go558a83nk

for this I use the extension for firefox called location guard.  I use its fixed location function and place that in the city where the VPN server is.

 

the whole webRTC thing needs to just die.  it's not up to a VPN provider to protect you from a web browser function.

 

In my opinion you shouldn't consider webRTC blockage in your review.  users should instead just disable it in their browser if they don't want it.

 

To be fair, only Firefox-based browsers allow WebRTC to be disabled. Some extensions such as uBlock and Chrome's add-on allow leaks to be plugged, but they don't disable WebRTC completely. As 'leaks' are only an issue for those behind a VPN, it makes sense for VPN providers to offer a workaround, or at least some advice on how to achieve it. Since the OP's data is just that - raw data without any recommendation - I wouldn't call it a 'review'. That's not a negative, far from it. It's hard to find quantitative data about VPN companies, and I think the OP did a decent job. 

 

One thing that really bugs me about VPN 'reviews' in general is the speed tests. They are invariably carried out by someone on a <15 Mbps connection. Just... why? If nothing else for the love of God rent a decent gigabit plus VPS and set up a connection on there and leech some well seeded torrents. Plenty of 'superb high speed' VPN companies can't even half saturate my 160Mbps connection. Air does (usually).

why should the VPN provider be the one to provide a workaround?  why shouldn't the user just change browsers?

the whole webRTC thing needs to just die.  it's not up to a VPN provider to protect you from a web browser function.

In my opinion you shouldn't consider webRTC blockage in your review.  users should instead just disable it in their browser if they don't want it.

At least 1000mhz? That's what the Netgear Nighthawks are clocked at, and outside of industrial gear, they're pretty much the fastest out there, so that's basically saying getting tolerable performance is impossible.

 

I'm not looking to get anywhere near 100% of my speed, but getting near half would be nice.

get an asus AC56 if greater cost is prohibitive.  those CPU can be overclocked to 1200megahertz.  50mbit/s openvpn is possible.

Air uses

TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 4096 bit RSA

for the control channel.

I've noticed another VPN provider of mine is now using

TLSv1.2, cipher TLSv1/SSLv3 DHE-RSA-AES256-GCM-SHA384, 4096 bit RSA

Is there any reason to worry that Air still uses a TLSv1.0 control channel cipher?

https://www.dd-wrt.com/wiki/index.php/Linksys_E4200

see the link for specs.  with that CPU you can't expect much more than the speed you're getting.

look for a router with at least dual core 1000mhz CPU for acceptable openvpn speeds.

not showing up as available yet for me.

I disabled tcp timestamps on my windows 7 machine but it made no difference.  VPN is run on my router.  I disabled timestamps on it, too, but still no difference in test results.

just test other ways.  there's no reason why Air would be slower than other VPN.

my first test shows MTU of 1392 though I am using and always use "mssfix 0".

edit: my usage of "mtu-disc maybe" has no affect on perceived MTU by the script.

I had a similar question. Right now I have Asus AC68 with latest Merlin firmware and my download speeds seems to be capped at 10 mbps. My ISP is 100 mbps up/down. I also have a Netgear R7000 setup as an access point with stock firmware but haven't tried OpenVPN on it yet. I know the R7000 has a slightly faster processor. 

 

Any recommendations or experience of whether it's worth it to switch the OpenVPN to the R7000? Flash to DD-WRT? What should be the expected throughput? Any way to make the Asus router faster? dd-wrt?

 

Thanks for the feedback in advance!

maybe your ISP is throttling you?  I use the AC68 and, believe me, it can do better.

Very interesting situation.  It certainly speaks to the differences in culture.  I'm sure Air was told whatever they wanted to hear leading up to this.

you'll need to paste here the logs of your dd-wrt router attempting to make an openvpn connection for us to begin to diagnose the problem.

On UDP OpenVPN -- 1MBps

On SSL 443 -- 4-5Mbps

Without VPN -- 12MBps.

 

thats the torrent i used for all the tests.

http://releases.ubuntu.com/15.04/ubuntu-15.04-desktop-amd64.iso.torrent

 

SpeedTest results:

Without VPN = 15MBps

With VPN = around 6MBps.

 

All the numbers are in BYTES per second.

what machine is running openvpn for you?

But you know vpn is Slower on Router on ac68u i get 2.200-2.800kbs max

what?  you're doing something wrong then.  my AC68 can do 50mbit/s with merlin-asus firmware.

VPN's aren't required to Log in the USA but if there is abuse committed on the VPN then they can easily be forced to Log.

 

 

 

 

 

Using VPS servers means you are sharing a 1Gbps Port with other users on that server so that would mean their bandwidth is a lie and that would also mean they lied on their Torrentfreak Questions as they say they own their own servers. Can you find the link as to where this is confirmed ? Does AIR use their own hardware? with Dedicated servers? really its the only way to be sure that the VPN servers are not logging as with a VPS you can't be sure what the datacentre is doing. 

 

Air's stated they use all dedicated servers on the vpn infrastructure.

There's a thread around here somewhere 'still looking for it' where someone posted the ip's of several pia servers. Those ip's were living on vps's. Edit found it: https://airvpn.org/topic/14326-question-regarding-airvpns-your-ip/?p=28310

 

For me I would worry more about vps security/separation from other virtualized environments running on the same machine. Virtualization tech hasn't exactly had the greatest track record where security is concerned.

 

ie. Worst case scenario: someone setting up shop on a vps running on the same machine as the vpn vps could silently Farm gold...

 

pretty sure I refuted that claim.  the person who proposed they were VPS never replied to my refutation.  why?  and why do you carry on with the probable false claim?

