Configure VPN tunnels. Customize and extend core networking features.
- iOS 8.0+
- macOS 10.10+
The Network Extension framework contains APIs that can be used to customize and extend the core networking features of iOS and macOS.
Network Extension Hotspot Entitlements
Except when you use the
NEHotspot class, you do not need to obtain entitlements from Apple to use Network Extension classes. To request an entitlement to use Hotspot Helper, visit https://developer.apple.com/contact/network-extension.
NEVPNManager API gives apps the ability to create and manage a Personal VPN configuration on iOS and macOS. Personal VPN configurations are typically used to provide a service to users that protects their Internet browsing activity on insecure networks such as public Wi-Fi networks.
About Always-on VPN
iOS supports Always-on VPN to ensure all IP traffic is tunneled back to the organization. See the iOS Deployment Reference for information about how to configure Always-on VPN.
Network Tunneling Protocol Client
You can use the
NETunnel family of APIs to connect iOS and macOS devices to a VPN server that uses a non-standard network tunneling protocol, such as an SSL-VPN server.
NETunnel family of APIs gives apps the ability to implement the client side of a custom network tunneling protocol, called a Tunnel Provider. The Tunnel Provider runs as an app extension. The
NETunnel family of APIs also contains the following classes, which are used to configure and control the Tunnel Provider:
On-Device Network Content Filter
NEFilter API gives apps the ability to dynamically filter network content on iOS devices. Apps can use the following classes in school environments to protect students as they browse the Internet using school-owned devices: