Not connected, Your IP: 216.73.216.133
Online: 43043 users - 572563 Mbit/s total BWAll Activity
This stream auto-updates
- Past hour
-
.thumb.png.8be84fd39f94c1640ac8c5456fbf3449.png)
ANSWERED Configuring White listed servers and traffic splitting
Staff replied to 0bacon's topic in AirVPN Suite
@0bacon Hello! Bluetit is correctly forbidding connections to servers of the country you are in. Resolve it by setting forbidquickhomecountry off in /etc/airvpn/bluetit.rc (or build a white list of servers outside your home country). From the manual: From your tests we see that the traffic doesn't flow in the WireGuard tunnel - it could be a block enforced your ISP, but make sure that you disable firewalld first just in case and test again: sudo systemctl stop firewalld If the problem persists let's check with OpenVPN. Try OpenVPN over UDP and over TCP. Kind regards -
-
-
-
-
-
ANSWERED Configuring White listed servers and traffic splitting
0bacon replied to 0bacon's topic in AirVPN Suite
ping -c 4 8.8.8.8 dig google.com PING 8.8.8.8 (8.8.8.8) 56(84) bytes of data. --- 8.8.8.8 ping statistics --- 4 packets transmitted, 0 received, 100% packet loss, time 3108ms ;; communications error to 10.128.0.1#53: timed out ;; communications error to 10.128.0.1#53: timed out ;; communications error to 10.128.0.1#53: timed out ;; communications error to fd7d:76ee:e68f:a993::1#53: timed out ; <<>> DiG 9.18.44 <<>> google.com ;; global options: +cmd ;; no servers could be reached While testing my connection over openVPN, I have this ( I did restart the bluetit service) 2026-03-30 12:35:03 Logging in AirVPN user 0000 2026-03-30 12:35:11 AirVPN user 0000 successfully logged in 2026-03-30 12:35:11 Selected user key: Default 2026-03-30 12:35:11 Auto quick connection mode enabled 2026-03-30 12:35:11 ERROR: Reached end of AirVPN server list. No suitable server found. 2026-03-30 12:35:11 Logging out AirVPN user 000 Then I added the Chicago servers to the whitelist in bluetit.rc and I received the same "no suitable server found" message. -
-
- Today
-
-
-
-
-
-
ANSWERED Configuring White listed servers and traffic splitting
Staff replied to 0bacon's topic in AirVPN Suite
Hello! So, the AirVPN Suite works fine as expected. The problem causing the traffic not flowing in the tunnel must lie elsewhere. First, let's determine whether the traffic is completely blocked is it is only apparently blocked. Try to resolve names and ping destinations without names resolution and let's examine the outcome. Examples: ping -c 4 8.8.8.8 dig google.com Also, can you please test a connection over OpenVPN? Please set airvpntype openvpn on /etc/airvpn/bluetit.rc file, re-start Bluetit and test again a connection. If it fails too, switch to TCP by setting airproto tcp, re-start Bluetit and test again connections. Kind regards -
example: https://web.archive.org/web/*/https://en.wiktionary.org/wiki/swain#English will return: 429 Too Many Requests nginx it's been that way on multiple exits for weeks. it is terribly inconvenient. thank you web crawlers. edit: routes shows some exits that still work. none in Japan and Switzerland. https://airvpn.org/routes/?q=https%3A%2F%2Fweb.archive.org%2Fweb%2F*%2Fhttps%3A%2F%2Fen.wiktionary.org%2Fwiki%2Fswain%23English
- Yesterday
-
matts9 reacted to a post in a topic:
Feature Suggestion: Hostname that resolves to the best server from a user-defined list of servers ...
-
Ran across this Could this be causing loading issues with some locations (sorry, don't have the last one). Or is this typical of AVPN IPs?
