This list of VPN providers is in random order. This list is populated in part by About.com users who submit their suggestions and offer their personal reviews. If you wish to add to this list, you may submit a recommendation for a VPN service here.
Note on VPN speeds: expect your internet speed to be reduced by up to 75% while you are using your VPN. VPN speeds of 2 to 4 Mbps are common for cheaper VPN's. Speeds of 5 Mbps per second are good. VPN speeds over 15 Mbps are excellent.
Note on VPN encryption protocols: there are 3 common ciphering options for VPN's: OpenVPN, L2TP/IPsec, and PPTP. For most desktop users, OpenVPN is the strongest encryption and fastest data transfer. However, L2TP may be an even better option than OpenVPN in two special circumstances: you want to use multiple mobile devices on your VPN; or if you live in a country with oppressive government rules on internet use (e.g. China, Egypt). While not as fast as OpenVPN, L2TP is difficult for authorities to block, and it generally offers more support for mobile devices.
ExpressVPN
Positives: Fast speed, servers in 39 countries , iOS and Android apps, 30 day money back guarantee, no usage logs
Negatives: Pricing is a bit high
ExpressVPN wins our number one spot because it provides a balanced range of services that makes it ideal for mainstream VPN users. A large and established provider, it has servers in 39 countries across the world, so it is well-placed to provide its typically great speed performance wherever you are.
In addition to simple but highly functional Windows and OSX clients, ExpressVPN has nifty apps for Android and iOS devices, perfect for protecting your internet connection on the move. Here we like to mention that their Android app is truly beautiful and easy to use. It also has detailed instructions for setting up in Linux and on a range of routers.
ExpessVPN keeps no usage logs and there is a very generous 30 day money back guarantee to get you started. Pricing is not the cheapest, but you get what you pay for, and ExpressVPN delivers.
Try Out the Best VPN Today!
30 day moneyback guarantee
2. VyprVPN
Positives: fast, 160-bit and 256-bit OpenVPN encryption (Pro only), servers in38 counties, Android app, iOS app, 7 day money back guarantee, up to 3 simultaneous connections, P2P: yes
Negatives: keeps logs, US based, a bit pricey
VyprVPN is a large provider run by global consortium Golden Frog (based in the US), with servers in 38 countries worldwide. Like ExpressVPN it is good general choice, as it has simple but effective Windows and OSX clients, and very nice Android and iOS apps. Linux is also supported. If privacy is a priority however then VyprVPN is not a good choice as it keeps logs for 90 days, though many will appreciate the 7 day money back guarantee, the fact that 2 devices (or 3 for the premier package) can be connected at once, and the very good 160-bit to 256-bit OpenVPN encryption. Note that these comments apply to the Pro service, not the PPTP-only Basic plan.
3. AirVPN
Positives: accepts Bitcoin, no logs, 256-bit AES encryption, dynamic port forwarding, uses shared IPs, real-time user and server statistics, support for Tor over VPN and VPN through SSL and SSH tunnels, good speeds, 3 day free trial, based in Italy (where DRD does not apply to VPNs, )P2P: yes,
Negatives: 0 simultaneous connections by default (but more can be purchased), mainly North America and Europe servers (plus some in Singapore)
Although largely focused on Europe, AirVPN is our first choice if privacy and the NSA is an issue for you. Set up by internet neutrality hactivists and activists following a Pirate Party festival in Rome, this Italian provider keeps no logs, uses shared IP addresses, accepts Bitcoins, and voluntarily abides by various EU privacy directives and codes of best practice (but not the evil Data Retention Directive which does not apply to VPN providers in Italy). It uses excellent 256-bit AES OpenVPN encryption, and supports unusual privacy technologies such as VPN over Tor, and VPN through SSL and SSH tunnels. AirVPN supports ‘network transparency’ with detailed server information, allows P2P downloading and, although only one simultaneous connection is allowed by default, more can be added for around $2 per month.
4. Private Internet Access
Positives: accepts Bitcoin, no logs, fast, up to 256-bit AES OpenVPN encryption, uses shared IPs, client features port forwarding, VPN kill switch and DNS leak protection, 3 simultaneous connection, Android app, P2P: yes
Negatives: No free trial, based in US
If privacy matters to you but you want a US based solution (see Considerations below), then PIA offers a fantastic service. It keeps no logs keep, uses shared IPs, and accepts anonymous payment via Bitcoins. It also has newly implemented strong OpenVPN encryption (to up to 256-bit AES OpenVPN, with SHA-256 hash authentication and 4096-bit RSA handshake encryption), a very fully featured Windows and OSX client with DNS leak protection, IPv6 leak protection, port forwarding, and an internet kill switch, is happy with P2P downloading, and allows up to five devices to connect at once (ideal for using with its excellent Android app). Compared to ExpressVPN and VyprVPN we hear a lot of complaints that PIA is not very non-techy friendly, but for experienced users not worried about it being based in the US, PIA is excellent.
