Staff

It works perfectly in all systems. Feel free to open a ticket if you have problems in your system. Kind regards

Good. So there are no problems, right? Kind regards

If ClipGrab binds to the physical network interface of your system then yes, it's possible. We provide the "Network Lock" feature to prevent traffic leaks of this (and any other) kind. Please see also: https://www.clodo.it/blog/an-alternative-approach-to-so-called-webrtc-leaks/ Kind regards

It's for the user's comfort (for example for those users who want to connect OpenVPN over a proxy and want to check whether they have proxy-fied properly or they connect directly). Kind regards

Disable Wayland please. https://airvpn.org/topic/20750-airvpn-not-working-with-fedora-25/ Kind regards

No problems! Not offended at all, quite the contrary. and we are also pleased by your nice feedback. The "wrong conclusions" in our opinion are just caused by the fact that you seem to not consider some parameters in the "quality VPNs" definition. Actually, this looks confirmed by the fact that you explicitly include in "quality VPN" a service which does not meet some of the parameters we cited (and it's not AirVPN! ), so "quality VPN" are not at all "all basically the same". Kind regards

This makes their choice a strong point. If it's a physical or a virtual server is one of the factors defining the speed but there is no written law saying a VPS cannot match the performance of a dedicated server setup. It certainly has it's drawbacks, sure enough. You're not totally right in this point, and not only because a VPS shares the uplink port with an unknown amount of other VPS running in the same host (see below for another important factor). What a VPN service provider based on OpenVPN can do to optimize the throughput once the strongest ciphers for Data and Control channels have been picked consist of many things. Probably the most important ones are: picking datacenters with redundant bandwidth as well as good transit providers to increase likelihood of good peering with consumers' ISPsavoiding overselling. AirVPN is the only consumers' VPN service in the world that has a transparent policy about the "worst case scenario" of bandwidth allocation, with precisely defined guarantees on minimum allocated bandwidth, and a tool, open to everybody, to verify such commitmentconfiguring correctly the VPN server. Please see here to see how big this challenge is when we start talking about 1 Gbit/s dedicated ports: https://community.openvpn.net/openvpn/wiki/Gigabit_Networks_Linuxproviding software which tries to optimize parameters on the client side that are not handled automatically by OpenVPN, for example the socket buffers sizes in Windows like Eddie (our free and open source software) doesproviding software that makes switching protocols and double-tunneling (to circumvent some traffic management or throttling techniques that are nowadays not unusual in most "residential" networks) easy (like Eddie does) So the @larky wall of text is funny and informative, but misses (and for this reason reaches some dangerously wrong conclusion when he/she writes "[Quality VPN] they vary some in "features" and client and software used but they are all basically the same.") the most important activities that a good "VPN provider" must perform with due diligence and competence and whose effects are immediately visible, especially when you see the huge difference between a "good VPN" and a "bad VPN" in performance with identical servers in the same datacenters from the very same testing nodes and same ciphers. And this is only about performance optimization. We will save you from the horrors of security settings of some commonly defined "quality VPNs". These settings are another huge field which is key in the competition between different services like ours. Here we wish and we are proud to underline that, contrarily to most (if not all) so called "quality VPNs", we provide free and open source software client for a variety of systems. Kind regards

Hello! Fixed. Please see here: https://airvpn.org/topic/22214-eddie-2124-released/?do=findComment&comment=59540 Kind regards

@snapz , @trekkie.forever Issue about SSH connection with Eddie 2.12.4 and macOS confirmed. Officially, the fix will be in 2.13. But as an exception, to avoid releasing a new version only for this custom and little fix, we have patched the current 2.12.4 version. Please simply re-download. Nothing has been changed in Windows or Linux builds. Kind regards

Hello! Would you like to share the details if or when you have time? We have already written patches for OpenVPN in the past and we already routinely release our patched version of OpenVPN. It will take time because any new code must be thoroughly peer reviewed to prevent any risk of "injecting" unwanted vulnerabilities, but it's a potential way to go. We are also aware that "patching" something to conform to the bad behavior of something else is highly questionable. Kind regards

