Leaderboard

Hello! Today we're starting AirVPN 15th Birthday celebrations with big discounts on longer term plans. From a two servers service located in a single country providing a handful of Mbit/s, the baby has grown up to a wide infrastructure in 23 countries on four continents! AirVPN is now one of the few major consumer VPNs that is still independent. In other words, it is not owned by large corporations with diverse interests that interfere through editorial publications or conflict with privacy protection. Since our 14th birthday celebration, our customer base has grown impressively, and we would like to thank all the old and new customers who chose or confirmed AirVPN. AirVPN has focused on comprehensive enhancements, including: line and server expansion to accommodate the outstanding customer growth. The infrastructure can now deliver up to 970,000 Mbit/s. Compared to the 694,000 Mbit/s available in May 2024, this is a 39.7% increase in a single year yet another thorough rewrite of remote inbound port forwarding logic to offer greater convenience and true scalability. The new implementation was designed to meet the growing demand for remote inbound port forwarding the unlimited traffic quota for every and each customer subscription plan has never been modified On the software side: all AirVPN applications and libraries are free and open source software released under GPLv3 new, greatly improved Eddie Desktop and Eddie Android editions Eddie Android edition implements a new community request: an opt-in GPS spoofing feature integrated with the infrastructure in order to provide coordinates consistent with the location of the VPN server the device is connected to Eddie Desktop edition new version included several bug fixes and the new CLI edition is built on .NET7. Thus, it no longer needs Mono (Linux, macOS) and is built without Xamarin (macOS) the development of traffic splitting features on an application basis, already available in AirVPN Eddie Android and Android TV edition, and implemented on the AirVPN Suite for Linux last year, has been improved together with the new Suite features during the year long internal and community tests the OpenVPN3-AirVPN library is actively maintained as usual. If you're already our customer and you wish to extend your stay, any additional subscription will be added to your existing subscriptions and you won't lose any days. Check the promotional prices here: https://airvpn.org/buy Promotion will end on June the 12th, 2025 (UTC). Kind regards and datalove AirVPN Staff 

Hello! We're very glad to inform you that AirVPN Suite 2.0.0 Release Candidate 2 for Linux is now available. The original post is updated to show the new download URLs. The important improvements over RC 1 are: Cuckoo's design flaw has been fixed. Now cuckoo can be run when no graphic environment is installed added check and warning to clearly inform the user when firewalld is configured to be the exclusive owner of its tables / chains / rules in case VPN is busy in a pending process (such as reconnecting) stop_connection command is not performed by Bluetit, thus avoiding potential problems a few changes to greatly improve network management during sessions based on WireGuard libxml2 is now statically linked. This pondered decision was driven by various problems caused by a few Linux distributions inconsistencies with established practices and standards linked against the new OpenVPN3-AirVPN 3.12 library Special note for firewalld users Please read here, it's very important: https://airvpn.org/forums/topic/70164-linux-network-lock-and-firewalld/ Please note that compatibility with Debian 10 and its derivatives, that reached end of long term support and end of life on June 2024, is lost even for the legacy version, mainly because the Suite is now C++20 compliant. The legacy version remains suitable for Debian 11 and its derivatives. Kind regards

Hello! We're very glad to inform you that a new 10 Gbit/s full duplex server located in Toronto (Ontario, Canada), is available: Kornephoros. The AirVPN client will show automatically the new server; if you use any other OpenVPN or WireGuard client you can generate all the files to access it through our configuration/certificates/key generator (menu "Client Area"->"Config generator"). The server accepts connections on ports 53, 80, 443, 1194, 2018 UDP and TCP for OpenVPN and ports 1637, 47107 and 51820 UDP for WireGuard. Kornephoros supports OpenVPN over SSL and OpenVPN over SSH, TLS 1.3, OpenVPN tls-crypt and WireGuard. Full IPv6 support is included as well. As usual no traffic limits, no logs, no discrimination on protocols and hardened security against various attacks with separate entry and exit-IP addresses. You can check the status as usual in our real time servers monitor . Do not hesitate to contact us for any information or issue. Kind regards & datalove AirVPN Staff

Can confirm and will also provide some info that may be useful: 1. Ping is horrible no matter what is done (I usually get ~35 ping to Stockholm, on Ain I get 100-180) 2. Something may be wrong with the MTU of the server, because on 1400 MTU I get 2 mbit/s download, with 1280 I get 450 mbit/s. I have no problem with 1400 MTU on other servers

