Staff

Hello! 91.207.102.162 is Alamak entry-IP address 1. 91.207.102.165 is Alamak entry-IP address 3. Entry-IP address 3 enforces tls-crypt and TLS 1.2 and is the favorite choice of Eddie when it can count on OpenVPN 2.4 or higher version. If Eddie can count on OpenVPN versions older than 2.4 (which do not support tls-crypt) then it will pick entry-IP address 1 to keep compatibility. Kind regards

Hello! We have detected a problem between our compilation optimizations of the asio library and ARM 32 bit based systems which may lead to crashes. Your Firestick is based on an ARM 32 bit processor. While applications forced kill is unavoidable (forced by Android) when memory is insufficient, you can test Eddie 2.1 RC 1, which fixes the issue with 32 bit systems. So, you should test Eddie 2.1 RC 1, and at the same time you need to make sure to not run out of memory. Check here: https://airvpn.org/topic/32237-eddie-android-edition-21-beta-released Please keep us posted. Kind regards

Hello! Eddie 2.1 RC 1 is now out. Please check the first post in this thread for full information. https://airvpn.org/topic/32237-eddie-android-edition-21-beta-released Please do not hesitate to send us your feedback. Kind regards

Hello! Yes, that's totally correct. Please note that it's not OpenVPN fault, but Office's. There's really no logic in the world to declare that there's no Internet connection and refuse to proceed sending/receiving data when any virtual network interface does not include a gateway which is superfluous. On top of that, it's a system task, not an application job, and actually the system exchanges data to/from the VPN with no issues. It can be considered an Office 365 critical bug. Kind regards

Hello! Can you please send us Eddie log entries reporting system information (first entries on the top)? Kind regards @amazake and all the readers: We managed to isolate the problems. It is caused by optimizations of the asio library during compilation of the software. The optimizations cause crashes in systems based on ARM 32 bit processors when OpenVPN works in TCP. A fix has been implemented and you will be able to see it in Eddie 2.1 beta 3, whose release is imminent. Users with ARM 64 bit systems are not affected. Kind regards

Hello! Currently it's not planned, we're sorry, because we can't rely on ICMP on mobile networks. Even when ICMP is not blocked the round trip time may be too high on 3G and 4G networks. Considering 100 ms (which is optimistic in mobility on average) and only two pings per server, a full computation would take 45 seconds. By considering 300 ms (not uncommon in 2G and some 3G networks) the total time skyrockets to 2 minutes and 15 seconds, making Eddie usage very uncomfortable. On top of that, only two pings in mobile networks may provide biased outcome. Additionally, ICMP may be de-prioritized on mobile networks when a big amount of pings are sent out by a single node in a short time frame, making this method even more unreliable. And when ICMP is blocked, waiting for the timeouts would make Eddie usage prohibitive. Thanks to ipleak.net and close relationship between countries connectivity, Eddie for Android provides a very robust and more reliable alternative to help you pick a good server. Kind regards

Hello! Netflix access (for streaming purposes) requires IP addresses assigned to residential ISPs of that country. At the moment we can use IP addresses belonging to residential ISPs only in the USA. Anyway the USA catalog is the richest one, and you can access your country content in your favorite language even in Netflix USA. Kind regards

Hello! Can you please send us Eddie log entries reporting system information (first entries on the top)? Kind regards

Hello! Can you please send us Eddie log taken just after the problem has occurred? In the "Log" view you have a "share" icon. You can send the log on a ticket. Thank you! Kind regards

Hello! That means that Android restarts the app. It is possible that the issue is related to ARM32, we are investigating, but for sure we have detected problems between asio library and ARM32 processors. Can you confirm that your device is based on some ARM 32 bit processor? Kind regards

Hello!To allow access to Prime Video from any Air VPN server (same thing for Netflix USA and Hulu). Your packets are hopped to nodes with IP addresses belonging to residential US ISPs. We are investigating. First step, we need to reproduce the problem. Currently we are unable to do it. Can you reproduce the issue regularly on specific servers? Kind regards

Hello! It's an old golden rule to make correlated wiretapping more difficult. The idea is that a criminal organization, or even some governmental agency, need more work to simultaneously wiretap your line and a node you connect to, when your line and the node are in different countries and different jurisdictions. Quite obvious if you start thinking about it. Kind regards

@NetShadow Hello! With BSD or Linux you can achieve the same purposes with more efficiency (theoretically, without graphic overehead, 512 MB are enough) and you stay in a more secure environment which you really control. Think about it. Being worried about NSA willing to make us incredibly rich while you use Windows is somehow hilarious. We wrote that Windows does not support multiple routing tables, which is a quite different thing. We don't know whether something changed in "Server" editions, but this shameful limitation (as incredible as it may sound) persists in desktop editions. It is different than handling multiple network interfaces, which is a feature supported by most systems since the 70ies, or multiple gateways, which is a common feature since when TCP/IP started to spread out. We don't agree and we want to make clear, for the readers, that we consider such claims very dangerous as well as misleading. Claiming any "awesome security" based on anything coming from a closed source system which has undocumented parts and which has proved in history to be developed over a questionable design must be avoided. Kind regards

