[kinkora]

PIA (Private Internet Access) and am a happy customer for 3rd year running.

Why do I choose them? Besides the ease of use over multiple platforms, they are the only VPN (I am aware of) that has held up in court that they do not store any logs when asked to handover personal information.

Sources:

[1] https://torrentfreak.com/private-internet-access-no-logging-...

[2] https://www.scribd.com/doc/303226103/Fake-bomb-threat-arrest

[sascha_sl]

PIA's offer and their policy on retention might be good, but they're still a US company and they still tried to smear several other VPN companies (including ProtonVPN).

Their clients are also messy memoryleaky electron apps with outdated chromium embedded.

[Havoc]

>Their clients are also messy memoryleaky electron apps with outdated chromium embedded.

You can dial PIA with a openvpn app of your choice

[rasengan]

There are new apps that are not based on chromium [1].

[1] https://www.privateinternetaccess.com/pages/download

[sascha_sl]

Interesting point to pick from the ones I bought up. I guess that's an improvement.

Would you mind addressing the other one, particularly who from PIA this is?

https://www.reddit.com/user/common_sense7

Interestingly one of the comments seems to allege that's you. Hm.

[saosebastiao]

I just about dumped PIA for the same reason. Downloaded their newest update, and it is soooo much better.

[sascha_sl]

The stupid fight they had with ProtonVPN and NordVPN did it for me.

Reddit mods had to close some threads because the people copypasting PIAs (mostly baseless) allegations under every comment even slightly positive about either ProtonVPN or NordVPN were getting out of hand.

https://www.reddit.com/r/ProtonVPN/comments/8ww4h2/protonvpn...

Here's the account that has done nothing but attack ProtonVPN https://www.reddit.com/user/common_sense7

Has a hint of Mafia to it.

[AsyncAwait]

They also donate to FLOSS on a semi-regular basis.

[fumonko]

FLOSS?

[AsyncAwait]

Free/libre/open-source software.

[whocares123]

I have 1GB fiber, do they offer 1GB speeds? How badly would using them as my VPN affect my speed?

[_jcwu]

If you have 1GB, then forget anything OpenVPN. Use IPSec or Wireguard.

With OpenVPN you will bottleneck at ~300Mbit\s. With IPSec and Wireguard I have had no issues getting ~900Mbit\s to my own server.

[dspillett]

> you will bottleneck at ~300Mbit\s.

Any idea where the bottleneck was there? CPU use? Protocol latency? I'd be interested to see some test results around that if you know of any that have been published.

A little anecdotal information: some years ago I did a CPU-load test with OpenVPN on a diminutive Atom-based netbook as the client, and it maxed out at around 95mbit/s on a 100mbit/s network (actually a gbit network, but the netbook only had a 100mbit NIC itself) while just doing simple bulk transfers.

[chrisper]

You could start here:

https://community.openvpn.net/openvpn/wiki/Gigabit_Networks_...

>It is easily possible to saturate a 100 Mbps network using an OpenVPN tunnel. The throughput of the tunnel will be very close to the throughput of regular network interface. On gigabit networks and faster this is not so easy to achieve. This page explains how to increase the throughput of a VPN tunnel to near-linespeed for a 1 Gbps network.

I think the protocol just wasn't designed for such high speeds.

[eptcyka]

Have you read the code? It's woefully unparallelisable and is written to support more platforms rather than work better on any single one of them.

[dspillett]

> woefully unparallelisable

It certainly doesn't use multiple cores for a single connection, though I've never tested (or reviewed the code) to see if it does manage to spread the computational load of multiple connections over more CPU resource.

I've not read the above linked article in detail (no time ATM) but there seems to be mention of offloading AES calculations to compatible hardware, so the bottleneck would appear to be CPU use.

[vel0city]

Earlier you claim you will only ever hit ~300Mbit, but then you link to an article where the author hit 885Mbit throughput after tweaking a few settings and ensuring OpenSSL was using AES-NI.

[chrisper]

Yes. But that article never worked for me.

[saosebastiao]

Do you have any recommendations for wireguard providers? I'd love to try it out, but I don't want to host my own server.

[Jonnax]

IPsec at 1gbps needs a powerful router.

A Juniper SRX 320 that I have can only can reach about 500mbps.

[fgonzag]

PFSense on a cheapish high clockspeed server will easily get there. Total cost about a grand, a bit more if you want to use a low power no fan solution.

[arcaster]

Oh man, I've been wanting to pick one of those routers up for some time. What did licensing cost you for your SRX 320?

[system2]

I doubt they cost $3 per month though.

[yawniek]

a pcengines apu does just fine, you'll get 900mbps+ easily with ipsec

[pault]

I've been using PIA with gigabit fiber for two years, and anecdotally I've not noticed a difference.

[flyingfences]

I had the same experience when I had such a good connection a couple years ago.

[usx]

I would like to know a bit more about this as well.

I often play online multiplayer games, my main issue with using a vpn full time would be the performance impact here.

I'm also curious if PIA has a way where if I launch certain apps, it would pause itself while that application is running? Or some way to automate on/off state of the VPN.

[mrweasel]

I doubt it would affect your speed much. How often are you able to utilise 1Gbps anyway?

Sure in theory you'd see a slow down, but given that most of the sites and service you use aren't able to deliver 1Gbps to you directly, the decrease in speed is most likely lower than you'd think.

[chrisper]

>but given that most of the sites and service you use aren't able to deliver 1Gbps to you directly

You would be surprised how wrong this statement is.

Especially if you are a gamer, almost any platform can max out a Gbit connection easily.

Besides at those speeds you start seeing all kinds of issues (like OpenVPN implementation being very inefficient).

[donohoe]

I'm a happy PIA customer but their app certainly lacks polish and has crappy icons - if you care about that stuff :)

[mimsee]

Yeah it looks like an android figure so PIA would use some new designs for sure to stand out in the market a bit. Their website also looks bit too clip-art fakey. Otherwise good service and been using it also

[Iaison]

Try the new client, its a vastly upgraded UI

[droobles]

samesies