Skip to content
X4PN

X4PN

The VPN That Pays You Back

217
Built at Build Onchain with FBI

Created on 16th December 2025

X4PN

X4PN

The VPN That Pays You Back

Carousel Gallery Item: 1
Carousel Gallery Item: 2
Carousel Gallery Item: 3
Carousel Gallery Item: 4

The problem X4PN solves

X4PN VPN: The Problem & Solution

The Problem It Solves

X4PN VPN addresses a fundamental flaw in the $481B VPN market: users are currently forced to rent privacy through wasteful monthly subscriptions, while decentralized alternatives fail because they rely on volatile tokens that break the network when prices crash.

1. Eliminating Subscription Waste & "Lock-in"

  • The Struggle: Most users only need a VPN for specific moments (traveling, accessing geo-blocked content, public Wi-Fi), yet they must pay $13/month regardless of whether they use it for 1 minute or 100 hours.
  • The X4PN Solution: A true Pay-Per-Minute model. You deposit USDC once and are charged only for the exact time you are connected (e.g., $0.10). If you don't use it, your balance remains yours.

2. Fixing the "Liquidity Trap" of Decentralized Networks

  • The Struggle: Competitors like Mysterium failed because they forced users to pay in a custom token (MYST). When that token's trading volume dried up, users couldn't buy it, and the network became unusable.
  • The X4PN Solution: A Two-Token System powered by x402. Payments settle in USDC (always liquid, always $1.00), ensuring the VPN works perfectly even if the reward token (X4PN) price fluctuates.

3. Turning Privacy into an Asset (Use-to-Earn)

  • The Struggle: Traditional VPNs are a "sunk cost"—money leaves your wallet and never comes back.
  • The X4PN Solution: Every minute you use the VPN, you earn X4PN tokens as a reward. Active users and light node verifiers can essentially offset their privacy costs or even profit, turning a monthly expense into a potential income stream.

What People Can Use It For

🌍 For The Global Traveler (Digital Nomads)

  • Use Case: You are at an airport for 30 minutes and need secure Wi-Fi.
  • Old Way: Sign up for a 1-month VPN plan or risk hacking.
  • X4PN Way: Connect for 30 minutes, pay exactly $0.30, and disconnect. No cancellation fees, no recurring billing.

🔐 For Web3 Natives & Crypto Users

  • Use Case: Accessing dApps or exchanges geo-blocked in your region.
  • Old Way: Trusting a centralized VPN provider with your IP and data logs.
  • X4PN Way: Use a decentralized node that cannot log your data because it's encrypted via WireGuard and payments are pseudonymous on-chain.

💻 For Bandwidth Providers (Passive Income)

  • Use Case: You have gigabit fiber internet at home that sits idle while you're at work.
  • Old Way: Let the bandwidth go to waste.
  • X4PN Way: Run a node agent on your computer. Earn USDC in real-time from users routing traffic through your connection, plus X4PN governance rewards.

🛡️ For Privacy-Conscious Developers

  • Use Case: Testing applications from different global IP addresses.
  • Old Way: Manually configuring proxies or buying expensive enterprise VPN tiers.
  • X4PN Way: Switch between decentralized residential IPs instantly, paying only pennies for the few minutes needed to test.

How It Makes Tasks Easier & Safer

FeatureHow It Makes Life Better
x402 Auto-SettlementEasier: No manual credit card entry or monthly invoices. You connect, and the protocol handles the micro-payments in the background every 60 seconds.
Stablecoin PaymentsSafer: You pay in USDC. You don't have to gamble on holding a volatile crypto token just to use a utility service.
Decentralized ArchitectureSafer: There is no single central server to hack or subpoena. Your traffic is routed through a distributed network of encrypted nodes.
Light Node VerificationEasier: You don't need to trust if a node is honest. The network automatically verifies service quality and slashes nodes that underperform.

Challenges I ran into

Challenges I Ran Into

Building a decentralized VPN that settles payments every 60 seconds on-chain presented several unique engineering challenges. Here are the major hurdles we faced and how we solved them.

1. The "Zombie Session" Problem with WireGuard

The Hurdle: WireGuard is a connectionless protocol, meaning it doesn't natively track "sessions" like TCP. We encountered a bug where users would close their laptop (disconnecting abruptly), but the Node Agent would think the session was still active. This caused the x402 protocol to keep charging the user's balance for ghost minutes.

The Solution: We implemented a "Heartbeat + Handshake" monitor in the Node Agent.

  • Instead of relying on a simple "connected" status, the agent now checks the latest handshake timestamp from the WireGuard interface every 30 seconds.
  • If no handshake is received for >120 seconds, the agent automatically triggers the

    endSession()

    function on the smart contract.
  • This ensures users are never charged for time they aren't actually sending data, protecting their USDC balance.

2. Synchronizing Off-Chain Speed with On-Chain Settlement

The Hurdle: Our goal was a seamless "pay-per-minute" experience, but blockchain transactions (even on Polygon) are not instant. Initially, we tried to force a transaction exactly at the 60-second mark. If the network was congested, the transaction would hang, and the next minute's settlement would fail because the previous nonce was still pending.

The Solution: We decoupled the accounting from the settlement.

  • Accounting (Off-chain): The x402 facilitator tracks usage in real-time (e.g., "User owes $0.30").
  • Settlement (On-chain): We implemented a "Optimistic Batching" strategy. If the user's balance is sufficient, the node allows the session to continue and batches the settlement transaction every 5-10 minutes (or upon disconnect) to save gas.
  • Security: To prevent loss, the user must lock a small "security deposit" (e.g., $2 USDC) at the start. If the batched settlement fails, the deposit covers the node's risk.

3. The "Double-Spend" of Bandwidth

The Hurdle: In our early tests, a malicious user could potentially share their private key with five friends, allowing all of them to connect to the VPN simultaneously while only paying for one session. Since WireGuard keys are static, the node couldn't easily distinguish them.

The Solution: We built a dynamic Session-Key Generation flow.

  • When a user clicks "Connect," the Node Agent generates a temporary, ephemeral WireGuard private key pair specifically for that session ID.
  • This key is sent to the user and whitelisted on the server.
  • As soon as the session ends (or payment stops), the key is immediately revoked and deleted from the server configuration. This makes key-sharing impossible.

4. Handling Stablecoin Approvals UX

The Hurdle: New Web3 users found the "Approve USDC" -> "Deposit USDC" flow confusing. They would approve the token but forget to sign the second transaction to actually deposit, leading to "Insufficient Funds" errors when they tried to connect.

The Solution: We utilized EIP-2612 (Permit) for gasless approvals where possible, but primarily improved the UX by bundling the flow.

  • We redesigned the Extension UI to check the allowance first.
  • If allowance is 0, we present a single "Unlock & Deposit" flow that guides them through both signatures sequentially without closing the modal.
  • We also added clear, non-technical tooltips explaining why two signatures are needed ("First allow the secure vault to read your balance, then move the funds").

Technologies used

Solidity

React

Node.js

ethers.js

Express.js

Linux

TypeScript

Chrome Extension

Hardhat

Polygon

Cheer Project

Cheering for a project means supporting a project you like with as little as 0.0025 ETH. Right now, you can Cheer using ETH on Arbitrum, Optimism and Base.

Discussion

Builders also viewed

See more projects on Devfolio