Jump to content
Not connected, Your IP:


  • Content Count

  • Joined

  • Last visited

  • Days Won


Everything posted by Staff

  1. @ellert Hello! You can connect to your Raspberry via SSH or VNC and follow the instructions for Raspberry here: https://airvpn.org/hummingbird/readme/ Make sure to pick the correct binary according to your system distribution architecture (32 or 64 bit). If you need Hummingbird to start at Raspberry's bootstrap, you can enter the command to run it in /etc/rc.local for example. When Hummingbird is not running in a terminal emulator, if necessary you can stop it cleanly via kill, for example: sudo kill `pidof hummingbird` Kind regards
  2. Yes, sorry for the incomplete answer. You need to edit it with root privileges (example "sudo nano /etc/resolv.conf") and restore your favorite nameservers. Kind regards
  3. @Kenwell That's great to know! We reproduced the issue with a Sony Bravia in summer 2019 and we had a document from Sony claiming that it was not considered a bug and no fix was needed because if you don't use a VPN the TV does not reboot (!) After that we did not have any other Sony TV to test and we did not buy any. Thanks for the information! Kind regards
  4. Hello! No doubts, but Hummingbird can't run properly then. However, as we wrote, we will soon propose a daemon which will run even in SysV-init based systems. Kind regards
  5. Not even one unfortunately... but we have a plethora of ARM processors. Another very weird occurrence in your case is that you have LESS throughput with CHACHA20 than with AES, which is unexpected indeed on a non-AES-NI supporting system. Actually we observe the opposite on ARM based devices (better throughput and longer battery life). Let's see whether somebody else can report from some similar system. EDIT: how do you use OpenVPN 3 library in your system? We see a huge boost when compared to Hummingbird, it could be a good starting point to check various things. Kind regards
  6. Hello! You need to resolve this paramount problem first: System has not been booted with systemd as init system (PID 1). Can't operate. Failed to connect to bus: Host is down Debian 10 is based on systemd, failure to start systemd will cause all sorts of problem. The current version of Hummingbird relies on systemd, so if it can't start Hummingbird will not operate correctly, we're sorry. Why is your Debian 10 based distribution unable to boot through systemd? As far as we know Debian 10 is not really usable without systemd. EDIT: Hummingbird "evolution" into a daemon will support SysV-Init based systems. Kind regards
  7. @SurprisedItWorks It's a recognized bug affecting especially Sony TVs. Sony is not fixing it. You would experience the same with Eddie Android edition or any other VPN application, unfortunately. @Xianders APK for Android TV should be side loaded, as the Play Store will not make it available to Android TV because Eddie opens airvpn.org web site in some menu , while Amazon Appstore makes it available for Android TV (different evaluations). Here you can find the link to download the apk: https://airvpn.org/android Kind regards
  8. @muelli Thanks. We failed to reproduce it, but it must be said that we don't have a Celeron at all. Does anybody else observe a 100% CPU load, or anyway high CPU load? If so, at what throughput? Kind regards
  9. @aSystemOverload Quite the contrary in your specific case: Network Lock works just fine. When an Eddie's connection attempt fails, Network Lock remains active. It will be disabled only if you specifically order to de-activate it, or if you close Eddie. Kind regards
  10. @muelli Hello! We have not observed the behavior on our testing machines and it has never been reported before, so it needs to be investigated from scratch. What is your exact Linux distribution? What is the CPU usage if you use AES-CBC and AES-GCM? Kind regards
  11. @bm9vbmUK Hello! Please check here: https://dockerquestions.com/2019/07/07/docker-debian-buster-nftables/ Reading on the article, it seems expected that both iptables-legacy and nftables can not be used in Docker. In such a case, you need to consider manually a "network lock" solution. Classic iptables should have no problems but it is not available in your images as far as we know. By the way, if it is you should install it, make sure to purge nftables, and force Hummingbird to use iptables with "--network-lock iptables" Kind regards
  12. @aSystemOverload If Network Lock does not work it means that your firewall does not work or your firewall rules have been changed with administrative privileges without your knowledge. In both cases you have lost control of your system and you have much more serious problems, we don't see your point. If Eddie can not start, on the other hand, it is trivially obvious that Network Lock can not be enforced, that's not a surprise, again we can't see your point. Kind regards
  13. @ctri Please try to delete completely everything in /etc/airvpn and start again Hummingbird. Kind regards
  14. @dedo299 Hello! You can check whether Hummingbird is running from a task monitor, or simply via a terminal: ps aux | grep hummingbird | grep -v grep If the output is empty, hummingbird is not running. If you see two processes, Hummingbird is running. Kind regards
  15. Hello! Please check the content of /etc/airvpn directory while Huimmingbird is NOT running. Delete the lock file hummingbird.lock if it's there: sudo rm /etc/airvpn/hummingbird.lock Also check whether /etc/resolv.conf file exists, just in case. Please feel free to keep us posted. Kind regards
