Leaderboard
Popular Content
Showing content with the highest reputation since 01/13/25 in Posts
-
7 pointsHello! We're very glad to inform you that a new 10 Gbit/s full duplex server located in Frankfurt, Germany, is available: Ashlesha. The AirVPN client will show automatically the new server; if you use any other OpenVPN or WireGuard client you can generate all the files to access it through our configuration/certificates/key generator (menu "Client Area"->"Config generator"). The server accepts connections on ports 53, 80, 443, 1194, 2018 UDP and TCP for OpenVPN and ports 1637, 47107 and 51820 UDP for WireGuard. Ashlesha supports OpenVPN over SSL and OpenVPN over SSH, TLS 1.3, OpenVPN tls-crypt and WireGuard. Full IPv6 support is included as well. As usual no traffic limits, no logs, no discrimination on protocols and hardened security against various attacks with separate entry and exit-IP addresses. You can check the status as usual in our real time servers monitor . Do not hesitate to contact us for any information or issue. Kind regards & datalove AirVPN Staff
-
5 points
Congested Chicago Servers: Plans for 10 Gbps Chicago/Midwest Server?
Conical and 4 others reacted to eStolkYw for a post in a topic
Chicago servers are consistently reaching their 1 Gbps capacity, frequently throttling connections below 10 Mbps! I think there is a need for an upgrade in the region. Chicago/Midwest region would benefit greatly from a 10 Gbps server. I see several 10 Gbps servers were added in other major cities around the US over the past year or two, but so far haven't seen any in the Midwest (US). I've been exclusively using Chicago servers on AirVPN for several years now. I’ve noticed a decline in reliability over the past six months due to increased user demand and lack of bandwidth capacity. Switching between Chicago servers often yields no improvement. I have tried the nearest 10gbit servers in Toronto, New York and Phoenix, but have had pretty poor results. Most likely due to the fact that they are so far away. Even during non peak times it's very rare there is enough available capacity on these 1gbit Chicago servers to saturate my 500mbps fiber home connection. Would love to know if there are any plans in the near future for upgrading servers in this region. I would also like to mention a post I made over a year ago, where I mentioned how I think adding Per City Load balancing functionality would greatly improve the experience in these congested areas. Even right now as I'm writing this, I am struggling to find a Chicago server running at acceptable speeds. See the below screenshots and you can see for yourself: With VPN on Praecipua server: : Without VPN: -
5 points
Congested Chicago Servers: Plans for 10 Gbps Chicago/Midwest Server?
everintrigued55 and 4 others reacted to ScanFarer for a post in a topic
I’d love to see a new 10G server in the Midwest. While it’s not a dealbreaker, it would definitely be a great addition! Edit: One thing I want to point out is that I’ve been testing Mullvad VPN to compare speeds based on server providers. I’ve noticed that certain server providers and may experience poor routing or routing bottlenecks depending on your ISP. For example, the new New York servers on Tzulo (used by both AirVPN and Mullvad) give me terrible results—decent latency but typically only around 40 Mbps symmetrical. Meanwhile, servers from Datapacket and M247 consistently provide over symmetrical gigabit speeds on WireGuard. I think Mullvad's approach of using multiple providers in some cities is a good idea, as it gives users the flexibility to choose servers with the best routing or latency. I don’t know for certain, but AirVPN may have their reasons (costs, contracts, security) for not choosing certain providers, and that’s completely fine. However, I think this is something they could consider if its in the realm of possibility. -
4 pointsEddie 2.24.6 Desktop Edition released Hello! We're very glad to inform you that a new stable release of Eddie is now available for Linux (various ARM based architectures included, making it compatible with several Raspberry Pi systems), macOS, Windows. Special thanks to all the beta testers, whose invaluable contributions and suggestions in the last months have helped developers fix several bugs and improve the overall stability of the software. Eddie is a free and open source (GPLv3) OpenVPN GUI and CLI by AirVPN with many additional features such as: traffic leaks prevention via packet filtering rules DNS handling optional connections over Tor or a generic proxy customizable events traffic splitting on a destination IP address or host name basis complete and swift integration with AirVPN infrastructure with OpenVPN and WireGuard white and black lists of VPN servers ability to support IPv4, IPv6 and IPv6 over IPv4 What's new in Eddie 2.24.6 WireGuard is the new communication protocol by default, while OpenVPN remains available for any necessity CPU usage optimization update of packaged binaries and libraries new options to customize WireGuard improved management and configuration of bootstrap servers (qualified domain names are now possible too) systemd-resolved (Linux) enhanced compatibility for all working modes improved management of SIGTERM signal several bug fixes Operating and architectural notes Eddie GUI and CLI run with normal user privileges, while a "backend" binary, which communicates to the user interface with authentication, gains root/administrator privileges, with important security safeguards in place: strict parsing is enforced before passing a profile to OpenVPN in order to block insecure OpenVPN directives external system binaries which need superuser privileges (examples: openvpn, iptables, hummingbird) will not be launched if they do not