Staff

Hello! Please note that OpenVPN 2.6 and higher versions (i.e. the OpenVPN version you meet on the servers) will push in any case IPv6 gateway, routes etc. Yes, we need to consider whether disabling the now misleading option completely on the CG. Kind regards

@zedik Hello! The bluetit.rc file you sent us is not consistent with the log. The log mentions: 2026-03-15T12:01:09.447328+11:00 zedkomp bluetit: ERROR: networklockpersist in /etc/airvpn/bluetit.rc must be on, iptables, nftables, pf or off 2026-03-15T12:01:09.447395+11:00 zedkomp bluetit: ERROR: networklock in /etc/airvpn/bluetit.rc must be on, iptables, nftables, pf or off ... 2026-03-16T10:53:44.803779+11:00 zedkomp bluetit: ERROR in /etc/airvpn/bluetit.rc: invalid value "<wireguard>" for directive airvpntype (allowed values: openvpn, wireguard) but the rc file you linked has those directives commented out. Can you please check? About the initial error you pointed out, the cause is the same: 2026-03-19T11:07:01.296401+11:00 zedkomp bluetit: Requested method "set_options: air-vpn-type (f) -> <wireguard>" 2026-03-19T11:07:01.296633+11:00 zedkomp bluetit: ERROR: --air-vpn-type can be openvpn or wireguard Note the difference between <wireguard> (wrong) and wireguard (correct). Kind regards

Hello! We can't reproduce in any way. If you had entered some non visible character in your command line we wouldn't be able to see it (on this forum "code" section) and the parser would throw the error. Can you please re-type from scratch the whole command, just to rule out this potential issue? If the problem persists, can you also add the Bluetit log and the bluetit.rc file (wipe out username, password)? To generate the Bluetit log for example to a bluetit.log file: sudo journalctl | grep bluetit > bluetit.log Can you also verify the char encoding of your terminal (type the command locale and send us the whole output)? The correct line is: airvpntype wireguard The angular brackets in our convention include possible options or option argument, with the symbol "|" meaning "or". They are not part of the syntax of the option or option argument, instead they are mere placeholders, so you must omit them. Just like in a lot of GNU documentation and Unix man pages, to be clear. Kind regards

Hello! Available in "Settings" > "System" > "Application Filter Type" > select white or black list, then compile the list on the new "Select applications to be *listed" menu item that will appear. BLACK LIST enabled: all the traffic is tunneled except the traffic of the black listed app(s). WHITE LIST enabled: only white listed apps will have their traffic tunneled. Kind regards

Hello! This is expected. It is also unavoidable: consider that inside the VPN server packets originated by your node when it is a source pass through public entry-IP address -> virtual network -> exit-IP address -> final destination. When your node is a destination from external source, packets reaching the exit-IP address are forwarded to the virtual network, encrypted and sent to your VPN IP address So, if your VPN IP address is both source and destination and the packet should simultaneously get out of and enter the exit-IP address etc., what happens? You create a network loop because there's no self-routing logic for your packet between entry -> VPN -> exit -> exit again -> VPN and finally entry addresses, and the packet is lost. The VPN is not designed as a loopback device, so to speak. Use your system loopback interface to have the system communicate with itself as a simultaneous source and destination. This is a different issue and this behavior is explicitly blocked in the infrastructure for security reasons. It is a valuable VPN feature (allowing sharing resources, sharing the same network) in virtual networks where all the nodes are known and trusted, but it is dangerous in a public VPN service or in general where nodes can not be trusted by each other. The only shared resource in the VPN is the DNS server. No node can reach another node inside the VPN itself. Kind regards

Hello! The moderator asked for a system report generated by Eddie, please read! We would like to see the report as well. It will add information that could be valuable to understand the problem. You will need just a few seconds to generate and send it. Kind regards