Hello! We're very glad to inform you that two new 10 Gbit/s full duplex servers located in Chicago (IL), USA, are available: Meridiana and Sadalsuud. The AirVPN client will show automatically the new servers; if you use any other OpenVPN or WireGuard client you can generate all the files to access them through our configuration/certificates/key generator (menu "Client Area"->"Config generator"). The servers accept connections on ports 53, 80, 443, 1194, 2018 UDP and TCP for OpenVPN and ports 1637, 47107 and 51820 UDP for WireGuard.  Meridiana and Sadalsuud support OpenVPN over SSL and OpenVPN over SSH, TLS 1.3, OpenVPN tls-crypt and WireGuard. Full IPv6 support is included as well. As usual no traffic limits, no logs, no discrimination on protocols and hardened security against various attacks with separate entry and exit-IP addresses. You can check the status as usual in our real time servers monitor : https://airvpn.org/servers/Meridiana https://airvpn.org/servers/Sadalsuud Do not hesitate to contact us for any information or issue. Kind regards & datalove AirVPN Staff

Ok, thanks to Opensourcer with finding this issue. Heres how to fix. Extract the appimage ./Eddie --appimage-extract Open squashfs-root/AppRun and comment out line 15 #rm $ARGV0 Download appimage tool for repacking wget https://github.com/AppImage/AppImageKit/releases/latest/download/appimagetool-x86_64.AppImage chmod +x appimagetool-x86_64.AppImage Repack the appimage path to/appimagetool-x86_64.AppImage /path to/squashfs-root use this new appimage in gearlever On launching Eddie, the file is no longer deleted.

Happy Birthday!! I am a brand new client. Hope to have a great and productive relationship with you into the future. Paul Keller

Happy birthday! To another 15 years and more.

The three NZ servers always seem to have quite a load on them, with at peak hours most 75%+ ... i've started defaulting to USA servers that have about a 20% load as I find I get better constant speeds, even though NZ is way closer and faster if it is less full. There were times connected to NZ where my connection suddenly goes super slow, and I realise that all of a sudden that server is really congested and my download crawls to a trickle. It would be great to get another NZ server added (or two ). I do wonder where people using NZ are coming from, I wouldn't have thought it would be as popular as it seems to be, but i'm glad it is, just need one or two more now.