Hello! As Windows does not support multiple routing tables, there is no trivial method to have multiple VPN connections in a way that each one is unique to each user, we are sorry. You have a global routing table which must be shared by all users and even if you consider to have multiple tun interfaces and multiple gateways (possible with Windows), you will need to face a lot of problems. If some advanced user can see a solution, any feedback will be welcome. Kind regards

Hello! Eddie Android edition is an original project by AirVPN, currently developed by ProMIND. In the "Information" > "Libraries" view, you find the various libraries which Eddie relies on: OpenVPN, mbed TLS, LZO, LZ4, boost, asio and breakpad. You don't need to update anything but Eddie itself. Kind regards

Hello! Have you also tested connections to port 443 of entry-IP address 3, in TCP? If so, can you please report back? Connections to entry-IP address 3 feature "tls-crypt", which encrypts the whole OpenVPN Control Channel, making OpenVPN fingerprint no more detectable (not even by DPI). OpenVPN 2.4 or higher version is required. Kind regards

Hello! A plausible explanation is that some AOL IP address "geo-location" database has been compiled to wrongly have Gliese exit-IP address in Germany. Kind regards

Hello! It sounds like some crash at some level, do you have the option to send us a logcat? Does it happen with 2.1 beta 2 and not with 2.0.1? What are your exact device model and your Android version? Kind regards

Hello! Each VPN server has its own exit-IP address which never changes. Can you please clarify what you mean? Thanks! To have your packets reach the Internet always from the same IP address, you need to stay connected to a single VPN server. Kind regards

Hello! We're glad to inform you that now you have the option of 2 and 3 years plans, which offer a remarkable lower price per month. We have also lowered the 1 Year Plan price. Check here: https://airvpn.org/plans Kind regards

Hello! Problem has been fixed, can you please test again? Kind regards

Hello! Please see here: https://airvpn.org/topic/14378-how-can-i-get-vpn-servers-entry-ip-addresses Kind regards

Hello! Eddie 2.1 can keep multiple profiles (2.0.1 could handle one profile at a time), so you can import all the profiles you need. For specific usage with other VPN services also contact that VPN service customers' care. Kind regards

Hello! We don't share your point of view. Longer plans imply that we're here to stay. We are one of the oldest VPN services around (check: which VPNs were born before 2010?) so we are confident that the large majority of our customers will gain even more trust by the longer plans. Of course such plans have nothing to do with "lifetime" subscriptions, which are actually impossible to sustain and are a symptom of fraudulent purposes. Kind regards

Hello! A possible workaround would be showing the dialog only when the app is in foreground. It needs an evaluation in the near future. It sounds very invasive and anyway it would be useless for the mentioned reasons: if Eddie can start and connect, it will do it, if it can't, it will not be able to throw any warning because either it's not running or can't evaluate the connection status properly before the boot has completed. We remind you that you can start and connect Eddie automatically at boot with profiles. Check the proper option in the "Settings" view and connect via a profile. If Eddie is running and connected to the VPN through an imported profile, Eddie will automatically start and re-connect through that last profile when you boot or reboot the device. As we explained, this is a best effort procedure: it's Android that decides WHEN to start an application which registered itself to start at boot. Additionally, manufacturers "boot managers" (which may run with high privileges) may cause sensational mess to the whole procedure, as we have ascertained on various Asus devices. A profile can be generated directly from inside Eddie (for AirVPN), you don't need the Configuration Generator. Yes, something to make the whole process more comfortable is under consideration. It's a good way to determine automatically a "good" server for you as we can't rely on ICMP. ipleak.net is anyway completely under the control of AirVPN (server included, of course) and is a general purpose web site, massively used by hundred of thousand nodes. The Android setting you refer to, available in Android 8 and higher versions, is not aimed to traffic leaks prevention even though a side effect is traffic leaks prevention in various circumstances. However leaks are always possible when an error occurs (for example comms to the server are lost) and OpenVPN throws the subsequent, critical error. During the re-connection attempts traffic leaks are possible and may persist until OpenVPN reconnects.. Eddie VPN lock, instead, will prevent those leaks, as you know. It will be considered, thanks. It has been implemented since version 1.0, please find the various options in the "Settings" view. You can split traffic on an app white or black list basis: if you define an applications white list, only the apps in the white list will have their traffic tunneledif you define an applications black list, the apps in the black list will have their traffic NOT tunneled Traffic splitting on an IP addresses basis is currently not planned. Kind regards