go558a83nk

The issue has been already explained: the keys and the internal IP addresses are all on the server, and they are on every and each server. They can be used to correlate specific targets and disclose their identities, while on our current setup that's not possible.  It makes a world of difference when you consider threat models in which VPN users are specifically targeted. Maybe you don't understand the importance of this menace because you wrote:
 
which is correct in our setup, but incorrect in Wireguard setup. The attacker CAN get the internal IP address via WebRTC for example and:
1) in our setup he/she does not correlate the internal IP address with the client key
2) in Wireguard setup he/she does

Once that's done the attacker may obtain legally (via a court order) the payment data of the user because it can ask us which user is linked to a single IP address (and also the user key for subsequent forensic evidence). Since the VPN IP address is static and unique, we would be of course forced to comply.

We wish to underline for the last time that the problem has been acknowledged by developers and we had been told that it would be resolved.

Kind regards
 

Hello!

We're very glad to inform you that a new 1 Gbit/s server located in São Paulo, BR, is available: Lalande.

The AirVPN client will show automatically the new server. If you use the OpenVPN client you can generate all the files to access it through our configuration/certificates/key generator (menu "Client Area"->"Config generator").

The server accepts connections on ports 53, 80, 443, 1194, 2018 UDP and TCP.

Just like every other "second generation" Air server, Lalande supports OpenVPN over SSL and OpenVPN over SSH, TLS 1.2 and tls-crypt.

Full IPv6 support is included as well.

As usual no traffic limits, no logs, no discrimination on protocols and hardened security against various attacks with separate entry and exit-IP addresses.

You can check the server status as usual in our real time servers monitor: https://airvpn.org/servers/lalande

Do not hesitate to contact us for any information or issue.

Kind regards and datalove
AirVPN Team

Any change to https://airvpn.org/specs/ with this new capability?

LOL, I misread.  Nevermind! 

Looks like I'm not the only one to "misread".

My friends, this applies to *web* servers.

I'm not sure if we're allowed to mention the names of other VPNs here in the context of speaking negatively about them so I won't name the one I was using. I had 4 months of subscription time on it left. The servers were very fast. But that's where the positives end. Servers disconnected often a few times a day, even though connecting to them again immediately worked perfectly fine, and in fact the thing that made me start looking for a new VPN was that the day I started looking, every single server would stop working 5-10 minutes after connecting. I switched servers about 20 times before throwing my hands up and saying "this is ridiculous" and starting my search. Their customer service and Android/Windows clients were also terrible, rarely worked 100% properly. And it was extremely expensive at $100 a year.

I eventually ended up at AirVPN after doing some research for several hours. Bought the 2 day trial because of course it's never a good idea to pay a significant amount of money for a service without knowing how well it works for you. I had to contact support about an issue on the Eddie Android client after the first day, and they were very helpful and responded quickly. Servers NEVER disconnect, and there are tons of servers around the US and Canada including several in the city I plan to move to soon. Speed tests are not insane but plenty good for me, 100Mbps (normally 120-180 without a VPN) most of the day, more than good enough for 4k60 streaming and fast downloads. Bought a year and have a feeling I will add another year by the time this one expires.

I've just returned to Air after not using any vpn for a few years. The speeds are faster than they used to be, despite me being on a much slower local adsl line than before. Eddie .deb works great and is even better than before! And I see familiar faces on the forum... it just feels like coming home 💟

A big thank you Air team and all who help here on the forum. I love Air and I love the dependability I found on returning - everything works just like it used to 💟

https://bgp.he.net/AS268581

Any change to https://airvpn.org/specs/ with this new capability?

LOL, I misread.  Nevermind! 

https://bgp.he.net/AS268581

Try moving your static key into the static key section, not tls-auth section, especially since you're not using tls-auth but tls-crypt.

I know Air cares a lot about protecting *against* (edit:  forgot an important word here) censorship across the world, but is it necessary to turn their company Twitter into a 24/7 ‘Free Assange’ machine? I like to follow it for finding out new info about VPN servers and things of that matter. Up until a few weeks ago, it was relatively dormant and only seemed to tweet when there was new things about the company*. Now it’s almost turning into an echo chamber for the “anti-MSM” crowd.
(*yes, you may be run by activists, but you are a business. Don’t forget that).

As a business owner who does do a lot of social, one of the most important pieces of advice I can give is to separate the politics from your company unless there’s a 1000% connection between the two. I don’t think Assange was an AirVPN user and whether or not you agree with his treatment as of late, it probably doesn’t impact the AirVPN service in any way. I’m also sure there are many other instances of freedom of speech being trampled upon that don’t involve him yet do involve presumably innocent people being jailed for speaking the truth. Whoever is running that Twitter should make a separate personal account and use that as his soapbox as it could lead to potential new users deciding to use a less political VPN provider.


https://twitter.com/airvpn

Please look into your Netflix situation.  I just attempted to watch a video but the speed that could be sustained was so slow the video was unwatchable.  Playback on other video streaming services that worked through the VPN were quite speedy.  Vudu, for example, burst to 300mbit/s to buffer.  Curiousity Stream buffered at 100mbit/s.  Your netflix setup could only manage 5mbit/s.  Not near enough for a 4k stream.

