Corsair28

Awesome deal renewed for another year could not be happier with AIR.

Thank you Air for adding this server

Doesn't matter that the servers are gone temporarily. What matters is having a provider that is willing to accommodate Air's agreement to the level of service they want to provide to their customers. I'll wait for new servers and rather have security without compromise. If there are no servers in the USA one day, then I will connect to another country instead. Regardless I will always stick with Air because of their commitment to privacy for their customers. Thanks for the info and keep up the good work!

Sure, NL covers any browser, but there are issues with it that I personally don't like, plus it still reveals my Air IP, local IP and TAP Adaptor IP. Now, although that may not be a major issue (?) and as a Chrome user, I'd rather take advantage of an extension that blocks the lot! I looked at their info page after you replied and I can see that their new Chrome extension 'WebRTC Stopper' was released today. That wasn't there yesterday, so what I'd installed was their VPN / Secure Proxy extension which includes the same WebRTC blocking functionality. 'WebRTC Stopper' however is neat, works, and successfully replaces the defunct 'WeRTC Block' extension that's now broken. Maybe you could update your info post on this and point people at 'https://chrome.google.com/webstore/detail/webrtc-stopper/mfehokchlmjlkmlgjhkmlpcldcbcooec' Thanks. EDIT: Cyberghost have also released one today that works: https://chrome.google.com/webstore/detail/cyberghost-webrtc-leak-pr/fcacplgecnjoapkgbbfdijidojncpijc?utm_source=chrome-app-launcher-info-dialog Be nice to see one from AirVPN - just to show you care ;-) It appears the developer is no longer making this as the extension has been taken down. The link on their site send you to download WebRTC block from here --> https://chrome.google.com/webstore/detail/webrtc-block/nphkkbaidamjmhfanlpblblcadhfbkdm

Thank you guys for this information. I use both Firefox and Chromium. We should have this as a sticky somewhere.

https://airvpn.org/privacy/ Servers located outside the European Union will treat users data with the same (or higher) level of privacy and data protection, never with a lower level of privacy and data protection. AirVPN will not use or locate servers in countries which have laws which would force Air to violate the aforementioned European Union directives. Anyway, in case of jurisdictional conflicts, Air will not recognize extra-UE competence and will respond only to European Union laws.

Happy New Year Giganerd! I hope your wish comes true, but with all of the taxpayer money funding these programs, its not likely to happen until the majority of people are educated enough to understand the programs they are supporting. Snowden was labeled a traitor under the guise that he is keeping the government from protecting the citizens. The majority of people are not informed well enough on technology, so it is easy to manipulate them with fear and offer to protect them at the small price of liberty. The more people we educate, the more likely these mass surveillance programs will be exposed for what they really are. To everyone here on the forum have a happy, healthy, and prosperous new year! To the Air staff I wish you all continued success and thank you for providing a great service. Keep up the good work it is much appreciated!

It's a nice article, but a bit outdated and it is missing a lot, most notably that the NSA has no real way to crack AES encryption. They have quite a bit of work before they are able to crack it, which is why I suspect they have resorted to hacking into networks and computers. I stated previously to look at your network and computers first. Check your home router and if possible get something that you have better control of. Get a router that you can control like a DDWRT router. Secondly, check your computers. If you have to use Windows, then protect it with a good antivirus, a good spyware scanner like Malwarebytes, and take control of the windows firewall. Giganerd has some great links and the Eddie tool makes connecting securely easy. With all of these tools at hand provided already, I wonder why people still get nervous about these articles online. We have the best encryption and we have the best VPN service with Air. Our only responsibility is to protect our computer and network. It does not get easier than that.

Interesting bit of conversation. I dont worry much about AES encryption being breached or even OpenVPN for that matter. I am more concerned about the alternative ways that my privacy can be breached. Agencies have enormous resources and spend night and day finding clever ways to spy on the citizenry. I would say worry about protecting your network and computer first before worrying about your connection with AirVPN. There is a reason I have been using Air and I will continue to do so long into the foreseeable future.

\\computername works while we try to find another resolution

Network lock under Linux is performed by iptables, maybe it doesn't conflict with UFW because UFW is just an iptables frontend. Network locks are implemented as plugins, we can think about implementing different versions and leave users the choice of network lock method. We alter at runtime Windows Firewall configuration and rules, as explained in the answer to the aforementioned FAQ. Maybe this software you use doesn't expect that. We can look into that, is it this ? Kind regards Yes it is thank you! I have no issues so far other than the compatibility with Windows Firewall Control. I must also mention that the Linux version and MAC os versions are also very good, but I need more time to test them fully, but so far so good.

So far I am loving this client, but it does not work well with the Windows Firewall Control software when I apply the network lock. I may drop WFC all together after testing the network lock feature since it is working wonderfully by itself. Great job!!!!

check the client area and look on the left side for forwarded ports.

Check the site there are many way to connect. I am not sure about your particular setup, but a lot of these things are covered already. Start here https://airvpn.org/topic/11839-can-isps-restrict-vpn-connections/

Interesting indeed thank you for posting!

