Home » Blog » How to Disable WebRTC in Chrome for Android to Avoid IP Leaks

How to Disable WebRTC in Chrome for Android to Avoid IP Leaks

WebRTC is an innovation that allows real-time peer-to-peer (P2P) communication and file sharing within a browser. With WebRTC, there’s no more need to download apps (like Skype and Viber) or any browser plug-ins. In fact, Skype has ventured into WebRTC, so that tells you how WebRTC is changing the web communication industry.

You may be taking advantage of WebRTC already if you’re using Facebook products like Messenger, Facebook Live, Workplace by Facebook, and Instagram Live Video Chat. Then there’s also Amazon Alexa, Connect, and Mayday which are using the technology as well. However, it is with Google Hangouts where WebRTC has started it all.

Disabling WebRTC in Chrome for Android

This is all good, but there’s a downside: WebRTC poses a danger to VPN users. That’s because a browser needs to get the real IP address of the other browser it is communicating with. Even in the presence of a VPN, WebRTC can detect a user’s IP address by using a sophisticated technique.  

As WebRTC is supported by most browsers (including Google Chrome for Android), IP leaks become a problem even if you’re using a VPN specifically for Android.

WebRTC leak tests

We did some tests by connecting to a VPN and then checking for WebRTC leaks with BrowserLeaks site (as shown in the image below). Alternatively, you may also use other test sites like IPLeak.

Here’s the test result of an Android device showing a partial WebRTC leak. As you can see, the device’s local IP address is shown:

BrowserLeaks WebRTC Leak Test

The following image also shows a WebRTC leak. But this time, it looks like the VPN was able to handle it. Here, the VPN’s public IP address is shown:

BrowserLeaks WebRTC Leak Test with VPN

We also used ExpressVPN’s WebRTC leak detector. The result is shown below:

ExpressVPN WebRTC Leak Test

While we are on the subject of VPN testing, it will be good for you to regularly test your VPN. A thorough VPN test helps avoid privacy risks like IP leaks, DNS leaks, and IPv6 leaks. Early detection of problems (if any) is better than learning about the issues after your data has been compromised.

How to disable WebRTC in Chrome for Android

While it’s scarier to see your actual IP address in the leak test result, all scenarios we described above are not ideal for your privacy.

This only shows that a leak is happening and that people with bad intentions can take advantage of this vulnerability.

Thankfully, there is a way to disable WebRTC in Chrome Android, unlike in other browsers where you have to rely on extensions.

Follow the steps below to disable WebRTC on Chrome for Android:

  1. Type in chrome://flags/ in the address bar.

Disable WebRTC in Chrome for Android - Step 1

  1. Type WebRTC on the search box to easily find all settings related to WebRTC.

Disable WebRTC in Chrome for Android - Step 2

  1. Look for WebRTC Stun origin header, and disable it. Note that some websites advise having this setting enabled. Our tests have shown that you must disable it.

WebRTC in Chrome for Android - Step 3

  1. You may also disable WebRTC hardware video decoding and WebRTC hardware video encoding. If it makes you feel better, go ahead and disable all WebRTC-related settings there.

Disable WebRTC in Chrome for Android - Step 4

  1. Tap on Relaunch Now.
  2. Test for WebRTC leak again. We used BrowserLeaks. Although RTCPeerConnection and RTCDataChannel are still true, there’s no more IP address detection.

Disable WebRTC in Chrome for Android - Step 6 - BrowserLeaks Test

It’s the same result with ExpressVPN’s WebRTC test, as shown below:

Disable WebRTC in Chrome for Android - Step 6 - ExpressVPN's Test

Disabling WebRTC in other browsers

As previously mentioned, WebRTC is supported by most browsers, including Firefox, Opera, and Chrome for desktop.

Browsers Supporting WebRTC

While Chrome for Android has a built-in capability to disable WebRTC, for other browsers, it’s not as easy as that. Still, it’s possible to turn off WebRTC on other browsers.

To date, VPN providers have not yet developed any WebRTC leak prevention feature. As a VPN user, the burden of avoiding WebRTC leaks lies with you. Aside from disabling WebRTC in the browsers you use, the only thing to do for now is to choose a VPN provider that’s tested and proven.

Leave a Reply

Your email address will not be published. Required fields are marked *