Leaderboard

Hello! We're glad to inform you that, following the community requests and suggestions, we added five DNS block lists in our system, MIT licensed (*) by Jerry Joseph. GoodbyeAds A programmatically expanded list of hosts used for advertisements, Malware and tracking. Use this list to block ads trackers malwares. Items: 200489 (as of today) GoodbyeAds Samsung A well maintained list containing Samsung hosts used for advertisements and tracking. Those who are not using GoodbyeAds list and want to block only Samsung ads and tracking can use it. Items: 103 (as of today) GoodbyeAds Spotify A well maintained list containing Spotify hosts used for advertisements. This list helps to block/reduce Spotify ads. Items: 3774 (as of today) GoodbyeAds Xiaomi A well maintained list containing Xiaomi hosts used for advertisements and tracking. Those who are not using GoodbyeAds list and want to block only Xiaomi ads and tracking can use it. Items: 279 (as of today) GoodbyeAds YouTube A well maintained list containing YouTube hosts used for advertisements. This list helps to block/reduce YouTube ads. Items: 97645 (as of today) ===== By default, AirVPN DNS remains neutral in accordance with our mission. However, you have the option to enforce block lists which poison our DNS, in order, for example, to block known sources of ads, spam, malware and so on. You can manage your preferences in your account Client Area ⇨ DNS panel https://airvpn.org/dns/. We offer only lists released with licenses which grant re-distribution for business purposes too. The system is very flexible and offers some exclusive features never seen before in other VPN services: You can activate or de-activate, anytime, any combination of lists. You can add customized exceptions and/or additional blocks. Any specified domain which must be blocked includes all of its subdomains too. Lists which can return custom A,AAAA,CNAME,TXT records are supported. You can define any combination of block lists and/or exceptions and/or additions for your whole account or only for specific certificate/key pairs of your account (Client Area ⇨ Devices ⇨ Details ⇨ DNS) Different matching methods are available for your additions and exceptions: Exact (exact FQDN), Domain (domain and its subdomains), Wildcard (with * and ? as wildcards), Contain, Start with, End with. An API to fetch every and each list in different formats (see Client Area ⇨ API ⇨ dns_lists service) is active Any change in your selected list(s), any added exception and any added block is enforced very quickly, within few tens of seconds. You don't need to disconnect and re-connect your account. You can define your own lists and discuss lists and anything related in the community forum here Essential requisite to enjoy the service is, of course, querying AirVPN DNS while your system is connected to some VPN server, which is by the way a default setup if you run our software. Kind regards & datalove AirVPN Staff (*) MIT License Copyright (c) 2018 Jerry Joseph Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions: The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software. THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

I have run the test and found others likely have the same problem due to Sucuri's "BLACK02" blacklisting. See route report here https://airvpn.org/routes/?q=https%3A%2F%2Flabs.sucuri.net%2Fsignatures%2Fwaf%2Fblack02-blacklisted-ip-address%2F and browser from denied sites: Access Denied - Sucuri Website Firewall If you are the site owner (or you manage this site), please whitelist your IP or if you think this block is an error please open a support ticket and make sure to include the block details (displayed in the box below), so we can assist you in troubleshooting the issue. Block details: Your IP: 199.249.230.2 URL: www.fortbendcountytx.gov/ Your Browser: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/94.0 Block ID: BLACK02 Block reason: Your IP address is listed in our blacklist and blocked from completing this request. Time: 2022-08-24 07:58:33 Server ID: 12004 ------------ Access Denied - Sucuri Website Firewall If you are the site owner (or you manage this site), please whitelist your IP or if you think this block is an error please open a support ticket and make sure to include the block details (displayed in the box below), so we can assist you in troubleshooting the issue. Block details: Your IP: 199.249.230.2 URL: labs.sucuri.net/signatures/waf/black02-blacklisted-ip-address/ Your Browser: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/94.0 Block ID: BLACK02 Block reason: Your IP address is listed in our blacklist and blocked from completing this request. Time: 2022-08-24 07:57:07 Server ID: 12016

correct, you're logged into your account on the web site so it knows what certs/keys to put in the config file (takes the place of username/password) based on what "device" you selected in the config generator.

I'm using deluge with gluetun in a stacked docker configuration on my synology NAS, through wireguard VPN provided by AirVPN. In Airvpn I have set port 19652 to be forwarded. How do I properly configure my docker and my router so portforwarding is working correctly? Do I need any extra environment variables added to the docker stack? Or any settings in my ASUS router? I'm currently using this docker compose code and I have port 19652 set up as incoming port in deluge settings. version: "3.5" services: vpn: image: qmcgaw/gluetun:latest container_name: gluetun-wireguard cap_add: - NET_ADMIN environment: - VPN_SERVICE_PROVIDER=airvpn - VPN_TYPE=wireguard - WIREGUARD_PRIVATE_KEY=xxxxxxxxxx - WIREGUARD_PRESHARED_KEY=xxxxxxxx - WIREGUARD_ADDRESSES=10.134.169.210/32,fd7d:76ee:e68f:a993:3bc0:be52:7268:f4b0/128 - SERVER_COUNTRIES=Netherlands ports: - 8112:8112/tcp - 19652:19652/tcp - 19652:19652/udp deluge: image: lscr.io/linuxserver/deluge:latest container_name: deluge network_mode: "service:vpn" environment: - PUID=1027 - PGID=100 - TZ=Europe/Amsterdam - DELUGE_LOGLEVEL=error #optional volumes: - /volume1/docker/deluge:/config - /volume1/video/downloads:/video/downloads restart: always

