Staff

Do you mean that you keep VPN lock on and you notice increased stability? Kind regards

Hello! Can you please try to delete cookies and cache on the "problematic" Chrome and check whether the problem remains the same or not? Kind regards

Hello! Maybe Eddie starts minimized: if you click the tray icon (the tiny icon with a cloud in a circle you should have on the right of your top Desktop bar after you have started Eddie) a contextual menu should appear which shows the item "Show Main Window". If so, select it and Eddie main window should appear. Kind regards

Hello! Yes, of course, the fix has been implemented and you will find it on Eddie 2.1 beta 2. The beta life cycle is quite fast so expect new releases in a matter of days. We can't promise a definite ETA for the next stage (public beta testing serves the purpose to find bugs which have been missed by the internal alpha testing team) but normally between the beta stage and the Release Candidate, or even the final, stable version, we talk about days or a week. Kind regards

Hello! Thank you very much. Detected: a fix will be included in the next 2.1 beta 2 release. The problem pertains exclusively to Android 9. Kind regards

Hello! We're glad to inform you that we are opening the beta testing phase of our free and open source software Eddie for Android version 2.1. You can participate to the beta testing by joining the beta community in the Google Play Store here: https://play.google.com/apps/testing/org.airvpn.eddie You can also download the Eddie Android 2.1 Release Candidate 1 apk directly from our repository: https://eddie.website/repository/eddie/android/2.1rc1/org.airvpn.eddie.apk The application is fully localized and we look for translators, especially for translations into Japanese, Korean and many other languages. If you wish to translate (from English) please contact info@airvpn.org for every detail. Current implemented languages (new ones from 2.0.1 are underlined): Chinese (simplified), Chinese (traditional), Danish, Dutch, English, French, German, Italian, Portuguese, Spanish, Russian, Turkish. Eddie for Android 2.1 RC 1 is a major refinement of version 2.0.1 and implements several features which were suggested by the community. It also underwent a deep re-engineering of some architectural components which translates into higher stability, correct co-existence with other VPN and non-VPN applications and in general improved events handling. Eddie for Android is free and open source software released under GPLv3. We invite you to check from independent 3rd parties the lack of trackers code signatures, for example here: https://reports.exodus-privacy.eu.org/en/reports/search/org.airvpn.eddie UPDATE: Eddie 2.1 beta 2 available on 25th of February, 2019. UPDATE: Eddie 2.1 RC 1 available on 8th of March, 2019 Main features: Free and open source OpenVPN GUI based on OpenVPN 3The only Android application officially developed by AirVPNRobust, best effort prevention of traffic leaks outside the VPN tunnelBattery-conscious applicationLow RAM footprintErgonomic and friendly interfaceAbility to start and connect the application at device bootOption to define which apps must have traffic inside or outside the VPN tunnel through white and black listLocalization in Danish, English, French, German, Italian, Portuguese, Russian, Spanish, TurkishFull integration with AirVPNEnhanced security thanks to locally stored encrypted data through master passwordQuick one-tap connection and smart, fully automated server selectionSmart server selection with custom settingsManual server selectionSmart attempts to bypass OpenVPN blocks featuring protocol and server fail-overFull Android TV compatibility including D-Pad support. Mouse emulation is not required.Enhancements aimed to increase accessibility and comfort to visually impaired personsAirVPN servers sorting optionsCustomizable "Favorite" and "Forbidden" servers and countriesOpenVPN mimetype support to import profiles from external applicationsNEW: Eddie for Android 2.1 RC 1 - Release notes Multiple OpenVPN profile support. The app now imports and manages multiple OpenVPN profilesSupport for custom bootstrap serversSupport for favorite and forbidden countriesAirVPN broadcast messages supportUser's subscription expiration date is now shown in login/connection informationThe app is now aware of concurrent VPN use. In case another app is granted VPN access, Eddie acts accordingly and releases VPN resourcesOptional local networks access. In such case, local network devices are exempted from the VPN and can be accessed within the local devicesLocalization override. The user can now choose the default language and localization from one of the available onesFavorite and forbidden lists can now be emptied