WebRTC

PRIVACY

Last updated: 10 March 2022


WebRTC is a technology that allows users to communicate with video and audio directly in the browser without any plugins installed. An unfortunate side effect is that your real IP is at risk of being exposed, stripping you of your anonymity.

However, you can disable WebRTC. Learn more about WebRTC on Wikipedia.

Please note that disabling WebRTC will cause some websites that use it to not work properly. You might therefore want to re-enable it when you're not using Mullvad.

How do I test my browser?

Visit our Connection check to check whether or not your browser uses WebRTC. You're safe if the WebRTC box is green. If it's red, then follow our instructions below for disabling WebRTC.

screenshot showing browser info about WebRTC leaks

You can also check for WebRTC leaks with Browserleaks.com. Check that the Public IP Address is either n/a or showing your Mullvad IP-address.

Disable WebRTC in your browser

Note: Firefox is the only browser that can properly disable WebRTC completely.

Firefox – easy method

Desktop and Android users can use the Disable WebRTC plugin for Firefox. Click on the "Add to Firefox" button and follow the instructions to install the plugin.

Once installed, it will disable WebRTC by default. You can check by looking for the plugin's 'W' icon in the Firefox toolbar. The plugin is working if the icon is green. Click it and it will turn red, meaning that WebRTC is enabled again.

Firefox – advanced method

Use these instructions if you wish to manually disable WebRTC:

  1. Type "about:config" into the address bar and hit Enter.
  2. Click the button "I accept the risk!".
  3. Type media.peerconnection.enabled in the search bar. Only one entry should appear.
  4. Right-click on the entry and choose "Toggle" to change the Value column to "false".

To enable WebRTC again, follow the instructions until the Value column changes back to "true".

Chrome and Microsoft Edge (Chromium)

For better security use Firefox instead, as there is currently no better working solution for Chrome and Edge and plugins are easily circumvented.

iOS: Chrome on iOS does not seem to implement the vulnerable parts of WebRTC yet.

Advanced users: read our Advanced options section.

Safari

macOS:  Click on Safari, then go to  Preferences -> Advanced ->  Enable "Show Develop menu in menu bar", after that open the Develop menu > Experimental Features, and then uncheck WebRTC mDNS ICE candidates in the bottom. However this is an experimental feature so we recommend that you instead use Firefox as your browser and follow our instructions for disabling WebRTC in Firefox.

iOS 13 and below: Go to the Settings app, tap on Safari, scroll all the way down, and tap on Advanced, and then in Experimental features, disable WebRTC mDNS ICE candidates. (do keep in mind it is an Experimental feature). This option has been removed from iOS 14.

Brave (desktop)

Go to Settings and click on the Magnifying glass icon in the top right corner and search for "webrtc". Under "WebRTC IP Handling Policy" select Disable Non-Proxied UDP.

Advanced options

For advanced users, as long as you do not allow JavaScript on any of the websites you visit, this plugin works:

Understand that this plugin can break websites if you do not allow JavaScript on them.