some VPNs have cooperated with authorities and handed over user information after being pressured by law enforcement agencies. These cases related to criminal investigations being conducted by US authorities. See for example the IPVanish logs case and also the PureVPN logging example.

Multi-hop VPN cascade

The first example of a multi-hop VPN we will examine is a “cascade” – where traffic is encrypted across two or more of the VPN’s servers.

One provider offering the ability to create custom VPN cascades with up to four servers is Perfect Privacy. Here is a basic visual explanation of how that would work using a four-hop VPN cascade:

vpn cascade multi hop double vpn

In the picture above, the user’s identity is changed at every hop and re-encrypted using OpenVPN 256-bit AES encryption (for example), before the traffic exits the VPN cascade on to the regular internet. With every hop, the new VPN server only gets the previous VPN server’s IP address/location – further obscuring and protecting the user’s true identity.

Perfect Privacy also makes some interesting points in this article:

With a cascaded connection this [traffic correlation] attack becomes much more difficult because while the ISP/eavesdroper still knows the VPN entry node of the user, it does not know on which server the traffic exits. He would need to monitor all VPN servers and take a guess at which exit node the user is using. This makes it next to impossible to successfully identify users by traffic correlation.

Also it is theoretically possible that an attacker has physical access to the VPN server in the data center. In that case he can possibly execute a de-anonymization attack on the VPN user. A cascaded connection protects against this attack vector: Since the user’s traffic is encapsulated with an additional layer of encryption for each hop in the cascade, no traffic can be read or correlated with incoming traffic.

The attacker would still see outgoing encrypted traffic to another VPN server but he cannot determine whether this is a middle or exit node. To successfully intercept and decrpyt the traffic, the attacker would need to have physical access to all hops in the cascade simultaneously. This is practically impossible if the hops are in different countries.

Using a multi-hop setup with strong encryption and other privacy tools provides you with a high level of online anonymity and security.

Double VPN

Double VPN servers are a unique feature with some services.

With a double-VPN configuration, the first server could see your originating IP address, and the second server could see your outgoing traffic, but neither server would have both your IP address and your outgoing traffic.

double VPN

This setup should still offer decent performance and it will also offer a higher level of security and privacy over a single-hop setup.

There are a few VPNs offering double-hop configurations that I have tested and found to work well:

  1. NordVPN – $3.29 per month (with this 63% off coupon); based in Panama; 31 double VPN configurations (see the NordVPN review)
  2. Surfshark – $3.29 per month; based in The Netherlands; 15 double-VPN server configurations (see the Surfshark VPN review)
  3. ProtonVPN – $8.00 per month; based in Switzerland; 48 double VPN servers (see the ProtonVPN review)
  4. VPN.ac – $3.75 per month; based in Romania; 22 double VPN configurations (see the VPN.ac review)

Can you still get fast speeds with double VPN?

Are double VPN servers fast?

In my own tests, I have found that you can still get excellent speeds with some double VPNs (but not all).

The fastest double-VPN we have tested was with NordVPN on a USA-Canada server configuration at 214 Mbps download speeds:

double vpn server speeds
NordVPN is the fastest double VPN we have tested to date.

You can see server options and prices on the NordVPN website here.

On the opposite end of the spectrum is ProtonVPN, which delivers sluggish speeds in most performance tests. You can see examples of this in the ProtonVPN vs NordVPN comparison.

One drawback with the double-hop VPNs mentioned above is that they only offer static configurations. This means that you cannot configure your own unique multi-hop VPN using any server in the network.

Additionally, you can also create double-hop connections with VPNs that offer self-configurable server selection, which we’ll examine more below.

  1. Perfect Privacy – Up to four servers (plus the NeuroRouting feature)
  2. OVPN – Up to two servers (but the multi-hop feature is a paid add-on, as we covered in the OVPN review)
  3. IVPN – Up to two servers

Ok, so double VPN servers are great — but what if you want even more hops? Or perhaps you want to select custom locations for your multi-hop VPN connection.