-
Eddie now chooses US server by default, why
Roman the Air Stranger replied to bsabiston's topic in Eddie - AirVPN Client
Hi, bsabiston! You can use a special option to set your last chosen server for automatic reconnecting. Please open the Servers tab in Eddie, choose your necessary server and connect to it, then activate a "Lock Current" option at the bottom of a tab. If an option activated, you would reconnect to your server instead of default server(s). Of course, you may change your preferred server, and in the case of disconnection Eddie will reconnect to the last chosen server. You do NOT need to deactivate an option and activate it again if you decided to change your server. -
In this fragment of my Docker Compose YAML file for Gluetun, I have a long line for the 'FIREWALL_VPN_INPUT_PORTS=' line which goes off the terminal screen. I'd like to split this line into multiple lines for readability. I've not had any success trying the various YAML line splitting recipes found online, so could anyone suggest whether/how I could do this? Of the various recipes I tried, the YAMLLINT YAML syntax checker doesn't throw any errors but the docker parser/checker does and Gluetun fails to start. It works fine all on one line. Thanks --- services: gluetun: container_name: airvpn image: qmcgaw/gluetun cap_add: - NET_ADMIN environment: - VPN_SERVICE_PROVIDER="airvpn" - SERVER_COUNTRIES="United Kingdom" - FIREWALL_VPN_INPUT_PORTS=6081,41181,4055,4056,28424,28425,6080,4080,4081,27243,27247,10720,2669,8112,.... - TZ="Europe/London" - UPDATER_PERIOD=24h devices: - /dev/net/tun:/dev/net/tun ports: - 3843:4080 # http (4080) ....
-
-
-
-
-
-
-
-
-
-
-
-
Eddie Desktop Edition 2.25 beta released
dante2008 replied to Staff's topic in News and Announcement
Display issue: an IPv6 Public Exit IP is displayed in Overview although "Networking > Layer IPv6" is set to "Block". Note: this is not a new issue. - Last week
-
Hi, I'd like to suggest a feature that lets user to use a hostname that resolves to the best server from a user-defined list of servers. It will be similar to *.vpn.airdns.org but only resolves to one of the servers in the user-defined list. Eddie has a feature that works similarly by adding servers to allowlist. However, when Eddie can't be used, it is inconvenient. I hope you consider this suggestion. Thank you and have a nice day. Regards,
- ...
-
- 2
-
-
Previously, connecting to a server took a few seconds. As of today, Eddie gets stuck on the authorisation step of the process for around 15 seconds before connecting. This is persistent when connecting through a Wiresock client as well. I have not updated anything or changed any settings from before this issue started happening. The only two things I can think of that may be the issue are my ISP or airVPN itself having an issue, though the latter seems unlikely. Any ideas of what can be done about it? Here's some information that may be helpful: OS = Windows 11 version 25H2 Eddie version = 2.24.6 Wiresock version = 2.4.11.1 ISP = YouFibre I have port forwarded via the VPN and set the relevant ports on each program to match. Thanks in advance for any help. If more information is needed, please ask.
-
ANSWERED Am I understanding your port forwarding correctly?
Staff replied to The Fox's topic in Troubleshooting and Problems
Hello! Welcome aboard. 1. Yes, correct. 2. Yes, correct. 3. With a port linked to "All devices" this is not possible, because you create an unsupported case in forwarding rules, i.e. the same packet to a specific VPN server public IP address port should be forwarded to the port of multiple VPN IP addresses. This is not implemented and also poses a technical challenge in our infrastructure that's not trivial. To overcome this situation you must use unique key pair for each device and take care to link each port to a single device. Alternatively, a simpler solution is just connecting each device to a different VPN server (your 2nd scenario). Kind regards -
Hello! In this case there's something wrong in setup. The configuration file is correct: AllowedIPs = 0.0.0.0/0, ::/0 This line tells WireGuard to tunnel the entire IPv4 and IPv6 address space. Any leak is caused by wrong binding or bad routing table together with absence of "network lock" leaks prevention. Use the AirVPN Suite to get rid of these problems, but it would be interesting to investigate further, if you don't mind. We could start by examining the routing table, the network interface settings and the firewall rule set during a connection, while the problem is occurring. Tracing IPv6 routes can provide valuable clues too. This is what I do, and while it does hide my ISP-provided IPv4 perfectly, the situation is different for IPv6, where my ISP-provided IPv6 is leaked to the tracker and my peers. This is a symptom hinting at a serious mis-configuration (or some previously un-detected qBittorrent bug, but it's unlikely as something so important would have been immediately noticed). Network Lock would prevent this situation but your case is very interesting and in our opinion deserves further investigation. In this case your setup is plausibly the source of the problem. Traffic splitting on an application basis requires some care to avoid those very leaks that you are experiencing. Consider running the AirVPN Suite for a safe traffic splitting on an application basis. AirVPN Suite resources: https://airvpn.org/forums/topic/79336-airvpn-suite-resources/ Kind regards