belong to a superuser Eddie events are not run with superuser privileges: instead of trusting blindly user's responsibility and care when dealing with events, the user is required to explicitly operate to run something with high privileges, if strictly necessary Backend binary is written in C++ on all systems (Windows included), making the whole application faster. Settings, certificates and keys of your account stored on your mass storage can optionally be encrypted on all systems either with a Master Password or in a system key-chain if available. Download Eddie 2.24.6 Eddie 2.24.6 can be downloaded here: https://airvpn.org/linux - Linux version (several architectures and various distribution specific packages for easier installation) https://airvpn.org/macos - Mac version https://airvpn.org/windows - Windows version Eddie is free and open source software released under GPLv3. Source code is available on GitHub: https://github.com/AirVPN/Eddie Complete changelog can be found here. Kind regards & datalove AirVPN Staff
-
4 points
New 1 Gbit/s server available (NZ)
Andrew109 and 3 others reacted to Staff for a post in a topic
Hello! We're very glad to inform you that a new 1 Gbit/s full duplex server located in Auckland (NZ) is available: Theemin. The AirVPN client will show automatically the new server. If you use any other OpenVPN or WireGuard client you can generate all the files to access it through our configuration/certificates/key generator (menu "Client Area"->"Config generator"). The server accepts OpenVPN connections on ports 53, 80, 443, 1194, 2018 UDP and TCP, and WireGuard connections on ports 1637, 47107 and 51820. Just like every other Air server, Theemin supports OpenVPN over SSL and OpenVPN over SSH, TLS 1.3, tls-crypt and WireGuard. Full IPv6 support is included as well. As usual no traffic limits, no logs, no discrimination on protocols and hardened security against various attacks with separate entry and exit-IP addresses. You can check the server status as usual in our real time servers monitor: https://airvpn.org/servers/Theemin Do not hesitate to contact us for any information or issue. Kind regards and datalove AirVPN Team -
4 points
ANSWERED Oceania - More servers/bandwidth for the region - v2
JonathanM and 3 others reacted to Staff for a post in a topic
Hello! Good news. A new server in New Zealand was ordered early on January and it has just been connected. We are going to configure it in the next business day, and if everything goes well it will be available a few days later. Kind regards -
3 points
10 Gbit/s servers in Germany
zimbabwe and 2 others reacted to Staff for a post in a topic
Hello! A new 10 Gbit/s (full duplex) server is now available in Germany. Kind regards -
3 points
Too many clients, same bandwidth = poor performance
Lance Kaufman and 2 others reacted to tranquivox69 for a post in a topic
I've been a happy customer for a long time now. And I have a long time commitment to AirVPN too, with my plan not expiring for four more years. In the past few months the situation with servers load has gone from bad to worse. It's become noticeable in all applications. P2P above else, where I have a pretty firm idea of what the performance can be. This is my current performance under AirVPN. This is my current performance outside the tunnel. Before the recent influx of new users the situation was far better. Sad state of affairs and I'd like to understand if AirVPN is planning to so something to remedy the situation or if I have to look elsewhere in order to properly use my connection. Thank you. Even though the message might not sound like it, I'm a big fan of AirVPN and of their overall mission. -
3 points@tranquivox69 Hello! We will investigate the issue you reported and we confirm that the expansion of the infrastructure proceeds exactly at the required pace as usual. We have recently completed in the USA the switch to all 10 Gbit/s dedicated lines in every strategic area and expansion in Europe has been remarkable in the last 2 years. Even Oceania and Asia have all seen remarkable expansions in the last 2 years. We do not have doubts that your experience worsened and that will be a matter of investigation of course, but please note that saying "too many clients same bandwidth" is unfair. In April 2022, we provided in Europe 175000 Mbit/s, with a real required throughput of 37000 Mbit/s. The average connected clients at any given time were 8000-8500: https://web.archive.org/web/20220317052230/https://airvpn.org/status/ Today, we provide 446000 Mbit/s to about 18000 clients connected to Europe servers at any given time: https://airvpn.org/status with a real / required throughput of 190000 Mbit/s. So, in 2022 the average real provided throughput was 4.6 Mbit/s per connection, while today it is 10.6 Mbit/s. Even the required throughput top peaks of users sky rocketed. In 2022 they were around 400 Mbit/s, today between 800 Mbit/s and 2 Gbit/s. All of the above not to say that we will be slowing the infrastructure expansion, but just to reassure you that the expansion has continued and is continuing at a fast pace according to needs. If any country is unbalanced within Europe we will of course fix the situation. Kind regards
-
3 points
New 1 Gbit/s server available. New country: TW
Lance Kaufman and 2 others reacted to Staff for a post in a topic
Hello! It could. The current decision is that next [EDIT: now current 2.24.6] Eddie Desktop edition version will print "Taiwan, Republic of China", by breaking ISO compliance and at the same time not leaving any doubt to PRC propaganda brainwashed people. This definition should be strong enough to satisfy everyone except mainland China and supporters of standards, of course. Kind regards -
2 pointsIts been 10 years and still going strong.
