Jump to content
Not connected, Your IP: 216.73.216.129
AirVPN

All Activity

This stream auto-updates     

  1. Past hour
  2. MildlyMagnetic MildlyMagnetic joined the community ...
  3. neverlorde neverlorde joined the community ...
  4. juggern0t291 juggern0t291 joined the community ...
  5. Blaiddgwyn_ Blaiddgwyn_ joined the community ...
  6. Adam715 Adam715 joined the community ...
  7. Denislzx Denislzx joined the community ...
  8. frijordyes frijordyes joined the community ...
  9. Lemontrick Lemontrick joined the community ...
  10. Timothyflund Timothyflund joined the community ...
  11. Today
  12. Staff
    Hello! We had a similar project that is now temporarily frozen for good reasons: in real life the ability of the "AI"s to guess successfully the real destination from analysis of the VPN tunnel traffic is poor (the excellent success rates you see are achieved only in a controlled environment where the victim visits only destinations pre-determined from a tiny list) AmneziaWG is quickly becoming (*) a more universal approach that may be effective and that does not require our own proprietary solution, provided that constant rate tunnel, deterministic batching and traffic morphing are not required -- safe assumptions as DAITA doesn't aim at obtaining them (*) While early AmneziaWG releases could "only" add junk packets during handshakes, making it not suitable to replace DAITA, AmneziaWG latest release is also capable to perform padding of transport messages and modification of their header range. It can do all of the above, optionally, over a faithful imitation of a different protocol (any protocol that can be built on UDP), including specific HTTP/3 web sites initial flow mimicry. While these options efficacy in fighting AI guided traffic analysis must be verified in a controlled environment when AI abilities will improve, and in spite of the fact that AmneziaWG currently lacks the important active distortion feature that DAITA offers, together with reason 1 they are sufficient to let us prioritize AmneziaWG support in the infrastructure and our software, and freeze proprietary solutions research. Once AmneziaWG is operating in the whole infrastructure, it may be considered whether adding active distortion to match this DAITA feature, or anyway building additional features to outperform DAITA (on top of the many already available in Amnezia and not from scratch), is worth the effort or not. Kind regards
  13. Olmax271 Olmax271 joined the community ...
  14. Staff
    Hello! We're very glad to announce that Eddie Android edition 4.0.0 beta 2 is now available. New: how to use Eddie in network where the "bootstrap" servers can not be reached Eddie downloads user and infrastructure data, essential to use the service, from special "bootstrap servers" through an encrypted flow inside HTTP. If the bootstrap servers are blocked or the underlying protocol to port 80 is filtered out, Eddie is unable to proceed. Starting from Eddie 4 beta 2 version, the ability to retrieve such data locally has been added. Whenever bootstrap servers are unreachable, Eddie can read the latest available local data to connect to a VPN server. Once connected the bootstrap servers are again reachable and the local data are immediately updated for future usage. The local data remain valid as long as you don't need to change user. On top of all of the above, Eddie can now retrieve such data through the login procedure that now can be started even when a connection to a VPN server was previously established via a profile. Therefore, when you are in a restrictive network that blocks access to bootstrap servers, you can connect through a profile generated by AirVPN web site Configuration Generator. After this first connection, log your account in to the service by selecting the specific option on the left pane: Eddie will download all the necessary files and store them locally. This procedure is "once and for all", at least as long as you don't need to change account. After this initial connection, Eddie will be able to log your account in to the infrastructure, retrieve servers data and establish connections without profiles and without bootstrap servers, offering again full AirVPN integration even when bootstrap servers are unreachable. Only If you change account you must repeat the procedure. New: "Open with..." option added to "Share" option Different Android versions allow management of files with different restrictions. Different apps may support different intents on specific Android versions. To enlarge total compatibility, now Eddie offers two different