Using a VPN

It is possible for people to steal the data transmitted over your internet connection, stealing details such as credit card details and personal information.

That’s why shopping website addresses start with “https” (the “s” stands for “secure”), and have the lock on them.

The website sets up a temporary, very secure “encrypted”, connection between you and its page, so you can safely transfer financial and personal information.

A Virtual Private Network sets up a similarly secure “encrypted” connection for an entire internet connection. Regardless of what you’re connecting to, people can’t “see” – and therefore steal – your data.

They are an excellent idea for providing security, but they can slow down your internet service significantly, particularly if you’re using a satellite connection.

This page provides an overview of how VPNs work, the possible impact of using VPNs on your connection, and some suggestions on improving your connection over a VPN.

How does a VPN work?

If the internet is a highway, a VPN is a fully-enclosed tunnel with password-protected tollgates at either end.

Once the tunnel is created, either all your internet traffic, or specific parts of your traffic, is directed through the tunnel instead of going through the general public highway.

You have one end of the tunnel.

The other end is located at the VPN supplier.

This can include:

  • Your place of business.
  • Your anti-malware software provider.
  • Your commercial VPN provider.

Ordinarily, when you connect to a website, mail server, streaming video service, or any other service provided over the internet, you connect to your ISP, and then to the relevant internet site.

When you use a VPN, you’ll have software on your computer, device, or router – different kinds of VPN may run differently. Using the username, password, and server address provided to you, you first log into the VPN supplier, which creates the secure tunnel.

Then you connect to your specific internet services, which will all go through the VPN supplier and tunnel instead of directly.

Every piece of data you send and receive over a VPN connection is secured and checked before it goes along the tunnel.

There are many different types of VPN software and suppliers, but they all work broadly the same way.

What equipment do I need to run a VPN?

VPNs can be applied or installed in one of two locations:

1.Your router.

This is the easiest and most secure option. Every computer or device that goes through the router will be running through that encrypted tunnel. You don’t have to remember to turn it on and off again.

You can fine-tune your VPN router software to manage traffic, if you’re confident in tweaking router settings.

However, if VPNs cause an excessive slowdown to your internet connection, a router-applied VPN will cause all your devices to be extremely slow.

2. Your computer or device.

This is a more flexible option. You can turn the VPN on or off using the software on your device, and you can keep one device for secure VPN use and one for faster connections.

It means that any VPN slowdowns will only affect that one device, not all of them.

However, it’s not as secure, and you need to remember to log in and out of the VPN as you need it.

VPN

Illustration of a router-applied VPN. From “How a VPN secures internet activity”. Mohammad Taha Khan, The Conversation, Is your VPN secure? CC BY-ND

Do VPNs work on all connections?

Yes, but it works best on connections with high speed and low latency. It can add a noticeable slowdown to even the fastest connection, due to the cross-checking done to keep the connection secure.

VPNs over a satellite connection

Why are satellite connections a problem?

Satellite internet connections have long latency. This is the time it takes for data to get from your computer to the remote computer via the satellite in orbit.

In order to make a satellite internet connection work well, the connecting software at each end (in your modem, and at your service provider) uses some shortcuts. These prevent the long latency from making your connection think it’s not working at all, and instead simply introduces the familiar 3-4 second delay.

When you set up a VPN connection over a satellite connection, it bypasses these shortcuts.

VPNs can therefore be a particular problem over a satellite connection. The latency makes the VPN software think the connection isn’t working properly, or that the connection has been made insecure.

This can result in:

  • Being unable to make a VPN connection at all
  • Being able to connect, but the connection dropping out constantly.
  • The connection holding stable, but every action being incredibly slow (for example, typing takes many seconds to display on the screen).
  • The connection holding stable, but some software or services just not working, either effectively or at all.

nbn™ metered data

If you’re on nbn™ Sky Muster™ Plus, VPN traffic is all metered, as nbn can’t “see” what sort of traffic is being carried.

You’ll want to turn the VPN off to take advantage of unmetered services.