Hello! We're very glad to inform you that AirVPN Suite version 2.0.0 alpha 1 is now available. UPDATE 2023-11-24: version 2.0.0 alpha 2 is now available. UPDATE 2024-05-14: version 2.0.0 beta 1 is now available. UPDATE 2024-12-16: version 2.0.0 beta 2 is now available. UPDATE 2025-02-13: version 2.0.0 beta 3 is now available. UPDATE 2025-02-14: version 2.0.0 beta 4 is now available. UPDATE 2025-04-04: version 2.0.0 beta 5 is now available. UPDATE 2025-04-16: version 2.0.0 Release Candidate 1 is now available UPDATE 2025-06-10: version 2.0.0 Release Candidate 2 is now available PLEASE NOTE THAT FROM NOW ON COMPATIBILITY WITH DEBIAN 10 AND ITS DERIVATIVES IS LOST, MAINLY BECAUSE THE SUITE IS NOW C++20 COMPLIANT. x86_64 LEGACY VERSION IS SUITABLE FOR DEBIAN 11 AirVPN Suite 2.0.0 introduces AirVPN's exclusive per app traffic splitting system, bug fixes, revised code in order to pave the way towards the final and stable release, WireGuard support, and the latest OpenVPN3-AirVPN 3.12 library. Please see the respective changelogs for a complete list of changes for each component of the suite. The 2.0.0 Release Candidate 1 Suite includes: Bluetit: lightweight, ultra-fast D-Bus controlled system daemon providing full connectivity and integration to AirVPN servers, or generic OpenVPN and WireGuard servers. Bluetit can also enforce Network Lock and/or connect the system to AirVPN during the bootstrap Goldcrest: Bluetit client, allowing full integration with AirVPN servers, users, keys, profiles as well as generic OpenVPN and WireGuard servers Hummingbird: lightweight and standalone binary for generic OpenVPN and WireGuard server connections Cuckoo: traffic split manager, granting full access and functionality to AirVPN's traffic split infrastructure airsu: a "run and forget" tool to automatically set and enable the user environment for the X.Org or Wayland based ecosystem without any user input WireGuard support WireGuard support is now available in Bluetit and Hummingbird. OpenVPN or WireGuard selection is controlled by Bluetit run control file option airvpntype or by Goldcrest option -f (short for --air-vpn-type). Possible values: openvpn, wireguard. New 2.0.0 default: wireguard. Bluetit run control file (/etc/airvpn/bluetit.rc) option: airvpntype: (string) VPN type to be used for AirVPN connections. Possible values: wireguard, openvpn. Default: wireguard Goldcrest option: --air-vpn-type, -f : VPN type for AirVPN connection <wireguard|openvpn> Suspend and resume services for systemd based systems For your comfort, the installation script can create suspend and resume services in systemd based systems, according to your preferences. allowing a more proper management of VPN connections when the system is suspended and resumed. The network connection detection code has also been rewritten to provide more appropriate behavior. Asynchronous mode A new asynchronous mode (off by default) is supported by Bluetit and Goldcrest, allowing asynchronous connections. Network Lock can be used accordingly in asynchronous connections. Please consult the readme.md file included in every tarball for more information and details. Word completion on bash and zsh Auto completion is now available by pressing the TAB key when entering any Goldcrest or Hummingbird option and filename on a bash or zsh interpreter. Auto completion files are installed automatically by the installation script. AirVPN's VPN traffic splitting AirVPN Suite version 2.0.0 introduces traffic splitting by using a dedicated network namespace. The VPN traffic is carried out in the default (main) namespace, ensuring all system data and traffic to be encrypted into the VPN tunnel by default. No clear and unencrypted data are allowed to pass through the default namespace. Any non-tunneled network traffic must be explicitly requested by an authorized user with the right to run cuckoo, the AirVPN traffic split manager tool. AirVPN's traffic splitting is managed by Bluetit and configured through run control directives. The system has been created in order to minimize any tedious or extensive configuration, even to the minimal point of telling Bluetit to enable traffic splitting with no other setting. In order to enable and control AirVPN's traffic splitting, the below new run control directives for /etc/airvpn/bluetit.rc have been implemented: allowtrafficsplitting: (on/off) enable or disable traffic splitting. Default: off trafficsplitnamespace: (string) name of Linux network namespace dedicated to traffic splitting. Default: aircuckoo trafficsplitinterface: (string) name of the physical network interface to be used for traffic splitting. All the unencrypted and out of the tunnel data will pass through the specified network device/interface. In case this directive is not used and unspecified, Bluetit will automatically use the main network interface of the system and connected to the default gateway. Default: unspecified trafficsplitnamespaceinterface: (string) name of the virtual network interface to be associated to the Linux network namespace dedicated to traffic splitting. Default: ckveth0 trafficsplitipv4: (IPv4 address|auto) IPv4 address of the virtual network interface used for traffic splitting. In case it is set to 'auto', Bluetit will try to automatically assign an unused IPv4 address belonging to the system's host sub-network (/24) Default: auto trafficsplitipv6: (IPv6 address|auto) IPv6 address of the virtual network interface used for traffic splitting. In case it is set to 'auto', Bluetit will try to automatically assign an unused IPv6 address belonging to the system's host sub-network (/64) Default: auto trafficsplitfirewall: (on/off) enable or disable the firewall in Linux network namespace dedicated to traffic splitting. The firewall is set up with a minimal rule set for a very basic security model. Default: off AirVPN's traffic splitting is designed in order to minimize any further configuration from the system administrator. To actually enable traffic splitting, it is just needed to set "allowtrafficsplitting" directive to "on" and Bluetit will configure the traffic split namespace with the default options as explained above. When needed, the system administrator can finely tune the traffic splitting service