The Proxy and the VPN-Server are both a node in the communication between the client and the server.<\/p>\n
Both ways are hiding your IP<\/u> and therefore can be used to bypass geo blocking. Never use an untrusted Proxy\/VPN-Server for hacking, cause you don’t know what they do with these data. A very good example is Hidemyass.com, cause they gave the traffic data from some LulzSec hackers to the FBI. Just if you trust the Proxy\/VPN-Server you should use it for you hacks.<\/p>\n
For sensitive traffic<\/u>, like banking, you should force an encrypted communication. Especially if you are in an untrusted network, like a free WiFi AP. You can either set your browser to use HTTPS only or use an encryped VPN communication with a trusted VPN-Server. This blocks an SSL-Stip attack from a Man-in-the-Middle. A Proxy won’t give you any advantages for that scenario.<\/p>\n
\n
Proxy – HTTP<\/strong><\/p>\n The proxy knows the server via the HTTP request packet.<\/p>\n Proxy - HTTPS<\/strong><\/p>\n The proxy knows the server via the HTTP CONNECT packet.<\/p>\n VPN - HTTP<\/strong><\/p>\n The VPN-server knows the server after decrypting the packet.<\/p>\n VPN - HTTPS<\/strong><\/p>\n The VPN-server knows the server after decrypting the packet.<\/p>\n","protected":false},"excerpt":{"rendered":" The Proxy and the VPN-Server are both a node in the communication between the client and the server. Both ways<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false},"categories":[23],"tags":[],"_links":{"self":[{"href":"http:\/\/www.max-sperling.bplaced.net\/index.php?rest_route=\/wp\/v2\/posts\/4579"}],"collection":[{"href":"http:\/\/www.max-sperling.bplaced.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.max-sperling.bplaced.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.max-sperling.bplaced.net\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/www.max-sperling.bplaced.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=4579"}],"version-history":[{"count":1,"href":"http:\/\/www.max-sperling.bplaced.net\/index.php?rest_route=\/wp\/v2\/posts\/4579\/revisions"}],"predecessor-version":[{"id":16790,"href":"http:\/\/www.max-sperling.bplaced.net\/index.php?rest_route=\/wp\/v2\/posts\/4579\/revisions\/16790"}],"wp:attachment":[{"href":"http:\/\/www.max-sperling.bplaced.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=4579"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.max-sperling.bplaced.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=4579"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.max-sperling.bplaced.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=4579"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}\r\nClient Proxy Server\r\n |<-- TCP handshake -->| |\r\n |--- HTTP request --->| |\r\n | |<-- TCP handshake -->|\r\n | |--- HTTP request --->|\r\n | |<-- HTTP response ---|\r\n |<-- HTTP response ---| |\r\n\r\n -------------------------\r\nPacket (request): | MAC | IP | TCP | HTTP |\r\n -------------------------\r\n\r\n- MAC: Dst = <Proxy_MAC>\r\n- IP: Dst = <Proxy_IP>\r\n- TCP: Dst Port = <Proxy_Port>\r\n- HTTP: Destination URI = <Server_URI>\r\n<\/pre>\n
\n\r\nClient Proxy Server\r\n |<-- TCP handshake -->| |\r\n |--- CONNECT site --->| |\r\n | |<-- TCP handshake -->|\r\n |<-- TLS handshake -->|<-- TLS handshake -->|\r\n |--- HTTPS request -->| |\r\n | |--- HTTPS request -->|\r\n | |<-- HTTPS response --|\r\n |<-- HTTPS response --| |\r\n\r\n --------------------------\r\nPacket (request): | MAC | IP | TCP | HTTPS |\r\n --------------------------\r\n\r\n- MAC: Dst = <Proxy_MAC>\r\n- IP: Dst = <Proxy_IP>\r\n- TCP: Dst Port = <Proxy_Port>\r\n- HTTPS: Encrypted HTTP request\r\n<\/pre>\n
\n\r\nPrecondition between VPN-Client and VPN-Server:\r\n- Pre-shared keys or TLS handshake\r\n\r\nVPN-Client VPN-Server Server\r\n |<----- TCP handshake ----->| |\r\n |--- Packed HTTP request -->| |\r\n | |<-- TCP handshake -->|\r\n | |--- HTTP request --->|\r\n | |<-- HTTP response ---|\r\n |<-- Packed HTTP response --|\r\n \r\n ------------------------------------------------------\r\nPacket (packed request): | MAC_VPN | IP_VPN | TCP_VPN | MAC | IP | TCP | HTTP |\r\n ------------------------------------------------------\r\n \\------ Encrypted ------\/\r\n\r\n- MAC_VPN: Dst = <VPN-Server_MAC>\r\n- IP_VPN: Dst = <VPN-Server_IP>\r\n- TCP_VPN: Dst Port = <VPN-Server_Port>\r\n<\/pre>\n
\n\r\nPrecondition between VPN-Client and VPN-Server:\r\n- Pre-shared keys or TLS handshake\r\n\r\nVPN-Client VPN-Server Server\r\n |<----- TCP handshake ------>| |\r\n |<----- TLS handshake ------>|<-- TCP\/TLS handshake -->|\r\n |--- Packed HTTPS request -->| |\r\n | |----- HTTPS request ---->|\r\n | |<---- HTTPS response ----|\r\n |<-- Packed HTTPS response --|\r\n \r\n -------------------------------------------------------\r\nPacket (packed request): | MAC_VPN | IP_VPN | TCP_VPN | MAC | IP | TCP | HTTPS |\r\n -------------------------------------------------------\r\n \\------ Encrypted -------\/\r\n\r\n- MAC_VPN: Dst = <VPN-Server_MAC>\r\n- IP_VPN: Dst = <VPN-Server_IP>\r\n- TCP_VPN: Dst Port = <VPN-Server_Port>\r\n<\/pre>\n