  16. Hello! Network Lock, which has been implemented for the first time "in history" of software for VPN by AirVPN in 2011/2012, covers all the limited cases foreseen by a kill switch and many more for which a kill switch is impotent. A kill switch features a very modest subset of Network Lock abilities to prevent traffic leaks outside the tunnel which are covered in any case by Network Lock with a more effective method (firewall rules). In other words, a kill switch is a totally wrong approach to prevent traffic leaks outside the tunnel, and anyway its limited abilities to fulfill leak prevention are fully covered by Network Lock. Kind regards
  17. @wintermute1912 If traffic passes through the tun interface it's in the tunnel, so even if you want to reach 3rd parties DNS servers, the queries and their replies are tunneled, it's not a DNS leak. Even worse: in this way you will never find DNS leaks, even if they are really occurring. To verify effectively you need to check traffic from the physical network interface. Unencrypted DNS queries from the physical network interface, if not blocked by the firewall, hint to DNS leaks for real. Kind regards
  18. @YLwpLUbcf77U Hello! https://duckduckgo.com/?q=spoof+timezone+browser&t=ffsb&ia=web Kind regards
  19. @dedo299 Please do it if you have time: download Hummingbird from the link we provided and run it alone from a terminal (no Eddie at all). Make sure to start the correct Hummingbird binary, of course. Check whether the problems you mention are resolved. What problem do you experience exactly when you run Hummingbird via Eddie? Please note whether the same problems occur by running Hummingbird alone. About the learning curve, from what you write we are sure you can run Hummingbird in a couple of minutes already. A GUI for Hummingbird evolution (daemon+client)I is anyway being developed in the very near future. Thank you in advance. Kind regards
  20. @dbuero Outstanding throughput for Windows, congratulations! You did not mention in this thread that you were running Windows, so we assumed that you ran a different system, sorry, we could have made you save a lot of time. Finally Windows should have a driver for a virtual network interface that allows throughput more in line to what you can get with other systems. Eddie 2.18 beta 8 has been planned to support Wintun. We are also following OpenVPN Linux kernel module (currently closed source, but they could decide to release it under some open source license during 2020). Although our servers can already reach line capacity, higher than 1 Gbit/s throughput is achieved only via multiple OpenVPN daemons, one per core. Spread the word about the performance you can get now with AirVPN and Windows! Kind regards
  21. Hello! Thank you for your article. Just a correction on the quoted part. That's not possible because the Tor exit-node does not know your "real" and/or your "VPN" IP address. In general the exit-node receives all the traffic from middle-relays, which in turn receive the traffic from Tor guards (the entry-nodes). As far as it pertains to your purposes, consider the following setup, especially when high throughput is not a priority: connect the host over "OpenVPN over Tor" run a Virtual Machine attached to the host via NAT Tor-ify everything in the VM use end-to-end encryption, exclusively use only VM traffic for any sensitive task The above setup, we think, should meet all of your requirements. Furthermore, the main fault of "OpenVPN over Tor" (fixed circuit) is completely resolved by Tor in the VM. Kind regards
  22. @owi123 Hello! Traffic splitting on an application basis with OpenVPN is possible on Android and Linux (via cgroups, implemented in Qomui, a free and open source software by @corrado). On Windows,the old methods with code injection aimed to bind to specific network interface are extremely dangerous as we always claimed and probably they don't work properly anymore in Win 10. However, whenever binding is possible, you can achieve the purpose on Windows. A community member @NaDre wrote extensively about that and one of his guides is permanently published in our "How-To" forum. https://airvpn.org/forums/topic/9549-traffic-splitting-guide-to-setting-up-vpn-only-for-torrenting-on-windows-thanks-to-nadre/ As usual, you can consider VM too, a heavy but at the same time extremely flexible and secure solution. You connect only a VM to the VPN (not the host), then you run those applications whose traffic must be tunneled in the VPN in the VM, and those applications whose traffic must not be tunneled in the host machine. Kind regards
  23. @dedo299 Hello and thank you for your report! We're sorry, we can't understand how it's possible that the packaged Hummingbird 1.0.2 with Eddie for Mac is different than the official Hummingbird 1.0.2, we will investigate. In the meantime, please delete the Hummingbird version you currently have, download Hummingbird (from GitLab or our web site) NOT packaged with Eddie, put it in your command path and compare whether those problems you mention (which problems? feel free to be specific) are resolved or not. If the problems persist, please also consider to run Hummingbird alone to compare. When Eddie runs Hummingbird, Network Lock and DNS are handled by Eddie and not Hummingbird. When you run Hummingbird alone, of course, Network Lock and DNS are handled by Hummingbird itself. Direct link to download Hummingbird 1.0.2 for macOS (Mojave or Catalina required): https://gitlab.com/AirVPN/hummingbird/-/blob/master/binary/hummingbird-macos-1.0.2.tar.gz Kind regards
  24. @dbuero Yes, on top of that CHACHA20 will not give you any boost if your system supports AES-NI. About AES-128-GCM, it can be beneficial for performance only if the conditions we specified were met. Kind regards
  25. @dbuero Hello! CHACHA20-POLY1305 is available only on the servers running OpenVPN 2.5 beta, you can recognize them marked in yellow with the sentence "Experimental ChaCha20" (one in Canada, one in the USA, two in the Netherlands and one in Singapore). You can safely ignore those warnings - it's important however that you run OpenVPN 2.4 or higher version. Kind regards
  • Create New...