by using the above directives. Power and limitations The adopted solution offers a remarkable security bonus in terms of isolation. For example, it gets rid of the dangerous DNS "leaks in" typical of cgroups based traffic splitting solutions. However, the dedicated namespace needs an exclusive IP address. If the system is behind a NAT (connected to a home router for example) this is not a problem, but if the system is not behind any NAT, i.e. it is assigned directly a public IP address, you will need another public IP address for the network namespace dedicated to traffic splitting. You will need to manually set the other public IP address on the trafficsplitipv4 or trafficsplitipv6 directive as the guessing abilities of Bluetit may work only within a private subnet. Please keep this limitation in mind especially if you want to run the Suite with per app traffic splitting on a dedicated or virtual server in some datacenter, as they are most of the times NOT behind any NAT. Introducing Cuckoo, the AirVPN traffic splitting manager tool To generate out of the tunnel traffic, any application software must be run inside the "traffic split" namespace by using the dedicated traffic split tool cuckoo which can be run by users belonging to the airvpn group only. It cannot be used by the superuser. The usage is documented in the manual and on the inline help. The traffic split namespace uses its own routing, network channels and system DNS. It will not interfere or communicate in any way with the default namespace using its own encrypted tunnel. Programs started with cuckoo are regular Linux processes and, as such, can be managed (stopped, interrupted, paused, terminated and killed) by using the usual process control tools. The programs started by cuckoo are assigned to the user who started cuckoo. As a final note, in order to work properly, the following permissions must be granted to cuckoo and they are always checked at each run. Owner: root Group: airvpn Permissions: -rwsr-xr-x (owner can read, write, execute and setuid; group can read and execute, others can read and execute) Special note for snap packages users Snap is a controversial, locking-in package management system developed by Canonical and praised by Microsoft. It packages applications as snaps, which are self-contained units that include all necessary dependencies and run in a sandboxed environment in its default namespace. Therefore, "snap" applications will bypass the order by the system via Cuckoo to have an application running in one specific namespace created for reverse traffic splitting. As a result, snap applications will jettison the Suite's reverse traffic splitting feature. Currently, you must avoid snap packages of those applications whose traffic must flow outside the VPN tunnel. The issue is particularly relevant ever since Ubuntu migrated certain packages exclusively to Snap, such as Chromium and Firefox. At the moment it is still possible to eradicate snap from various distributions, including Ubuntu, quickly. Special note for firewalld users Please read here, it's very important: https://airvpn.org/forums/topic/70164-linux-network-lock-and-firewalld/ AirVPN Switch User Tool Airsu Running an application in a graphical environment requires a user having a local environment properly set, in particular variables and access to specific sockets or cookies. They are usually set at the moment of graphical login, while they may not be properly set in case a user logged in by using the system tool su. In this specific case the user will not probably be allowed to access the graphical environment, so any GUI application will not start. AirVPN’s airsu is used for this specific purpose and configures the user environment to the current X.Org (X11) or Wayland based manager, thus allowing access to GUI applications when run through cuckoo. Note on GUI software and Web Browsers The previous limitations on browsers have been completely resolved. Furthermore, complete compatibility with Wayland based environment has been implemented. Because of the specific Linux architecture and namespaces, some applications may need to specify the graphical environment in order to start and use the currently selected window manager on an X.Org (X11) or Wayland based habitat. Cuckoo can automatically do this by “injecting” predefined options to some preset applications, in particular those based on the chromium engines, most of them being web browsers. To see the list of predefined applications, please start cuckoo with --list-preset-apps option. When running an application with cuckoo, the user should make sure to actually start a new instance. This is usually granted by starting an application from the command line (such as running it with cuckoo). By starting an application from the desktop environment this may not happen. Download AirVPN Suite 2.0.0 Release Candidate 2 ARM 64 bit: https://eddie.website/repository/AirVPN-Suite/2.0-RC2/AirVPN-Suite-aarch64-2.0.0-RC-2.tar.gz https://eddie.website/repository/AirVPN-Suite/2.0-RC2/AirVPN-Suite-aarch64-2.0.0-RC-2.tar.gz.sha512 ARM 64 bit legacy: https://eddie.website/repository/AirVPN-Suite/2.0-RC2/AirVPN-Suite-aarch64-legacy-2.0.0-RC-2.tar.gz https://eddie.website/repository/AirVPN-Suite/2.0-RC2/AirVPN-Suite-aarch64-legacy-2.0.0-RC-2.tar.gz.sha512 ARM 32 bit: https://eddie.website/repository/AirVPN-Suite/2.0-RC2/AirVPN-Suite-armv7l-2.0.0-RC-2.tar.gz https://eddie.website/repository/AirVPN-Suite/2.0-RC2/AirVPN-Suite-armv7l-2.0.0-RC-2.tar.gz.sha512 ARM 32 bit legacy: https://eddie.website/repository/AirVPN-Suite/2.0-RC2/AirVPN-Suite-armv7l-legacy-2.0.0-RC-2.tar.gz https://eddie.website/repository/AirVPN-Suite/2.0-RC2/AirVPN-Suite-armv7l-legacy-2.0.0-RC-2.tar.gz.sha512 x86-64: https://eddie.website/repository/AirVPN-Suite/2.0-RC2/AirVPN-Suite-x86_64-2.0.0-RC-2.tar.gz https://eddie.website/repository/AirVPN-Suite/2.0-RC2/AirVPN-Suite-x86_64-2.0.0-RC-2.tar.gz.sha512 x86-64 legacy: https://eddie.website/repository/AirVPN-Suite/2.0-RC2/AirVPN-Suite-x86_64-legacy-2.0.0-RC-2.tar.gz https://eddie.website/repository/AirVPN-Suite/2.0-RC2/AirVPN-Suite-x86_64-legacy-2.0.0-RC-2.tar.gz.sha512 Changelogs Changelogs are available inside each package. Kind regards & Datalove AirVPN Staff

