Staff

Hello, please test an "OpenVPN over SSL" connection to port 443. In Eddie menu "AirVPN" > "Preferences" > "Protocols" untick "Automatic" and select "SSL - Port 443 - Alternative entry-IP" (the row will be highlighted in blue). Click "Save" and start a new connection to apply the change. Kind regards

Hello! DNS leaks do not exist in GNU/Linux. About your issue, please have a look at this pinned topic: https://airvpn.org/topic/22715-leaking-dns-with-ubuntu-1704/ Kind regards

Hello, disabling IPv6 might be too problematic in some circumstances, and in general it's an overkill solution. Setting two or three ip6tables rules is a much more practical approach, and of course it is faster, you just need a second. Network Lock feature does that, in case you run Eddie for GNU/Linux. Kind regards

Hello, the micro-routing has been modified accordingly, can you please try again? Kind regards

Hello! We're very glad to inform you that a new 1 Gbit/s server located in Sweden is available: Norma. The AirVPN client will show automatically the new server, while if you use the OpenVPN client you can generate all the files to access them through our configuration/certificates/key generator (menu "Client Area"->"Config generator"). The server accepts connections on ports 53, 80, 443, 1194 and 2018 UDP and TCP. Just like every other Air server, Norma supports OpenVPN over SSL and OpenVPN over SSH. As usual no traffic limits, no logs, no discrimination on protocols and hardened security against various attacks with separate entry and exit-IP addresses. Do not hesitate to contact us for any information or issue. Kind regards and datalove AirVPN Team

Hello! We had a problem with the update of the eddie.website LetsEncrypt certificate which has been solved just a few hours ago. We apologize for any inconvenience. Kind regards

Hello, that's technically impossible, simply because Eddie never handles and never handled any VPN tunnel, which remains up to OpenVPN. Eddie just creates the exact, identical configuration directives which is also created by the Configuration Generator, and passes them to OpenVPN. Under OpenVPN point of view, until you don't talk to the Management (for example by clicking "Disconnect" button) there is no difference between being run directly by root with a CG ovpn, or by Eddie, provided of course that you order the same directives both in Eddie and in the Configuration Generator. Under Debian, Eddie does not even tell OpenVPN to modify buffers in any pre-determined way, by default. Kind regards

Hello, we use our own DNS servers, not OpenNIC ones. Our DNS servers resolve names in ICANN, OpenNIC and NameCoin name spaces. If an authoritative DNS is slow to respond to our servers, there's not much we can do (we could evaluate some more caching or things like that, but not something really resolutive). Kind regards

We don't pay at all for reviews.

Hello! As you are probably already aware, according to the ongoing renewal of hardware in our infrastructure, the following servers will be withdrawn during June the 30th 2017: In Germany: Aquilae - Menkib - Seginus - Tauri - Velorum - Wezen In Singapore: Aries The aforementioned servers have been already replaced by 6 new servers in two datacenters in Germany: https://airvpn.org/topic/23234-six-new-1-gbits-servers-available-de/ and by 4 new servers in Singapore: https://airvpn.org/topic/23219-four-new-1-gbits-servers-available-sg/ Kind regards and datalove AirVPN Staff

Yes, with a likely change into "AIRVPN DI PAOLO BRINI" in the next versions. Kind regards

Hello! No, usually we do not monitor the community forums. Moderators do that. Momentarily you need to look at the source code. Explanation on Network Lock with Windows Filtering Platform will be posted in the future. Kind regards

That's expected, normal, ordinary and correct. We recommend that you get informed about how ARP works. Kind regards

Please upgrade to Eddie 2.13.2beta. Kind regards

Today Stefano Rodotà left us. He was a co-writer of the Charter of Fundamental Rights of the European Union, which several years later became a binding, legal document for all EU Member States, and a member of the Council of Europe. Between 1998 and 2005 he was the first Data Protection and Privacy Authority supervisor in Italy, a country which never had such a public body, and between 1998 and 2002 he was the President of the Data Protection Supervisors coordination group in the European Union. In spite of limited funds and power, through his energy and incredibly lucid and competent vision, he sowed the seeds of public awareness on the importance of data protection and privacy and established an operative framework which has been successfully followed by his successors. Just to recall a tiny gem, without Rodotà's work the historical decisions, by courts and by the Data Protection Authority, establishing the illegal behavior of the Peppermint company in the homonym case and sentencing the beginning of the end of the copyright trolls activities in Italy and Europe, would have been much more difficult in 2008. It is impossible to mention here all the countless activities Mr. Rodota's was involved in during his life. For us he was first and foremost a Champion of freedom and fundamental rights. Goodbye Mr. Rodotà, you have been, you are and you will be a source of inspiration and strength for us in the pursuit of our mission. The AirVPN founders

