What is Virtual Private Network Kill Switch?
A VPN feature that blocks all internet traffic if the VPN connection drops, preventing accidental exposure of your real IP address.
Without a kill switch, a momentary VPN disconnection exposes your real IP and traffic to your ISP.
How It Works
- Monitors the VPN connection continuously
- If the connection drops, immediately blocks all internet traffic
- Traffic only resumes when the VPN reconnects
- Prevents any data from leaking outside the tunnel
Types
- Application-level: Kills specific apps when VPN drops
- System-level: Blocks ALL internet traffic when VPN drops (more secure)
- Firewall-based: Uses OS firewall rules (most robust)
VPNs with Kill Switches
- Mullvad (always-on, firewall-based)
- IVPN (firewall-based)
- Proton VPN (always-on option)
- WireGuard can be configured with firewall rules for kill switch behavior
Should You Use It?
Yes, always. There's no downside to a kill switch beyond a brief internet interruption when the VPN reconnects.
Related Terms
DNS Leak
A security flaw where DNS queries bypass your VPN or proxy and are sent through your normal ISP connection, revealing the websites you visit even when your other traffic is protected.
Split Tunneling
A VPN feature that lets you route some traffic through the VPN while other traffic goes directly to the internet.
Virtual Private Network
A technology that creates a secure, encrypted connection over a less secure network, such as the public internet. VPNs mask your IP address, encrypt your internet traffic, and can make it appear as though you're browsing from a different location.
Have more questions?
Use our guided flow to get the right next privacy step for Virtual Private Network Kill Switch.
Open Guided Flow