-
2 points
Where's my gift
flat4 and one other reacted to PWolverine for a post in a topic
I'm close behind... JOINED 05/03/2015 -
2 points
What Makes for a Good VPN server
Andrew109 and one other reacted to AG999 for a post in a topic
For me, it's usually a balance of ping and speed, but general stability as well, because I play games from time to time. So, I prefer Estonian server, or Norwegian servers when they are not loaded more than 75%. These locations have the least ping and good speed delivery for my location. (Latvia has even lower ping, but I seem to lag from time to time when I'm playing a shooter, so I don't usually use them, and Swedish servers don't seem to fit my needs) -
2 points
New 1 Gbit/s server available. New country: TW
Lance Kaufman and one other reacted to voidone for a post in a topic
Agree! Support Taiwan on political is vital! -
2 points
Eddie Desktop edition 2.24.6 released
CocoaJackson and one other reacted to IG-11 for a post in a topic
Upgraded from the previous stable version and unfortunately, this release is a huge step backwards. UI performance is simply horrendous (Arch-based EndeavourOS with Plasma 6.2.5 running under X11) There are: - lags and delays when highlighting or clicking various UI elements (tabs or buttons) - delays, glitches, and stuttering when scrolling through the server list - degraded pinger showing inaccurate results (100-200-something ms for locations which usually give me 20-30ms; thankfully, the actual VPN connection performs as expected) - glitches when minimizing and maximizing app (transparent window for a sec or so) - broken formatting on Overview page (public exit IP) All in all, during my 4+ years with Air, sadly this is the first time I'm seeing such an unpolished piece of software. S -
2 points
Too many clients, same bandwidth = poor performance
Lance Kaufman and one other reacted to AG999 for a post in a topic
Baseline, without any tunnels: All tests were done with Wireguard and 1400 MTU. 10 Gb/s servers in Netherlands: Menkent, 18% load, 213 users: Piautos, 25% load, 198 users: Dalim, 20% load, 245 users: Other EU servers: Switzerland, 10 Gb/s, Alpherg - 21% load, 287 users: Norway, 1 Gb/s, Ophiuchus, 77% load, 103 users: Estonia, 1 Gb/s (or is it more?), Alruba, 82% load, 79 users: Download speeds seem to be mostly okay-ish on all servers, but something is up with the upload speed. Not sure what causes it to drop significantly. Will say that we definitely need more 10 Gb/s servers. I think you should try using servers in other EU countries as well. Server in Estonia is interesting, because it seems to always give me good download speed, even when it's loaded to 100%. Old screenshot from it: -
2 points
Denkark Server Request
torgooose and one other reacted to m3d1a@dm1n for a post in a topic
I just wanted to request a server in Denmark -
1 point
Install Eddie 2.24.6 Windows 7 Question(s)
Lance Kaufman reacted to OpenSourcerer for a post in a topic
Eddie supports Windows 7, you know. Only requirement is that you install .NET 4.5. -
1 pointgetting flagged with my frankenshtain vpn config by bunch of websites that are important to me, but freaking hola servers works fine... lmao
-
1 point
Install Eddie 2.24.6 Windows 7 Question(s)
Lance Kaufman reacted to flat4 for a post in a topic
I only asked because I was curious and did not think that air even supported windows 7. I am glad that OpenSourcer provided help for you. -
1 pointHello! We're very glad to inform you that in the coming days, according to our infrastructure expansion and improvement plan, all the servers in Los Angeles, New York City and Phoenix will be replaced. The new servers will have much more powerful hardware and all of them will be connected to a 10 Gbit/s (full duplex) port with guaranteed bandwidth. Therefore, the infrastructure in the mentioned locations will be entirely upgraded to new 10 Gbit/s servers, with 3 servers in LA, 3 servers in Phoenix and 4 servers in New York City. The current servers will be decommissioned on November the 1st. Please note that all the new servers will have new IP addresses. Connectivity will be very similar, with the notable addition of GTT and Zayo as fiber and tier1 transit providers. Kind regards and datalove AirVPN Staff
-
1 pointWireguard, 1400 MTU
-
1 point
New 1 Gbit/s server available (NZ)
Andrew109 reacted to PWolverine for a post in a topic
Fantastic. The NZ servers were always quite full. Great to have another added. Well done AirVPN. -
1 pointHello! Now available https://airvpn.org/forums/topic/67050-new-1-gbits-server-available-nz Kind regards
-
1 pointHello! The quoted log entry shows that core problem. Debian 12 is based on nftables. Can you please check which of the following userspace utilities you have in your system: nft, iptables-legacy, iptables-nft, and any other iptables* ? Kind regards
-
1 pointI'm having similar issues. I was able to make Eddie usable by reducing my screen resolution, but it's still glitchy. System details: Screen recording of behavior: Screencast_from_2025-01-21_10-38-42.webm
-
1 point
Airvpn Browser?
Lance Kaufman reacted to Y7h-2dfrgrtAA-3 for a post in a topic
Chromium: hell nah, no one should be using that browser. It's basically a data farming software. FireFox: Better than Chromium but would rather use the forks that has all the data's off like on default (telementry shi's) like waterfox. Honestly a vaild response. Ill search of what DCO mean since idk what it means 😕 I mean true it uses google search index instead their own homemade index. Thanks for the link to harden Firefox and your welcome airvpn❣️. -
1 point
Too many clients, same bandwidth = poor performance
Staff reacted to tranquivox69 for a post in a topic
Thank you for this message. I did not want to be unfair toward your company. I've been nothing but satisfied with the service you provide in these 10 years. If I sounded too harsh (re-reading myself I think I did), sorry. Since I asked a question in the OP, you've now provided the answer I hoped to get with the above. Now I'll wait and you surely have earned the goodwill for that in these 10 years. Thanks again. -
1 point
AirVPN Appreciation Review
not_swag_luke reacted to Rodent for a post in a topic
