Question for the group on a problem I’m trying to solve: How can I block internet access for some apps on standard, OOTB Android?

My current set-up is to use Proton VPN with the Android settings “Always-on VPN” and “Block connections without VPN” and then use Proton VPN’s Split-tunneling to exclude certain apps from using the VPN. This has the desired effect of blocking certain apps from having access to the internet.

However, I now find that I need to use certain Apps without the VPN but with internet access. In the past, I’d used something like NetGuard to control which apps have internet access, but, as Android only allows one VPN slot, this would require me to swap out Proton VPN.

So my problem statement: I’d like to be able to continue to use Proton VPN, exclude some apps from using that VPN but still have access to the internet, and block still other apps from the internet entirely. I’m struggling to find a way to do this.

Any suggestions are welcome!

  • Steve@communick.newsEnglish
    4·
    11 months ago

    The apps you want to block entirely, you can go into Android settings for each of them individually, and turn off all their Mobile Data & WiFi access options.

    Apps that you want to allow outside Proton VPN, you can add to the Split Tunneling list in Proton VPN. But you have to turn off the Block Without VPN option.

    It sounds like that’ll get you what you want.

    • starlord@lemm.eeOPEnglish
      2·
      11 months ago

      Yeah, I’ve seen this before but I just apparently don’t have that option. All I have is “Mobile Data” which appears to leak a little despite being turned off…

  • _s10e@feddit.de
    3·
    11 months ago

    Just a note: The app ‘Rethink DNS and Firewall’ can do this with any Wireguard VPN.

  • wincing_nucleus073@lemm.ee
    1·
    11 months ago

    it seems like you merely need to disable the “Block connections without VPN”.

    Then in your android settings there should be a toggle to deny network access to certain apps in the android permission settings. so the apps that are split tunneled you can just deny or allow network

    • _s10e@feddit.de
      3·
      11 months ago

      Do all versions of Android have this? I’m on Samsung Android 14 and I can’t find this.

      • Vexz@kbin.social
        1·
        11 months ago

        I don’t have a Samsung but on my device:
        Settings > Internet & Connectivity > VPN > Cogweel next to the VPN settings > There’s the option

    • starlord@lemm.eeOPEnglish
      2·
      11 months ago

      I haven’t been able to find this setting. I’ve heard about it on other devices but mine doesn’t seem to have it.

  • MajorHavoc@lemmy.world
    1·
    11 months ago

    If you’re interested in that level of control, it’s time to look hard at GrapheneOS. “Internet” is a permission you can grant or deny for each app, under GrapheneOS.

    But I’m not aware of a way to selectively direct phone traffic through Proton VPN, at the phone. Even on GrapheneOS.

    Enough skill with an expensive router could do it, but only on your home network, or only while routing all of your phone traffic back to your home network via yet another VPN.

    Edit: TIL, Proton VPN supports split tunneling. Sweet! Look under Settings - Advanced - Split Tunneling - then pick your apps to include/exclude.

    Edit 2: TIL DivestOS also supports “Internet” as a per app Permission. Very cool.