Self-configurable multi-hop VPNs

A self-configurable multi-hop VPN allows you to individually select the servers in the VPN cascade. Here are a few VPN services offering this feature.

1. Perfect Privacy (four VPN server hops)

Perfect Privacy allows you to create self-configurable VPN cascades with up to four hops directly in the VPN client. I tested this feature out for the Perfect Privacy review with both the Windows and Mac OS clients and found everything to work well.

Here is a four-hop VPN server cascade: Frankfurt >> Copenhagen >> Calais >> Malmo

Perfect privacy four VPN servers

With this configuration, your true identity and IP address will be protected behind four different encrypted VPN servers.

Every website you visit will only see the server details of the last hop in the VPN cascade. You can simply enable the multi-hop configuration setting, and then dynamically add or remove VPN servers in the VPN client. The last server in the cascade will reflect your publicly-visible IPv4, IPv6, and DNS resolvers.

Perfect Privacy is also one of the few VPNs with IPv6 support.

3. OVPN (two hops)

OVPN is a Swedish VPN service that offers multi-hop configurations through an add-on feature. This feature is $5 per month in addition to your regular VPN subscription. This is similar to ProtonVPN and the Secure Core option,  which is more expensive than the basic subscription tier.

You can route traffic over two hops with OVPN. OVPN also supports IPV6.

4. IVPN (two hops)

IVPN is a VPN service based in Gibraltar. It offers users the ability to route traffic over two hops, but does not support IPv6. However, IVPN does support WireGuard VPN protocol.

Like some of the others we’ve covered, IVPN prices are above-average, but it is also a fully-featured VPN with clients for all major operating systems and devices.

Dynamic multi-hop VPN configurations (NeuroRouting)

Another interesting development in multi-hop connections and advanced security is NeuroRouting.

This is a unique feature was officially launched in October 2017 by Perfect Privacy.

NeuroRouting is a dynamic, multi-hop configuration that allows you to simultaneously route your traffic across numerous unique/different server configurations in the network. Here is an overview of this feature:

  • Dynamic – Your internet traffic is dynamically routed across multiple hops in the VPN server network to take the most secure route. The routing path is based on TensorFlow, an open source software for machine learning, and data remains in the network as long as possible. Being based on TensorFlow, the network continually learns the best and most secure route for a given website/server.
  • Simultaneous – Each website/server you access will take a unique route. Accessing multiple different websites will give you numerous, unique multi-hop configurations and IP addresses at the same time, corresponding to the location of the website server and the last VPN server in the cascade.
  • Server-side – This feature is activated server-side, meaning every time you access the VPN network, NeuroRouting will be active (unless you disable it from the member dashboard). This also means it will work on any device – from routers to Mac OS and Android. Finally, NeuroRouting works with OpenVPN (any configuration) as well as IPSec/IKEv2, which can be used natively on most operating systems.

The image above shows NeuroRouting in action, with the user connected to a VPN server in Iceland, while accessing four different websites located in different parts of the world.

You can learn more about NeuroRouting here.

Multi-hop VPN chains with different VPN providers

Ok, what if you want to add different VPN providers to the mix?

VPN chain

Another option is to create chains using more than one VPN provider at the same time. This is sometimes referred to as a “VPN within a VPN” or a “nested chain” of VPNs.

This is a good option for protecting users against a VPN that may be compromised, as well as a VPN server that may be compromised.

Here are a few different ways to do this:

VPN 1 on router > VPN 2 on computer/device

This is an easy setup with a VPN on a router and then using a different VPN service on your computer or device, which is connected through your VPN router. Choosing nearby servers will help minimize the performance hit with this setup.

VPN 1 on computer (host) > VPN 2 on virtual machine (VM)

This is another setup that can be run without much hassle. Simple install VirtualBox (free), install and setup the operating system within the VM, such as Linux (free), and then install and run a VPN from within the VM. This setup can also help protect you against browser fingerprinting by spoofing a different operating system from your host computer.

