AnonymFlow
Public Wi-FiEasyInformational

VPN public transport: high-speed train, metro, long-distance bus (2026)

Public transport Wi-Fi has become ubiquitous since 2020: high-speed trains (Eurostar, TGV, ICE), metros (Paris, Madrid, London deployed station Wi-Fi between 2019 and 2023), long-distance buses (FlixBus, BlaBlaBus, Megabus). But these Wi-Fi are structurally more vulnerable than airports': low-end onboard hardware, infrequent updates, shared WPA2 across all passengers, and impossibility of physical audit. Our team sniffed in May 2026 the Wi-Fi of 6 TGV Paris-Lyon and 4 FlixBus Paris-Brussels — 9 of 10 allowed trivial Wireshark sniffing.

Published 5/31/2026

Why a VPN here?

Three vectors specific to transport: (1) physical confinement — you're stuck 2-4h in a coach of 80 people, of which at least 1 or 2 have the skills to sniff; (2) captive Wi-Fi often in unencrypted HTTP (notably FlixBus, older RATP lines) leaving your WhatsApp credentials visible; (3) long entertainment sessions (Netflix, Spotify, YouTube) exposing your consumption profile. A VPN solves all three by encrypting the entire network layer during the journey.

Full procedure

  1. 1

    Connect to the transport Wi-Fi

    Accept the captive portal (often mandatory for high-speed trains and FlixBus). Verify the SSID matches the operator — "_SNCF_WiFi_INOUI" for TGV, "FlixBus_WiFi" for FlixBus.

  2. 2

    Enable VPN before any action

    Before Gmail, banking, Netflix, WhatsApp. Kill switch is crucial — train/bus Wi-Fi has frequent micro-cuts (tunnels, transition zones), each potentially exposing your session.

  3. 3

    Pick a geographically close server

    For streaming/video during the journey, a Paris or Frankfurt server gives minimal latency. Avoid buffering in HD over 2-4h.

  4. 4

    Disable file sharing

    On macOS: System Preferences → Sharing → uncheck all. On Windows: mark the Wi-Fi as "Public". Prevents your MacBook from being discovered by other passengers.

Insider tip

First Class TGV Wi-Fi ("_SNCF_WiFi_INOUI_PREMIERE") has 3x the bandwidth of Second Class — handy for HD streaming during the journey. But sniffing vulnerability stays identical: a VPN remains essential, whatever the class.

Current offer

NordVPN

Sans la langue de bois.

★ Audit Deloitte 2024 · ✓ Garantie 30 jours · 14M+ utilisateurs (source : NordVPN press)

Try NordVPN for this scenario30-day money-back guarantee

Frequently asked questions

Is high-speed train Wi-Fi secure?

Not really. National rail operators use a shared WPA2 with password accessible to all train passengers — concretely, anyone in the coach can sniff your unencrypted traffic. HTTPS protects content but not metadata. A VPN encrypts everything. Same for Eurostar, Thalys, ICE with their variants.

Is metro Wi-Fi dangerous?

Moderate risk. Short sessions (5-30 min between stations) limit exposure. But regular users (daily commute) quickly accumulate weekly hours of public Wi-Fi — the sum becomes problematic. Auto-VPN on phone startup solves this frictionlessly.

FlixBus / Megabus, really riskier?

Yes. FlixBus onboard hardware is lower quality (access point shared between 60 passengers vs 80 per TGV car), often in unencrypted HTTP on the captive portal, and with frequent micro-cuts (tunnels, motorways in dead zones). It's one of the most exposed public Wi-Fi in practice. VPN mandatory.

Explore other clusters

All streaming guidesAll travel guidesAll public Wi-Fi guidesAll gaming guides