-probable:

supported by evidence strong enough to establish presumption but not proof.

 

I'm sorry but if there's even a 1% chance that they currently, or have in the past used vps's servers then not trusting them is my prerogative. And I carry on with this probable false claim because its my right to do so. -Freedom of speech, its why many are here.

 

Frankly Its not my job to prove them reliable, secure or otherwise. Nor should it be yours.

 

Even if the whole vps issue never came to light, for me it wouldn't make any difference. Because I would never use a vpn company based out of a location that requires you by law to log. One would think that fact alone would be enough to temper the fury of all but the most hardcore fanboys. Just ask yourself how long could a US company stay in business while breaking the law.

 

I have no facts, but the answer to the above question should be self evident.

the same can be said of AirVPN and any VPN if the request from authority is lawful.  see https://airvpn.org/topic/7181-clarification-of-your-monitoring-policies/?do=findComment&comment=29972

 

 

 

Using VPS servers means you are sharing a 1Gbps Port with other users on that server so that would mean their bandwidth is a lie and that would also mean they lied on their Torrentfreak Questions as they say they own their own servers. Can you find the link as to where this is confirmed ? Does AIR use their own hardware? with Dedicated servers? really its the only way to be sure that the VPN servers are not logging as with a VPS you can't be sure what the datacentre is doing. 

 

Air's stated they use all dedicated servers on the vpn infrastructure.

There's a thread around here somewhere 'still looking for it' where someone posted the ip's of several pia servers. Those ip's were living on vps's. Edit found it: https://airvpn.org/topic/14326-question-regarding-airvpns-your-ip/?p=28310

 

For me I would worry more about vps security/separation from other virtualized environments running on the same machine. Virtualization tech hasn't exactly had the greatest track record where security is concerned.

 

ie. Worst case scenario: someone setting up shop on a vps running on the same machine as the vpn vps could silently Farm gold...

 

pretty sure I refuted that claim.  the person who proposed they were VPS never replied to my refutation.  why?  and why do you carry on with the probable false claim?

-probable:

supported by evidence strong enough to establish presumption but not proof.

 

I'm sorry but if there's even a 1% chance that they currently, or have in the past used vps's servers then not trusting them is my prerogative. And I carry on with this probable false claim because its my right to do so. -Freedom of speech, its why many are here.

 

Frankly Its not my job to prove them reliable, secure or otherwise. Nor should it be yours.

 

Even if the whole vps issue never came to light, for me it wouldn't make any difference. Because I would never use a vpn company based out of a location that requires you by law to log. One would think that fact alone would be enough to temper the fury of all but the most hardcore fanboys. Just ask yourself how long could a US company stay in business while breaking the law.

 

I have no facts, but the answer to the above question should be self evident.

can you point me to the law in the USA that requires VPN to log?

 

Using VPS servers means you are sharing a 1Gbps Port with other users on that server so that would mean their bandwidth is a lie and that would also mean they lied on their Torrentfreak Questions as they say they own their own servers. Can you find the link as to where this is confirmed ? Does AIR use their own hardware? with Dedicated servers? really its the only way to be sure that the VPN servers are not logging as with a VPS you can't be sure what the datacentre is doing. 

 

Air's stated they use all dedicated servers on the vpn infrastructure.

There's a thread around here somewhere 'still looking for it' where someone posted the ip's of several pia servers. Those ip's were living on vps's. Edit found it: https://airvpn.org/topic/14326-question-regarding-airvpns-your-ip/?p=28310

 

For me I would worry more about vps security/separation from other virtualized environments running on the same machine. Virtualization tech hasn't exactly had the greatest track record where security is concerned.

 

ie. Worst case scenario: someone setting up shop on a vps running on the same machine as the vpn vps could silently Farm gold...

pretty sure I refuted that claim.  the person who proposed they were VPS never replied to my refutation.  why?  and why do you carry on with the probable false claim?

have you edited your hosts file to do so or do you have some browser extension that does the same (e.g. ublock)?

have you tried the SSL tunnel connection type?  have you also experimented with buffer sizes?

yeah, the AC3200 is still getting sorted out.  the AC87 would be faster than the AC68 stock, just FYI.  But, it's still getting sorted as well.  anyway, if getting Asus routers Merlin firmware is the way to go.

can't access the WAN literally or do you mean that nothing "works"?  I would imagine it's your use of comcast DNS while connected to VPN.  comcast probably rejects any DNS queries from IP other than their own network.  In this case it would be coming from the VPN exit IP.

you should certainly set your DNS to something other than ISP DNS to avoid their logging.  In the openvpn client page set "accept DNS configuration" to exclusive.  That way you'll be sure to use AirVPN DNS.

yes, a real CPU will do the trick nicely.  But, the AC3200 should be able to give you something like 60mbit/s throughput just in case you're wondering. If you opt for the Asus router I recommend Merlin firmware.

http://www.snbforums.com/forums/asuswrt-merlin.42/

i use: Js Switch, Toggle Cookies, Ublock Origin, No Script, Flag Fox and Down Them All. in my opinion less is better https Everywhere is just as much of a joke as https is. the key is more in about:config i can post my about:config settings for u guys if u like i have most in a text for my vbox installs.

https is a joke?

 

you make negative remarks for the use of google DNS and yet you're using a google doc spreadsheet and have a gmail address.

 

I don't know any other service with which you can view spreadsheets online. I only know it for documents, e.g. Etherpad. Can you recommend something?

I wish I could.  I use google docs where appropriate but I also don't mind using google public DNS.  I was just questioning the principle of disliking one google product while using another.