I started using AirVPN in 2023 because I wanted port forwarding. That was the most advanced thing I did back then. Just using Eddie-UI on a Windows 10 PC. Servers are fast, plenty of choices. Network lock works perfectly so no need to worry about leaks. Perfect for beginners and advanced users. Since then, I have branched out a bit and as a part of my career, I have needed to start using Linux. So I have spent some time messing around on Linux. But I need to say how incredible and comprehensive AirVPN is. Honestly the team at AirVPN is the absolute best. No bulls**t from them ever. I don't think everyone understands how well they've made their service. It completely outclasses other VPN providers *Cough cough Nord*. At first I was a bit intimidated by the UI, but it's a quick learning curve for Eddie-UI. It works and gets the job done. I realise now that it's better than way, its clean and fast, no unnecessary bloat. Just the sheer amount of control and customization is incredible. Honestly guys, thank you. Compatible with any device I could think of. I never realised the level of control possible with AirVPN. But now that I have more niche and specific use cases, it has really proven to be so incredibly well made. Everything I want to do is possible. So many vulnerabilities are avoided by using Air. I've never seen such top notch security. Truly thank you. If anyone is unsure if they should get AirVPN, the answer is yes. I started out using it in the most basic form using Eddie-UI on my PC and Phone. But now I configure everything myself for certain tasks, and I am still learning something new each time. You can use this service for the most basic needs, all the way to the most advanced. Oh and wow it's so lightweight. Can run on practically anything without any problems. This is clearly something made by extremely knowledgeable people To everyone at AirVPN, thank you guys. 10/10 service A+++ -
1 point
ANSWERED UK AirVPN Servers block via ISP
Staff reacted to pembrokeVPN for a post in a topic
Hello, I can confirm via Eddie and Community Fibre I can connect to all of the above servers. Also just did a quick test of the some of the servers @tycoon21 couldn't connect to and had the same result. The dutch servers are working ok via pfSense which I have been running since on openVPN. -
1 pointHello! Therefore, looking at the servers on the screenshot, it is possible that Community Fiber blocks M247: perhaps the block is not against AirVPN but against that big provider IP address blocks (whose HQ is, ironically, in the UK). As a counter-proof, please try connections to any non M247 server. In Europe, all the 10 Gbit/s servers are not with M247, and all the servers in the Netherlands, Estonia, Sweden and Latvia are not with M247. You can find other non-M247 servers in Czech Republic, Germany, Spain and Switzerland. List of 10 Gbit/s (full duplex) servers in Europe. Bulgaria: Wazn Netherlands: Dalim, Menkent, Piautos Sweden: Ain Switzerland: Alpherg, Xuange Could someone in UK please test all of the above and verify that they are not blocked? We are working to add unmetered and dedicated 10 Gbit/s line in Germany (not with M247) as well. Kind regards
-
1 pointHello. It's works without problem on Linux Mint 20.1 Ulyssa. Thanks for upgrade!
-
1 point
How to correctly use the "routes" tab to only route the torrent client through Eddie?
paulschlacter2121 reacted to Iodine9205 for a post in a topic
I also wanted to do as user shortfacedbear planned. I also used the wire sock instructions that were in the forums somewhere. It works temporarily, but I have encountered nothing but troubles and instability in trying to use wire sock and wire sock UI. Huge packet loss, massive latency, and a replicable issue that i cannot solve. It will often connect quickly through the wiresock tunnel, qbit will blast at 30mbps for maybe a few minutes at the very best and then speeds crater to the ground, ping climbs to the thousands, and pocket loss goes upwards of 40% and my supposedly untunneled connection gets heavily affected to basically being useless and not loading anything. I have sought out anwers from support with no reply, several other hobby forums where no one can solve the issue and frankly i am tired. I just want qbit to be the only thing going to the tunnel and this shouldnt be as difficult as it has been. Please for the love of god, what amount of money do i have to pay for you guys to add this feature already. It is quite litterally the only feature airvpn lacks to make it hands down no competition the best vpn out there. This issue i stated was replicable no matter what server i was on and what config i changed with airvpns config generator. It simply doesnt work -
1 point
Eddie Desktop edition 2.24.6 released
Staff reacted to PWolverine for a post in a topic
MacOS version on ARM seems to be running perfectly. Great to see a new upgrade. -
1 pointInstallation error: have you forgotten sysvinit support? I am forced to uninstall the package, disable the AirVPN repository subscription and reinstall the previous version. Please let us know when it will be possible to reactivate the AirVPN repository subscription. Further details: lsb_release -ds: Devuan GNU/Linux 5 (daedalus) During the upgrade from 2.21.8 to 2.24.6, dpkg ends with an error code. In fact, the new script /var/lib/dpkg/info/eddie-ui.postinst executes the command /usr/lib/eddie-ui/eddie-cli-elevated service=install Manual execution under root in a terminal clearly shows an error in the eddie-cli-elevated program: root@devuan:~# /usr/lib/eddie-ui/eddie-cli-elevated service=install Enable eddie-elevated.service failed Service install fail. Temporary workaround for Debian 64-bit based sysvinit distributions # Download the package of the previous version 2.21.8 # according to the web page https://airvpn.org/linux/eddie/ wget -O eddie-ui_2.21.8_linux_x64_debian.deb "https://airvpn.org/mirrors/eddie.website/download/?platform=linux&arch=x64&ui=ui&format=debian.deb&version=2.21.8" # Uninstall the eddie-ui package sudo dpkg -r eddie-ui # Deactivate AirVPN repository for f in `grep -El 'https?://eddie.website' /etc/apt/sources.list.d/*.list` `grep -El 'https?://eddie.website' /etc/apt/sources.list.d/*.sources`; do sudo mv -v $f $f.disabled; done sudo apt-get update # Install package eddie-ui_2.21.8_linux_x64_debian.deb sudo dpkg -i eddie-ui_2.21.8_linux_x64_debian.deb Please fix the problem, and let us know when we can re-enable the AirVPN repository subscription on Debian-based sysvinit distributions. Thanks in advance.