This setup works very well. I have had to change several times due to the dynamics at work. I just wanted to add that using comodo firewall to make sure the VM only uses air and has no internet access once disconnected is easy to do you can use the same rule as utorrent

I like the new layout

I will try it out on one of my linux machines and let you know it works.

Thanks Bubbba I am using it on my iphone 5. I used Universal rar extractor for the air.zip file and everything is working beautifully I did not think this was out yet and wondered if they would ever have it so thanks again for this post.

Worric, I was too busy to thank you before for posting your setup. It works great and I have 2 setups which work well for me. The GUFW approach is definitely a lot easier than the firestarter approach so I would recommend it to anyone who is not familiar setting up a firewall on their system.

Hello, Please let me know what Linux Distribution you are using. I would like to configure it this way as well. As I said before I have tried 4, well 5 now if you count the new one I told you about earlier. In some cases you have to restart the computer, but I stated that in the guide as well. Looking forward to hearing from you again about your distro so I can test the configuration. I appreciate your concern. In truth, I have been testing Firestarter for this purpose for a long time now (long before you posted on this topic), with a variety of distributions, including Ubuntu and Linux Mint; but more importantly, it is not very important. As I already stated, I already use a similar configuration (in my humble opinion, "better") with Gufw, which I think is more flexible and more secure. There are some things I like about Firestarter but the cons outweigh the pros. Even if you took the time to exam this closer, it would not be of any importance to me, since I do not use Firestarter and I prefer my configuration with Gufw. But to each his own. Thank you. Hello, I never saw your post with gufw and I cannot find it. I tried that as well, but could not get it to work the way I have firestarter working. In the past I tried iptables, gufw, webmin, and now firestarter. I have a working iptables configuration on ArchLinux, but I have to input commands to stop and start the firewall after disconnect. Firestarter is working well with the original configuration I posted and this is day 12. I will continue to use it, but as I said I have never seen a gufw configuration in this forum, only iptables.

Hello, Please let me know what Linux Distribution you are using. I would like to configure it this way as well. As I said before I have tried 4, well 5 now if you count the new one I told you about earlier. In some cases you have to restart the computer, but I stated that in the guide as well. Looking forward to hearing from you again about your distro so I can test the configuration.

This is what I was referring to in my previous post. Firestarter has too many problems. After disconnecting, the whole app goes off. Best to avoid Firestarter until version 1.1. (if even then). Hello, Can you be a bit more specific about the Firestarter problems? Today is day 11 since I have been using this setup and I am not seeing Firestarter shut off on any Linux distro that I tested this on. After the VPN drops, all traffic is blocked and that was the objective. This is exactly what I needed and so far I am not experiencing any issues at all. Maybe you can try it yourself using the guide and let me know what you experience? What Linux Distro are you using? I have no problem copying your setup to find any issues. In fact today on my primary machine, I installed and I am using an experimental version of Linux from here--------> http://forums.linuxmint.com/viewtopic.php?f=61&t=113571 After the installation, I installed the firewall according to the guide and no problems. Let me know what distro you are using and I will try it on there as well.

Hello! Our OpenVPN servers don't listen to port 1194, they listen to ports 53, 80 and 443 (TCP and UDP). Kind regards Hello When you go to the Window to add the Openvpn service, Openvpn is not listed so you have to type in the default port which is 1194. The firewall is only routing traffic through the Openvpn service, not the port you put in. Since all of the connection settings were already imported in the files we downloaded from AirVPN, we do not have to specify them again. I want to make sure this works for everybody, so I went further and tested the setup again. I went back into the policies and modified them from this: To this: Then I disconnected from Air again and all traffic stopped just like before. It does not seem to matter what port is in there as long as it knows the service is Openvpn. The settings are already imported from the downloaded files. In any case, I like to be sure so I took additional steps. I added the AirVPN server as well for inbound and outbound policies, similar to the Windows and comodo setup and made them look like this for inbound: and this for outbound: Afterwards everything looked like this: I went ahead and tested again, and when I disconnected from AirVPN, I had no internet service and everything was blocked. The firewall has to be shut off in order to have any access at this point to any internet. The original configuration and the modified one here both work equally the same. I tested the original on 4 Linux distros just to be sure, and all of them worked the same way, but if anyone has more input I would really appreciate it just to be sure I am not missing anything. I did the dnsleak test from here--------> http://www.dnsleaktest.com/ which resulted in 3 google servers from germany. Then I did another test from here--------> http://ip-check.info/?lang=en This was just to make sure everything was working and check the ip. This might be going into overkill at this point, but I am very satisfied with everything so far. Primarily, I am looking for input from everyone to see if I may have missed something on the 4 computers I tested this setup on and thank you as well for your input and this service I really like it a lot and plan on using it permanently.

I am not sure how to do that with the Firestarter firewall. Firestarter simplifies iptables. I tried doing something similar with iptables, but could not get it to work. I would say that is your best way to do what you are asking, but you would definitely have to do quite a bit of reading on iptables. You can try to do that with Firestarter too, I would have to look into doing that kind of setup with it, although I am very satisfied with this setup here now. Here is the website for Firestarter. They have a tutorial on there.-------> http://www.fs-security.com/ BTW, the last picture on the manual I posted above, the port should be 1194 and not 1149.