Disable WebRTC to Stop Your Real IP Leaking Past Proxies


Sarah Whitmore
Security Concepts
You set up a proxy, confirm your IP shows a different city, and assume your real address is hidden. Then a WebRTC leak test quietly reports your actual home IP anyway. This isn't a bug in your proxy setup — it's WebRTC doing exactly what it was designed to do. Below is what's happening under the hood, how to confirm whether your browser leaks, and how to shut the leak down in the browsers most people use.
What WebRTC Actually Does
WebRTC (Web Real-Time Communication) is an open standard that landed in browsers around 2011. It lets browsers open direct peer-to-peer connections for real-time media — think video calls, voice chat, and file transfer without plugins or extra apps. When you hop on a browser-based video meeting, WebRTC is usually the plumbing carrying the audio and video.
It's genuinely useful technology, and it became ubiquitous as remote work took off. The catch is buried in how peer-to-peer connections get established. To connect two devices directly, each side needs to know how to reach the other — which means learning about your local and public IP addresses. That discovery step is where your privacy can spring a leak.
Why WebRTC Leaks Your Real IP
To set up a direct connection, WebRTC uses a mechanism called ICE (Interactive Connectivity Establishment), which relies on STUN servers to figure out your public-facing IP. Your browser gathers a list of candidate addresses — including your real public IP and local network addresses — so it can pick the best path to a peer.
Here's the important part: this discovery happens directly from the browser and doesn't always follow the same route as your regular HTTP traffic. So even when your page requests go through a proxy or VPN, WebRTC's candidate-gathering can reveal the IP assigned to your actual network interface. The result is a mismatch — your proxy says one thing, WebRTC says another — and the WebRTC answer is your genuine IP.
For anyone doing legitimate work behind a proxy — QA testing localized sites, verifying ad placements, collecting public data, or simply keeping browsing private — that mismatch defeats the point of using a proxy in the first place. If you want the wider context on how browsers give you away, our guide to browser fingerprinting and tracking for proxy users covers the other signals worth watching.
How to Test for a WebRTC Leak
Testing takes under a minute. First, connect through your proxy as usual, then check what IP the outside world sees. You can do that with our own IP geolocation tool, which shows the address and location a site would attribute to you. Next, run a dedicated WebRTC test such as Hidester's WebRTC leak test, which asks your browser for its ICE candidates and displays them.

Say you're routing through one of Evomi's residential proxies and the IP checker places you in Berlin, Germany — confirming the proxy path works. If the WebRTC test then reports a completely different address, that second IP is your real home connection bleeding through. That discrepancy is the leak in action.
If both tools agree — or the WebRTC test shows only the proxy IP — you're clear. If they don't, disabling WebRTC closes the gap.
Disabling WebRTC in Google Chrome
Chrome bakes WebRTC in deeply, and there's no toggle for it in the standard settings menu. The practical fix is a lightweight extension such as WebRTC Control, which adds a toolbar icon to switch WebRTC on and off with a single click.

Because the extension targets the underlying Chromium engine, it also works in Brave, Opera, and Vivaldi. We tested it on Brave, toggled WebRTC off, and re-ran the leak test to confirm.

With the toggle active, the earlier real-IP result no longer appears. Note that turning WebRTC off will break browser-based calling on the same profile, so keep a separate profile if you still need video chat.
Disabling WebRTC in Mozilla Firefox
Firefox is the friendliest here — it exposes a native preference, no extension required. Type about:config into the address bar and press Enter. You'll see a warning; accept it to continue. In the search box, enter media.peerconnection.enabled. The preference should appear with a value of true. Double-click it (or use the toggle on the right) to flip it to false. That single change disables WebRTC entirely.

To re-enable it later, return to the same preference and set it back to true.
Disabling WebRTC in Microsoft Edge
Edge is Chromium-based, so its behavior tracks closely with Chrome. Older builds shipped an experimental flag under edge://flags — searching there for Anonymize local IPs exposed by WebRTC and switching it from Default to Enabled reduced local-IP exposure. Microsoft removes and renames flags between versions, though, so don't count on finding it.