-
1 pointHello! Very well! The problem is not Eddie in itself but OpenVPN linked against OpenSSL 1.1.x. libssl 1.1.x is perhaps not available anymore, replaced by OpenSSL 3 library. All recent OpenVPN versions are linked against OpenSSL 3, so the problem is no more. It has been extensively tested and no critical issue has appeared so far. Of course absence of evidence does not mean evidence of absence. A stable version will be released very soon anyway, a matter of days. If you prefer to run Eddie 2.21.8 you can: just switch to WireGuard (which is not linked against any SSL library) or upgrade OpenVPN in your system and have Eddie use the new OpenVPN binary. You can switch to WireGuard from Eddie's "Preferences" > "Protocols" window. In the new Eddie 2.24.x WireGuard is the new default connection mode and protocol, replacing OpenVPN (which remains available for any necessity). Kind regards
-
1 pointHello! Yes, it is related to OpenSSL library (1.1 is now deprecated and perhaps not available anymore in Mint). Please upgrade to Eddie 2.24.6 and also upgrade your OpenVPN package in your Mint distribution: https://airvpn.org/forums/topic/57401-eddie-desktop-224-beta-released/ Kind regards
-
1 point
Too many clients, same bandwidth = poor performance
Lance Kaufman reacted to matts9 for a post in a topic
I have similar experience with the 10G servers. I ran some tests today (Windows 11, WireGuard[MTU=1320]): Caph 1G (65% load) Dalim 10G (17% load) Menkent 10G (17% load) Piautos 10G (29% load) To rule out routing problem I have run traceroute to all four servers and the difference is only visible in last two hops (inside global layer network which is understandable). Caph: Dalim: Menkent: Piautos: Caph: Dalim: Menkent: Piautos: Out of the three 10G servers only Piautos gives me good speeds. Interestingly at the moment of testing Piautos had higher load than the other two (29% vs 17%). Looks like both Dalim and Menkent are running into some bottleneck/limit (hardware, network, connections?). My experience so far is that 1G servers - even the ones at 60-80% load score better in speed tests and the browsing feels smoother. Though I only have 1/10th of OP internet speed (200/100Mbit) so I never thought of 1G/10G server limits and just connect to 1G ones -
1 point
Too many clients, same bandwidth = poor performance
Lance Kaufman reacted to tranquivox69 for a post in a topic
From further experiments I suspect it's not only a matter of bandwidth but probably a matter of hardware in the servers supporting too many users (CPU speed, RAM, I don't know). This is currently on Alrai, with 62% bandwidth load and 102 users. This is Dalim with 18% bandwidth load and 263 users. It's actually in line with the "score system", as Alrai was the recommended server. The problem I see with the current situation is not that I cannot select a "good" server at any given time. Problem is it's rather quick for the situation to change and the server becoming bad, with performance being stuck as bad for however long it takes for the connection to be switched (the logic of which still eludes me in Eddie, but that's surely my bad). -
1 point
ANSWERED Automatic startup on boot
wQ6E5F143S reacted to khuffmanjr for a post in a topic
Its been a couple years, perhaps, so maybe 1.3? I'll be honest, I was tired and did not look at the version I was running. I decided to give up on trying to get the GUI to behave reliably when selecting those settings; they would uncheck themselves on consecutive launches of the app for some reason. I have now upgraded my OS which gave support for OpenSSL 3 and I have installed AirVPN Suite 3. I've also given up on trying/wanting to use wireguard after reading your FAQ "Does WireGuard pose privacy issues?". While I did not really think about, nor did I know, that information before, I do understand the implications laid out in that post. I'll stick with your openvpn solution. That said, what kind of speeds should I be hoping for with openvpn from US to NL? And I do know you can't say with certainty nor make me any promises. For reference I have a low-latency Gigabit up/down connection in US. The most I'm seeing in my apps over the vpn through NL servers is 25-28MBps (bytes, not bits) and speedtests only show marginally higher at 340-ish Mbps down. I know the distance is a factor, and hop count, etc.. Just curious if I should try and keep tuning this. If all I can get is 25MBps down (bytes, not bits) then I'm ok with that, but who doesn't want faster, am I right? Thanks for letting me resurrect this older thread. My wireguard question seemed relevant...sorry for changing direction now. My question about further tuning, or not, is my final thought here, thanks. -
1 point
New 1 Gbit/s server available. New country: TW
Lance Kaufman reacted to fsy for a post in a topic
From northern Europe the performance is so similar to SG servers, not bad. Wouldn't that be caving in to PRC's narrative? REPUBLIC OF CHINA is written on Taiwan's citizen's passports and on the official government website https://www.taiwan.gov.tw/ . It is the official name freely chosen by Taiwan citizens and democratically elected government. Though I'm afraid that the ambiguity mentioned by Wikipedia is nowadays instrumental to PRC and its omnipresent propaganda. BTW kudos to AirVPN for operating a server in Taiwan and for including Taiwan as a country in the server list, every small action counts. How strange that a self proclaimed PRC critic shares PRC propaganda and doesn't admit ROC existence, while acting as an indignant Taiwan defender. Unless you're an undercover Beijing tramp? -
1 point
New 1 Gbit/s server available. New country: TW
Lance Kaufman reacted to Staff for a post in a topic