with a single tapVPN Lock can now be disabled or enabled from settingsVPN reconnection in case of unexpected OpenVPN disconnection. (It requires VPN Lock to be disabled)User can now generate an OpenVPN profile for any AirVPN server or country and save it in OpenVPN profile managerDanish, Dutch, simplified Chinese and traditional Chinese localizationNew server scoring algorithm implementing the latest AirVPN balancing factors in order to determine the best server for quick connectionNetwork name and extra information are now shown along with network typeBetter device network status managementBug fixes Changelog: Changelog 2.1 RC 1 (VC 17) - Release date: 8 March 2019 by ProMIND - [NEgiXr] Added Simplified Chinese localization - [NEgiXr] Added Traditional Chinese localization - [anonymous] Added Dutch localization - [ProMIND] Native Library: updated openvpn3, mbedtls, asio, lz4 and boost 1.69.0 from their respective repositories - [ProMIND] Native Library: fine tuning of compilation options in order to avoid TCP crash in arm32 architecture - [ProMIND] Updated default manifest.xml CountryContinent.java - [ProMIND] CountryContinent(): Added support for simplified and traditional chinese EddieApplication.java - [ProMIND] onCreate(): BuildConfig.VERSION_CODE and BuildConfig.VERSION_NAME are now sent to the Log VPNManager.java - [ProMIND] The status of VPN Lock and LAN exclusion are now reported to the log at connection - [ProMIND] In case network connection is MOBILE, LAN exclusion is ignored and forced into the tunnel LogActivity.java - [ProMIND] onCreate(): BuildConfig.VERSION_CODE and BuildConfig.VERSION_NAME are now exported to the Log header - [ProMIND] onCreate(): Settings dump is now exported to the log file MainActivity.java - [ProMIND] It now signals whether the app is in foreground by using SupportTools.setAppIsVisible() NetworkStatusReceiver.java - [ProMIND] Added NetworkType enum - [ProMIND] Added getConnectionType() method to properly determine connection type according to NetworkType enum - [ProMIND] Added a more accurate control in order to avoid duplicate events from BroadcastReceiver PackageChooserActivity.java - [ProMIND] ApplicationListLoader class: Package list is now loaded in a UI Thread SettingsManager.java - [ProMIND] Added dump() method. Returns a complete dump of the current settings SupportTools.java - [ProMIND] Added methods setAppIsVisible() and isAppIsVisible() - [ProMIND] All information dialogs are now shown only in case the app is in foreground Changelog 2.1 beta 2 (VC 16) - Release date: 25 February 2019 by ProMIND NetworkStatusReceiver.java - [ProMIND] networkDescription(): Fixed Android 9 compatibility Eddie for Android 2.1 beta 1 - ChangeLog Changelog 2.1 (VC 15) - Release date: 22 February 2019 by ProMIND - [ProMIND] Fixed minor bugs reported in crash reports - [ProMIND] Added country_menu, whitelist_country_menu and blacklist_country_menu menu resource files - [ProMIND] Added new class OpenVPNProfileDatabase for storing and managing multiple OpenVPN profiles - [staff] Added Danish localization AirVPNServerProvider.java - [ProMIND] getFilteredServerList() now filters server list according to white and black listed countries AirVPNManifest.java - [ProMIND] Added private properties load_factor and users_factor to conform to new manifest.xml layout - [ProMIND] Property speedFactor datatype changed to double - [ProMIND] Added class Message representing Manifest's messages to be shown to the user AirVPNServer.java - [ProMIND] computeServerScore(): score is now computed according to new AirVPNManifest's speedFactor, loadFactor and userFactor - [ProMIND] getOpenVPNProfile() can now generate country profiles AirVPNUser.java - [ProMIND] Added daysToExpiration property to reflect the number of days to AirVPN subscription expiration according to expirationDate property BootVPNActivity.java - [ProMIND] Added new class which replaced and superseeded the old one. It takes care of launching the last connected OpenVPN profile at boot time client.cpp (native library) - [ProMIND] Client::Impl::socket_protect() updated interface according to new OpenVPN3 interface ConnectAirVPNServerFragment.java - [ProMIND] Long press on "favorite" and "forbidden" lists now enables "empty list" context menu - [ProMIND] AirVPN subscription expiration is now shown in network/vpn status dialog box - [ProMIND] AirVPN user name is now shown in network/vpn status dialog box - [ProMIND] CreateGroupList() added support for favorite and forbidden countries management - [ProMIND] Added methods addCountryToFavorites(), removeCountryFromFavorites(), addCountryToForbidden() and removeCountryFromForbidden() - [ProMIND] AirVPNServerExpandableListAdapter class: added support for showing and managing countries views