The reliable approach on any current Edge version is the same extension route as Chrome: install WebRTC Control from the Edge Add-ons store and toggle it off. Because Edge and Chrome share the same engine, the behavior is identical, and you're not depending on a flag that might vanish in the next update.
Browsers That Handle This for You
Turning WebRTC off manually is quick, but a few browsers deal with it out of the box. Tor Browser ships without WebRTC support at all, and it routes traffic through the Tor network by default — we cover pairing it with proxies in our piece on using Tor Browser with proxies. Privacy-first browsers like Epic block WebRTC by default too.
If your work involves managing multiple legitimate profiles or running automated tests, a browser built for that job avoids the manual toggling entirely. Evomi's Evomium antidetect browser is designed to keep leaks like this in check alongside consistent fingerprinting. For hands-off, at-scale data collection, our managed Scraping Browser runs cloud Chromium over Playwright or Puppeteer, so the IP-exposure concerns of a local desktop browser don't apply.
The Bottom Line
WebRTC is great for the video and voice features it was built for, but the way it discovers your IP can quietly undercut a proxy setup. The fix is genuinely simple: test your browser, and if it leaks, disable WebRTC with a preference flip in Firefox or an extension in Chromium browsers. For the broader picture on keeping a proxy workflow tight, see our overview of data security for proxy users. A two-minute check now saves you from assuming you're private when you aren't.
You set up a proxy, confirm your IP shows a different city, and assume your real address is hidden. Then a WebRTC leak test quietly reports your actual home IP anyway. This isn't a bug in your proxy setup — it's WebRTC doing exactly what it was designed to do. Below is what's happening under the hood, how to confirm whether your browser leaks, and how to shut the leak down in the browsers most people use.
What WebRTC Actually Does
WebRTC (Web Real-Time Communication) is an open standard that landed in browsers around 2011. It lets browsers open direct peer-to-peer connections for real-time media — think video calls, voice chat, and file transfer without plugins or extra apps. When you hop on a browser-based video meeting, WebRTC is usually the plumbing carrying the audio and video.
It's genuinely useful technology, and it became ubiquitous as remote work took off. The catch is buried in how peer-to-peer connections get established. To connect two devices directly, each side needs to know how to reach the other — which means learning about your local and public IP addresses. That discovery step is where your privacy can spring a leak.
Why WebRTC Leaks Your Real IP
To set up a direct connection, WebRTC uses a mechanism called ICE (Interactive Connectivity Establishment), which relies on STUN servers to figure out your public-facing IP. Your browser gathers a list of candidate addresses — including your real public IP and local network addresses — so it can pick the best path to a peer.
Here's the important part: this discovery happens directly from the browser and doesn't always follow the same route as your regular HTTP traffic. So even when your page requests go through a proxy or VPN, WebRTC's candidate-gathering can reveal the IP assigned to your actual network interface. The result is a mismatch — your proxy says one thing, WebRTC says another — and the WebRTC answer is your genuine IP.
For anyone doing legitimate work behind a proxy — QA testing localized sites, verifying ad placements, collecting public data, or simply keeping browsing private — that mismatch defeats the point of using a proxy in the first place. If you want the wider context on how browsers give you away, our guide to browser fingerprinting and tracking for proxy users covers the other signals worth watching.
How to Test for a WebRTC Leak
Testing takes under a minute. First, connect through your proxy as usual, then check what IP the outside world sees. You can do that with our own IP geolocation tool, which shows the address and location a site would attribute to you. Next, run a dedicated WebRTC test such as Hidester's WebRTC leak test, which asks your browser for its ICE candidates and displays them.

Say you're routing through one of Evomi's residential proxies and the IP checker places you in Berlin, Germany — confirming the proxy path works. If the WebRTC test then reports a completely different address, that second IP is your real home connection bleeding through. That discrepancy is the leak in action.
If both tools agree — or the WebRTC test shows only the proxy IP — you're clear. If they don't, disabling WebRTC closes the gap.
Disabling WebRTC in Google Chrome
Chrome bakes WebRTC in deeply, and there's no toggle for it in the standard settings menu. The practical fix is a lightweight extension such as WebRTC Control, which adds a toolbar icon to switch WebRTC on and off with a single click.

Because the extension targets the underlying Chromium engine, it also works in Brave, Opera, and Vivaldi. We tested it on Brave, toggled WebRTC off, and re-ran the leak test to confirm.

With the toggle active, the earlier real-IP result no longer appears. Note that turning WebRTC off will break browser-based calling on the same profile, so keep a separate profile if you still need video chat.
Disabling WebRTC in Mozilla Firefox
Firefox is the friendliest here — it exposes a native preference, no extension required. Type about:config into the address bar and press Enter. You'll see a warning; accept it to continue. In the search box, enter media.peerconnection.enabled. The preference should appear with a value of true. Double-click it (or use the toggle on the right) to flip it to false. That single change disables WebRTC entirely.

To re-enable it later, return to the same preference and set it back to true.
Disabling WebRTC in Microsoft Edge
Edge is Chromium-based, so its behavior tracks closely with Chrome. Older builds shipped an experimental flag under edge://flags — searching there for Anonymize local IPs exposed by WebRTC and switching it from Default to Enabled reduced local-IP exposure. Microsoft removes and renames flags between versions, though, so don't count on finding it.

The reliable approach on any current Edge version is the same extension route as Chrome: install WebRTC Control from the Edge Add-ons store and toggle it off. Because Edge and Chrome share the same engine, the behavior is identical, and you're not depending on a flag that might vanish in the next update.
Browsers That Handle This for You
Turning WebRTC off manually is quick, but a few browsers deal with it out of the box. Tor Browser ships without WebRTC support at all, and it routes traffic through the Tor network by default — we cover pairing it with proxies in our piece on using Tor Browser with proxies. Privacy-first browsers like Epic block WebRTC by default too.
If your work involves managing multiple legitimate profiles or running automated tests, a browser built for that job avoids the manual toggling entirely. Evomi's Evomium antidetect browser is designed to keep leaks like this in check alongside consistent fingerprinting. For hands-off, at-scale data collection, our managed Scraping Browser runs cloud Chromium over Playwright or Puppeteer, so the IP-exposure concerns of a local desktop browser don't apply.
The Bottom Line
WebRTC is great for the video and voice features it was built for, but the way it discovers your IP can quietly undercut a proxy setup. The fix is genuinely simple: test your browser, and if it leaks, disable WebRTC with a preference flip in Firefox or an extension in Chromium browsers. For the broader picture on keeping a proxy workflow tight, see our overview of data security for proxy users. A two-minute check now saves you from assuming you're private when you aren't.

Author
Sarah Whitmore
Digital Privacy & Cybersecurity Consultant
About Author
Sarah is a cybersecurity strategist with a passion for online privacy and digital security. She explores how proxies, VPNs, and encryption tools protect users from tracking, cyber threats, and data breaches. With years of experience in cybersecurity consulting, she provides practical insights into safeguarding sensitive data in an increasingly digital world.