Thanks.

You seem to understand things properly.

I'm already on 2.3 Release via upgrade from 2.2.6.  I'm just hesitant to do a clean install because everything seems to be working.  That's why I asked how you're testing DNS and if the tunables problem was important.

Yes though I don't know if you need to install entware for just SSH tunnel.
 
I've done it in the past with an old asus router with merlin and entware.  SSL tunnel too.

Looks like I'm not the only one to "misread".

My friends, this applies to *web* servers.

Hello!

Today we're starting AirVPN ninth birthday celebrations!
 
From a two servers service located in a single country providing a handful of Mbit/s, the baby has grown up to a wide infrastructure in 22 countries in three continents, providing now 230,000+ Mbit/s to tens of thousands of people around the world.

Software related development has also been powered up. Eddie Android edition is now a fully mature application which features an exclusive best effort method to prevent traffic leaks and a complete integration with AirVPN.
 
In 2019 AirVPN has also started operating in South America, on top of Asia, Europe and North America, and the infrastructure has grown significantly, counting now on more than 260 bare metal servers, whose traffic is mainly powered by tier1 and tier2 transit providers. AirVPN has also become recently an EFF "Super Major Donor" member.

Furthermore, and we're very glad to announce it here publicly for the first time, development for OpenBSD and FreeBSD has started. We are also integrating OpenVPN 3 on new software which will couple Eddie on UNIX-like systems, including Linux, during the second half of 2019.

GDPR compliance was already a de facto standard for AirVPN way before the Regulation entered into force, mainly because we don't collect personal data, period. By the way the compliance is now fully formalized (check details in our Privacy Notice and Terms https://airvpn.org/privacy ). AirVPN provides probably the strongest protection to your data, not only personal data but all data, you can find on any service.


If you are an AirVPN customer or user, you are probably aware that our service is radically different than any other VPN service you might have met anywhere. No whistles and bells, no marketing fluff, no fake locations, no advertising on mainstream media, a transparent privacy policy, no trackers on the web site or in mobile applications, no bullshit of any kind in our infrastructure to sell your personal data to any personal data merchant, and above all a clear mission which is the very reason which AirVPN operates for. https://airvpn.org/mission

Many of you know that when you buy AirVPN service, you not only support yourself and improve your ability to exercise your fundamental rights, but you also support AirVPN mission.

However, while AirVPN in itself has flourished, AirVPN mission aims and values related to fundamental rights have experienced, in 2018 and 2019, a grim time.
 
Australia "encryption-busting" monstrous law is fully in force; the European Union has definitively approved the bad Copyright Directive, mandating automated filters, which will unavoidably limit freedom of expression on big boards, and making the first step to undermine the liability exemptions of mere conduits and web publishers alike; new threats to citizens' privacy are becoming real through plans of wide face recognition deployment, indiscriminate DNA databases proposals, more pervasive and efficient profiling (possibly even through AI), and strict cooperation between Internet tech giants and intelligence agencies; the persecution of journalists, publishers and whistleblowers all around the world has reached unprecedented levels, revealing a widespread plan to suppress freedom of the press and freedom of expression even in so called "Western democracies".
One of the greatest journalists and publishers of all times, Julian Assange, nominated seven times for the Nobel Peace prize and winner of many journalistic prizes and awards, has been and is prosecuted and persecuted for having merely published the truth about war crimes, corruption, torture and more, with a 100% accuracy, and for having protected his sources as any good investigative journalist does.

He has been detained arbitrarily and illegally, as widely ascertained and recognized by the UN. He has been victim of an abominable smear campaign based on ignominious lies and defamation, a campaign aimed to turn the public opinion against him and distract from WikiLeaks publications content exposing war criminals in governments key positions, warmongers, torture maniacs, systematic illegal surveillance, endemic privacy violations and plots to limit and reduce fundamental rights. He is currently detained in solitary confinement 23 hours a day, with no access to books, maximum two visits per month, forbidden in practice to coordinate a defense with his lawyers, in a tiny cell of a maximum security UK prison which has been designed for dangerous murderers and terrorists, while UK will decide whether to extradite him to the USA to face a potential 175 years imprisonment.

Whistleblowers like Chelsea Manning, who should be regarded as a hero, as Noam Chomsky, John Pilger, Daniel Ellsberg and other titans of our times pointed out, have been tortured and are still persecuted by the very same criminals whose crimes were exposed.

Privacy activists and software developers, like Ola Bini in Ecuador, are imprisoned without charges, simply for having showed friendship to Assange or WikiLeaks, or for having developed software aimed to protect privacy through encryption.

