How Colitu Secure VPN protects your connection โ explained simply.
VLESS is a lightweight, stateless proxy protocol. Unlike traditional VPN protocols, it carries minimal overhead while maintaining strong performance. VLESS sends only the essential handshake data without version bytes or legacy fields, making it harder to detect and block while reducing connection latency.
REALITY is an advanced TLS camouflage technology that makes VPN traffic appear identical to legitimate HTTPS traffic of a real website. Instead of presenting a self-signed certificate that can be flagged, REALITY borrows the TLS handshake appearance of high-traffic websites (like Microsoft, Apple, or popular CDNs). This makes deep packet inspection ineffective โ censors cannot distinguish Colitu traffic from normal browser traffic to a major platform.
XHTTP is a modern transport layer that tunnels VPN traffic over standard HTTP/1.1 or HTTP/2 requests. Because it uses the same ports and protocol framing as normal web browsing (port 80/443), it passes through most firewalls and proxies without modification. XHTTP supports multiplexed streams and has lower latency than traditional HTTP tunneling.
AES-256 (Advanced Encryption Standard with a 256-bit key) is the gold standard in symmetric encryption. It is used by governments, military organizations, and financial institutions worldwide. With 2^256 possible keys, brute-forcing AES-256 is computationally infeasible even with current and near-future quantum computers. Colitu uses AES-256 in GCM mode, which provides both encryption and data integrity authentication in a single pass.
A DNS leak occurs when your device sends domain name resolution requests outside the VPN tunnel โ directly to your ISP's DNS server instead of the VPN's secure DNS. This exposes the websites you visit even when your IP is masked. Colitu routes all DNS queries through the encrypted tunnel, preventing accidental exposure to your internet provider or any network observer. DNS leak protection runs automatically when the VPN is connected.
| Technology | Purpose | User Benefit |
|---|---|---|
| VLESS | Lightweight tunnel protocol | Faster connections, lower data usage |
| REALITY | TLS traffic camouflage | Works in restricted regions |
| XHTTP | HTTP-based transport | Bypasses most firewalls |
| AES-256 | Data encryption | No one can read your traffic |
| DNS Protection | Private DNS resolution | ISP cannot see visited domains |