You can also add a router to the mix, using three different VPN services:

VPN 1 on router > VPN 2 on computer (host) > VPN 2 on virtual machine (VM)

Lastly, you could also create virtual machines within virtual machines, or daisy-chain virtual machines. (If you are new to virtual machines, there are many videos available online that explain setup and use.)

Virtual machines are a great privacy and security tool, since they allow you to create isolated environments for different purposes – also known as compartmentalization. Within VirtualBox, you can create numerous different VMs using various operating systems, such as Linux, which you can install for free. This also allows you to easily create new browser fingerprints with each additional VM, while also concealing your host machine’s fingerprint.

Use Linux – When setting up VMs, I’d recommend running a Linux OS, for the following reasons:

  • Free
  • Open source
  • More private and secure than Windows or Mac OS

Ubuntu is user-friendly and easy to get going in minutes.

Note: Be sure to disable WebGL in Firefox with all your VMs (see the instructions in the Firefox privacy guide using about:config settings). This will prevent graphics fingerprinting since all the VMs will be using the same graphics driver.

We will be covering the topic of nested VPN chains more in the Advanced Privacy Guides series.

Mirimir has also written some guides on setting up nested VPN chains:

When should you not use multi-hop VPN chains?

If your top priority is speed and performance, I would recommend using a single-hop VPN. So when would you want to prioritize speeds? Here are a few situations:

Conclusion on multi-hop VPNs in 2023

A multi-hop VPN configuration is an excellent way to achieve a higher level of privacy and security while also distributing trust across data centers and adding extra layers of encryption.

However, you should also understand that even when routing traffic over numerous hops, you are still placing all your trust in a single VPN service. Therefore this won’t protect you if the VPN itself is compromised. To get around this issue and further distribute trust, you can use nested VPN chains, with we will discuss more in future advanced privacy guides.

One of the simplest methods for using a multi-hop VPN on all devices would be to utilize the NeuroRouting feature from Perfect Privacy. Simply activate NeuroRouting from the member dashboard, and it will automatically be applied to all devices that connect to the VPN, with any protocol, any app, and any device. Because it is a server-side feature, rather than controlled within the client, it will simply work with everything that connects to the VPN.

Here is a recap of the multi-hop VPNs we’ve covered in this guide.

Double-hop VPN services (fixed locations, not self-configurable)

  1. NordVPN – $3.29 per month (with this 63% off coupon); based in Panama; 31 double VPN configurations (see the NordVPN review)
  2. Surfshark – $3.29 per month; based in The Netherlands; 15 double-VPN server configurations (see the Surfshark VPN review)
  3. ProtonVPN – $8.00 per month; based in Switzerland; 48 double VPN servers (see the ProtonVPN review)
  4. VPN.ac – $3.75 per month; based in Romania; 22 double VPN configurations (see the VPN.ac review)

Self-configurable VPN services:

  1. Perfect Privacy – Up to four servers, plus the NeuroRouting feature; $8.95 per month; based in Switzerland (Perfect Privacy review)
  2. OVPN – Up to two servers; $7.00 per month (but the multi-hop feature is a paid add-on for $5.00/month); based in Sweden
  3. IVPN – Up to two servers; $8.33 per month; based in Gibraltar

This multi-hop / double VPN guide was last updated on January 3, 2023.

About Sven Taylor

Sven Taylor is the lead editor and founder of Restore Privacy, a digital privacy advocacy group. With a passion for digital privacy and accessible information, he created RestorePrivacy to provide you with honest, useful, and up-to-date information about online privacy, security, and related topics.

Reader Interactions

Comments

  1. polik

    to my mind Perfect Privacy is the best and if they’d add tor to the windowsApp it would be greatest great

    Reply

  2. ken

    I have the recent version of cloudflare WARP program/app installed on my laptop and smartphone. I am tethering my laptop to my smartphone via USB cable connecting to internet using cellular network. Is my input to internet encrypted once ( laptop or smartphone ) or twice ( laptop and smartphone )?

