VPN Detection
| Plan | Platforms | MASVS |
|---|---|---|
| Team | Android, iOS | Not mapped |
Overview
VPN Detection identifies when a device appears to be routing traffic through a virtual private network. VPNs are often legitimate, especially in enterprise environments, but they can also hide geography, complicate fraud analysis, or route traffic through untrusted networks.
When VPN usage is detected, AppTego applies your configured response. The app cannot disconnect a user's VPN; it can warn, log, restrict selected flows, redirect to support guidance, or close the app depending on your policy.
When To Use It
Use this control when:
- Geographic policy, licensing, gambling, streaming, or market access depends on reliable location context.
- Fraud controls depend on network reputation, IP history, or location consistency.
- Sensitive actions should not run while traffic is routed through unknown network providers.
- Enterprise policy requires visibility into VPN use on managed or BYOD devices.
How It Works
The protected app evaluates platform network state for indicators that traffic is being routed through a VPN or tunnel. Android and iOS expose different signals, so AppTego uses platform-appropriate checks and applies your configured response when VPN usage appears active.
Exact interface names, scoring, and signal thresholds are not published in public documentation. They may change as OS behavior and VPN products evolve.
How to Enable the Control
Navigate to Detection & Response from the AppTego portal, and expand the Network And Location Detection section. Under this section you will find the VPN Detection control. Click Enable Configuration, choose the response action, and save the configuration for the next build or for it to be applied with a live push (if enabled).
API Configuration Example
{
"VpnDetectionResponse": {
"detection": true,
"action": "warn",
"title": "VPN Detected",
"message": "Please disconnect from VPN before continuing with this action.",
"buttons": ["OK"],
"actions": ["warn"],
"redirects": [""]
}
}| Field | Purpose |
|---|---|
detection | Enables or disables VPN detection. |
action | Selects the response style, such as alert, close, log, or warn. |
title / message | User-facing text shown when a response is displayed. |
buttons / actions / redirects | Defines the available response buttons and their outcomes. |
Compatibility Notes
- Corporate VPNs, privacy VPNs, and mobile-device-management VPNs can be legitimate. Review your user base before enforcing a hard block.
- Split tunneling and per-app VPN configurations may behave differently across platforms and MDM products.
- VPN detection does not replace proxy detection. Use Proxy Usage Detection when proxy visibility matters.
- For fraud workflows, treat VPN detection as one signal in a broader risk model rather than a standalone decision.