Both FaceTime Video and FaceTime Audio calls are E2EE.
From what I read, FTA is secured with E2EE, but just like with WhatsApp, there is the metadata issue. Signal is really the way to go.
I still use FTA because in North America, the iPhone is king and most people I know have it. My Apple Watch sadly can’t use Signal so if I can’t use Signal then this is my next option. I also restrict what I talk about when not using Signal.
I feel like Signal development has been kind of slow in the last couple of years. Maybe software development really requires a significant amount of manpower, which means money, but I really wish in light of the war on privacy and security, Signal would do more to enhance the app. I really wish they would get rid of the phone number registration. For people living in totalitarian and authoritarian countries, I’m wondering if they can trust using their phone numbers to sign up for Signal? I wish Signal would explore developing a web client and do a better job with message history and multiple devices linked to an account. I use two phones simultaneously for work and personal reasons. Currently, I’m using two Signal accounts even though I would rather use one. So all my contacts have Signal contacts from me.
I wonder if there is a more private way can be developed to call phone numbers? I know the system is inherently insecure, but maybe a more private approach can be considered?
Thank you! It’s still not clear to me how using a VoLTE call over VPN is about as secure as it gets for traditional phone calls. Why doesn’t VoLTE try to get out of the VPN like with WiFi calling? How does a VPN like Mullvad help a VoLTE phone call?
VoLTE never goes over the VPN, but the cellular route.
Again, VoWiFI is effectively just the VoLTE IPSec tunnel but routed over a Wi-Fi route instead of a cellular route.
The magic of VoWiFi comes from seamlessly being able to switch between Wi-Fi and cellular routes as you move across them or their quality varies.
2 Likes
So why were you telling me to use a VPN with a VoLTE call?
I covered that here: Should I use WiFi calling instead? - #8 by SkewedZeppelin
1 Like
I think I got confused because you’re referring to VoWifi when it should be VoLTE? I only see LTE mentioned in the last part.
it is accurate, I proofread it.
1 Like
Me too. This IPSec thing is a fallback strategy? Is the implementation of Wi-Fi calling across different mobile devices and operator networks uniform?
That’s not entirely true… If router itself uses OpenVPN or WireGuard VPN to connect all clients, then WiFi calling does go through those OpenVPN or WireGuard tunnels. Because that is the case, the issue is that Android simply isn’t designed to tunnel WiFi calling through installed VPN apps, it can very much be tunneled.
WPA3
WPA3 Smartphone → Password (Second encryption layer.) → WPA3 Router → WiFi Calling (Am i right?)
iPhone / Android OS → No Password (No second encryption layer.) → Cell Tower → WiFi Calling (Am i right?)
LTE versus WiFi
LTE = real-time location monitoring / tracking? (Am i right?)
Wifi Calling = no real-time location monitoring / tracking? (Am i right?)
2 Likes
@All iPhone Users
iPhone → Shadowrocket VPN iOS App → Shadowsocks Server → WiFi Calling
1 - Pay a one-time fee of $3 and download the app Shadowrocket.
2 - Enable the following setting.
Shadowrocket → Settings → Tunnel → Include Cellular Service → Enable
If YES , the internet-routable network traffic for cellular services (VoLTE, Wi-Fi Calling etc.) will be included from the tunnel.
Screenshot from my iPhone Pro:
Routing all your traffic over random open proxies using a proprietary proxy app on an OS with a leaky VPN mechanism is an extremely horrible idea.
5 Likes
Let’s talk about it first that I’ve proven you wrong. 
And your comment is FUD.
And do you know Sing-Box (Android) as Open Source?
My responses in this thread were all regarding Android, not iOS.
It does appear that iOS can allow routing select carrier services over a VPN: excludeCellularServices | Apple Developer Documentation
However that app is wrong in that it claims VoLTE will be routed when Apple documentation explicitely says the opposite.
Please explain what part of my comment is FUD.
Sing-Box is a distinct app from your linked Shadowrocket, so it being open-source has no relevance here.
You keep repeatedly posting half-meanfingful posts often grounded in falsehoods that only require more time to be corrected.
6 Likes
a very clear example of this is your post above:
this is quite literally just random words put together.
could just be an AI programmed to promote random proxies and a random client but I digress
bro you’re giving really bad advice.
Random proxies on a closed source app that @SkewedZeppelin has explicitly explained that it will not be routed despite the claim
also recommending random AI none knows nor verified or any proper justification
what did you expect?
Throwing also things Hoping it works
VoWifi with a router with a Wireguard or OpenVPN, you have a point there. Beyond that it’s like that.
You can tell from my argument with @TheDoc
I provided my basis and theirs, After making a good point for the most part in the end just dropped the convo but this is nothing compared to yours.
1 Like
Now comes the joke: I have registered here because I want to help and the visitors deserve better or more information. 
This is a solution for iOS users. What is your advice for billions of iOS users who don’t want Android?
Solution to what? If there isn’t a solution, mention why and leave it is
Again agreed assuming you can do this configuring wireguard or openvpn on your router with VoWiFi, VoLTE forget that type of config.
As we said, Both Android and iOS (for the most part) deliberately does not route VoLTE or WiFi over a VPN tunnel and you kept trying to provide a solution almost non-existent (almsot because again only good point is like the Tor you mentioned and VoWiFi solution if even possible to do at this point