    Reply

    • Cypher

      Hello Ken:
      1. Cloudflare == google == direct feed to the 14 eyes agencies & XKeyScore.
      2. Dump CloudFlare.
      3. Your actual question is irrelevant in light of this.
      4. Due diligence: Seek other options.

      Reply

  3. Mirko

    I`m kinda missing hide.me in this article. This VPN Provider, based in Malaysia has a perfect double-hop feature where you even can set your entry- and exit-note all for yourself from all of their servers.

    For example, I set up a double-hop connection for privacy friendly countries, Switzerland -> Iceland or Sweden -> Iceland and the speeds are quiet good. With a 1 Gigabit connection I`m still getting about 200-300 Mbit/s Download in Speed-Tests.

    This VPN, specially with this dynamic double-hop feature is definitely worth trying in my opinion!

    Reply

  4. LeRoy Knudsen

    Sven, I’m a baby in all this info pertaining to security etc. My question is what do you install first than second etc. i hate confusion and mistakes as important as this is. Is there some guide to how to install all needed downloads for max. security? My Desktop and my iphone is were i need to be wanting to have the security you mentioned I need to get a new email and other mistakes I’ve made! My E-MAIL: [redacted for privacy]. I’m reading all of your articles and want to be able to in future be able to comment with some knowledge like some of your guys.

    Reply

    • Sven Taylor

      LeRoy, I’d recommend first just getting a VPN set up on your primary computer. This is straightforward. Simply sign up for a good VPN, download the app for your computer, connect to a VPN server, and you’ll be good to go.
      If you sign up with NordVPN, they can walk you through the installation process. And as mentioned above in this article, you can easily connect to their Double VPN servers to encrypt traffic over two hops.
      You can get a discounted price on NordVPN here.

      Reply

  5. Frank

    Thanks for the article, Sven. Maybe a good idea to also run TOR: first start the VPN, then run TOR. That way, the VPN can’t see what the user is doing. Is that correct?

    Reply

    • Sven Taylor

      That isn’t necessary. If you don’t want the VPN to see what sites you visit, you just need to:
      1) Start the VPN app on your desktop.
      2) Open the Tor browser (or Brave with Tor window) and use the internet as normal.
      The VPN sees your IP, and all browsing activity goes through Tor, making it invisible to the VPN.

      Reply

  6. Wolfgang Zwingli

    Apologies to the admin but a small error. The article states Surfshark is based in the British Virgin Islands. However, they are located in The Netherlands as of today. Regards, Wolfgang Zwingli

    Reply

  7. BoBeX

    Hi Sven,

    Great article – exactly what I was looking for.
    The virtualisation solution is the one which will most suit me primarily for the anti-fingerprinting benefits.

    Does it make any sense to use two subscriptions to the same vpn provider, one on the guest, one on the host?

    Would it be the case where an IP leak did occur (and the kill switch failed) that this would be a failure at an isolated single vpn server and that using two distinct servers (with the same vpn provider) would likely protect this?
    Or is it the case that if an ip leak occurred that it could be the result of an update that may be pushed to multiple servers simultaneously and that having two distinct servers (with the same provider) would offer no protection?

    Do VPNs offer Firewall protection and would using two distinct providers mean that using two providers with two configurations mean a adversary would have two effectively pass to tests? And would this offer additional protection?

    Would it be sensible to chose two vpn providers that use different vpn protocols? And would this mean that an exploit discovered in the first would be mitigated by the low likely hood of the same vulnerability appearing in the second?

    In short (to make answering easier) which of the above hold validity?
    And I imagine where the above do hold some validity that these would be extreme precautions?

    Just adding two Nordvpn acounts, one to the guest and one two the host should be as least a secure as multi hopping (with two servers) and more secure than double hopping (if I read your article correctly that traffic in double hopping is only encrypted once)?

    Regards,

    BoBeX

    Reply

    • Sven Taylor

      Hi BoBeX, we are extremely busy with updates for 2022 content and I don’t have time to go deep on all your questions. You definitely do not need two accounts for the same VPN service though.

      If you are running multiple VPNs at the same time, such as one on your router and one on your OS, I don’t see an IP leak happening at all.

      No, VPNs do not offer firewall protection. The two are completely different tools for different purposes.

      Yes, you can use different VPNs with different protocols, it shouldn’t be a problem. Example: OpenVPN on a router and WireGuard on a laptop.

      Reply

  8. Motoko Kusanagi

    Dear Editor
    Im new to data and privacy awareness and i found your articles are very informative and helpful and i will share it to my friends. I have a question on vpn multi hop; for example a user use ExpressVPN’s Lightway on his router and he is also connect to NordVPN’s NordLynx on his computer, is this also called as vpn multi-hop? And secondly will connection be super speed with these two cutting edge protocol combined (assuming he subscribed a good internet plan)? Or these combinations will make connection become slower but superb security? Thank you Editor.

    Reply

    • Sven Taylor

      Yep, you’ve got the right idea. I would think this setup should be pretty fast. Lightway with ExpressVPN and WireGuard with NordVPN both have excellent performance. You may also want to connect to nearby servers with both VPNs to minimize latency.

      Reply

  9. C.A.

    IVPN also offers a configurable double hop in both their Android app as well as Windows client. You can choose both the entry and exit server.

    Reply

    • Sven Taylor

      Yep, it is listed above, along with a few others that we have not yet tested.

      Reply

  10. Pete

    When using double-hop VPN, is there a recommended order of choice? I use SurfShark ATM, and currently there are 14 double-hop choices. Since I am in the US, what are your recommendations on which option to choose? Ingress in US and egress remote country or the other way around? Or should both ingress and egress be in remote countries? Hopefully my question makes sense and thank you in advance.

    Reply

    • Sven Taylor

      Hi Pete, as for location, I do not think it makes a big difference in terms of privacy or security. I’d go with whichever combination performs the best for you.

      Reply

      • Pete

        Thanks, Sven. It appears, at least thus far, the NL to US is performing well. As FYI, the terminating IP in the US is showing Dallas, TX as the geolocation. I haven’t tried all the others yet, but I’m satisfied with the performance so far. Happy Holidays!

        Reply

  12. Captain

    Does using VPN1 on the operating system and using VPN2’s browser extension offer any sort of benefit?

    Reply

  13. Anonymous

    Would I be able to combine using the multi-hop cascade service from Perfect Privacy with using a different VPN on a router or on a VM (or both)? Would that increase anonymity and security compared to if I were just to use one of these methods?

    Reply

    • Sven Taylor

      Yes, you could probably combine the two, although I haven’t tested it.

      Reply

  14. Ken

    With regards to tunneling VPN through another VPN using VMs, I contacted several VPN providers including many of the mentioned above and most advised against it, stating that the encryption its self won’t function, meaning that transmission security will deteriorate. I have tried it and surprisingly, I didn’t have speed issue, which made me wonder if encryption is happening at all.

    I also contacted OpenVPN.net for the same and they advised against tunneling VPN through another VPN, they also thought that no provider would support that.

    The main focus when using a VPN is to enhance the transmission encryption/Security and avoid malware injection to the transmission.

    Appreciate your thorough advise.

    Reply

    • Sven Taylor

      It’s very easy to do. And you shouldn’t need any support from the VPN itself. If they offer a Windows client, then it will work in a Windows VM. It’s that easy.
      But if you don’t want to deal with VPNs, then just use a high-powered VPN router with one VPN, and then another VPN service on your computer. This works well too. I do it with the Vilfo router.