options to export and manage files, including generated profiles. You will find the usual "Share" option coupled with a new "Open with..." option. Some apps support only one intent, other apps only specific intents on specific Android versions, and so on. By adding this option Eddie enlarges considerably the amount of apps you will be able to open and/or share files with. New: AmneziaWG parameters range validity AmneziaWG parameter range validity has been documented in three different ways (official web site, GitHub documentation files, and developers comment) and the web site documentation that it's still official is in reality not aligned with the source code. The new parameters range validation adopted by Eddie 4.0.0 beta 2 is based now on GitHub latest documentation integrated by source code analysis. The original message of this thread has been updated accordingly. You will find on it the new download link and checksum, as well as detailed Amnezia description. If you decide to test, please report at your convenience any bug and problem in this thread. If possible generate a report from the app in a matter of seconds: by tapping the paper plane icon on the Log view bar rightmost side you will generate a full system report which will include both log and logcat and have it sent to our servers. Then you just need to send us the link the app shows you (open a ticket if you prefer to do it in private). Kind regards & datalove AirVPN Staff
  15. Staff
    @0bacon Hello! Please consider this before even facing the question: https://airvpn.org/forums/topic/70164-linux-network-lock-and-firewalld/ Also remember that Network Lock wants to rewrite entirely the input and output chains of the filter table. Kind regards
  16. Staff
    Hello! Your suspicion is unfounded because Network Lock is a set of firewall rules so you need to explicitly shut down Eddie in order to have it restore the previous rules. In other words, if Eddie exits unexpectedly (did it crash?) the firewall rules remain in place and you are protected. Kind regards
  17. Yesterday
  18. Christophe95870
    Hi, I tried some protocols (Disconnect+Reconnect) / servers manually, but in my page https://airvpn.org/ports/ I do F5 to refresh the page, then "Test open" always show me the Timeout issue : Then I came back to Protocol "Automatic", as it was working previously, but now, I always get a Timeout, whatever is the server. I tried to close Eddie, restart ... No way ':( What happens, please ? Thank you !
  19. 0bacon
    I run firewalld and the eddie client. What zone should the eddie client be in? Should Eddie just be trusted? That's my guess but I don't want to comprise my system Here are the predefined zones
  20.    knighthawk reacted to a post in a topic: Three new 10 Gbit/s servers available (CA) ...
  21.    knighthawk reacted to a post in a topic: Three new 10 Gbit/s servers available (CA) ...
  22. 3x3x3
    Thank you.
  23. 3x3x3
    Thank you. The notices are genuine - and I suspect the issue is Eddie unexpectedly quite leaving my connection vulnerable. Is there any way to protect against that?
  24.    3x3x3 reacted to a post in a topic: Novice Torrent/Copyright Help ...
  25.    0bacon reacted to a post in a topic: [LINUX] Network Lock and firewalld ...
  26. Staff
    Hello! You need to resolve this problem first because the TAP adapter can't work with WireGuard and you would be forced to set Eddie on using OpenVPN only. Which error messages do you see when the attempted installation fails? Can you also try installing WireGuard, to check whether the installation fails through Eddie only or not? https://www.wireguard.com/install/ Kind regards
  27. Tech Jedi Alex
    Before Wireguard I meant exactly that, but now I also mean to try both OpenVPN in TCP/UDP and Wireguard. There's also a possibility that the hoster of the FTP server throttles the connection because it's an anonymizer IP. GitHub likes to do this, making VPN clients clone repos with a few hundred kB/s only.
  28. zeroone1zero
    attached is the report including 5 or 6 attempts to connect to a server. the problem is that no connection is established -- it cycles through the server list ... fails to connect ... and resstarts after " 3 seconds". Note -- this is with settings at their defaults. It attempts to use wireguard which won't work since the tunnel adapter is not installed. As stated, the tunnel adapter refuses to install. Shall I switch to the Tap adapter and run the report again? report with wireguard enabled.txt
  29. xEE
    are there plans to create an analogue of mullavad VPN's DAITA in airVPN?