Yes, sorry about the typo, the correct link is the one you mentioned. Kind regards

Hello! The SSH configuration files are fine, to connect please follow the instructions here: https://airvpn.org/ssl We don't know about Viscosity, but Tunnelblick does not support OpenVPN over proxy or SSH or stunnel connections, we're sorry. Developers have anyway been informed about the issue in Eddie 2.12.4 and if the bug is confirmed it will be fixed very soon. Kind regards

Hello! This message pertains ONLY Windows + Kaspersky users. If you are a Kaspersky user and you're experiencing low performance and similar issues with any VPN connection (AirVPN or any other) please read here: https://airvpn.org/topic/22207-kaspersky-users-read-here Kind regards AirVPN Staff

EDIT: in light of the news about Kaspersky Patch D, this message can be ignored for the rest of the thread. It pertains to a different Kaspersky problem which causes similar symptoms, but that's nowadays probably totally unrelated to the problem discussed in this thread caused by Patch D of Kaspersky. The solution that's described below applies to markoomg and Gary Ashton's problem and probably not to the other users in this thread. Just for the readers' comfort, from the ticket we see that markoomg problems has been solved. It was caused by a Kaspersky feature, an injection of a javascript script in every web site page performed by Kaspersky itself. This potentially catastrophic security problem has been noted since 2015. See here for example: http://blog.oratronik.org/?p=457 https://www.reddit.com/r/privacy/comments/3frjqw/psa_kaspersky_injects_remote_javascript_into_all/ However, we ignore why only now this has become a problem in browsing. We have an abnormally high amount of tickets about the very same problem, all of them caused by Kaspersky, and all of them written in the last 24/48 hours (nothing before that, so the question is: did something change in Kaspersky default settings?). Kind regards

Then you would need a Master Password to decrypt the normal password, so what is the purpose? Just do not tick "Remember" and the password will not be written at all in the xml file fulfilling your request in an equivalent (or even better) way. A different approach would be encrypting the whole AirVPN.xml file, This could make some sense actually, probably we will discuss in the future about this option. Kind regards

Quite the opposite, it's a good idea. Without remote port forwarding your torrent software can't be contacted. It can only actively initiate connections toward some client which allows incoming connections, therefore performance is impaired and initial seeding is impossible. If all peers in a swarm did not accept incoming connections torrenting would not work at all in that swarm. Kind regards

Hello! We're very glad to inform you that a new Eddie Air client version has been released:2.12.4. Eddie 2.12 includes important bug fixes and many changes meeting users' requests and preferences. Furthermore, some parts have been rewritten to make handling of additional commodities more efficient. For example, curl is now used for any HTTP and HTTPS request, and stunnel "verify" parameter has been again set to 0, to increase likelihood to "bypass" restrictive proxy/firewalls in "OpenVPN over SSL" mode, referring the whole security layer to OpenVPN. 2.12 version is compatible with several Linux distributions. For very important notes about environments, please read here: https://airvpn.org/forum/35-client-software-platforms-environments Please read the changelog: https://airvpn.org/services/changelog.php?software=client&format=html Upgrade is strongly recommended. Just like previous versions, Eddie implements direct Tor support for OpenVPN over Tor connections. Eddie makes OpenVPN over Tor easily available to Linux and OS X users: no needs for Virtual Machines, middle boxes or other special configurations. Windows users will find a more friendly approach as well. This mode is not handled anymore as a generic connection to a socks proxy, but it is specifically designed for Tor and therefore solves multiple issues, especially in Linux and OS X, including the "infinite routing loop" problem (see for example http://tor.stackexchange.com/questions/1232/me-tor-vpn-how/1235#1235 ) As far as we know, Eddie is the first and currently the only OpenVPN wrapper/frontend that natively allows OpenVPN over Tor connections for multiple Operating Systems. https://airvpn.org/tor We recommend that you upgrade Eddie as soon as possible. Eddie 2.12 for GNU Linux can be downloaded here: https://airvpn.org/linux Eddie 2.12 for Windows can be downloaded here: https://airvpn.org/windows Eddie 2.12 for OS X Mavericks, Yosemite, El Capitan and macOS Sierra can be downloaded here: https://airvpn.org/macosx PLEASE NOTE: Eddie 2.12 package includes an OpenVPN version re-compiled by us from OpenVPN 2.4 source code with OpenSSL 1.0.2k for security reasons and to fix this bug: https://community.openvpn.net/openvpn/ticket/328 Eddie overview is available here: https://airvpn.org/software Eddie includes a Network Lock feature: https://airvpn.org/faq/software_lock Eddie 2.12.x is free and open source software released under GPLv3. GitHub repository https://github.com/AirVPN/airvpn-client Kind regards & datalove AirVPN Staff