@McFly The route tool works, it returns a green token because it gets 200 (OK) from the final web server, and that's true. But the landing page is served by the Sucuri Firewall as a courtesy block page. Our IP addresses are not in the main black lists around, but there are hundreds of black lists around, we will try to understand which one Sucuri uses (maybe a proprietary one). Kind regards

Hello! There's a part of an old urban legend here. Eddie's source code is available on GitHub (including the current 2.22.2 which is still considered "beta", according to the unorthodox release cycle of Eddie), anyway the essence of the urban legend is assuming that a license enforces restrictions on future releases of a certain work on the copyright holders themselves. The copyright holders are not restricted on future development or re-arrangement of a work of mind by any previous license since they are the "legal owners" (according to the international treaties which overlap intellectual monopoly with intellectual property and the EU legal framework on intellectual monopolies). On subsequent releases, the license of the current work always defines and/or restricts the rights of third parties, and not the rights of the legal owners. At the same time, the license we agreed to pick grants third parties that no retroactive restrictions are possible. If Eddie's developer decided to distribute an Eddie version without source code he would have the legal right to do so, provided that Eddie does not include third-party code licensed with restrictions against closed source code. It doesn't happen because of AirVPN mission (and Eddie's developer is also an AirVPN co-founder), but legally it would be Eddie's developer right. An identical right is reserved to AirVPN Suite developers, and exercised on both senses. If you notice, when a Suite alpha or beta version is made available to community testers, the OpenVPN3-AirVPN library against which the Suite is linked is always open source, while the proprietary preview code is closed. It is then re-licensed and opened (usually under GPLv3 but we're not ruling out different, more permissive licenses, for the parts we have exclusive rights on) only when the development team considers the software as "stable". Even in this case, releasing a copyrighted software as a preview does not prevent the developers to re-license and open it in the future (so far to make it open source under GPL). You did not miss anything. Eddie 2.22.2 is still the latest "experimental", but the testing work is over. If nothing serious comes out (fingers crossed) you will see a new stable release very soon. Kind regards

Extremely annoying that Sucuri is blocking my access to linuxmintDOTcom and blog.linuxmintDOTcom. Sometimes if I change AirVPN servers I can reach them, but it's a needless frustration.

Sucuri Firewall is a sponsor of Linux Mint. Good luck with hoping Linux Mint would switch off the Sucuri Firewall for their website... But perhaps AirVPN could help? If they could, the should, because Linux Mint OS is used by millions of users.

This is the only page i can reach about sucuri ip block. i can't even reach their docs. I tried to write a message but they told me to reach to web site owner. In this case my website was linuxmint.com but i also mentioned i can't reach their website docs. they didn't respond it. For now there is nothing to do i guess. still searching and i will share my results if i can find a solution.

+1, I'm seeing error from - https://www.rutherford.org/publications_resources/john_whiteheads_commentary/youd_better_watch_out_the_surveillance_state_is_making_a_list_and_youre_on_it Block details: Your IP: 194.36.111.59 URL: www.rutherford.org/publications_resources/john_whiteheads_commentary/youd_better_watch_out_the_surveillance_state_is_making_a_list_and_youre_on_it Your Browser: Mozilla/5.0 (X11; Linux x86_64; rv:97.0) Gecko/20100101 Firefox/97.0 Block ID: BLACK02 Block reason: Your IP address is listed in our blacklist and blocked from completing this request. Time: 2022-12-25 16:11:02 Server ID: 14002

Same here. A lot more websites are now inaccessible due to Sucuri. Some will display a "Access Denied - Sucuri Website Firewall" message, with some details and a link to open a support ticket, but most websites will just timeout. Is there anything that can be done about this? Would it make sense for Air to contact them (Sucuri) directly? Unfortunately this is having a big impact, and I now cannot access a number of websites I must regularly use.

I've found this as well. I don't have an example on the top of my head right now, but I remember seeing Sucuri's block screen frequently recently.

Hello! We have no plans to operate VPN servers in France (and in Italy) for the mandatory data retention framework still enforced in disdain of three different legally binding decisions of the CJEU (see below). France is in breach and Italy is too, but the Commission hesitates to open infraction procedures. Since the decisions pertain to the the preservation of a fundamental human right enshrined in the EU Charter of Fundamental Rights and in the European Convention on Human Rights, it does not seem inappropriate to consider that both France and Italy are committing one of the worst breaches a EU Member State can be guilty of. We might challenge with a casus belli the (il)legal framework in France, but we are already committed in other EU countries and we can't open potentially multiple legal battle fronts. The Court of Justice declares the Data Retention Directive to be invalid https://curia.europa.eu/jcms/upload/docs/application/pdf/2014-04/cp140054en.pdf The Members States may not impose a general obligation to retain data on providers of electronic communications services https://curia.europa.eu/jcms/upload/docs/application/pdf/2016-12/cp160145en.pdf The Court of Justice confirms that EU law precludes national legislation requiring a provider of electronic communications services to carry out the general and indiscriminate transmission or retention of traffic data and location data for the purpose of combating crime in general or of safeguarding national security https://curia.europa.eu/jcms/upload/docs/application/pdf/2020-10/cp200123en.pdf Kind regards

I too have found more and more websites using Sucuri firewall blocking most GA and a rotating assortment of Florida servers . Wells Fargo Bank blocks Pollux Get the same page as loopy32 displayed with either a backlist01 or 02