Hello! Yes, a problem with the network interface arose, we're sorry. We are bringing the server down. We will work with the datacenter technicians to resolve the issue. Kind regards

Been asking for a new server in Toronto! thank you this should really help with bandwidth issues Canadian servers were having with the new amount of users, airvpn is the best <3

how about fixing the servers? for example "Ain" might be 10gbit/s server but it still has terrible speeds, and terrible latency which you can even see on the server page itself https://airvpn.org/servers/Ain/

Fantastic! They were much needed!

Hello! Your setup is fine and we can reach your listening software through the port that you remotely forwarded. If you need more ports please make sure to pick a free port (the proper tools on the bottom of your AirVPN account port panel will let you find free ports) or just let the system pick a free one for you by leaving the "Port number" field blank and clicking the '+' button. Kind regards

How about minding your tone first? "Could you please look into the latency of Ain?" provides more motivation to actually look into it.

Hello! We're very glad to inform you that Hummingbird 2.0.0 Release Candidate 2 is now available for macOS, both for Intel and M1/M2/M3 based systems. The links to the latest RC 2 and the main changes have been updated in the first message of this thread. This version does not differ from RC 1: RC 2 is out just for cross platform versioning consistency. Kind regards

Hello everyone, I've been using the Eddie GUI for several years without any flaws. Recently, I added its repository to my Xubuntu 25.04 system and updated from version 2.21 to 2.24.6. The GUI has since become somewhat lagging, taking several seconds to proceed a simple mouse click. More annoyingly, version 2.24.6 interferes with some local network settings. I have a QNAP HS-264 NAS set up for access through Thunar (XFCE's file manager) via the samba protocol. Since the update, that access is halted after launching Eddie – not immediately, but within half an hour or so. I can still connect to the NAS on my internet browser, but since Eddie was the only package update I did before the problem appeared, there must be some newish inbuilt override that blocks samba. Could somebody kindly point me to a solution? I'm a Linux noob and would appreciate any help. Kind regards, B. Update: As it turned out, the installation of 2.24.6 enforced a new setting, "Ensure in session", for the network lock, even though I already had the lock deactivated in the main window. After unticking said box in the advanced settings, samba protocols are working again (even though "Allow lan/private" had been checked, but there seem to be several reports in this forum that this often doesn't solve the local network barriers.) So this was the override I was looking for, and admittingly, it's a bit confusing that there's two entirely seperate, unsynced selections for the same locking function. That only leaves the generally laggy GUI reponse as a minor issue which the mods/developers might consider looking into. I can't pinpoint it for certain, but I believe that the server latencies on display are also at least 10-15ms higher than before my 2.24.6 update, which might be due to the same decelerating problems.

Hello! It's all pre-defined by GoDaddy and nothing can be configured on our side, unfortunately. We will query GoDaddy and warn them about the issue. We own and control authoritative DNS for almost all of our domain names but not for airvpn.org. to add redundancy. Kind regards

Author of mergerfs here. There are no problems with qbittorrent and mergerfs. I and many others use qbittorrent with mergerfs for many years. What you are likely referring to is needing to ensure you have mergerfs setup for mmap support which qbittorrent, typically by default, requires. However, you can just enable necessary features to support mmap or disable usage of mmap by setting "Disk IO type" in qbittorrent to "POSIX-compliant" or "Simple pread/pwrite".

Well, most probably not. AirVPN's measure was to simply cease providing service to Italy to render themselves out of scope of Piracy Shield. All the server locations are subject to the laws of those server locations.If you're not in Italy, you're anyway free from any of the worries you stated. Italian authorities asking for info on someone who is not in Italy, or simply connected to a server not in Italy, is just plain impossible on so many levels. They can try, of course, but it'll probably never pass. Also, torrenting as the #1 reason around here to connect to the VPN might be a crime, too, but it's not terrorism justifying hunting people to the end of the world. Clearly define what you want to be protected against and ask the forums for measures you can take; there'll be tons of recommendations. But curb your paranoia, it is not productive. The prevalent recommendation even across these forums is not to use the VPN alone. Always combine with Tor if you need the safety, and harden whatever apps you want to use over it, most importantly the browser. Mass tracking is done by automated tracking measures such as browser fingerprinting against which a VPN won't help you. This tracking is done to generate money out of you, not for surveillance or some such, anyway.

It's amazing how the demand rises to meet the new bandwidth right? 😅 It's a good sign though! I know this literally JUST happened and we're all so grateful you guys are so incredibly active with this stuff, but here we are again! 5494 / 6000 Mbit/s and always climbing haha. Many of us did come from the mas exodus from other VPN services abolishing absolute must-have features like port-forwarding, and honestly I feel more connected with the AirVPN staff than any of the other. I'm here to stay for that if nothing else and the feeling of community. You've successfully made a loyal cult in the best way possible. I only have one gripe and that is to say that I've never had my bandwidth saturated since I made my move here to put it nicely. I think I was coasting at a cool 40mbps just before writing this. It truly is the only thing I miss and the only thing that's missing. I wholeheartedly believe Oceania/New Zealand would strongly benefit from one of the beefier 10,000/20,000 Mbit/s servers. We have about 2.77x less active connections in Oceania than Asia does right at this moment of writing, but we have 5.33x less the bandwidth! That's a solid disparity! No one listens to and actually directly communicates with their community like you guys do. We all know it, we've all been through other providers. No one would have even considered a VPN provider would work this closely with it's users. Take this as the humble request from a loyal Australian user, who'll sadly never again enjoy a VPN server in his own country to due crazy Aussie government non-privacy laws. Please make New Zealand as strong as it needs to be. ❤️

