Is Your VPN Actually
Hiding You?

Instantly check whether your DNS queries are leaking outside your VPN tunnel. We show your public IP, reverse DNS, and edge-reported location — the exact three signals every website sees when you visit it. No account. No email. 100% free.

Quick answer: If the IP below matches your VPN provider (not your ISP) and the reported city matches your VPN server (not your hometown), your tunnel is working. If either one matches your real ISP or home city, your VPN is leaking — see the fix below.

Live DNS Fingerprint Test

What every website sees about you

Runs in under 2 seconds · Nothing is stored

Three signals every site can see.

Every website you visit sees these same three pieces of information. If your VPN is doing its job, all three should point to your VPN provider — not you.

1

Public IP

Should be your VPN server's IP — never your home broadband IP. If it matches your ISP's IP range, the VPN is off or the tunnel dropped.

2

Reverse DNS

The name registered to that IP. With a VPN on, this typically mentions the VPN operator ("mullvad", "nordvpn", "cyberfence"). If it names your ISP ("comcast", "verizon"), your traffic isn't tunneled.

3

Reported location

The country and city Vercel's edge network sees. Should match the VPN server you connected to — not your real hometown.

Found a leak? Fix it in 60 seconds.

A leaking VPN is worse than no VPN — you feel protected while your traffic quietly bypasses the tunnel. CyberFence VPN forces every DNS query through an encrypted tunnel on every platform, ships with the kill switch on by default, and blocks any query that would leak outside the VPN. If your current provider can't say the same, switch.

  • Kill switch on by default — blocks all traffic if the tunnel drops
  • Forced-tunnel DNS on Mac, Windows, iOS, and Android
  • No-logs policy — we can't reveal what we don't record
  • US-operated, independently owned (not a Ziff Davis, Kape, or NordSec brand)
See all plans →

Complete includes VPN, Breach Monitor, and Web Shield. VPN-only from $7.99/mo. 7-day free trial. Cancel anytime.

Common questions about DNS leaks.

What is a DNS leak?+

A DNS leak happens when your device sends DNS queries (the requests that translate cyberfenceplatform.com into an IP address) outside your VPN tunnel. Even if your traffic is encrypted, a leak reveals every domain you visit to your ISP or a third-party resolver — defeating a large part of using a VPN in the first place.

How does this test detect a leak?+

The test shows the public IP address our server sees for you, its reverse DNS record, and the geographic region reported by the edge network. If your VPN is working, the IP should belong to your VPN provider (not your home ISP), the reverse DNS name will typically identify the VPN operator, and the region should match the server you selected — not your actual home city. If any of those look like your real ISP or home region, you likely have a leak.

Is this test as thorough as a full DNS leak audit?+

For most home users, yes — it reliably catches the two most common failure modes (VPN off entirely, or DNS bypassing the VPN tunnel). For maximum accuracy, run it a few times, connect/disconnect the VPN, and compare results. A full audit would probe multiple unique subdomains through a controlled resolver; this test uses the standard edge-header + reverse-DNS approach that catches the vast majority of real-world leaks.

What information does this tool collect?+

The tool sends a single request from your browser to our server, which reads the public IP address the request arrived from (visible to any website you visit) and does a reverse-DNS lookup on it. We do NOT log the IP, we do NOT associate it with an account, and we do NOT store any results. The response goes back to your browser and disappears when you close the tab.

What should I do if my VPN is leaking?+

(1) Turn on your VPN's kill switch if it has one — this blocks all traffic if the tunnel drops. (2) Force your VPN to use its own DNS servers in settings, not your ISP's. (3) On Windows and Android, check "block DNS outside the VPN" if available. (4) If your provider doesn't offer these controls, consider switching. CyberFence VPN includes a kill switch and forced-tunnel DNS on all platforms.

Does CyberFence VPN prevent DNS leaks?+

Yes. CyberFence uses its own DNS resolvers routed through the encrypted tunnel on every platform (Mac, Windows, iOS, Android). The kill switch is on by default and blocks all traffic if the VPN drops, so a query can never accidentally bypass the tunnel. Your ISP sees only encrypted traffic to CyberFence — never the sites you visit.