go558a83nk

Is the ubuntu tracker updating, giving you seeds and peers?

Do you have any data to report on ChaCha20 performance on CPUs that *do* support AES-NI? That is, AES-256-GCM accelerated by AES-NI vs ChaCha20? The following site suggests that those of us with AES-NI CPU should stick with ciphers that are accelerated by AES-NI. Do you concur? https://calomel.org/aesni_ssl_performance.html

Looks like pfsense openvpn directives. They really have nothing to do with being unable to torrent. If the VPN works properly with other activities then there's surely just something wrong with your torrent client setup. Even if port forwarding isn't setup properly you should still be able to download.

It doesn't matter if the assigned IP are internal. Keep in mind that security must not only be for network attacks but against physical seizure as well. If any records exist on a server that can be tied to users it is a serious anonymity breach.

I've wondered the same thing! Just posting so that I get notified of any real answer.

*web* servers, not VPN servers.

Well, you could connect to Tor but the same websites that don't like VPN probably don't like Tor either.

Try moving your static key into the static key section, not tls-auth section, especially since you're not using tls-auth but tls-crypt.

download the most recent apk to a network drive then install it using x-plore. https://airvpn.org/external_link/?url=https%3A%2F%2Feddie.website%2Frepository%2Feddie%2Fandroid%2F2.3beta1%2Forg.airvpn.eddie.apk

Looks like I'm not the only one to "misread". My friends, this applies to *web* servers.

Any change to https://airvpn.org/specs/ with this new capability? LOL, I misread. Nevermind!

Internet searches are a treasure trove. https://openvpn.net/vpn-server-resources/faq-regarding-openvpn-connect-ios/

https://bgp.he.net/AS268581

I believe the 2 way ping thing is something like this. Your web browser pings the test site and the test site pings the IP you appear to be at (VPN server). Your browser ping goes from your PC to the VPN server to the test site. The test site ping is just to the VPN server. So, there's a good chance the latency of the ping from the browser will be higher. I'm sure there's some fudge factor that they consider "normal" difference because routes are not always symmetric anyway. But, a difference beyond the fudge factor is a good indication that a "proxy" is being used.

Please look into your Netflix situation. I just attempted to watch a video but the speed that could be sustained was so slow the video was unwatchable. Playback on other video streaming services that worked through the VPN were quite speedy. Vudu, for example, burst to 300mbit/s to buffer. Curiousity Stream buffered at 100mbit/s. Your netflix setup could only manage 5mbit/s. Not near enough for a 4k stream. Thanks.

Yep. My canvas blocker add-on fakes DOMrect readout on this site.

The reason is likely because you're using a domain for the AirVPN server which means you need DNS to resolve it. But you can't access AirVPN DNS servers until you're connected to the VPN. Instead use the IP address for the VPN server and you won't need to use public DNS to connect to the VPN.

iOS can't run stunnel unless it's jailbroken. Besides, this question is offtopic for this thread.

You shouldn't need openvpn through SSL tunnel (which isn't possible on iOS without jailbreaking anyway). Just load up several tls-crypt configs to try in openvpn connect.

Yes, even the i3 should be plenty. Just be sure to enable cryptographic hardware here /system_advanced_misc.php and then select that hardware in your openvpn config you create. Then AES-NI plus whatever else is on the CPU is in use.

You don't need that much ram or storage for pfsense. You need a good CPU and good network card(s). The celeron j1900 is out due to lacking AES-NI which is very important for running openvpn. Both have intel network cards so you're good there.

That's just the limitation of the CPU. It takes a lot of power to encrypt/decrypt openvpn quickly. Or AES-NI.

Yes though I don't know if you need to install entware for just SSH tunnel. I've done it in the past with an old asus router with merlin and entware. SSL tunnel too.

The bottom line is Air isn't blocking your access to those trackers. So it must be them blocking Air. Why is another question and it really makes one ponder. Could be related to them favoring VPNs that they're working with. But that doesn't explain public trackers.... Maybe all public trackers are just honeypots that want to see your real IP address?

Air has port forwarding which is what you probably need. (I do know some security systems don't require port fowarding for you to be able to monitor them remotely) However, you'll need to run VPN on a router so that the devices (blue iris) behind the router go through the VPN. That means buying another router to sit behind your ISP router. Further steps can be discussed after you decide what to do.