Hello! We confirm the problem and we could determine that both the domain name authoritative DNS and the web site block the Taiwan server. Packets get out regularly from the server and from Taiwan but they are black holed by the final destination datacenters. Furthermore the authoritative DNS does not answer to our DNS server in Taiwan (this is a lesser problem as you could resolve the name through some other public DNS or the hosts file). We don't know the reasons of this behavior. If you query Democracy Now and you receive a reply please let us know. In the meantime we can "micro-route" Democracy Now web site from Sulafat, we will examine how to do it soon. Yes, this is in the official ISO-3166 that Eddie uses to find areas names assigned by the United Nations. According to a previous administrative division, Taiwan is the biggest province of the Republic of China (ROC), not to be confused with People's Republic of China (PRC, mainland China). By using Taiwan as the country's name, "Province of China" is also a definition pushed by PRC at all levels (from UN to NGOs) to shape two ideas: that PRC must "re-unify" with Taiwan and that when you say "China" you don't talk about the Republic of China, but about the PRC (even PRC detractors fall prey of this propaganda as we can see from this thread). In this sense ISO-3166-2:TW entry could be seen as a concession to PRC narrative and the PRC can "play" over the ambiguity of the definition. In the next version we may either stay with this one, according to the United Nations status (but see here for some arguments against this), or censor the ISO document itself. A UN spokesperson’s statement in May 2024, reiterating that Taiwan is a province of China (referring to PRC and not ROC according to directly or indirectly PRC controlled media), guided by the General Assembly resolution of 1971 (Resolution 2758), is important to see how much energy PRC spends to affirm the notion that there is only one China and this only China is PRC and not ROC. On the other hand, we have been fighting and circumventing mainland China (PRC) censorship for 14 years, we recognize China (PRC) as a country enemy of the Internet, controlled by a regime hostile to various human rights, and in reality resolution 2758 interpretation may have been distorted by PRC.. Therefore ISO-3166-2:TW unilateral modification to delete "Province of China" is not unreasonable for us. The matter will be discussed. However, to insinuate that the normal software usage of an ISO document to translate or find a country/area name means that AirVPN endorses PRC (or PRC alleged wet dream to invade Taiwan) or that AirVPN fails its mission after all the sacrifices brought on to circumvent censorship in mainland China is offensive to say the least, or not in good faith in the worst case. The very fact that we list the server in Taiwan with Taiwan as a country tells a lot, as today Taiwan is recognized as a country only by 12 countries in the world. Kind regards -
1 point
How-to: AirVPN on Synology DSM6 and DSM7 complete guide
siculster@gmail.com reacted to bbqsquirrel for a post in a topic
Having same problem as the user above. I have had AirVPN setup on my Synology for multiple years and it has been working flawlessly. 5 days ago it stopped working and I cannot get it to reconnect no matter what I do. I've followed all the instructions here to the T and also still have my previous VPN configs that were workig fine for years and now it is not connecting. What happened? EDIT: OKAY I FIGURED IT OUT. Follow the original guide but pay close attention to which protocol you're picking in the config generator. The top options are now UDP 443, look at the Specs column, it says " tls-crypt, tls1.2". This will NOT work. Scroll down a bit half way through the list of available options (You will have to enable the "advanced" toggle at the very top of the page). Scroll down so you see UDP 443 (or whatever else you prefer), there will be repeated ports and protcols but the specs column now says " tls-auth, for 2.3 " . That's the one you want. This will give you the ta.key that you need to import. -
1 point
ANSWERED Port Forwarding Returns 110 in Opensense over Wireguard Tunnel?
Cartos reacted to stryk3rr3al for a post in a topic
Port forwarding is working now. Two things caused the issue for me. 1. The default firewall rule created when port forwarding is broken. 2. The Antivirus software on my computer was blocking the connection. Fixes: Issue 1 ---> In case this helps anyone in future - When creating a port forward for a Wireguard interface in OPNSense, the automatic firewall that is created doesn't work.To fix this, go to the wireguard interface firewall rules. Create a new rule that's the same as the automatic firewall rule, except click "Advanced features: Show/Hide" and set "reply-to" to the wireguard interface. Then go back to the port forward rule and set "Filter rule association" to "None" to remove the original (broken) firewall rule. Issue 2 ---> Adjust the firewall rules on the computer to allow the connection -
1 pointI guess I should document the process for those who don't know how to do it. I run a DE so I want to launch the eddie gui on startup for my user rather than cli. 1. As the wanted user, create a file ~/.config/systemd/user/eddie-ui.service 2.Configure as needed but I did [Unit] Description=eddie-ui user service [Service] ExecStart=eddie-ui Restart=always RestartSec=10s TimeoutStopSec=10 [Install] WantedBy=default.target As is there's a bug where when sigterm is sent it will timeout after the default 90 seconds and the process gets sent sigkill to kill it so you might want to reconfigure that so you don't have to wait as I did. I'm not sure the best way to work around that but I found that waiting 10 seconds is enough for eddie to close connections and past that it sits there doing nothing before getting killed by sigkill so I expedited it. You have to let it send sigterm first, if you switch it to sigkill, openvpn gets stuck open. 3. systemctl --user enable eddie-ui.service 4. systemctl --user start eddie-ui.service If you want to configure the service for all users, use the --global option. so systemctl --user --global then enable disable start stop etc. Also, your DE probably has an easy way to autostart applications or run commands for you but I switch DEs and WMs constantly and remove and install new ones so this is easier for me to set once and never again.
-
1 point
New user: How-to do Wireguard?