as child items in favorite and forbidden groups - [ProMIND] Added OnItemLongClickListener() to ListView in order to show a message in case item long press and user not logged in to AirVPN - [ProMIND] Added exportToOpenVPNProfiles() for exporting AirVPN OpenVPN profiles in user's profile list ConnectionInfoFragment.java - [ProMIND] Removed showErrorMessage() method. VPN errors are now displayed to txtVpnStatus TextView - [ProMIND] Removed connection error layout. All VPN errors are now sent to the log and displayed to txtVpnStatus TextView - [ProMIND] Class now implements EddieEventListener in order to manage VPN events on its own - [ProMIND] Connection info box now shows OpenVPN profile name in OpenVPN profile connection mode ConnectOpenVpnProfileFragment.java - [ProMIND] Added ListView for stored OpenVPN profiles and made it fully Android TV compliant for dpad navigation - [ProMIND] Added connectDatabaseOpenVPNProfile() for connecting a stored OpenVPN profile connection_sequence.csv - [ProMIND] Set a new connection sequence: second attempt is now TCP,443 instead of UDP,53 (which is now third) CountryContinent.java - [ProMIND] Load country list according to user locale setting EddieBroadcastReceiver.java - [ProMIND] Removed tryRestoreLastProfile(). To start the VPN at boot, this class now starts an intent of BootVPNActivity class EddieEvent.java - [ProMIND] Better concurrency support: events are now synchronized and use a local clone of EddieEventListener ArrayList LogActivity.java - [ProMIND] Added Android Fingerprint to log MainActivity.java - [ProMIND] updateConnectionStatus does not longer propagate VPNManager's events. VPNManager events are now properly managed by EddieEvent class - [ProMIND] Implemented onSaveInstanceState() to save fragments' state - [ProMIND] Implemented onRestoreInstanceState() to restore fragments' state - [ProMIND] onAirVPNManifestChanged() check for manifest's broadcast messages and shows them to the user - [ProMIND] Added setVpnManager() method in order to set vpnManager object in case the VPN is started by an external event, such as BootVPNActivity class - [ProMIND] In case of unexpected OpenVPN disconnection, it retries to reconnect to the VPN when the user has set "VPN reconnection" in settings NetworkStatusReceiver.java - [ProMIND] Added ExtraInfo and SubtypeName to network description OpenVPNTunnel.java - [ProMIND] Changed networkStatusChanged() return type to void - [ProMIND] VPN Lock is now engaged according to "VPN Lock" setting QuickConnectFragment.java - [ProMIND] AirVPN subscription expiration is now shown in network/vpn status box SettingsActivity.java - [ProMIND] Added VPN Lock setting - [ProMIND] Added VPN reconnection setting - [ProMIND] Added custom bootstrap setting - [ProMIND] Added language selection setting - [ProMIND] Added exclude local networks setting SettingsManager.java - [ProMIND] Added methods getAirVPNCountryWhitelist(), setAirVPNCountryWhitelist(), isAirVPNCountryWhitelisted(), getAirVPNCountryBlacklist(), setAirVPNCountryBlacklist(), isAirVPNCountryBlacklisted() - [ProMIND] Added methods isVPNLockEnabled(), setVPNLock() - [ProMIND] Added methods getSystemApplicationLanguage(), setSystemApplicationLanguage() - [ProMIND] Added methods areLocalNetworksExcluded(), setExcludeLocalNetwork() SupportTools.java - [ProMIND] Added method runOnUiActivity() - [ProMIND] Added methods saveXmlDocumentToFile() and loadXmlFileToDocument() to write and read plain XML files - [ProMIND] Added method setLocale() - [ProMIND] RequestAirVPNDocument(): add custom bootstrap servers to the top of server list in case user has set them in settings - [ProMIND] Added methods for IP convertion: IPToLong() and longToIP() VPN.java - [ProMIND] Added CONNECTION_REVOKED_BY_SYSTEM status VPNContext.java - [ProMIND] ensureRoutes(): default routing is now added in case user has not selected local network exclusion VPNManager.java - [ProMIND] onStatusChanged() now conforms to EddieEvent class - [ProMIND] unbindService() does not change VPN status anymore (managed by VPNService) - [ProMIND] start() now checks for network connection and, in case it is not available, activates a pending connection status to be resumed as soon as the network connection becomes available. - [ProMIND] createProfileBundle(): add proper route to OpenVPN profile for local network exclusion VPNManagerListener.java - [ProMIND] Class deleted. Event moved to EddieEvent.java VPNService.java - [ProMIND] Added MSG_REVOKE property to notify client (VPNMaganer) in case of system revocation - [ProMIND] Removed Status enumerator. The class now conforms to VPN.Status enumerator - [ProMIND] Removed redundant members vpnStatus and vpnLastError as they are managed by VPN class Kind regards and datalove AirVPN Staff