  30.    Oilers reacted to a post in a topic: Novice Torrent/Copyright Help ...
  31. vuanhson
    There is Check open button on Port page, you can use it to check if the port open, or google port checker tool, or use AirVPN ipleak service, download the check torrent file then it will tell you the port is open or not. But I think the problem not about port or AirVPN side, I'll share you my research. Hotio update VPN setting all of his docker images recently, I start have problem with plex and qbittorrent (even green globe but tracker cannot see me) and was DM he over discord recently, funny thing is on same VPN configuration (I shared my conf file then deleted later), same docker setting, but his PC it working perfectly, I think problem is from my NAS and never found out why from that time to now. But today I saw your post, I think it definitely something strange happen with his image.
  32. TV Wiki TV Wiki changed their profile photo ...
  33. Baraka
    I've been with AirVPN for a long, long time. I wrote the original Tomato router guide. I've never had problems like this before. The packet loss is very persistent. Kornephoros is the only node in eastern Canada where I am not having any problems. It's a meganode and that may speak to its capacity to handle large volumes of packets. I was getting the same packet loss in NYC on Muliphein, but that suddenly resolved. Still, half of the six NYC meganodes are jittery, with lots of latency spikes. I just rechecked everything. I also checked both the first and second hops off each VPN node to make sure that the packet loss is consistent and not localized to one node/router. Can anyone at AirVPN figure out what's going on? I already talked to both my ISP and carrier about this and can completely rule out any problems with my connection physically, or at layers 2 or 3. See below for the latency and packet loss numbers. Lacerta: 96 of 100 packets returned successfully : 4.0% PACKET LOSS Round Trip Time (in milliseconds) Maximum/ Minimum/Average: 146/0/75 Ross: 98 of 100 packets returned successfully : 2.0% PACKET LOSS Round Trip Time (in milliseconds) Maximum/ Minimum/Average: 166/0/58 Cephei: 95 of 100 packets returned successfully : 5.0% PACKET LOSS Round Trip Time (in milliseconds) Maximum/ Minimum/Average: 24/0/18 Kornephoros: 100 of 100 packets returned successfully : 0.0% PACKET LOSS Round Trip Time (in milliseconds) Maximum/ Minimum/Average: 32/0/18 Mintaka: 93 of 100 packets returned successfully : 7.0% PACKET LOSS Round Trip Time (in milliseconds) Maximum/ Minimum/Average: 76/0/21 Tejat: 86 of 100 packets returned successfully : 14.0% PACKET LOSS Round Trip Time (in milliseconds) Maximum/ Minimum/Average: 23/0/19 Tyl: 95 of 100 packets returned successfully : 5.0% PACKET LOSS Round Trip Time (in milliseconds) Maximum/ Minimum/Average: 24/0/18 Muliphein: 100 of 100 packets returned successfully : 0.0% PACKET LOSS Round Trip Time (in milliseconds) Maximum/ Minimum/Average: 262/0/31 Paikauhale: 100 of 100 packets returned successfully : 0.0% PACKET LOSS Round Trip Time (in milliseconds) Maximum/ Minimum/Average: 50/0/28 Sadalmelik: 100 of 100 packets returned successfully : 0.0% PACKET LOSS Round Trip Time (in milliseconds) Maximum/ Minimum/Average: 193/0/30 Terebellum: 100 of 100 packets returned successfully : 0.0% PACKET LOSS Round Trip Time (in milliseconds) Maximum/ Minimum/Average: 280/0/40 Unukalhai: 100 of 100 packets returned successfully : 0.0% PACKET LOSS Round Trip Time (in milliseconds) Maximum/ Minimum/Average: 44/0/28 Unurgunite: 100 of 100 packets returned successfully : 0.0% PACKET LOSS Round Trip Time (in milliseconds) Maximum/ Minimum/Average: 86/0/29
  34. MLight started following Port Test Timing Out despite qBittorrent Being Connected ...
  35. MLight
    Not sure if this is caused by the hotio qbittorrent container update or some other issue but when I tried to reach qbittorrent today the logs said "The file [/config/wireguard/forwarded_port] was not found. Set [VPN_AUTO_PORT_FORWARD=false] if you don't plan on providing that file yourself", which was a first. I switched that to false and chose to set the port manually in qbittorrent UI (which was already done). qBittorrent has a green globe which should indicate that the port is open and functional, but I keep getting timed out when testing on AirVPN client area. Is there any way to definitely confirm my port is open on the airvpn side?