SourceCode reacted to Staff for a post in a topic
@vOsgZC7 Hello! For Eddie's manual, please type in a terminal "man eddie-ui". To switch connection mode, in the "Preferences" > "Protocols" window please uncheck "Automatic", select the connection mode line you prefer (the line will be highlighted) and click "Save". The change will apply at the next connection. Eddie will prevent WireGuard selection if WireGuard is not installed in the system. WireGuard should have been installed during Eddie installation as a dependency, but please check. Kind regards -
1 point
Unable to start (No socket)
Carlitos1974 reacted to Ventuquies for a post in a topic
Hi guys, I had this issue whenever I shutdown my computer without exiting eddie in a regular way and I hated to need to restart the computer to fix it. Solution for me: Kill the "openvpn.exe" task -> Eddie seems released, can be started normally again and no "no socket" issue Kind regards, Vent -
1 pointAIRVPN DOES NOT RECOGNIZE ANYMORE VERISIGN, AFILIAS AND ICANN AUTHORITY. OUR COMMITMENT AGAINST UNITED STATES OF AMERICA UNFAIR AND ILLEGAL DOMAIN NAMES SEIZURES. The United States of America authorities have been performing domain names seizures since the end of 2010. The seizures have been performed against perfectly legal web-sites and/or against web-sites outside US jurisdiction. Administrators of some of those web-sites had been previously acquitted of any charge by courts in the European Union. The domain name seizures affect the world wide web in its entirety since they are performed bypassing the original registrar and forcing VeriSign and Afilias (american companies which administer TLDs like .org, .net, .info and .com) to transfer the domain name to USA authorities property. No proper judicial overview is guaranteed during the seizure. Given all of the above, we repute that these acts: - are a violation of EU citizens fundamental rights, as enshrined in the European Convention on Human Rights; - are an attack against the Internet infrastructure and the cyberspace; - are a strong hint which shows that decision capacities of USA Department of Justice and ICE are severely impaired; and therefore from now on AirVPN does not recognize VeriSign, Afilias and/or ICANN authority over domain names. AirVPN refuses to resolve "seized" domain names to the IP address designated by USA authorities, allowing normal access to the original servers' websites / legitimate Ip addresses. In order to fulfil the objective, we have put in place an experimental service which is already working fine. If you find anomalies, please let us know, the system will surely improve in time. Kind regards AirVPN admins
-
1 pointHello, last year I had written a wrapper for Eddie's CLI version (in bash) to be able to use it more easily and extensively in the linux command line like the GUI, but with less resources. I have used it since then every day without problems, but now I have finally gotten to overhaul it and adjust it to Hummingbird because it is just so much faster! I also tried to make it more easy to configure (by having a separate configuration file) and added some new functionality like support (and automatic recognition) of iptables and nftables to lock down the system even without being connected to AirVPN and automatic connection at boot with a systemd unit. Again, feel free to use this as you wish, I hope someone can benefit from this. I'm happy about any improvements and corrections and will update this if I find the time. Features graphical interface in the command line to connect to AirVPN with Hummingbird (no Eddie involved) runs in background, the interface can be closed/opened anytime without affecting the running connection possibility to connect to any server with just one ovpn configuration file easily connect to a random server, to a recommended server, to the recommended server of a specific country or to a specific server sortable list of all servers including info like used bandwidth, load and number of users possibility to connect to other VPNs with openconnect lock down system by default (permanently if you want), so even without AirVPN/Hummingbird running there won't be any unwanted network traffic automatically establish connection at boot (which can later be controlled via the interface) logging of Hummingbird's output (number of days to keep logs for can be adjusted) system notifications to let you know what happens in the background Some general notes The default network lock determines, like Hummingbird itself, if iptables, iptables-legacy or nftables is available on your system and will use the first one found in that list. You can overwrite that by specifying which one to use in the configuration file. Once activated, the lock will stay in place until manually deactivated, so no internet connection will be possible unless connected to AirVPN or other whitelisted VPNs. You can make the lock permanent (or rather activate at boot) by enabling that option in the configuration file. AirVPN's network lock overwrites the default network lock, so there will be no interference. IMPORTANT: If you have any frontend firewall for iptables/nftables running, you might to disable that or read up on how it might interfere with rule changes you make directly via iptables/nft. The same thing applies if you use just Hummingbird itself. If you enable the default permanent network lock, it will write the lock rules at boot, most likely overwriting rules by firewalld or the like, but other enabled firewalls might interfere later. Also important: If you have SELinux and you want to use nftables for Hummingbird starting at boot, you have to create a SELinux exception for nft bcause otherwise it will be denied and Hummingbird starts without setting up its own lock, thus leaving you unprotected (AirVPN staff is aware of this issue). You can do that with audit2allow. Follow for example this guide to troubleshoot the problem and fix it with the solution given by sealert. Check your /etc/resolv.conf file while not running Hummingbird (because Hummingbird's network lock replaces that file temporarily) to make sure your router is not set as a nameserver (so no 192.168... address). Some routers will push themselves on that list by DHCP whenever you connect to their network. Since communication with the router is allowed in the lock rules, DNS requests will be handled by the router and sent to whatever DNS server is configured there even when network traffic should be blocked. There are ways to prevent that file from being changed by DHCP, best configure network manager for that if you use it. To connect to other VPNs, their IPs must be whitelisted and DNS requests for their domains must be allowed in the default network lock rules (netfilter_ipbatles.rulesipv4/ipv6 and/or netfilter_nftables.rules). Only edit those files with the default network lock deactivated. The rules for airvpn.org can be copied and adjusted. You can set custom options for Hummingbird in the interface or the configuration file. All the possible options can be found in the Hummingbird manual or with sudo hummingbird --help Apart from dialog I tried to only use basic system tools. The scripts will check if everything needed is present, if not they will exit. At least bash 4 is needed. The scripts rely mostly on dialog, awk and curl (and iptables/nft as described and openconnect if needed), so it should work on most systems. I wrote and tested this on Fedora 32 with Hummingbird 1.0.3. It should be possible to use any ovpn config file generated by the AirVPN's config generator. Even with the file for one specific server it should be possible to connect to any other server because the server override function is used here. I haven't tested that extensively though and just use the config file for earth. AirVPN's API seems to be a little unreliable sometimes as in not correctly reporting the connection status. Sometimes the API reports me not being connected although I am connected to an AirVPN server. This is no big deal, it just means that the connection status sometimes may be shown falsely as disconnected. If you have the default network lock activated, no traffic would be possible if you were actually disconnected. And, lastly, VERY IMPORTANT: I am still no programmer and do this only on this on the side, so even though I tried my best to make these scripts secure and error free, there might very well be some bad practice, never-ever-do-this mistakes or other hiccups in there. It works very well for me (and has for quite a while by now), but better check it yourself. UPDATE As of 2020/08/29 this project including updates, changelog and further instructions is publicly available on GitLab. There it can be more easily examined, downloaded and updated. Thus I have removed the scripts, installation instructions and the archive with all the files from this post. Check out the GitLab project for the newest version.