And the list can go on and on and on.

But make no mistake: the dark times we are living in, the environment of fear and intimidation that various governments are building against the exercise of those fundamental rights which our mission forces us to protect to the best of our abilities, the mounting attacks against "encryption for everyone" and the awareness that enemies of human rights nestle inside government agencies, have not undermined our determination. Quite the opposite: they have convinced us that our service is even more necessary now and we are resolute to do even more.
  Our mission has been and will be empowered by the ongoing support to projects and NGOs which aim to the protection of privacy, personal data and freedom of expression, now more than ever. We have confirmed our support to Tor and we will progressively add support to champions of freedom of expression and privacy in any way our capacities and abilities will allow us.
 
If you're curious to know something about a series of fortunate events which gave birth to AirVPN, have a look here:
https://airvpn.org/aboutus

To worthily celebrate AirVPN ninth birthday, we're glad to inform you that starting from now we will offer a 20% discount on all long term plans. Hurry up, this special offer will end on June the 11th, 23:59:59 UTC! Check the new prices here.

Kind regards and datalove
AirVPN Staff

Hello!

We're very glad to inform you that twelve new 1 Gbit/s servers located in Alblasserdam (Netherlands) are available: Aljanah, Alpheratz, Aspidiske, Capella, Eltanin, Larawag, Melnick, Muhlifain, Piscium, Scuti, Suhail, Tiaki.

The AirVPN client will show automatically the new servers. If you use the OpenVPN client you can generate all the files to access them through our configuration/certificates/key generator (menu "Client Area"->"Config generator").

The servers accept connections on ports 53, 80, 443, 1194, 2018 UDP and TCP.

Just like every other "second generation" Air server, they support OpenVPN over SSL and OpenVPN over SSH, TLS 1.2 and tls-crypt.
 
Full IPv6 support is included as well.

As usual no traffic limits, no logs, no discrimination on protocols and hardened security against various attacks with separate entry and exit-IP addresses.

Do not hesitate to contact us for any information or issue.

Kind regards and datalove
AirVPN Team
 

Hello!

We're very glad to inform you that five new 1 Gbit/s servers located in Frankfurt (Germany) are available: Alsephina, Dubhe, Menkalinan, Mirfak, Mirzam.

The AirVPN client will show automatically the new servers. If you use the OpenVPN client you can generate all the files to access them through our configuration/certificates/key generator (menu "Client Area"->"Config generator").

The servers accept connections on ports 53, 80, 443, 1194, 2018 UDP and TCP.

Just like every other "second generation" Air server, they support OpenVPN over SSL and OpenVPN over SSH, TLS 1.2 and tls-crypt.
 
Full IPv6 support is included as well.

As usual no traffic limits, no logs, no discrimination on protocols and hardened security against various attacks with separate entry and exit-IP addresses.

Do not hesitate to contact us for any information or issue.

Kind regards and datalove
AirVPN Team
 

Hello!

We're very glad to inform you that a new 1 Gbit/s server located in Belgrade (RS) is available: Alnitak.

The AirVPN client will show automatically the new server. If you use the OpenVPN client you can generate all the files to access it through our configuration/certificates/key generator (menu "Client Area"->"Config generator").

The server accepts connections on ports 53, 80, 443, 1194, 2018 UDP and TCP.

Just like every other "second generation" Air server, Alnitak supports OpenVPN over SSL and OpenVPN over SSH, TLS 1.2 and tls-crypt.

Full IPv6 support is included as well.

As usual no traffic limits, no logs, no discrimination on protocols and hardened security against various attacks with separate entry and exit-IP addresses.

You can check the server status as usual in our real time servers monitor: https://airvpn.org/servers/Alnitak

Do not hesitate to contact us for any information or issue.

Kind regards and datalove
AirVPN Team

Please look into your Netflix situation.  I just attempted to watch a video but the speed that could be sustained was so slow the video was unwatchable.  Playback on other video streaming services that worked through the VPN were quite speedy.  Vudu, for example, burst to 300mbit/s to buffer.  Curiousity Stream buffered at 100mbit/s.  Your netflix setup could only manage 5mbit/s.  Not near enough for a 4k stream.

Thanks.

Yep.  My canvas blocker add-on fakes DOMrect readout on this site.

As of the beginning of the new Airvpn website ,I noticed so called,canvas tracing .
I find it annoying; is this really necessary .If yes, can someone explain this to me?
 
Gr,Casper
 

@Staff, I saw your tweet about Atik and the huge amount of traffic on it.
 
For testing purposes were you directing all connections to the Netherlands region to that server to put a huge load on it?

It's good to see stuff like this in the forums.  Compared to two years ago I think Air forums have lost a lot of knowledgeable users so this is refreshing.
 
I don't think I'll have an opportunity to use this as I use pfense but I hope somebody finds it useful.