@0bacon Hello! That's fine, as is standard practice in a multi-user system, each user can have a different configuration file for each piece of software. However, we do not recommend running Goldcrest as root; a user belonging to the airvpn group is sufficient. This error suggests that the intersection between the general Bluetit allowed servers set and the specific Goldcrest white listed server set is empty. Please feel free to publish the Bluetit log to let us look into this error more properly. You can generate it and store it to a specific file, in a systemd based system, with these commands: sudo journalctl | grep bluetit > bluetit.log With default settings, traffic splitting is disabled, from the manual: Make sure to set allowtrafficsplitting to on on /etc/airvpn/bluetit.rc file. Only the superuser can make this change. Since traffic splitting implies traffic flowing outside the VPN tunnel, this is one of those settings that, by design, are considered the exclusive domain of the superuser. Once you change the setting and re-start Bluetit, you should see that the problem is resolved. If not, again the Bluetit log can offer valuable insight. Kind regards

Hello! There's no "hard limit", as correctly advertised on the main page. The main factors determining the maximum throughput are the physical limits of your ISP and our lines/ports/server available bandwidth, CPU power, the weakest (slowest) hop in the network path between your and our nodes, and traffic shaping by your ISP (if any). The "weakest" of the mentioned factors determine the actual throughput. In reality the all time high recorded in AirVPN history (WireGuard only) is more than 1 Gbit/s: about 2.1 Gbit/s from residential lines around the world (also confirmed here) which means 4.2 Gbit/s on the server for that single session, and even more from datacenter to datacenter. Kind regards

Hello! We're very glad to announce a special promotion on our long term Premium plans for the end of Summer or Winter, according to the hemisphere you live in. You can get prices as low as 2.06 €/month with a three years plan, which is a 70% discount when compared to monthly plan price of 7 €. If you're already our customer and you wish to stay aboard for a longer period, any additional subscription will be added on top of already existing subscriptions and you will not lose any day. Please check plans special prices on https://airvpn.org and https://airvpn.org/buy Promotion expires on 2026-03-31 UTC. Kind regards & datalove AirVPN Staff

Hello! It might be an MTU related problem. Please test again with different WireGuard interface MTU, starting from 1280 bytes and going up to 1400 bytes. The environment variable controlling MTU is WIREGUARD_MTU. Add a line on the environment: section. Example: - WIREGUARD_MTU = 1280 Remember to re-start the container each time you change configuration. Kind regards

Hello! This page may help you with a decent assessment: https://airvpn.org/topusers/ Kind regards

Hello! No doubts. We write it not with polemic intent but to help you avoid similar errors in the future. Notifications for "News" posts are sent automatically but you have to enable them if you have disabled them. Alternatively just follow this forum at least a couple of times per month. Traffic is so low that you will need just a minute. Subscription to single forum is also available. Use Network Lock included in our software (the AirVPN Suite offers wide support for various Raspberry Pi Operating Systems) or follow the best practices written in the documentation to prevent traffic leaks outside the VPN tunnel. You wouldn't have this issue if you had taken any leak prevention measures. This situation could have occurred even if you had a connection configured to a single server and that server went down for any reason, therefore it's not a decommissioning specific problem. It's also important that you read the documentation, first and foremost, and that you never proceed when you don't know exactly what you're doing. In the welcome e-mail, links to guides, FAQ, references are included. If you are in doubt anytime do not hesitate to contact the support team via a ticket ("Contact us" from the web site while your account is logged in) or by writing to support@airvpn.org Kind regards

@streamview Hello! Please disable fast startup, reboot the system and test again. If the problem persists please publish or link a complete system report generated by Eddie after the problem has occurred (no omissions or deletions please). Please see here: https://airvpn.org/forums/topic/50663-youve-been-asked-for-a-support-filesystem-report-–-heres-what-to-do/ Kind regards

Hello! Please follow this checklist first: https://airvpn.org/forums/topic/66388-port-forwarding/?do=findComment&comment=243305 Kind regards

@anitya1 Hello! You're trying connections over IPv6 and they all fail. Please make sure that both your router and ISP support IPv6. If in doubt, try a connection over IPv4 (*). If the problem persists, can you please publish a system report generated by Eddie? Please see here: https://airvpn.org/forums/topic/50663-youve-been-asked-for-a-support-filesystem-report-–-heres-what-to-do/ (*) In Eddie, you can switch between IPv4 and IPv6 layers for the VPN connection on "Preferences" > "Networking" window. Kind regards