Hello! Thank you very much for the log. We are considering the issue carefully and we wish to resolve it in 2.1 beta 1 already. Kind regards

Hello! Yes, you have plenty of options. Some suggestions. First, see the documentation here: https://airvpn.org/topic/14378-how-can-i-get-vpn-servers-entry-ip-addresses/ Then consider how the "remote" OpenVPN directive works. An ovpn configuration file with the following directives, for example: remote-random remote nl3.vpn.airdns.org 443 remote be3.vpn.airdns.org 443 might meet your needs, by connecting your client machine to the entry-IP address 3 (port 443) of the "best" server either in the Netherlands or Belgium. You can edit any ovpn file with a text editor, or enter custom directives while you use the Configuration Generator itself. Kind regards

Hello! Just keep in mind that we have not paid a cent to VPNPro reviews. It's a relevant information. Additionally, this web site seems specialized in VPN for consumers' reviews, but it fails to mention even the most relevant facts for potential VPN customers. Example: which VPN apps send your personal data to third parties without your knowledge and consent is in our opinion a key information, which is totally missing in the web site (check the review of NordVPN, for example: no mention of this fact, which is notorious and well documented, see for example https://www.kuketz-blog.de/android-nordvpn-uebermittelt-e-mail-adresse-an-tracking-anbieter ). In general, we can confirm anytime that nowadays environment of "VPN reviews" web sites is a world mainly aimed to make easy money without any respect for the customer. VPNs are asked to pay for reviews, are asked to pay more for one more star, more visibility, higher rank in one out of dozens of categories, etc. etc. And obviously some of them are very happy to pay, because they do not have and decent code of conduct or any mission but maximizing profits. The fact that AirVPN does not contribute to such disgusting practices is jut a consequence of its mission, even though nowadays it might even look like something to be proud of, instead of normal, honest behavior and good business practice. Kind regards

Hello, if your devices end up to the same OpenVPN daemon of the same VPN server you will have a conflict and the last device on the same daemon will cause a disconnection of the previous one, if you use the same certificate/key pair on all devices, thus triggering a loop of connections/disconnections to each device in case all the devices are assigned the same OpenVPN daemon repeatedly. You can't know in advance which OpenVPN daemon you will connect to. Each daemon lives in its subnet and its CPU core and only the VPN server load balancing system decides, for each new OpenVPN connection, which daemon must welcome a client, according to the lowest load. For such purposes, i.e. every time multiple connections to the same VPN server are required, you should take care to use different client certificate/key pairs on each device. Our accounts control panel makes pairs management fast and easy. Please check also here: https://airvpn.org/topic/26209-how-to-manage-client-certificatekey-pairs/ Kind regards

Hello! That's actually unexpected. Switching networks (even from WiFi to LTE and vice-versa) must not cause problems to Eddie and must not, in general, trigger a lock. Eddie receives the correct messages pertaining to network switching by Android. First Eddie pauses the VPN, and when the new network is operational a new connection is established from the previous paused status, so no leak occurs and no VPN lock is necessary. The above is confirmed by countless tests by us and by testers on a multitude of different devices and Android versions, so when/if you have time, might you send us Eddie log taken just after the problem you mention has occurred? Kind regards

Hello and welcome aboard! Have a look here: https://airvpn.org/topic/14378-how-can-i-get-vpn-servers-entry-ip-addresses/ Now, every server has a rating which is based on a formula which takes into consideration ISP reputation, round trip times between a server and all the other ones, load and available bandwidth. Once a "best" server is computed for EACH zone (country, continent or planet) the various entry-IP addresses are entered into the proper DNS records. Records are updated every 5 minutes while *.airdns.org TTL is 1 hour. Kind regards