-
I don't get it. If I omit --interface, then curl does not uses the wireguard tunnel, so my ISP-provided IPv6 is not hidden at all. nicoco@tour ~> curl ip.network -6 2a01:e0a:f09:XX:XX:XX:XX:XX # My ISP IPv6 > Binding qBittorrent to the VPN interface is a perfect solution This is what I do, and while it does hide my ISP-provided IPv4 perfectly, the situation is different for IPv6, where my ISP-provided IPv6 is leaked to the tracker and my peers. I think there is a confusion in your reply. My setup may be somewhat unusual because I do not want all traffic router through the wireguard interface. I only want certain software to specifically bind on this interface. For eg, web browsing, I'm fine not hiding my IP.
-
I've just moved from another VPN service because I'm sick of their servers going AWOL. One thing they did OK at though was port forwarding. It was configured a little different (choose a server IP address & choose a port... if available I got it) to how it's done here. Am I correct in the following understanding: 1. When I reserve ports, they are available to me from any VPN server's exit IP address that I connect my VPN client to? Not sure how you work that magic if it's correct but it makes life very easy. For example: if I connect to Kornephorus, and have port 10001 forwarded to me, then disconnect and reconnect to Capricornus, port 10001 at Capricornus' exit-IP now comes to me with no config changes required? 2. Again with port 10001 forwarded and set to "all devices"... If I have two client devices (on the same LAN so same public IP address from here) connected to different VPN servers, Say Client A connected to Kornephorus and Client B to Capricornus: Client A will receive traffic forwarded from Kornephorus's port 10001 and Client B will receive traffic forwarded from Capricornus' 10001? 3. If I want to connect multiple clients to the same VPN server, with multiple forwarded ports, then I either leave the port forwarding on "all devices" and let my client devices choose what to listen to, or I could opt to pass only a particular port to a particular device by selecting that in the port forwarding for each forwarded port? (the first option would not be so good I guess if there's a lot of incoming traffic, since it would be flooded to all devices on the VPN whether they listen to that port or not). I'm asking to confirm the above because it seems too good to be true. I've done a bit of reading of past posts here though and it does seem to be correct. -
ANSWERED Configuring White listed servers and traffic splitting
0bacon replied to 0bacon's topic in AirVPN Suite
I don't close the terminal window. I enter goldcrest -O and it says that it is connected but I can't reach anything. I send kill command after I confirm that I have no connection. Ive given it at least 30 seconds before the kill command, maybe something is causing it to quit after a few seconds? -
ANSWERED Configuring White listed servers and traffic splitting
Staff replied to 0bacon's topic in AirVPN Suite
Hello! Note the discrepancy. Goldcrest may read both ~/goldcrest.rc and ~/.config/goldcrest.rc, no problems, but be aware that you might have two different files. Very well, this is essential to allow network lock to work properly. That's fine, it means that Network Lock blocks the traffic to your system DNS. In this case it's not really true because the system DNS has the same gateway IP address, whose traffic will be allowed in any case (you can verify by pinging 192.168.1.1 for example). About the log, we would like a clarification, we see that, multiple times, soon after a connection you order a disconnection, for example: 9:11:45 AM bluetit: Requested method "bluetit_status -> Bluetit is connected to VPN (WireGuard)" 9:11:45 AM bluetit: Requested method "stop_connection" 9:11:45 AM bluetit: Stopping WireGuard synchronous connection Why do you order the disconnection immediately (or just a few seconds) after the connection was established? Note (just in case) that you're running goldcrest in synchronous mode, so if you destroy the window of goldcrest terminal emulator parent, it will receive a SIGTERM and in turn will require Bluetit to disconnect. So, is the disconnection ordered by you voluntarily? If so, is it because you see that no traffic flows? As a side note, you have defined a white list of only one server. If this is intentional it's fine, but please test more, different servers, just in case there is a problem that's specific between you and Fang. You can define a white list of servers through a list of comma separated server names in the air-white-server-list option in your goldcrest.rc file. Kind regards -
