AllieAllie
Privacy Infosec Facetime

Don't Let FaceTime Become Literal

FaceTime is encrypted โ€” but the peer-to-peer connection it opens leaks the other side's IP address. Here's why that matters, and what to do about it.

Allie 3 min read

Apple’s FaceTime, by default, has privacy concerns. When a call is initiated โ€” and for the duration of the call โ€” a peer-to-peer connection is established between both ends of the call. That’s fine, and it’s not any sort of misconfiguration.

What it is, though, is a factor that privacy-conscious and non-technical people might overlook. This design decision means that anyone sitting between you and the other side(s) of your call could theoretically collect both sides’ IP addresses.

Here’s what it looks like from a single device’s perspective during a FaceTime call. Every entry below is one observed flow on UDP port 16393 โ€” both source and destination โ€” talking to the same residential IP on the far end:

๐ŸŒฟ Network Flow Example
TimestampSourceSrc PortDestinationDst PortDirection
2/14 11:40 AM๐Ÿ“ฑ iPhone16393๐ŸŒธ 173.59.249.XXX16393โ†— Outbound
2/14 11:39 AM๐Ÿ“ฑ iPhone16393๐ŸŒธ 173.59.249.XXX16393โ†— Outbound
2/14 11:32 AM๐Ÿ“ฑ iPhone16393๐ŸŒธ 173.59.249.XXX16393โ†— Outbound
2/14 11:29 AM๐Ÿ“ฑ iPhone16393๐ŸŒธ 173.59.249.XXX16393โ†— Outbound
2/14 11:23 AM๐Ÿ“ฑ iPhone16393๐ŸŒธ 173.59.249.XXX16393โ†— Outbound
2/14 11:19 AM๐Ÿ“ฑ iPhone16393๐ŸŒธ 173.59.249.XXX16393โ†— Outbound
2/14 11:13 AM๐Ÿ“ฑ iPhone16393๐ŸŒธ 173.59.249.XXX16393โ†— Outbound
2/14 11:09 AM๐Ÿ“ฑ iPhone16393๐ŸŒธ 173.59.249.XXX16393โ†— Outbound
2/14 11:04 AM๐Ÿ“ฑ iPhone16393๐ŸŒธ 173.59.249.XXX16393โ†— Outbound
2/14 10:59 AM๐Ÿ“ฑ iPhone16393๐ŸŒธ 173.59.249.XXX16393โ†— Outbound
A peer-to-peer session on port 16393 observed during a FaceTime call โ€” the destination is the far side's residential IP address.

Does this matter?

Let’s start from some key assumptions:

  • A. You know FaceTime is encrypted
  • B. You care about that fact
  • C. You have privacy concerns, or
  • D. You’re petulant towards surveillance states

The key problem here is that the far side of communications is being exposed. If someone is simply monitoring their own network on the other end of your conversation (or sitting at the right points in between), they can do this:

networkdevice8ร—9ร—4ร—6ร—5ร—10ร—7ร—๐Ÿฆ€ Maryland173.59.249.XXX108.34.44.XXX68.134.183.XXX98.117.219.XXX+ more๐ŸŒฑ Local Networks192.168.4.XXX192.168.68.XXX192.168.1.XXX192.168.68.XXX๐ŸŒฟ๐ŸŒท๐Ÿ„๐ŸŒผ
Every line is a peer-to-peer flow observed in a single device's traffic during FaceTime activity. The residential IPs on the left are the far side(s) of conversations; the 192.168.x.x blocks on the right are local devices.

So what?

As former NSA director Michael Hayden once put it: metadata kills. Encryption protects the contents of a conversation โ€” it doesn’t protect the fact that the conversation happened, who it happened with, or where they were sitting at the time.

If any of Aโ€“D up there apply to you, the mitigation is boring but it works:

  • Use a VPN on the device making the call โ€” your peer sees the VPN’s exit IP, not your home connection
  • Pick partners who do the same โ€” your privacy is only as good as the less-careful side
  • Or pick a different app โ€” anything that relays through provider infrastructure (Signal, WhatsApp voice in some modes) doesn’t expose endpoints the same way

Stay safe out there. ๐ŸŒธ