Staff

Hello! The problem is that your system lacks a tun/tap adapter (the virtual network interface used by OpenVPN too). Try what OpenVPN suggests: . 2018.09.19 18:09:52 - OpenVPN > There are no TAP-Windows adapters on this system. You should be able to create a TAP-Windows adapter by going to Start -> All Programs -> TAP-Windows -> Utilities -> Add a new TAP-Windows virtual ethernet adapter. Run the "add adapter" script with administrator privileges. Kind regards

Hello! We inform you that the following servers are being withdrawn: Fornax (Sofia, Bulgaria). Reason: not meeting our technical requirements anymore. Replacement: yes, 2 1 Gbit/s servers in Sofia in a different datacenter within 2 days (already operative, now testing) Ara, Corvus, Fafnir, Monoceros, Pictor (Dallas, TX, USA) Reason: they were temporary servers to support the migration of our main 10 Dallas servers. Migration completed, temp servers dismissed. Replacement: yes, migration complete, the previous 10 servers in Dallas are now up and running https://airvpn.org/topic/28871-completed-migration-announcement-for-10-dallas-servers/ Antlia, Octans, Pavo, Sagittarius and Scorpius (Atlanta, GE, USA) Reason: company shutting down operations. Replacement: yes, 5 1 Gbit/s servers, already available since 31 Jul 2018 https://airvpn.org/topic/28854-five-new-1-gbits-servers-available-us Kind regards and datalove AirVPN Staff

Hello, OpenVPN is invulnerable to MITM attacks. Your insinuation of our VPN servers censoring specific web sites is ridiculous, it's something which goes directly against our mission, not to mention our core business. You are probably not using our service or you are querying some poisoned DNS, ignoring the VPN DNS (which will not happen if you run our software), or your computer is infested by ad malware and other virus. Please open a ticket for additional investigation. Kind regards

Hello! As long as you don't need proper remote port forwarding you can connect multiple devices to the same server from the same account provided that each device uses a different certificate/key pair. How to handle your client certificates and keys: https://airvpn.org/topic/26209-how-to-manage-client-certificatekey-pairs/ Kind regards

Please make sure to make clear that this solution will cause the traffic to Freenode to flow OUTSIDE the VPN tunnel and that Freenode servers will see the "real" IP address of the user. Kind regards

Hello! Please test Eddie Android edition, it is able to handle such network switches more properly. Eddie features a thorough Android network, OpenVPN warnings and OpenVPN errors monitoring and handling which allow to take the most appropriate decision on each circumstance. In your case, Eddie will not "lock" the network during the switch, unless absolutely unavoidable. And even if this happened, you would not need to follow the time consuming procedure you perform with OpenVPN for Android: you can just click two buttons to unlock the network and restart a VPN connection. Eddie Android edition 1.0 is currently in Release Candidate 4. As such, some instability is still there, but it will be resolved in the next version which is coming out "real soon now". Please see here: https://airvpn.org/topic/26549-eddie-android-edition/ Kind regards

Hello! You forced this interface to establish the connection: network.entry.iface: 192.168.0.6 which causes this error: . 2018.09.17 17:49:22 - OpenVPN > TCP/UDP: Socket bind failed on local address [AF_INET]192.168.0.6:1194 Actually, according to the system report, there is no interface with IP address 192.168.0.6 (the WiFi adapter has 192.168.0.3 and there's no other physical Ethernet interface up). In Eddie window "Preferences" > "Networking" try to set the interface used for connection to "Automatic", click "Save" and test again. Kind regards

Hello! Thank you very much, it will be taken to the attention of the developers quickly. Which Eddie version are you running? We will also ask for a fix of the reported ambiguity in the instructions. Are the "man" pages badly formatted as well? "man eddie-ui" should provide a good output, but we remember some old version in which the man page had a bad format, anyway let's see what your version is. Kind regards

