Jump to content
Not connected, Your IP: 3.236.118.225

go558a83nk

Members2
  • Content Count

    1904
  • Joined

    ...
  • Last visited

    ...
  • Days Won

    26

Posts posted by go558a83nk


  1.  

    I think for openwrt you must install entware.  Then you'll be able to install many common linux packages at the command line.  this is the same as I have to do for merlin asus.

    Thanks so once this is installed can I use AirVPN stunnel guide for Linux? I will have a read up on entware.

     

    I don't know.  I never read the guide.


  2. openvpn connect on iOS uses polarSSL instead of openSSL like many other openvpn setups.  polarSSL hasn't had the security vulnerabilities that openssl has had.  that is one reason why there's been no need to update it.

     

    on iOS what features are you missing that you would ask for an update?


  3.  

     

    no one that can help with my 2 problems........

     

    this is an AirVPN forum, not Asus router forum.  don't be surprised to get no answer.

    Sorry but these are NOT Asus specific problems, they are clearly related to airvpn and missing information in the setup tutorial for ASUS routers. Was before at nordvpn and there this was all clearly described in the tutorial but at airvpn this works differently...only experiencing this problems with airvpn. Will issue a support ticket now for this...

     

    wrong.  there is a user comprehension problem and an asus router question.  neither have anything to do with AirVPN.  any VPN provider could be substituted into the above questions.


  4. since you're using merlin firmware use different policy routing rules for each openvpn client to do what you want.  that's a choice in the redirect internet traffic setting down towards the bottom.

     

    however, if all clients are active then it'll tax the router heavily.  the router can handle 1 openvpn client easily if it's on the core that the kernel work isn't using.

     

    also, this is a question better asked or searched on the merlin forums

     

    http://www.snbforums.com/forums/asuswrt-merlin.42/


  5. Would this box be fast enough to build my own router with Linux?

     

    https://www.zotac.com/nl/product/mini_pcs/zbox-ci323-nano#spec

     

    It's got an Intel N3150 quad-core 1.6GHz, up to 2.08GHz, max 8GB DDR3L, M2 SSD & 2.5" SATA slot. Dual Gigabit, 5Ghz wifi. And it's pretty cheap too. Looks like the ideal box to me, but is it fast enough for up to a 100mbit vpn connection?

     

    that processor has AES-NI so it can definitely do 100mbit/s openvpn, as long as the cipher is AES.


  6. They can't do much, not anything (referring to unknown knowns).

    I personally think it has to do with some detail, something the providers differ in. Since you have access to two different "setups", can you just collect all the info about both providers and do a comparison? It's better than arguing, I believe, AND can generate a post to which we all can link because it might become a faq.

     

    The other provider claims to have done something to prevent detection of VPN usage via TTL analysis.  That's the only thing I can think of that would differentiate it from Air.  The openvpn ciphers are the same.


  7. As far as I know VPN fingerprinting is performed by analyzing the timing signatures of the ciphers - the only way around it is by encapsulating OpenVPN into an SSL layer.

     

    Spoken in easier terms, use OpenVPN over SSL to avoid fingerprinting. The admin cannot do much about it.

    As for the ports - are you asking for port closure because you suspect danger to your computer when they are open or do you just want them to be closed to let the test succeed?

     

    re-read what I wrote above closely if you think the VPN server company can't do anything about it.


  8. If both devices are connected, then it does not matter if it travels through other servers outside of Air's control as the data is very securely encrypted.

     

    If the servers are in the same datacenter, then all data stays inside Air's network, however you will not gain security from this (due to the already present encryption) - just speed/latency improvements.

     

    I hope this isn't a common belief.  The VPN is only encrypting between client and server and vice versa.  Your data after it exits Air's server or before it enters Air's server isn't encrypted by the VPN.

     

    Even in this example above, if connected to two servers in the same datacenter, the data is decrypted/encrypted as it passes from one Air server to the next.  If not in the same datacenter then it certainly enters the "internet" decrypted.


  9. So it's 

     

    PC > Airvpn Server > Internet > Airvpn Server > Android

     

    Not

     

    PC > Airvpn Server > Airvpn Server > Android

     

    Yeah?

     

    if both devices are connected to the same server or 2 servers in the same datacenter then it technically doesn't go to the "internet"


  10. Speed is a bit of an issue for me too, was trying to use Singapore 

     

    No vpn I get 95mbit down and 2mbit up

    With vpn I get 0.6mbit down and 0.22 up

     

    How are you testing speed.  What server gives you 95mbit down?  Have you tried the speed test tool on AirVPN's web site?


  11. There's also WITCH.

     

    Interestingly, I ran 2ip's test with my Android phone and it detected an open web "proxy" port (80, because I run a webserver at home) and VPN port 4500/UDP, the probability of my phone using anonymization would be 70%. I ran some tests, I could not verify the VPN port being open anywhere in my network.

     

    On my PC, it correctly detected usage of OpenVPN, but again it wanted to tell me 4500/UDP would be open which was clearly not the case.

     

    Keep in mind it's probing the VPN server, not your IP address.  Air very well could have those ports open.


  12. Thanks for sharing the site.  This probably does some of what that "witch" page does that caused some stir around here last year.

     

    I alternate use with another VPN company and Air and the other one is not detected by this page except for the difference in browser and IP time zone.  I wish I understood why the two different VPN companies (which use the same openvpn ciphers) are detected differently.


  13.  

     

    I'm not sure about the Netgear routers but if you have an asus router flashed with Merlin and you know a little about scripting you can set up two WiFi networks of which one has vpn connection and the other not. So all you have to do is switch network on the device you don't need vpn on and all other devices are still protected.

     

    Without scripting you can set-up rules in the vpn client. Which device goes directly to and wan which device will always go through vpn. This is without scripting but then again you will always need to login on the router.

     

    As the router is slower with handling a vpn then a laptop or desktop I would recommend to have the laptop or desktop not connected to the vpn in the router but with the client itself.

     

    Good luck

     

    you don't need scripting to do this with asus merlin firmware.  he's got policy routing for openvpn built into the gui now.  in the openvpn client choose policy routing for the redirect internet traffic option.  read about how to use policy routing in the firmware documentation. 

    Didn't know it was implemented for separate SSID's (one for ISP and one for VPN) now.

     

    no need to worry about separate SSID's.  just set rules for each IP address or a rule to apply to your whole local network.


  14. I'm not sure about the Netgear routers but if you have an asus router flashed with Merlin and you know a little about scripting you can set up two WiFi networks of which one has vpn connection and the other not. So all you have to do is switch network on the device you don't need vpn on and all other devices are still protected.

     

    Without scripting you can set-up rules in the vpn client. Which device goes directly to and wan which device will always go through vpn. This is without scripting but then again you will always need to login on the router.

     

    As the router is slower with handling a vpn then a laptop or desktop I would recommend to have the laptop or desktop not connected to the vpn in the router but with the client itself.

     

    Good luck

     

    you don't need scripting to do this with asus merlin firmware.  he's got policy routing for openvpn built into the gui now.  in the openvpn client choose policy routing for the redirect internet traffic option.  read about how to use policy routing in the firmware documentation. 


  15. was hoping the same thing but didnt see any happen.

     

    ha!  there was most definitely a sale around Christmas.

×
×
  • Create New...