Thanks, we have had enough suggestions. In practice, any country in the world has been suggested with just a few exceptions. Locking thread. Kind regards

Hello, Guido Vranken's job has been remarkably good, surely better than QuarkLabs audit funded by OSTIF donors (including AirVPN). Even the scientific and pragmatic approach of Vranken has proved to be substantially superior. It's important to know that there is no vulnerability that affects us except one: through an exploit of a vulnerability, OpenVPN daemons can have memory leaks which on the long run may cause problems to the whole system - even a crash needing a reboot. That would be of course most annoying therefore we are speeding up upgrade of OpenVPN on the servers. Kind regards

Hello! The error The requested protocol has not been configured into the system, or no implementation for it exists is thrown when IPv6 is disabled in the OpenVPN network interface. Eddie 2.13.2 (due to be released in a few days now available) will manage this situation correctly without errors. In the meantime, please enable IPv6 on OpenVPN network interface: Open Network and Sharing Center -> Change adapter settings -> right click on 'TAP-Windows Adapter V9' interface -> enable TCP/IPv6. It's fine to disable IPv6 in other networks, because AirVPN doesn't support IPv6 traffic. But there is no real reason to disable it on the tun/tap interface. Kind regards

Hello! We're very glad to inform you that six new 1 Gbit/s server located in Germany are available: Cervantes, Errai, Ogma, Lepus, Libertas. Perseus. The AirVPN client will show automatically the new server, If you use the OpenVPN client you can generate all the files to access them through our configuration/certificates/key generator (menu "Client Area"->"Config generator"). The servers accept connections on ports 53, 80, 443, 1194, 2018 UDP and TCP. Just like every other Air server, they also support OpenVPN over SSL and OpenVPN over SSH. As usual no traffic limits, no logs, no discrimination on protocols and hardened security against various attacks with separate entry and exit-IP addresses. Please note that these servers will replace older servers in Germany. Some of the older Germany servers will be withdrawn at the end of June 2017, according to our plans of hardware renewal and lines improvements. Do not hesitate to contact us for any information or issue. Kind regards and datalove AirVPN Team

Hello! For a precise choice we explained several times in the past. Feel free to search the forum. This is questionable, especially since you don't specify parameters. In 2007 Schneier expressed some doubts about NSA backdoors in ECC, and we have always followed a vary conservative approach against NIST-recommended ECs. Later in 2013 the documents revealed by Snowden showed that backdoors were indeed implemented by NSA in the ellyptic curve bit generator Dual_EC_DRBG, and that a vast program to implement backdoors on various ciphers and have those very ciphers approved as standards was active in NSA. Therefore facts proved that we were right, and any conservative approach is not a bad thing. See also... the suspicions: https://crypto.stackexchange.com/questions/10263/should-we-trust-the-nist-recommended-ecc-parameters https://www.wired.com/2007/11/securitymatters-1115/ and the first paramount revelation: https://en.wikipedia.org/wiki/Dual_EC_DRBG About your last question on overhead time, this becomes very relevant in packets verification. Currently there is no reason to add a significant computational burden (which would be relevant on the server side as well) on the Data Channel by shifting from HMAC SHA1 to, for example, HMAC SHA384, even if OpenVPN supported it on the Data Channel (and it doesn't). Kind regards

Hello! We're very glad to inform you that four new 1 Gbit/s server located in Singapore are available: Auriga, Circinus, Delphinus and Hydra. The AirVPN client will show automatically the new server, If you use the OpenVPN client you can generate all the files to access them through our configuration/certificates/key generator (menu "Client Area"->"Config generator"). The servers accept connections on ports 53, 80, 443, 1194, 2018 UDP and TCP. Just like every other Air server, they support OpenVPN over SSL and OpenVPN over SSH. As usual no traffic limits, no logs, no discrimination on protocols and hardened security against various attacks with separate entry and exit-IP addresses. Please note that two of the older Singapore servers will be withdrawn at the end of June 2017, according to our plans of hardware renewal and lines improvements. Do not hesitate to contact us for any information or issue. Kind regards and datalove AirVPN Team

Hello! It is disabled by default. You must have enabled it. Of course you can disable it whenever you wish. Anyway, this has nothing to do with the fact that we do not inspect, analyze or store your traffic type and/or details and/or content, obviously. Kind regards

Please see https://airvpn.org/specs

For the readers: resolved. Customer was running a competing firewall simultaneously. Kind regards

Hello! All the persons who experience this problem can test Eddie 2.13beta now. Kind regards