Hello! Thank you for the feedback! That's our contribution to cover the expenses. Just check the price for each 10 Gbit/s full duplex unmetered dedicated line for 1 year to get an idea of expenses for the network traffic, then also consider the depreciation of 20 servers and their maintenance (hardware replacements, manpower maintenance hours...) over the years. It's not like managing a VPS with a few TB per month and a few Mbit/s shared line, and we're talking about exit nodes. Kind regards

Navigating this community and its mission has been bringing a tear to my eyes. It's difficult to describe the joy and pride I felt when I read the words "Pirate Festival in Rome" while reading the Story of this company, and it is an incredible achievement to support all those FOSS and freedom projects. With that said, why does operating 20 tor nodes cost 6k per year? Shouldn't it be like, I don't know, way less? I mean if Air is dealing with every single legal complaint, maybe it does cost that much. But aren't there more cost effective ways of operating Tor nodes?

You're providing an amazing service. We're definitely renewing for another 3 years. Here's to 15 more years! 🍻

well was a really good run, GOD bless you all 🎁

I do not get good speeds with Toronto / Montreal servers. I do not get good speeds even with Wurren (10G server in Toronto). Are there any plans to have new 10 G servers like we just got for NY?

Over the past few days I have seen a lot of posts on r/Windscribe on Reddit that they are suspending/banning high usage accounts, even though it is advertised as unlimited. https://old.reddit.com/r/Windscribe/comments/1ke2n8p/account_banned/ https://old.reddit.com/r/Windscribe/comments/1kd9nmy/rip_unlimited/ https://old.reddit.com/r/Windscribe/comments/1kfn6f4/banned_without_warning_rude_response_from_support/ https://old.reddit.com/r/Windscribe/comments/1jzfb2h/warning_about_the_unlimited_data_plan_and_seeding/ The limit seems to be at the most 10 TB/month, and it's nice to see much higher usage listed on the AirVPN servers page, of course subject to the minimum 4/4 Mbps allocation as a contingency if all the bandwidth is used.

Self-defeating attitude is puzzling. Maybe Windscribe has an infrastructure problem with metered traffic I don't know. AirVPN imposes no traffic limits and gives out 400 Gbps when 31000 users are connected on the status page. Windscribe provides only 120 Gbps when 180000 users are connected. https://windscribe.com/status/ The difference is abysmal ... an AirVPN user is using on average 9 times the bandwidth of a Windscribe user. Perhaps this is the reason for otherwise baffling behavior ?

Maybe in a banana republic where consumers can be sodomized at will. In Europe many service providers have been fined for dozens of millions EUR for false advertising on bandwidth availability and traffic consumption. Movistar, Vodafone, Deutsche Telekom, Boygues are a few famous examples of a decade or two ago. Besides you mention vexatious unfair clauses that are void in the EU if not signed each one separately or void in any case if infringing the law. Contract vagueness is also forbidden by the Unfair Contract Terms Directive whenever it leads, even indirectly, to unfair terms for the weaker party. Terms such as "reasonable", "material", "substantially", "without undue delay" are automatically void if they introduce imbalances to the detriment of consumers. Ambiguities must always be interpreted in favor of consumers. Whether Windscribe can get away or not with false "unlimited traffic" advertising as it is operating according to your claims in a banana country where consumer rights are a joke and a sodomized consumer has no effective tool to defend himself or herself has nothing to do with the objectivity of misleading or false advertising and that in Europe such dirty tricks have been sanctioned severely in the last 15-20 years. Now ISPs have learned the lesson so false advertising has dropped dramatically or disappeared altogether. However Windscribe modified extensively the tos after this incident so something was clearly wrong in the previous ones even for them in this presumed banana country. If they hadn't claimed "unlimited traffic" since the beginning they would have saved themselves this embarrassment that tarnished their image. They just had to write the truth such as "max 1 TB every 3 days and 10 TB/month" or whatever instead of this "unlimited traffic" lie.

wow, thank you!