General tips

  • If possible, apply the VPN on a computer or device only, and not your router.
  • If you’re transferring large files, try to do this on off-peak times, so lighten the load on your VPN.
  • Turn the VPN off for video conferencing if possible. If not, consider using audio only.
  • If the VPN is supplied by your employer, ask the IT department to adjust the VPN settings on the remote access portal (the computer you log in to from home) to allow for a high-latency connection. They may need to speak to their VPN supplier to make this change.
  • If the VPN is applied on your router, connect direct into the NTD to bypass it.
  • If you have an alternative connection – for example, mobile broadband – reserve it for your VPN sessions and use that.
  • Turn off the VPN when you absolutely don’t need it, or when you’re using unmetered content on an nbn Sky Muster™ Plus connection.
  • When using the VPN, turn off everything else using the same connection.
  • Close all unneeded apps or software on your computer or device.
  • Keep VPN sessions as short as you possibly can.
  • Consider upgrading your router. High-powered routers with VPN-specific settings may manage the connection better, and you may be able to tweak the settings to make the best of your connection.
  • Talk to your service provider about your needs. They may have a business-grade satellite connection that will manage VPNs better, or suggestions for a better router.

Technical tips

If you’re comfortable working with the configuration for a VPN, and if your software allows you to make changes, find and adjust these settings.

  1. Set the protocol to TCPv4 instead of UDP.
  2. Disable IPv6 altogether.
  3. Change the destination port from 1194 to 443.
  4. Enable the tcp-nodelay setting.
  5. Ensure the inactive keepalive is enabled.
  6. If keepalive is enabled, then increase the keepalive timeout (for example, double whatever the number is).

Test and adjust (lower) the MTU/frag thresholds.

How do I get a VPN?

Business or employer

If you need to access workplace office services, files, or software, your employer may provide you with workplace VPN details, in addition to other secure office equipment such as a laptop, mobile phone, or remote access token.

Alternatively, they may use a cloud-based office service such as Microsoft Office 365, which requires secure logins but no VPN.

Anti-malware/virus packages

Many anti-malware packages now include a VPN. They claim this provides complete protection of your devices and of your connection.

  • The anti-malware package protects your computer and devices.
  • The VPN protects your connection, by encrypting everything sent over it.

Packages with VPNs come from providers such as Norton, Kapersky, McAfee, Avast, and Bitdefender. Some run their own VPN computers, while some resell third-party suppliers.

PC Mag Australia: The Best Security Suites for 2021

Safety Detectives: 5 Best Antiviruses with VPN Included (& Both Don’t Suck) in 2021

If you plan to use the VPN included in these packages, check two things first:

  1. Where is the VPN server located? If the server is overseas, it may add noticeable slowness to your connection.
  2. Can you turn the VPN on and off as need be?

If the VPN is turned on by default, it may be the cause of an unusually slow internet connection. Test this by turning it off and re-checking your speed.

Own purchase

There are many third-party VPN businesses you can use to secure your internet services, whether for home, business, office, farm, education provider, or other purposes.

We do recommend discussing your needs with a trusted technical advisor. However, the following articles may give you a reasonable idea of the names, costs, and services available.

While there are free VPN services available, look very closely at what they mean by “free”. For example, they may have fine print allowing them to sell your data, have very limited daily data (such as 200Mb), or deliberately slow down your connection until you upgrade to a paid service.

Should I be using a VPN?

This isn’t a simple yes/no answer.

You can choose to add a VPN for your home or business internet connection, to keep your data, and your internet connection as secure as possible.

Most security articles will strongly recommend this.

Such security articles, however, are assuming their readers are based in cities, with a wide choice of connections available.

If you’re working from home, you probably won’t have a choice about using the VPN provided by your employer to keep the business files secure.

Ask yourself these questions when considering a home or small office VPN connection.

  • Where are the VPN computers located? The closer the VPN supplier is to you, the faster your connection will be. Aim for Australian servers, preferably.
  • How secure is the location? Check the fine print very carefully. VPN businesses are in it to make money. While they’re securing your data from everyone else, they can see it, and they have your Again, aim for Australian-based suppliers who are bound by Australian privacy laws.
  • What is the cost? Is it in Australian dollars?
  • Will the VPN allow you to connect to everything you need? Some VPNs don’t connect effectively to streaming video sites such as Amazon Prime, Netflix, or Stan.
  • Do you have enough data? VPN-encrypted data is between 5% – 15% larger than unencrypted data. VPN data is also metered on an nbn™ Sky Muster™ Plus connection.
  • Can you turn it off if you need to? How do you connect? Is the software easy to access and use?

More information

nbn blog: What is a VPN? Understanding virtual private networks

nbn VPN fact sheet: nbn Sky Muster satellite service fact sheet 

SkyMesh: How to use a VPN to work-from-home