Hello, watch out, your server is misconfigured, here: . 2017.03.13 15:47:36 - OpenVPN > Option 'explicit-exit-notify' in [PUSH-OPTIONS]:1 is ignored by previous blocks Here: . 2017.03.13 15:48:29 - OpenVPN > WARNING: INSECURE cipher with block size less than 128 bit (64 bit). This allows attacks like SWEET32. Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC). and finally you are not authorized to access it: . 2017.03.13 15:48:37 - OpenVPN > AUTH: Received control message: AUTH_FAILED,LICENSE: Access Server license failure: maximum concurrent_connections exceeded (2) Kind regards

Actually not, the problem seems to lie with the tun/tap interface. Please follow LZ1 recommendations, including the suggestion to set the adapter to "Always connected", to fix and test again. Kind regards

Version 2.12.4 (Sun, 12 Mar 2017 19:39:02 +0000) [new] macOS - DMG disk installer flavor[change] Sorting by location now consider also the country[change] Linux - cacert.pem in /usr/share/AirVPN in .deb/.rpm edition[new] Automatically add OpenVPN generic provider if /ovpn directory exists[change] stunnel 'verify' new default value[new] CLI "--version" and "--version.short" commands[bugfix] macOS - Logging on file checkbox[bugfix] macOS - PKG installer version

Hello, fixed in 2.12. To download latest beta version please see here: https://airvpn.org/topic/22016-eddie-212beta-released/ Kind regards

Eddie has nothing to do with it. After having installed the tun/tap driver and checked that it's there, Eddie does not use it. The tun/tap interface is used by OpenVPN. Kind regards

Why do you think that a connection to a VPN should be hidden to a final service? A couple of thoughts to start an intriguing discussion, if you wish so. If a final service discriminates against Tor and "consumers VPN with a gateway to the Internet" it may mean that it has some interest in infringing human rights (privacy is one of the most fundamental rights) for some reason, for example exploiting you as a product by selling your personal data or even for more sinister aims. If the final service does that to mitigate frauds, it's its right, and it means that it considers you a criminal just because you care to effectively exercise your fundamental right. On top of all of the above, whatever the reason is, a service that acts like that is an active enemy of the Internet, because it happily violates the founding and critical end-to-end connectivity principle. Kind regards

OpenVPN can not be updated in the XP package, because it can't run anymore in Windows XP. We are dropping support to Windows XP which has been abandoned (lmainstream support ended in 2009, extended support ended in 2014). Kind regards

Hello, can you please check (just in case...) whether it starts minimized? Look for the tray icon (a tiny cloud in a circle) on the right side of your top Desktop bar. If it's there, Eddie is running, try to click the tray icon and select "Show Main Window" (i.e. just like you do to bring up a window of a minimized application). If it's not there, please try to run Eddie from a terminal ("sudo airvpn -cli") and report back the output at your convenience. See also https://airvpn.org/topic/11541-command-line-edition-and-syntax/ Kind regards