My bet is that these users are sharing their accounts, which is against the ToS. What I am guessing is happening is Windscribe is seeing suspiciously high data usage from multiple locations on one account which is flagging these users. Unsurprisingly when the user gets banned, they only tell the most favorable version of their story. Vagueness is fine. Courts will look at things such as reasonableness and if Windscribe is acting in good faith to determine the the validity of it. More important users already agree to 1. indemnify themselves for any claims (have fun paying all of windscribes legal fees and getting nothing even if you do win) 2. accept that their access can be terminated for any reason (a very vague and common clause in any ToS) 3. severability (even if the court determines their definition of "abuse" is to vague and nullifies it, the rest of the ToS can still be upheld) so it wouldn't matter anyway.

it was really the "needy" thing. now all is good.

@Bohdan Kushnirchuk Hello! How to solve: To grant Terminal full disk access (except some specific critical directories) on macOS, follow these steps: Open System Settings (or System Preferences): On macOS Ventura and later, click the Apple menu at the top-left of your screen, then choose System Settings. On macOS Monterey or earlier, choose System Preferences. Go to Privacy & Security: In System Settings (Ventura and later), select Privacy & Security in the left-hand menu. In System Preferences (Monterey and earlier), click Security & Privacy, then go to the Privacy tab. Select Full Disk Access: In the Privacy & Security or Security & Privacy tab, scroll down and click Full Disk Access in the left menu. Unlock Settings: At the bottom-left of the window, you might need to click the lock icon and enter your admin password to make changes. Add Terminal: Once the lock is open, click the + button beneath the list of apps with Full Disk Access. In the file chooser window that pops up, go to Applications > Utilities, and select Terminal. Click Open to add it to the list. Restart Terminal: Close the Terminal app if it’s open, then reopen it to apply the changes. 2. Open the terminal and change ownership of the relevant files: sudo chown root /Applications/Eddie.app/Contents/MacOS/* Kind regards

Thrilled about this, thank you!

I have always supported Windscribe but this time I can't. Pretty sure that if Windscribe was in the EU it would have been heavily fined for deceptive advertising at the very least. 10 TB/month is not unlimited traffic in legal terms and in common language and if you read the links you will see that it's not only 10 TB/month the amount triggering a ban, but also 1-2 TB in 3 days, which does not infringe the 10 TB/month limit by itself. Seems clear to me that Windscribe is in serious confusion on this argument. In one of the official statements linked by OP, in order to stubbornly maintain “unlimited traffic” plain lie in their deceptive advertising, they are willing to grasp at straws, by writing that they will update their ToS with vagueness: It's the first time I read that a contract "has to be vague". Terms of Service are a legal contract. A contract must not and can not impose vague terms, on pain of its nullity and vulnerability to legal challenges. Huge embarrassment that they could have avoided by turning on their brain and studying a little more. What a disappointment, Windscribe.

The article windscribe published says they do warn. But, some people have no email associated with their account. In that case it may seem like there's no warning but I think they'll give accounts a second chance in that case.

Ho Canada... Severs are pretty much sutured all day long, worst during weekends.

Are there any settings I can change in Eddie, that would help access sites that block vpn's by default? Thanks!

My use cases show it's not. 1. I connect to a VPN to jump to I2P and Tor when they are blocked by specific ISP that lets AirVPN connections but not Tor's. Once the VPN connection is live I can then connect to Tor or I2P and further enhance identity protection and actually hide how I use the Internet from the ISP. 2. I use the VPN even with an ISP that does not enforce blocks, in order to access medical sites, use political tools and any other activity I am not comfortable to let my ISP know or store for years - since in some countries there's mandatory data retention from one to six years of all traffic including metadata. Tor would do the same but most Tor exit nodes block specific connections, or the final service block Tor, or the service I need would be too slow for the Tor network. Typically when I have to download large documents and tools whose source would provide important clues (that would remain stored for years for data retention again) regarding my health status, my political preferences and any other thing I don't want to be potentially used for profiling or other purposes by my ISP - and everyone accessing my ISP data - , and/or stored for years. 3. I connect to a VPN when I am forced to use a crappy ISP that shapes anything, literally anything, except HTTP-S and makes FTP and anything else a pain. By connecting on TCP to port 443 I can enjoy FTP and some other protocols full speed, even when the activity is not privacy sensitive. In this case too Tor is very problematic for performance and because most exit nodes block some destination ports I need for FTP etc. These are my own use cases and I think that they are not uncommon. I guess that a few bucks a month is a fair price even for one of them. OK, case 3 is not very privacy-related and could be off topic from your initial message, but it shows how a VPN can be worthy in occurrences not strictly privacy related.

Sorry, what do you want to say?

I try to download some files hosted on rapidgator. For example : https://rapidgator.net/file/3beb278dab934f9724bba53940b1d49e/SBot12.zip.html I already added a lot of IP out of VPN for rapidfator, then I can start to enter the captcha, and after waiting time :i have Denied by IP alert (using jdownloader, but same with web). The i try listing all the rapidgator IP to put out pof VPN , here start tyhe list 195.211.220.0/24 195.211.221.0/24 195.211.222.0/24 195.211.223.0/24 188.130.164.0/24 109.202.105.0/24 (ULTRANET) But i still have Denied by IP after captcha. Someone know where to get the IP list of rapidgator ?