Hello! We remind you that this is NOT an issue: each time you have a lock, Eddie has saved you from a traffic leak outside the VPN tunnel. When OpenVPN can't maintain a connection, a common and expected problem in mobility, it can't do anything but quitting and trying to re-connect. Here Eddie enters into play and "saves your ass". No other OpenVPN app has a similar, best effort leak prevention. Keep in mind that no high privilege is allowed to Eddie, so a real leak prevention based on system packet filtering table is not possible (you are not in control of Android lower layer), so this trick is the leaks prevention best effort currently available in Android apps ecosystem. We confirm that next Eddie version will offer the option to disable the lock, which will be useful to those who don't care about traffic leaks. When VPN lock feature is disabled, Eddie will simply try to reconnect just like any other OpenVPN based app does, and you will be able to have all the traffic leaks you wish. Kind regards

Hello! If you install the deb package, Eddie will run the OpenVPN and stunnel version installed in the system. You should upgrade them, as in Ubuntu 16 the OpenVPN version that's available in Ubuntu repositories is 2.3.10. If you run the portable version, Eddie comes packaged with OpenVPN 2.4.6 and anyway you can set (in "Preferences" > "Advanced") the path and name of the OpenVPN binary you prefer. Kind regards

Thanks! I did figure the blacklist/whitelist functionality out, and checked that Signal was being ignored when I opened the VPN connection . So it works when I start the VPN, but after some time Signal stops receiving and sending. As soon as I disconnect the VPN I get a deluge of messages and notifications. If the whitelist/blacklist could be made to work consistently this would be the solution. Too bad it's Signal not working because it's one of those I have to have working at all times. The Eddie app is otherwise nearly perfect. Hello! Understood: you would need that black listed applications are not involved by any lock so that they keep any network functionality regardless any problem with the VPN. It's quite challenging at a first glance! We will think about it. You should not have it because ovpn-connect does not feature a lock like Eddie does. You will be able to mimic this behavior in Eddie 2.1 by disabling the lock, however the big challenge is allowing traffic to black listed apps even when the lock feature is on... Kind regards

Hello! Actually this is unexpected, unless you talk about the Master Password. Can you please make sure that "Remember AirVPN login" is enabled in the "Settings" view? About the Master Password, it must be either required every time you start the app from scratch (and therefore the file with sensitive data must be decrypted) or never (if you only use profiles). Feel free to clarify. Kind regards

Hello! If you define an applications white list, all and only the apps in the white list will have their traffic tunneled. All the other apps will have their traffic NOT tunneled. If you define an applications black list, the apps in the black list will have their traffic NOT tunneled, while all the other apps will have their traffic tunneled. Kind regards

Hello! Eddie locks the traffic when a critical connection error occurs exactly to prevent traffic leaks outside the VPN tunnel. Before you unlock the communications, you can shut down applications etc. Each time you see a lock, Eddie has saved you from a traffic leak. Other applications don't lock the communications, instead they try to re-connect, so you have traffic leaks and you are not aware of them. Preventing line problems is of course physically impossible. However Eddie will prevent the tunnel destruction when the physical connection goes down, by locking the communications to the tunnel, and therefore will prevent traffic leaks in such cases. You have traffic leaks and you are happy because you are not aware of them. Next Eddie version will feature the option to disable the lock feature. When the lock is disabled, Eddie will just try to re-connect asap, just like all the other apps do. In this way you can have traffic leaks and remain happily unaware of them, just like it happens with any other OpenVPN based application now. Disabling the lock feature will not be recommended, but we understand that it may be a useful option when you don't care about leaks. Just turn off the "App power monitor" feature or at least allow (in the settings) your OpenVPN based application to run in the background in any case. See here for more insights: https://phandroid.com/2017/04/26/how-to-stop-galaxy-s8-from-sleeping-apps Kind regards

Well, at least on rooted devices this is not a problem since you are free to change such a behavior. Kind regards

Hello! We are very glad to inform you that this feature is already implemented. Make sure you run Eddie 2.0 or 2.0.1. In the server view you can define a white list of server(s) according to your preferences. This feature is missing but you have the option to sort the servers in many ways, even ways which dynamically sort the list according to some server property, for example server load, as you might have noticed. This feature is already implemented: just make sure that Eddie is the app selected for the proper mimetype (for the ovpn files). However, auto-connection when the ovpn file is imported is missing, we can plan to implement it Nice suggestion, thank you. Even this feature can be implemented, yes. We'll think about it. Thank you! Kind regards