Hello! If Network Lock was on and you have no spyware in your system and no programs that could reset the firewall rules, that's impossible. As you can see we have three big IFs here. Remember that AirVPN is a service that is not aimed to protect your computer. We recommend that you thoroughly check your system to begin with. On our side, we can help you check the Network Lock rules, to make sure that they are not modified on the run (please open a ticket for this, at your convenience). Kind regards

And it did. A couple of suggestions for the devs: Rather than hard code the paths, would it be possible to use the $PATH variable like most programs do? Hello! Please note that /sbin/ip is required by OpenVPN. It's OpenVPN that throws the error, not Eddie, so you could send your suggestion to OpenVPN developers. You will face the very same problem without Eddie, by running OpenVPN directly. Remember that Eddie is an OpenVPN frontend and wrapper which adds several functions in your system (for example correct DNS push handling, which OpenVPN does not do by its own in Linux, iptables rules to prevent leaks and many more), but can't overcome certain OpenVPN hard coded limitations. Of course we could re-compile OpenVPN with some patch about this issue but that would not solve the problem if you kept using the OpenVPN version you find in the official repositories. Additionally, spreading different branches poses various, complex issues, including security issues (especially when dealing with the execution of external binaries), which must be considered. We prefer, at the moment, to stick to OpenVPN official versions unless some critical bug fix is absolutely necessary and the fix is delayed by OpenVPN developers, a case which should never occur, or at least it should occur only under exceptional circumstances. . 2018.09.15 09:33:23 - OpenVPN > /sbin/ip link set dev tun0 up mtu 1500 . 2018.09.15 09:33:23 - OpenVPN > Linux ip link set failed: could not execute external program It's OpenVPN that exits when it can't find /sbin/ip . Of course your suggestion can be translated into an invitation to implement a better OpenVPN errors handling by Eddie, that's true. The following command will let you see any process related to Eddie: ps aux | grep -i eddie | grep -v grep Eddie can save the log to a file, and can even divide the log for you into multiple files according to day, month, day of week, etc., check "Preferences" > "Logging" please. Kind regards

Hello! We inform you that on September the 18th, 2018, starting at 10.00 AM CEST, we will be performing special maintenance on our infrastructure. The maintenance aims to prepare a future migration to an updated forum board. Expected maintenance time: from 10.00 AM to 11.00 AM CEST Impact: all AirVPN web sites will be inaccessible. Only a courtesy page will be served. VPN servers and services will remain unaffected. Kind regards

Working now! Kind regards

Hello! Accepting the DNS push is probably the best option. DNS server address is always the same address of the VPN default gateway for security reasons. Anyway, 10.4.0.1 remains reachable for DNS queries and backward compatibility (but not for ping). The fact that you can't query it is unexpected, can you tell us the server(s) name(s) you experience this problem on? Kind regards

Hello! We hope to provide you with a substantial update within the end of the September. Kind regards

Hello! RAI is restricting access to IP addresses that have been assigned to Italian residential ISPs, so RAI is no more accessible from our infrastructure. Kind regards

