go558a83nk

the AirVPN client is supposed to be able to do policy routing based on destination IP address.  But, not based on application.  Look in advanced settings. 

Many trackers block US server IPs. This is not something VPN providers can fix.

You can alternatively use Canadian servers if it negatively affects your speed.

 

You should try downloading a Linux ISO torrent and check by yourself.

Trackers that don't block certain ranges should work perfectly fine.

they are talking about even DHT not working.  that's "trackerless". 

the bottleneck is your router CPU.  router CPUs just can't process openvpn fast enough to make it fun.  Even the most powerful consumer routers can do maybe 60mbit/s.

 

Your solution would be simply not using the router's DNS server in your network adapter.

 

Try explaining that to my parents, or my aunt, or the lawyer around the corner who use their computer to get work done and nothing more. They haven't a clue what DNS is, let-alone how to configure it.

 

>Blocking all traffic to all LAN segments will break the essential connectivity protocols (DHCP,DNS) and

will lock the user even outside his local network and inevitably the router.

 

It would not, because you can allow DHCP (UDP 67,68) for interfaces that require it without requiring all broadcast or local traffic to be allowed on the interface. "Essential" DNS is exactly what I'm complaining about, because it turns out it's not all that essential to the functioning of Eddie - you can include lists of IP addresses and update them through the API when a successful VPN connection is established.

 

 

A user turns on the "Network Lock" feature, which is documented to prevent any traffic leaving except over the VPN. By default, the feature doesn't do that - it punches holes into the firewall that allow leaks. The default privacy settings of the Network Lock feature actually result in potential leaks that the average non-technical user wouldn't know existed or think to check for and close.

 

Please read the documentation in full

The section below describes your previous setup, and reminds you that there are other things that you can configure:

 

You can also decide whether to allow LAN and/or ping or not by ticking or un-ticking "Allow lan/private" and "Allow ping".

 

The "feature" you proposed will result in broken connectivity from the moment you activate it, unless static IPs are used.

This is not an expected (default) behavior in any case, since the problem you describe is much easier

to solve from your side. This would also be a more complete and elegant solution.

 

I have read the documentation. It glosses over that allowing traffic to the local network could result in leaks, even if the local network is trusted.

 

I disagree with the defaults. The defaults are dangerous and unexpected and will cause harm for non-technical users who don't understand what's going on.

 

Expected and secure: block everything and punch through the bare minimum to get what you need working (i.e. UDP 67/68 to the broadcast address for DHCP on interfaces that require it). Configuration option to allow more than that for users who know what they are doing.

 

Surprising and insecure: block most things but punch through huge blocks of IP addresses just in case users are confused by local resources becoming non-functional. Configuration option to become secure.

 

You obviously haven't read the number of posts here of people complaining that local resources were unavailable...because of network lock.

The prudent thing to do is get things working and as safe as possible for the average person and let the power user make tweaks if they want.

If network lock was as you desire Air would have many people leaving for another VPN provider because in their mind it "didn't work". 

weird, I'm running qbittorrent and Eddie in Mint (virtual machine guest) with no problem.

you'll need to post logs from Eddie here

USA netflix still works for me on USA servers

Hi everyone,

i have a problem using qBittorrent. When i download a torrent it downloads for maybe 1minute then the download stops. And i cant access the internet. I have to connect to another server then it works again. Using Eddie.

I dont have this problem with KTorrent. I set the ports correctly.

I am using Kubuntu 16.04 LTS.

I like the qbittorrent interface better.

Has anyone an idea?

Thanks.

Do you have some antivirus or firewall software running that could cause problems?

Intelligence agencies in nations worldwide are in the same business as the NSA.

Also, the USA has no laws invading the privacy of VPN providers such as mandatory logging.

However, some nations will be more stringent against copyright infringement than others.  But, AirVPN seems to have a good understanding of law and aims to handle copyright complaints the same no matter the location.

So, IMO, there is no reason to avoid USA servers anymore than other nations.  But, it MIGHT make it easier on AirVPN if copyright infringing activities were done using servers in nations that don't cooperate with copyright complaints.

 

It's also helpful to include which port/version popcorn time you are using.  There's a couple different ones out there, at least one of which claims it has a built in vpn in the client.

 

Edit-

Also, I don't have Apple TV.  Is this an Apple TV app or do  you run it on your computer and cast it to your Apple TV device?

 

Just checked popcorntime.sh on a Win PC with RT-AC88U w/ merlin doing all traffic routing to Auva and the movie I started played fine.  I only checked a few seconds of playback.