5. BolehVPN
Positives: no logs, fast, great OSX and Windows software, 2 simultaneous connections, HK server uses shared IPs, P2P: yes
Negatives: 128-bit Blowfish OpenVPN encryption could be stronger
This Malaysian based provider gets our number five spot because it is an excellent choice for users in China and throughout the Far East. It keeps no logs and has an excellent OSX and Windows VPN client, which while having a bit of steep learning curve, has a wealth of connection options, including to ‘cloaked routers’ in Hong Kong and the US East Coast (excellent for users in mainland China). Super-fast, BolehVPN is also happy to allow P2P downloading.
6. Mullvad
Positives: accepts Bitcoin (and cash sent in post), no logs, good speeds, cheap, client features internet kill switch and DNS leak protection, uses shared IPs, based in Sweden (where DRD does not apply to VPNs), P2P: yes
Negatives: Some complaints about potential security lapses and performance, encryption could be better, limited number of servers
A small but plucky Swedish provider, we love Mullvad’s attitude, and it is a great choice for privacy and evading NSA surveillance. It has a number of rough edges, most notably the 128-bit Blowfish OpenVPN encryption, but it keeps no logs, uses shared IPs, and accepts not just Bitcoin payment but even cash sent by post (wow!). In addition to this, while its Windows OpenVPN client could be prettier, it supports DNS leak protection, IPv6 leak protection, port forwarding and an internet kill switch, and up to three devices can be connected at once. P2P downloading is also not a problem.
7. LiquidVPN
Positives: modulating (shared) IPs, string 257-bit non NIST encrytion, no usage logs, fantastic client with customizable scripts, basic service is very cheap, 4 simultaneous connections on Pro service, port forwarding, stealth server, P2P: yes
Negatives: based in US
This small US provider has continually impressed us with its forward-thinking and innovation. The most eye-catching thing about its service is ‘modulating IP’s, which continually changes your IP address, making it very difficult to track your actions on the internet, although the fact that it is the only provider to move away from NIST encryption standards is also praiseworthy, as is the excellent and highly customisable VPN client which can run scripts such as Fix DNS leaks, Disable Internet on VPN, Close Program on VPN Disconnect, and many more. Although performance issues were a problem when we first reviewed the service, this has since greatly improved.
8. CactusVPN
Positives: no usage logs, 256-bit AES OpenVPN and SSTP encryption, blazing fast, AutoProxy, neat client with application killer, based in Moldova, uses shared IPs P2P: yes
Negatives: does not accept Bitcoins, restrictive policy on multiple connections (better than none though!), limited number of servers
Based in the Eastern Europe ‘Wild West of the internet’ Moldova, CactusVPN impresses us with its no usage logs policy, excellent encryption, low price, and nifty software (featuring a per-application kill switch). We also think that its ‘AutoProxy’ service, which rather than changing your IP for every site you visit (as most Proxy services do), allows you to configure your browser so that your IP will only change for a list of certain websites (such as BBC, Spotify etc.) is very funky. It doesn’t accept Bitcoins, has a rather odd (and restrictive) policy on multiple connections, and is limited to servers in the UK, Netherlands and US, but nevertheless shows a great deal of promise.
9. TorGuard
Positives: No logs, very fast, shared IPs, SSH tunnelling, DD-WRT routers, server status information P2P: yes
Negatives Encryption ranges from great to meh, customer service could be better
TorGuard has upped its game over the last year, and now offers a fine service, with servers in 18 countries across the world. Its legal jurisdiction is a bit uncertain but seems ok, it keeps no logs, allows P2P downloading, uses shared IPs, accepts Bitcoins, and has a generous 30 day money back guarantee. It also sells pre-flashed DD-WRT routers, supports SSH tunnelling, has a great Android app, and runs stealth servers to help those in places such as China and Iran evade censorship. Encryption ranges from great to meh, and customer service could be better, but TorGuard is an excellent all-round choice.
10. NordVPN
Positives: No logs, accepts Bitcoins , 256-bit AES with ‘double encrytpion’, Tor over VPN , 2 simultaneous connections, P2P: yes
Negatives: inconsistent connection speeds
Although connection performance is a bit haphazard, this Panama based provider impresses us with great 256-bit AES encryption, a no logs at all policy, and that it accepts anonymous payment using Bitcoins. It also now features ‘double encryption’, were data is passed between two server nodes between you and the internet, and encrypted each time, which sounds fantastic, as well as Tor over VPN. We like it.