      Reply

  16. MayhemReignsTV

    I only saw 22 double hop configurations for NordVPN but I am very happy with the performance of the one that I am using. The website could be better for selecting servers, but I am a set it and forget it type when it comes to things like this. I disagree with you on one point. A single hop VPN is fine if you’re trying to prevent your real IP being revealed to peers online. But with no privacy laws anymore in the US even on intermediary networks, you need a double hop going outside the country and then back in so as not to run into some real pains in the neck when it comes to purchasing goods online. In my book, a single hop to Canada would normally be good enough if not for that. But given that some geolocation goes strictly on your IP address including what form of money you are paying in, you need a US exit node.

    Reply

    • Sven Taylor

      Indeed, I’ll add Surfshark to the next update. Thanks.

      Reply

  18. Courtney

    So I am working with pfSense and have access to two VPN providers that permit multiple simultaneous connections. I understand that they have to be logged into and that is the final downfall once reviewed by law enforcement if the providers are not keeping up their end of the no logs policy, I’m just working on this as a project. If I’m going to break the law and do something stupid to risk my freedom I’d at least start with an air gaped machine and crack a random victims WiFi, but I enjoy going outside when I feel like it. I have established multiple VPN Clients within the Firewall/Router, starting with say connection 1 to provider 1 via my WAN, connection 2 connects to provider 2 via OpenVPN connection 1. Now I create connection 3 using another connection from provider 1 which in turn connects to connection 2 as it’s WAN. In theory I feel like this works, but in the end all I’ve done is secured data through connection 1 and 2 while directly connecting to connection 3 right? But then again connection 3 see all traffic as being sent from connection 2 IP Address as it transverses NAT translations. So again in theory any surveillance has to trace the IP Address and port address translation and then finds that connection was coming from connection 2 and again has to back track the port address translation to my ISP IP Address connection to connection 1 right? All of my CCNA, CyberOps, and CEH studies say yes but a second opinion never hurts. Just trying to push the envelope to see if I am missing anything. I’m guessing if I throw a Tor connection in the middle and connect to a VPN at the other end that would be mask even more. Then establish a decentralized connection through Block Chain using the Tachyon project. Now I should be secure in sending end to end encrypted messages via the Signal protocol to say hello to my friends?

    Reply

  19. Ariel

    Great work respectprivacy.com, please keep it up for us regular folks!
    Just to make sure I understand that. What would happen if my setup is VPNonHOST (provider1) -> VPNonROUTER (provider2) and VPNonROUTER would be compromised. Would my router be exposed? If so and if it is a home router than such doublehop setup doesn’t make much sense. Or would it be just VPNonHOST that would be exposed and I’m still good? Thank you.

    Reply

    • Sven Taylor

      I’m not sure what “exposed” means exactly in this context, but the idea here is that you have two layers to protect your IP address, location, and identity. So if the VPN router failed to protect this data, the VPN on your host machine (computer) would still keep you safe.

      Reply

  20. A55

    Hi Sven, again really really helpful guide. Not sure how recent this development is but Mullvad also offers ‘double-hop’ VPN configuration with wireguard as part of they standard service, so no extra fees – see for example
    https://mullvad.net/en/help/multihop-wireguard/
    I tried it on Linux, double hop speeds very fast; you can essentially configure any combination of 2 wireguard servers yourself.
    just for info

    Reply

    • Sven Taylor

      Cool, I’ll have to add Mullvad to this guide with the next update. Thanks for the info.

      Reply

      • A55

        Great! – I know slightly different topic (Wireguard vs OpenVPN) but Mullvad multihop with 2 Wireguard servers gives me much higher speeds – ‘background speed’ almost 100 Mbps with no VPN.
        With OpenVNP and single VPN server setup -> speeds around 40-50 Mbps;
        but using ‘double hop’ Wireguard I get speeds of 60-70 Mbps (similar location used to OpenVPN).
        I know still some loss in speed but overall quite impressive I thought.

        Reply

Leave a Reply

Your email address will not be published. Required fields are marked *