Hello! Unfortunately no dedicated effort by Eddie devs can solve this "problem". Eddie runs with your own privileges in Android, so there's nothing you can do against what the system administrator (which is not you) of your device decides to do. Rooting the device would give you back root access to it, however Eddie is thought for un-rooted devices, since rooting an Android device and maintain it is a procedure which is quite difficult for the average user. That said, the typical manufacturer which decided to freeze background apps (Samsung) provides you with the option to disable such a feature, so in this case the problem you mention can be solved in a few seconds. Kind regards

Hello! Yes, this is expected. It's the purpose of VPN lock: preventing leaks outside the VPN tunnel, within the limits enforced by limited privileges. You need to shut down apps before you start a new connection to prevent leaks. You can't prevent system apps traffic leaks, which would occur anyway in un-rooted devices. By setting system packet filtering rules in the Linux packet filtering table. This is possible only in rooted devices, though. By default Android devices allow only unprivileged access and you're not the administrator of your device. You can't therefore use a firewall to modify the Linux packet filtering table, or access directly Linux parts without passing through the upper Android layers. Yes, this will be possible in the next Eddie version. By disabling VPN lock Eddie will behave just like "OpenVPN for Android" or "openvpn-connect" and many other OpenVPN based applications of our competitors, allowing free leaks at any time. Disable VPN lock only when you can afford traffic leaks outside the VPN tunnel by any app at any time. Unfortunately not, for the same reason explained above: Eddie Android and you are not in control of your system. Kind regards

Hello! Use a profile (that you can generate with our Configuration Generator) and make sure that in the "Settings" view the option "Restore last imported OpenVPN profile" is enabled. If you reboot or turn off the device when OpenVPN is still connected through an imported profile, then Eddie will restart and reconnect to that last profile at the next device boot. Next Eddie version (whose first public beta release is expected on February the 15th) will let you handle multiple profiles at once and will let you generate profiles from settings (so you don't need to use the configuration generator in such cases). Kind regards

Hello! OpenVPN total overhead in routing mode (our setup, using tun and not tap) and with UDP as protocol is 69 bytes per packet (in reality with HMAC SHA-2 which we use it will be slightly more but that's negligible): https://openvpn.net/archive/openvpn-users/2004-11/msg00649.html With a packet, say, of standard 1500 bytes size, that's ~4.6% . Something else must enter into play in your case, because the overhead you report is largely unexpected. Packet retransmission (due to errors), important fragmentation are perhaps the first things to check. Kind regards

Hello and thank you for your feedback and suggestions, they are very much appreciated. We would like to explain why we can't meet all of your requirements. The remaining points are already implemented either in Eddie 2.0.1, Eddie 2.1 (next release), or will be implemented in the future. Good suggestions. thanks. This is extremely hard to implement because you can't really rely on ICMP on mobile networks. A single ping may take hundreds of milliseconds, especially in 3G networks, but even in 4G networks, so you might need hundreds of seconds to compile for all the VPN servers the round trip times with just a couple of pings to each of them. This will drain battery as well remarkably. And for what? A couple of pings in a mobile network, due to its nature, are not relevant. Here we have a different philosophy, since we consider the Master Password a basic security feature to protect your password and your certificates. You can anyway connect at device boot via a profile. Eddie 2.1 will be able to handle multiple profiles and even create profiles from the settings, no need for the Configuration Generator. About automatic AirVPN login, it's already implemented, maybe you have missed this feature. We consider it as a very friendly feature, since it's the only effective way to prevent leaks, which in mobility can be frequent. Anyway this option can be disabled in Eddie 2.1, for those who don't care about traffic leaks outside the VPN tunnel, even permanent leaks, due to their low threat model for example. This feature, available in Android 7.1 or higher versions (while Eddie is targeted even to Android 5.1 or higher versions), might not prevent traffic leaks outside the VPN tunnel during a disconnection-reconnection loop. OpenVPN talks to Eddie, not to Android directly. Then Eddie tells Android that something went wrong. No matter how fast Eddie (or any other app) is to inform the VpnService class, traffic leaks are possible, according to our developers. Again, it depends on your threat model: if you can afford the hazard you will be able to disable VPN lock. Thank you again and enjoy AirVPN! Kind regards