What Are the Technical Principles and Equipment of Your Service?

The CyberGhost service is built on three main systems, along with a small number of web servers used to host the company website at cyberghostvpn.com:

• Login servers: A master and backup server used to manage authentication.
• Exit nodes: Servers where VPN traffic leaves the CyberGhost network and enters the open internet. 
• Domain Name System (DNS) servers: DNS servers located in different countries.

Login Servers

The login servers store account data needed to run the service, including:

• Usernames and passwords
• Exit node data
• System settings
• Service statistics 

This data is kept up to date on both the main login server and a backup server. If the main server or data center has problems, the backup server can take over. The system then redirects the necessary internal connections to the backup server, helping keep the service running with minimal disruption. 

Exit Nodes

Exit nodes connect CyberGhost users to the internet. They handle traffic between the CyberGhost app and the websites or services you access.

When you connect to the VPN, the exit node can receive DNS requests from the app and forward them to CyberGhost’s DNS servers.

Cyberghost’s Domain Name System (DNS) Servers

CyberGhost’s Domain Name System (DNS) servers handle DNS requests from the exit nodes. They translate website names into the IP addresses needed to reach them, without exposing the user behind the request. As a result, the destination website or service only sees the CyberGhost server. 

These DNS servers also help CyberGhost’s systems connect to key parts of the service, including the master server, exit nodes, and account management system. 

Web Server

The web servers handle user registration, account management, and system control functions. After you register through the CyberGhost website, your username and password hash are stored in the login servers’ databases. 

How a CyberGhost VPN Connection Works

A typical CyberGhost VPN session follows a couple of simple steps, but the process varies depending on whether you connect through the CyberGhost app or with native OpenVPN configuration files.

When Using the CyberGhost App

1. Open the CyberGhost app and sign in with your username and password.
2. Connect to a server, and your device will be connected to an exit node that encrypts the connection. Users connected to the same exit node share its public IP address, which makes individual activity harder to link to one specific user. 

When Using Native OpenVPN Configuration Files

1. Download the OpenVPN configuration files from your CyberGhost account and add them to your local OpenVPN installation.
2. Select one of the available connections in OpenVPN, and enter your CyberGhost username and password.
3. After authentication, OpenVPN connects the device to the selected exit node and routes internet traffic and Domain Name System (DNS) requests through the VPN connection. Like with the CyberGhost app, users connected to the same exit node share its public IP address.

CyberGhost uses encryption to help protect traffic between the user’s device and the VPN server. Encryption keys are also refreshed regularly during the session. To learn more, see our guide to what a VPN is.