Sorry, forgot to mention I am using the latest Beta build for Asus 88U from Merlin, so that shouldn't be the issue.  I can dump a Miami .ovpn file from another VPN provider I use into router and Popcorn will work no problem.  As soon as I change out .ovpn file to AirVPN file using Cursa it shows an error IP/routing problem on router but connection to internet on AppleTV 4 working fine with Kodi etc., but not Popcorn.

my suggestion to use Merlin was an aside.  nothing to do with whether or not popcorntime works.  it just makes it easier to change servers.  all you have to do is change the server IP address.  no need to load a new ovpn file each time.  stock firmware gives you no manual control last I looked.

Trying to find some kind of tutorial, but can't see anything about making it connect through port 443. Can you point me in the right direction?

Look in the settings of the AirVPN client (Eddie). 

Boosted, it sounds as though you are using stock Asus firmware.  If so, you should switch to Merlin firmware.  He's got a better openvpn client setup.  You'll easily be able to change server, port, protocol, and do more powerful things like policy routing.

So, yes, I'd try different servers first - servers in different cities so that you don't use the same datacenter.  It's possible that popcorntime has blocked a range of IP addresses that includes Cursa.

I've noticed it loses data if I reboot without closing the Eddie client down properly.  maybe that's the case for you too?

yesterday I twice saw a temporary glitch with DNS while connected to Auva.  For a few minutes DNS lookup just didn't work.  Then, suddenly it worked.

I don't know about the problems in this thread but I don't think mine has anything to do with my setup.  Also of concern is that I noticed it twice all day but it could have happened more times and I didn't happen to notice.

pfsense 2.3.1 and using DNSSEC as setup from the guide.

even if openDNS is set on the router the AirVPN client should switch DNS to 10.4.0.1 for the network devices on the windows 10 computer.

can you post logs of your attempts at using SSH or SSL since you say they don't work?  please wrap the logs in spoiler tags using the special BBcode button of the message editing form (near top left).

I can recommend Asus routers with Merlin firmware for sure.  You'll get advanced options such as policy based routing.  But, you'll have to spend some money to get one with a powerful CPU.

Good morning,

 

first of all: great service. Just signed up for a whole year after a 3 day trial.

 

My config: using win10, opendns servers in my router settings, and the latest openvpn and tcp settings on all your servers

 

One thing i noticed is:

 

I tried several of your servers and for some (including Gacrux) i see a dns leak on https://ipleak.net.

 

It´s not bothering me a lot, but it makes me scratch my head.

 

- are you using different configs on all your servers?

- is it me who´s doing something wrong?

 

Thanks in advance and keep up the good work!

what DNS server was shown on Gacrux?

 

 

If there's any defamation it's of those companies he/she mentioned.  Of AirVPN only questions were asked.

 

Exactly, and that will not be tolerated. Thread stands anyway for a while, waiting for documentation supporting the claims.

my question is if those companies are "bad" then why choose a VPN provider that has servers with those companies?  of course, I think it would be hard to find a VPN provider that doesn't have servers with (some) of those companies.  anyway, I think the troll is large in this one.

Hello,

 

our client pings all VPN servers to assign a rating from your node which includes round trip time. Ping is based on ICMP. Our VPN servers are inside datacenters owned or operated by some of the companies you cite. The option can be disabled, but it is normally quite useful.

 

In absence of a documented justification for the claims you wrote, they must be considered defamatory and your message will soon be deleted. These forums are aimed to community support from the community and must remain crap-free.

 

Kind regards

If there's any defamation it's of those companies he/she mentioned.  Of AirVPN only questions were asked.

I've not tried port forwarding with pfsense.  for p2p I run a linux VM and use Eddie.  The linux VM is routed to the WAN, not the openvpn interface.

oh, this ought to be good.

Hi,

 

So just type the 10.4.0.1 into the input box under preferences/advanced/dns in the airvpn client??

 

Regards.

in Eddie DNS switching should be automatic to 10.4.0.1

just browse this web site with your iOS device and go to the config generator in your client area.

Allow me to ask which "not exactly educated" VPN provider buys from Incero directly without going via their official resellers from WHT first.

These prices are made for enterprise customers where prices, even ten-fold, are not an issue, and remote hands come at first priority.

 

Here is the most common plan VPN providers get from Incero:

https://manage.ioflood.com/order/index.php?_qf_page443_display=true

 

Where you get the first gigabit 20TB on an E3-1230 for 139$.

Then you can climb to 100TB that will be billed around 250$.

 

Official Incero pricing (no discounts) is $499 for a 22U rack, 120v/20 and unmetered 1Gbit (320TB):

http://www.webhostingtalk.com/showthread.php?t=1545221

 

This means it can hold 20 machines there at that price.

 

Tip:

Never look at the DC official price page

 

But anyway, please let's stay on the topic.

you're probably 100% right about what the VPN provider does.  I just had no idea where else to look.

Another VPN provider of mine has a server with these guys in Dallas.  https://www.incero.com/

I priced a cheap server but with a gigabit unmetered line and it's still $2245 per month.  That's not cheap!  The same setup but with a 100TB plan (not unmetered) is $545 per month.