Hello! List of generation 2 servers, updated Sep 13 2018 (total Generation 2 servers: 201) Acamar Achernar Achird Adhara Agena Ain Alamak Alathfar Albali Alchiba Alcor Alcyone Alderamin Algieba Algorab Alhena Alkaid Alkes Alkurhah Almach Alnilam Alphard Alphecca Alphirk Alrai Alrami Alshain Alshat Altarf Alterf Aludra Alula Alwaid Alya Alzirr Ancha Andromeda Angetenar Anser Antares Aquila Arcturus Arkab Asellus Asterion Asterope Atik Atria Auriga Avior Azmidiske Baiten Benetnasch Betelgeuse Bootes Caelum Camelopardalis Canes Canis Caph Capricornus Carinae Castor Cebalrai Celaeno Centaurus Cephei Cepheus Cervantes Chalawan Chara Chort Chow Circinus Columba Copernicus Crater Cursa Cygnus Cynosura Dabih Delphinus Denebola Dheneb Diadema Diphda Edasich Elnath Enif Eridanus Errai Fafnir Fomalhaut Fornax Gacrux Garnet Gemini Gianfar Gienah Gomeisa Gorgonea Grumium Hadar Hamal Hassaleh Hatysa Hercules Heze Horologium Hyadum Hydra Hydrus Indus Intercrus Iskandar Jabbah Kajam Kitel Kocab Kraz Lesath Libra Lupus Maasym Markab Matar Mebsuta Mekbuda Menkab Merga Merope Mesarthim Metallah Minkar Mintaka Mirach Miram Muphrid Musca Muscida Musica Naos Nash Nashira Norma Nunki Ogma Ophiuchus Orion Pavonis Persei Phact Phaet Phecda Phoenix Pictor Pleione Pollux Porrima Pyxis Rana Regulus Reticulum Rotanev Rukbat Sabik Sadalbari Saiph Salm Sargas Scheat Sculptor Serpens Sharatan Sheliak Sirrah Situla Skat Spica Sualocin Subra Talitha Tarazed Taurus Tegmen Tejat Triangulum Tucana Turais Tyl Ukdah Ursa Veritate Virginis Virgo Yed Yildun Zaniah Zibal Zuben Kind regards

Hello! If you enter an iptables rule from a command line interface as root, is the command faster or equally slow? Kind regards

Hello! 100.200.100.100 is not an IP address of our servers. Kind regards

@oxidising Hello! We see that iptables is incredibly slow in your system to add a rule (from 260 to 300 milliseconds for each rule according to the output you sent us). Do you run UFW? https://wiki.manjaro.org/index.php?title=UFW_%26_GUFW Kind regards

Hello! Subnets are static and unique for each OpenVPN daemon of each server, so you will never have overlapping subnets (useful for multihoming). However you can't know in advance which daemon your OpenVPN client will connect to due to our load balancing system. We are not sure but just in case you need to determine the VPN default gateway IPv4 address this might help: https://airvpn.org/topic/28793-monitor-ip/?do=findComment&comment=75755 Kind regards

Hello! This happens with all "Generation 2" servers (see also https://airvpn.org/plans and https://airvpn.org/topic/28153-ipv6-support-and-new-smart-features ). 10.4.0.1 remains reachable from any other subnet (but not ping-able), however picking the VPN default gateway IP address as the DNS server address is a superior choice because it prevents any possible DNS hijacking through a route injection attack (the attacker anyway needs to control the immediate upstream router so in your case this risk is minimal or zero). Kind regards

Hello! In IPv4, private networks are: 10.0.0.0/8 172.16.0.0/12 192.168.0.0/16 The 169.254.0.0/16 is a range of link-local addresses. It has been allocated for zero configuration networking when DHCP services are not available or disabled, and manual configuration by the network administrator has not been performed. As such, Network Lock does not explicitly allow communications from and to 169.254.0.0/16 range. Please try to add it (we would say to include the whole range in case the printer address varies) in the Preferences > Routes Eddie window, outside the tunnel. This will also unblock the range from Network Lock and should fix the issue. Kind regards

Hello, if this is confirmed, it should be brought to the attention of Bitdefender and its users, as well as our customers and in general OpenVPN users or any user needing the tun/tap interface in Windows. We would recommend that you contact their customer support service for further investigation and troubleshooting. Kind regards

Hello! The tun/tap interface, i.e. the virtual network adapter used by OpenVPN, does not come up. Please try the following: - make sure that no anvirus/antimalware tool is interfering - shut down the Air client software - right-click and run the "Start-->Tap-Windows-->Delete ALL TAP virtual ethernet adapters" as administrator - reboot the system - right-click and run as administrator "Start-->Tap-Windows-->Add a new TAP virtual ethernet adapter" - start Eddie and test again connections to various servers in different locations. Kind regards

Hello! Just checked and it works perfectly as usual. Can you please make sure that your system queries VPN DNS? This is a strictly necessary requirement to access our geo-routing system. If you run Eddie, the Air free and open source software client, this will happen by default. Kind regards