  36. oassQ9w4cbl4AySZhhth%p36x
    yeah some more detailed metrics would be nice but you also have to balance privacy in that regard too. all packets are not the same. massive amounts of small udp packets are going to cause more overhead than full fat pipe mtu packets. many connections are going to cause more load than single connections. we dont know the hardware configuration or a myriad of other things to really get a clear picture on what it is but at the very least it would be good to have some kind of obfuscated alert system. for example maybe take the 95 percentile value on total connections vs latency and have some kind of warning banner or something when those servers are experiencing them. then at least if someone is trying to diagnose why their vpn is a bit slow at the moment it isn't a shot in the dark. not everything is about the pipe or the cores, interrupts and the types of packets that are being sent are other variables that can hide the true performance of the server
  37. Last week
  38. Skye7588 Skye7588 changed their profile photo ...
  39. Christophe95870
    Thx a lot, Alex 👍 An other question, please : you tell to try different protocols.. What does it means ? Change UDP by TCP ? (Maybe it's better I let 'Automatic' for the moment ?) Thx again, Chris.
  40. Tech Jedi Alex started following How to basic configuring Eddie + qBitorrent ?, Eddie security issue - please provide some info, Verify Network Lock is enabled when connected to a server and and 1 other ...
  41. Tech Jedi Alex
    The security policy is found at the bottom of the Specs page. Therein is defined what is accepted as a vulnerability and what isn't, as well as contact info with the appropriate PGP key. Neither Support nor GitHub/GitLab are valid ways to report this.
  42. Tech Jedi Alex
    Already there. If the lock is locked, Network Lock is locked to lock your network down. This one is visible from every tab. .
  43. Tech Jedi Alex
    Close Eddie, reopen and connect again. When such a reconnect happens, provide a system report..
  44. Tech Jedi Alex
    From what I can decipher through the "blur", you forwarded a 5-digit port while you set port 9355 in the torrent client. As such, they are not the same, and no one can reach your client. You don't need that if you bound qB to the interface. For torrenting, no. They are not meant to be downloaded, but they are meant to contact the tracker in the magnet link. This is not working, probably because your forwarded port is not the qB port, see above. Not really. Try different servers, ports and protocols to find the best combination for you. Same problem as above, forwarded port != qB port.
  45. Staff
    @zeroone1zero Hello! What is the problem? Eddie is ready and waiting for input. Setup seems fine and Eddie can reach the Internet and resolve names. Please generate the system report after the problem has occurred (i.e. log in to AirVPN from Eddie's main window, try a connection to some server, reproduce the problem and only then generate the report). Kind regards
  46. zeroone1zero
    Thank you so much! report attached report.txt
  47. Staff
    Hello! On Eddie 2.22 and higher versions you can "fix" the interface name by setting it on Eddie's "Preferences" > "Networking" window (make sure you pick an interface name that's valid in your system). Kind regards
  48.    Oilers reacted to a post in a topic: Three new 10 Gbit/s servers available (CA) ...
  49.    Oilers reacted to a post in a topic: Three new 10 Gbit/s servers available (CA) ...
  50. Oilers
    Yes binding is essential. To do this you'll need to use qbittorrent instead of transmission. Once you have qbittorrent installed, go into the "Stats" tab of Eddie (AirVPN Client), and scroll down to the "VPN Interface". There you will see something like "Tun" number 1-8 or something along those lines. Now, go to qbittorrent settings, advanced, network interface, then select from that list the Tun# you saw in the Eddie Stats under network interface. Now you are binded. Please note. If you ever disconnect or restart Eddie, that interface number can change so be sure to check it everytime you restart.
  1. Load more activity
×
×
  • Create New...