Eddie Android edition 4.0.0 preview available
Staff replied to Staff's topic in News and Announcement
Hello! We're very glad to announce that Eddie Android edition 4.0.0 Release Candidate 1 is now available. New CPS QUIC database: now Eddie features a CPS database of more than 30 real web sites allowing accurate QUIC + HTTP/3 mimicry of real services through AmneziaWG. Each database entry is identified by a clear label for immediate selection in the app's settings. Eddie will take care to compile AmneziaWG In parameters accordingly: no need for manual input, which anyway remains an available option. This addition significantly bolsters Eddie's arsenal against blocks. New: IPv4 and IPv6 traffic can now be wrapped over an IPv6 tunnel with WireGuard and AmneziaWG too. Minor bug fixes The original message of this thread has been updated accordingly. You will find on it the new download link and checksum, as well as detailed Amnezia description. If you decide to test, please report at your convenience any bug and problem in this thread. If possible generate a report from the app in a matter of seconds: by tapping the paper plane icon on the Log view bar rightmost side you will generate a full system report which will include both log and logcat and have it sent to our servers. Then you just need to send us the link the app shows you (open a ticket if you prefer to do it in private). Kind regards & datalove AirVPN Staff -
I'm not sure how viable would be to have a UK region going forward... UK daddy government is constantly forcing ISPs to block access to sites. I had a number of trackers failing in Prowlarr and the reason was the above. So I had switched over to another region, although I'd love to use the shiny new UK servers. Also Cloudflare has been acting weird lately
-
-
-
-
Youtube is asking for login now over all new UK servers.. What a pain in the arse Youtube is. Any ideas? I hate creating a google account only for that
-
I need more features but I do stick with AirVPN! Please give us dark mode, an easy way of doing split tunneling as well and maybe sort out something so tailscale can work side by side so we can have our computer meshes working outside the tunnel!
-
yes that would be amazing actually So maybe an Eddie feature that completely leaves the Tailscale adapter off the equation?
-
Hello! The idea is correct, but you must omit --interface option for the previously explained reasons. However this is a necessary but not sufficient condition to prevent traffic leaks. Binding qBittorrent to the VPN interface is a perfect solution. Our software Network Lock feature is another one. You may apply both settings for additional safety. Please note that some qBittorrent versions could handle only IPv6 or only IPv4 traffic, but we think that qBittorrent devs resolved this limitation recently. Kind regards
-
https://eddie.website/report/15dee5c5/
-
Hi Staff! Thanks for the reply; as another user posted, I also missed the update on the Announcements topic. However, one thing I'd like to ask regarding these numbers: do they represent a switch from OpenVPN to Wireguard by already existing users, or is this due to the fact that a big number of new users joined the service and started with WG by default for their connections? Not to make a counter argument, it's just that it could be a combination of causes for the % decline of active OpenVPN users. Anyway, it's always good to have both options available, so we'll patiently wait for 2027 hoping to get the new shiny OpenVPN. Thanks again for the replies!
-
ANSWERED Configuring White listed servers and traffic splitting
0bacon replied to 0bacon's topic in AirVPN Suite
Ok, my bluetit logs are attached. /etc/airvpn/bluetit.rc has all the default settings. I've only been working with ~/.goldcrest.rc. While goldcrest -O connects to the best performing vpn server, I still don't have a connection. I suspect that it has something to do with the push dns rejected message, could you explain to me in simplest terms what that is? I see the option to ignore the dns push but I don't actually know what it does, or if its even safe. Thanks in advance. (I should also mention that in my firewalld.conf, I have NftablesTableOwner=no.) bluetit