Considerations
We have a good VPN buying guide available, but to summarize (and update a little to reflect developments over the last year, plus mention some issues not covered in that article), things you want to consider when choosing a VPN provider are:
1. Do they keep logs?
If all you want is to access geo-restricted material then this may not matter, but if you are interested in using a VPN to protect your privacy then it is vital that it keeps no logs of your internet activities. If logs are kept then (whatever the company says), it can be made to hand them over to the authorities, or they can be hacked by criminals. If no logs are kept then there is nothing to hand over / hack. Note that we make a distinction between keeping logs, usage logs, connection logs and no logs;
‘No usage logs’ = keeps connection logs (only).
2. OpenVPN & encryption
We firmly believe that OpenVPN is the only truly secure VPN protocol these days, and where possible should be your only choice. An increasingly small number devices do not support OpenVPN, in which case you should chose L2TP/IPsec over PPTP (which is laughably insecure) whener possible.
Also, following news of the NSA’s concerted efforts to undermine international encryption standards, we have revised our assessment that 128-bit encryption is sufficient, and now recommend 256-bit at a minimum. We would also love to see VPN providers move away from NIST standards (such as AES), but so far only LiquidVPN has done so.
3. Do they accept Bitcoins?
Although Bitcoins are not anonymous in themselves, with a bit of care they can be made so (at least to a high degree), and we believe that any service which trades on the anonymity of its customers (as most VPN providers do) should allow them to pay for the service as anonymously as possible. We therefore see accepting Bitcoins as the mark of a company which takes privacy seriously, and should be a consideration even if you intend on paying using more conventional methods. For details on using Bitcoins for pay VPN anonymously.
4. Do they allow P2P BitTorrent downloading?
Not all do, so if that’s what you want a VPN for, you’d better make sure.
5. Do they use shared or dynamic IPs?
If privacy is important to you then you want a service which uses shared IPs. This means that many users access the internet over a single IP address, making it almost impossible to determine which of that IP address’s many users is responsible for any action on internet. All good VPNs should use shared IPs.
6. How many devices can be connected at once?
In a world where we increasingly access the internet from our laptop, phone and tablet, not to mention wanting our family members to access the internet with the protection afforded by our VPN connection, it is ever more important that more than one device can be connected at once. Unfortunately many providers have been somewhat slow to catch up with the mobile device revolution, and allow no simultaneous connections (i.e. only device can be connected at a time).
7. Does the VPN support your mobile device(s)?
Following on from the last comment, some providers have been slow to support mobile devices, particularly with OpenVPN, while others have swanky apps for Android and iOS. It should be noted however that generic OpenVPN apps are available for both Android and iOS, which can configured to work with standard OpenVPN config files, even when a provider does not explicitly support this.
8. Server locations
If accessing geo-restricted content is important to you (e.g. watching Hulu from outside the US), then it is vital that the provider has servers in the country that the services are restricted to. Similarly, P2P downloaders should chose a country that is P2P friendly (Hong Kong, Panama, Sweden, Netherlands, Romania and Switzerland are all good choices). The closer a server is to you geographically the less lag you will suffer (as the data has less distance to travel), but if privacy is important then we recommend always choosing a server outside your own country’s legal jurisdiction.
9. Where are they based?
Following Edward Snowden’s NSA revelations, the issue of whether the United States is a good place for a VPN provider to be based is a matter of hot debate. Our view is that the NSA cannot be everywhere, but in the US they have the Patriot Act, Pen Orders and a whole raft of legal (and extra-legal) resources with which to force US companies to comply with their wishes. The fact that in the US the debate purely concerns the rights of US citizens is a matter of huge frustration to the rest of the world, but as has been shown many times now, has done nothing to prevent US citizens being spied on their own government.
At least VPN providers in some European counties (not the UK!), Hong Kong, Panama etc. have some legal protections against direct NSA bullying. That every major US tech company (Google, Apple, Microsoft, RSA, the list goes on) has been in cahoots and /or otherwise been compromised by the NSA is now a matter of record, and if even small companies such as Lavabit are forced to shut down rather than hand over all its encryption keys then it seems impossible to us that popular and well-known privacy services such as VPN providers have not been also been compromised. Note that others have a very different take on the situation, and you may like to read the views of our reader Ohana for an alternative viewpoint.
The UK, with its GHCQ spying organization, is as bad as the US, and most EU counties force VPN providers to keep logs thanks to the EU Data Retention Directive. Some EU countries however have not implemented the DRD, have not applied it to VPN providers, or provide other legal protections that make them suitable locations for a VPN service.
10. Other services and unique selling points
Many providers offer unusual (or even unique) services that may be perfect for your needs. We highlight these in our reviews, and try to mention important ones in the summaries above.
No comments:
Post a Comment