Hi everyone, I'm using AirVPN through WireGuard on my OpenWrt router (latest stable version), but I'm having trouble getting IPv6 to work properly. IPv4 traffic goes through the VPN just fine, but IPv6 traffic does not. Here are my relevant settings and config: // network: config interface 'loopback' option device 'lo' option proto 'static' option ipaddr '127.0.0.1' option netmask '255.0.0.0' config globals 'globals' option ula_prefix 'fdef:xxxx:xxxx::/48' option packet_steering '1' config device option name 'br-lan' option type 'bridge' list ports 'lan1' list ports 'lan2' list ports 'lan3' list ports 'lan4' config interface 'lan' option device 'br-lan' option proto 'static' option ipaddr '192.168.1.1' option netmask '255.255.255.0' option ip6assign '60' config interface 'wan' option device 'wan.10' option proto 'dhcp' option peerdns '0' list dns '1.1.1.2' config interface 'wan6' option device 'wan.10' option proto 'dhcpv6' option reqaddress 'try' option reqprefix 'auto' option peerdns '0' list dns '2606:4700:4700::1112' config device option type '8021q' option ifname 'wan' option vid '10' option name 'wan.10' config interface 'vpn' option proto 'wireguard' option private_key '***REDACTED***' list addresses '10.x.x.x/32' list addresses 'fdxx:xxxx:xxxx:xxxx::xxxx/128' config wireguard_vpn 'wgserver' option public_key '***REDACTED***' option preshared_key '***REDACTED***' option endpoint_host 'xxx.xxx.xxx.xxx' option endpoint_port '1637' option persistent_keepalive '15' option route_allowed_ips '1' list allowed_ips '0.0.0.0/0' list allowed_ips '::/0' // firewall config defaults option syn_flood '1' option input 'REJECT' option output 'ACCEPT' option forward 'REJECT' config zone 'lan' option name 'lan' list network 'lan' option input 'ACCEPT' option output 'ACCEPT' option forward 'ACCEPT' config zone 'wan' option name 'wan' list network 'wan' list network 'wan6' list network 'vpn' option input 'REJECT' option output 'ACCEPT' option forward 'REJECT' option masq '1' option mtu_fix '1' config forwarding option src 'lan' option dest 'wan' # IPv6-related firewall rules omitted for brevity but mostly default ICMPv6 & DHCPv6 Despite ::/0 being in the allowed_ips for the WireGuard interface, my IPv6 traffic still seems to go out through the regular WAN or not at all. Does anyone know what I'm missing or how to properly force all IPv6 traffic through the VPN tunnel like IPv4? Thanks in advance!

Resolve servername_exit.airservers.org

Mullvad is only going to have Wireguard in the new year. Do most people using Air use WG or Openvpn? Does Air have stats on which protocol is used more? I hope AirVPN never drops OpenVPN support, there are older devices like routers etc that we can't use WG on. Mullvd drops port forwarding, then openvpn, hmm something fishy?! I notice Air's membership has doubled since Mull and IVPN dropped port-forwarding!!

Hello! Eddie should allow the execution of binaries when they are not owned by root, only if they pass the checksum verification. If they don't, only files owned by root will be run with root privileges. The files packaged with Eddie should pass the checksum verification. Why it does not happen is a matter of an ongoing investigation by the developers. With that said, the system refusal to change ownership even to the superuser is probably caused by a terminal that's not allowed to have full disk access, according to System Integrity Protection. You should grant Terminal program full disk access in the following way: Make sure that Terminal is not running. Open System Preferences > Security & Privacy from the Apple menu.. Click the padlock icon at one corner of the window and enter your administrator password to make changes. Go to the Privacy tab. Click the [+] button at the bottom of the list on the right. Navigate to Terminal program location in the Applications folder ([...]/Applications/Utilities/Terminal). Add Terminal to the list and make sure that its checkbox is ticked. Then, open the terminal and try again to change ownership of the relevant files sudo chown root <full path and name of the file> You will need to change ownership of both wg and wireguard-go files. Kind regards

Hi, In settings i've checked "Don't ask elevation every run". But i don't know how to create service, or rather what to put in the service to make it work. And is it possible to tell the qbittorrent service to start up after Eddie-UI? If so, could someone please help me? Thanks !

This setting creates the unit. You don't need to do anything yourself. You can check whether it exists with: $ systemctl list-unit-files eddie* .

Future readers will be delighted to have said script.