Jump to content
Not connected, Your IP:


  • Content Count

  • Joined

  • Last visited

  • Days Won


go558a83nk last won the day on March 29

go558a83nk had the most liked content!


About go558a83nk

  • Rank
    Advanced Member

Profile Information

  • Gender
    Not Telling

Recent Profile Visitors

30062 profile views
  1. Use the network lock in Eddie also. What do you mean the option to bind to TAP adapter isn't available to you? The adapter isn't there or the option doesn't exist at all?
  2. You're not artificially being throttled by Air. That's just the way things are with openvpn with limitations by CPU, network, internet, etc. A client on the usual 1gbit/s server will see only about 500mbit/s download max because the server throughput limit is 1gbit/s inbound and outbound combined. Air does have at least 1 server that's 10gbit/s. Try it to see if it's any better for you.
  3. You can get around this limitation by creating a new device, one device for each device you connect. I do think you'll have to log out and log back into eddie for it to see the new device options. https://airvpn.org/devices/
  4. No, the problem is with you unable to follow directions. In the tutorial, the first directive in the "generate AirVPN certificates" section is to enable advanced mode. Have you turned on advanced mode in the config generator?
  5. The guide is for a tls-crypt setup where those settings are what work. What you're missing is that you need to connect to an entry IP 3 or 4. The guide actually says " please double check you select an appropriate ‘tls-crypt, tls1.2’ end point. This is a common source of problems."
  6. Also, now that pfsense has openvpn 2.5 you might try a switch to chacha20 as "data encryption algorithm" as it might be faster for you than what you were using. Even on my system that was fast with AES-256-GCM because of AES-NI, chacha20 is for some reason faster. I think it has more to do with networking and not CPU ease.
  7. Remove anything that isn't actually needed in the custom options, or anything that you didn't actually put there. I had the same problem and there were lines in custom options that I were not something I put in.
  8. Your web server is back to TLS 1.2 again. https://www.ssllabs.com/ssltest/analyze.html?d=airvpn.org&s=
  9. Can you post documentation on how to do this - this sounds like something I need to do. in the settings of Eddie there should be a section for adding routes...in the VPN tunnel or outside the VPN tunnel.
  10. sha1 is what you use with entry IP 1 and 2. sha512 (and tls encryption and authorization) is used for entry IP 3 and 4 configs.
  11. I'd say that your stunnel isn't actually running or your openvpn setup is not pointing to the port at which stunnel is listening.
  12. There's no need to manually set Just tell set your VPN client settings to use the pushed DNS exclusively. It'll change it automatically upon connect. Use OpenNIC for the DNS settings in the WAN section. That'll allow you to resolve domains when the VPN isn't connected and for devices that don't go through the VPN if you use the policy routing option.
  13. Yes, this is what I do for downloading big files. It's rare that I'm able to hit that 500+ mark from a single connection both because my ISP and intermediate networks just aren't "allowing" it, or because the VPN server isn't up to it. But when spread out it's much easier. That said, some endpoint servers won't allow you to multi wan and it won't help with bittorrent either.
  14. I disagree, but I'm open to suggestions, please advice on the configuration I would need to max out my 500 Mbit connection with OpenVPN. I built a pfsense box with an AMD A6-7400K CPU back in 2015 for $121. Later I added an intel dual NIC for another $40 or so since the realtek NICs I was using weren't the best. It does 600mbit/s openvpn from a single server in a multi threaded download, if the network "allows" it.
  15. It doesn't take much actually. An x86 processor with AES-NI in pfsense can do it if the network between you and the vpn server allows. Most of the time though the network will be the limiting factor, not the CPU.
  • Create New...