-
1 point
Most Common Problems & Their Suggested Solutions
Lance Kaufman reacted to LZ1 for a post in a topic
Hello! I thought it was time to try and collect some of the wisdom floating around and see if we can't create a single thread for solving some of the most common and annoying repeat-issues. So how about it ! I define "common problems" as: if I'm getting a deja-vu every third time I post . Staff will have broken the Matrix by this point. Each problem will have its own headline and then with any number of solution-oriented links appended underneath. For this reason, this grand list isn't final and is meant to be updated continually. Naturally, the higher the link number for a solution, the more obscure the solutions are probably getting. Warning: solutions aren't guaranteed. As with anything technical, trial and error is a core skill Problem: Bootstrap Failed.Solutions:https://airvpn.org/topic/30824-bootstrap-failed-since-a-week/Problem: No Internet connection after shutting down AirVPN and/or can only use Internet while AirVPN is on.Solutions:https://airvpn.org/topic/14829-can-only-connect-to-the-internet-browser-through-airvpn/?do=findComment&comment=30509 Windows only: https://airvpn.org/topic/13584-connection-problem-when-not-using-airvpn/?p=38800 MacOS only: https://airvpn.org/topic/27993-cant-connect-to-internet-without-using-airvpn/ https://airvpn.org/topic/21194-virtualbox-is-this-air-vpn-also-cant-connect-internet-unless-signed-in/Problem: Cannot connect to any AirVPN server.Solutions:https://airvpn.org/topic/22140-cannot-connect-to-german-servers-anymore/ https://airvpn.org/topic/22066-cant-seem-to-connect-to-any-servers/ https://airvpn.org/topic/21418-new-to-airvpn-installed-avpn-on-surface-wwindows-10-cannot-connect-at-school-can-connect-fine-at-most-other-locations/?p=55515Problem: Issues with Curl.Solutions:https://airvpn.org/topic/27369-cannot-login-curl-is-required/Problem: Bad packet ID (may be a replay)Solutions:https://airvpn.org/topic/14094-weird-log-entries/Problem: Being censored and/or speeds being throttled/shaped by ISP or Government.Solutions:https://airvpn.org/topic/28847-connections-from-china/ Problem: MacOS client can't connect.Solutions:https://airvpn.org/topic/18251-airvpn-mac-client-problems/ Problem: Checking route IPv6 Failed.Solutions:https://airvpn.org/topic/29401-checking-route-ipv6-failed-cannot-connect-to-vpn-server-using-eddie/ Problem: Waiting for TUN/TAP to come up.Solutions:https://airvpn.org/topic/26072-route-gateway-is-not-reachable-on-any-active-network-adapters-10401/?do=findComment&comment=70761 Windows only: https://airvpn.org/topic/17440-guide-fix-for-tap-adapter-in-windows/ Windows only: https://airvpn.org/topic/30043-taptun-interface-wont-come-up/ Problem: Experiencing slow and/or fluctuating speeds in general.Solutions:https://airvpn.org/topic/30739-every-vpn-is-slow-for-me-despite-the-well-reviewed-vpns-im-trying-is-it-possible-my-isp-is-causing-this-i-feel-like-someones-playing-a-joke-on-me/?p=80014 https://airvpn.org/topic/18635-looking-for-fast-server-eu-that-goes-beyond-30-40mbit/?p=44998 For online gaming: https://airvpn.org/topic/30135-frequent-spikes-lag-on-videogames/?p=79046 https://airvpn.org/topic/1947-for-those-wondering-about-speed-performance/?p=1967 https://airvpn.org/topic/26157-airvpn-slowing-down-other-machines-in-network/ https://airvpn.org/topic/26117-slow-speed-sort-of/?p=70906 https://airvpn.org/topic/20812-very-very-slow-dns-lookup/ https://airvpn.org/topic/23743-download-speeds-dropping-to-zero-and-going-up-and-down/ Problem: Slow torrent speeds and/or disconnects.Solutions:https://airvpn.org/topic/28082-torrent-on-airvpn-speed-is-very-poor/ https://airvpn.org/topic/26218-slow-torrent-speeds/ https://airvpn.org/topic/23936-repeatedly-getting-disconnects-while-torrenting/ https://airvpn.org/topic/23499-slow-torrenting-speed/ https://airvpn.org/topic/23070-solved-p2p-slow-over-udp-and-fast-over-tcp/ https://airvpn.org/topic/22716-poor-torrenting-connection/Solutions are in link form without any explanatory text - at least not yet - so that the thread OP stays looking simple and uncluttered, where it's easy to find out what your problem is . Feel free to contribute with your own helpful links. The more feedback this thread gets, the quicker it can be improved and hopefully made useful.