VPN & proxy detection

Every decision provided by Arcjet includes IP address analysis. You can use this to detect VPNs and proxies.

Available fields

IP AS type. This is the Autonomous System associated with the IP, which can be used to identify VPNs and proxies. This can be one of isp, hosting, business or education.
IP type. Arcjet adds one or more categories to the IP address to help you identify VPNs and proxies. The categories are vpn, proxy, tor, hosting, relay.

Checking for data

The IP analysis fields may be undefined, but you can use various methods to check their availability. See the SDK reference for details.

Example

1
// ... imports, client configuration, etc
2
// See https://docs.arcjet.com/get-started
3
const decision = await aj.protect(req);
4

5
if (decision.ip.hasASN() && decision.ip.asnType === "hosting") {
6
  // The network this IP belongs to is a hosting provider, which makes it more
7
  // likely to be a VPN, proxy, or other suspicious network.
8
}
9

10
if (
11
  decision.ip.isHosting() ||
12
  decision.ip.isVpn() ||
13
  decision.ip.isProxy() ||
14
  decision.ip.isRelay()
15
) {
16
  // The IP is from a hosting provider, VPN, or proxy. We can check the name
17
  // of the service and customize the response
18
  if (decision.ip.hasService()) {
19
    if (decision.ip.service === "Apple Private Relay") {
20
      // We trust Apple Private Relay because it requires an active iCloud
21
      // subscription, so we can allow it
22
    } else {
23
      // Do something else
24
    }
25
  } else {
26
    // The service name is not available, but we can still do something here
27
  }
28
}