Staff

Yes, that's definitely interesting (and surprising). If you wish to help us reproduce the issue, please send us a system report (in a ticket). Kind regards

It depends also on the complexity of the problem. Usually from 1 minute to a few hours in working days, up to 24 hours in non-working days. Kind regards

The argument is that Network Lock was never meant to prevent DNS leaks. It could do that coincidentally in Eddie 2.10 or older versions (by blocking IPv6 outgoing DNS queries), but that's irrelevant in this context. In Eddie 2.11, it is true that WFP is used in an attempt to prevent DNS leaks, but that's unrelated to Network Lock. From the output of ipconfig you posted, all of your interfaces are set with VPN DNS in both cases, so no DNS leak is possible, Network Lock or not. Please open a ticket including a system report and screenshots of the alleged leaks for further investigation. Kind regards

Please clarify, you say a thing and the opposite of it. Also post "ipconfig /all" output taken when the problem has just occurred. Kind regards

Currently not, we're sorry. We never liked the fact (even in the 90ies when NSA appeared much less "malignant" than now) that IPsec development has been led by NSA and that it runs in kernel space. Performance is not inherent to IPsec (OpenVPN can easily near-match IPsec) but depends on several other factors, including ciphers. Kind regards

The problem is currently not reproducible. Check the router, maybe you have some ICMP limit on the router packet filtering/inspection tool. Kind regards

Shut down Eddie first if you want faster system shut downs. Kind regards

Hello! We regret to inform you that the server Thuban (FR) has been withdrawn due to inability of the datacenter to meet our technical requirements. Currently, we have decided to momentarily drop France. The current legal framework on data retention can be interpreted as an obligation to extend logging of various traffic information by the datacenters, since it covers "hosting providers". Although this obligation, according to our inquiries, has remained quite theoretical so far at datacenter levels, we deem appropriate to not expose our customers to such risks. We will add in the next days servers in Belgium, where data retention laws have been canceled since last year and the legal framework on data protection and privacy does not infringe human rights. Kind regards AirVPN Staff

Hello! Can you please check all of your firewall rules? Maybe you have a rate limit on ICMP. In Ubuntu, ufw is active by default, so you might like to check ALL the iptables rules (or the ufw full configuration). If in doubt, feel free to send everything to us in a ticket. Kind regards

Hi LZ1, please see here: https://en.wikipedia.org/wiki/Binary_prefix Kind regards

Hello! Can you please specify and describe such bugs. and the way to reproduce them? Kind regards

Hello! Please re-download the "Experimental" version, you will find Eddie 2.11.7beta. Changelog from 2.11.6 (update to the changelog page imminent): - [bugfix] Fixed the zlib1.dll dependencies under Windows - [bugfix] OS X - Fixed the old openvpn version in .pkg (installer only) - [new] Windows / Linux - New option IEC. Kind regards

New version 2.11.6beta is now available. Changelog from 2.11.5beta: Version 2.11.6 (Wed, 16 Nov 2016 10:11:44 +0000) [change] OpenVPN 2.3.13 built with OpenSSL 1.0.2j[new] Linux - Eddie/openvpn/stunnel compiled also for armv7i architecture (Raspberry)[change] Dump of OpenSSL version within OpenVPN in logs[change] stunnel 5.37 built with OpenSSL 1.0.2j[change] Linux - Management for files with immutable flag[bugfix] Windows - Rarely crash at boot (WFP xml dump file not found)[bugfix] Parser fix for profile with a dot in the path[bugfix] Linux - SparkyLinux (and probably other distros) fix (issues related to libMonoPosixHelper.so)[new] Linux - Check for multiple instances (already implemented in Windows in 2.11.1)Kind regards

Hello! We're very glad to inform you that a new 1 Gbit/s server located in Germany is available: Adhara. The AirVPN client will show automatically the new server, while if you use the OpenVPN client you can generate all the files to access it through our configuration/certificates/key generator (menu "Client Area"->"Config generator"). The server accepts connections on ports 53, 80, 443, 2018 UDP and TCP. Just like every other Air server, Adhara supports OpenVPN over SSL and OpenVPN over SSH. As usual no traffic limits, no logs, no discrimination on protocols and hardened security against various attacks with separate entry and exit-IP addresses. Do not hesitate to contact us for any information or issue. Kind regards and datalove AirVPN Team

Hello! We're very glad to inform you that a new 1 Gbit/s server located in the Czech Republic is available: Markab. The AirVPN client will show automatically the new server, while if you use the OpenVPN client you can generate all the files to access it through our configuration/certificates/key generator (menu "Client Area"->"Config generator"). The server accepts connections on ports 53, 80, 443, 2018 UDP and TCP. Just like every other Air server, Markab supports OpenVPN over SSL and OpenVPN over SSH. As usual no traffic limits, no logs, no discrimination on protocols and hardened security against various attacks with separate entry and exit-IP addresses. Do not hesitate to contact us for any information or issue. Kind regards and datalove AirVPN Team

Hello! We're very glad to inform you that two new 1 Gbit/s servers located in Switzerland are available: Baiten and Hamal. The AirVPN client will show automatically the new servers, while if you use the OpenVPN client you can generate all the files to access them through our configuration/certificates/key generator (menu "Client Area"->"Config generator"). The servers accept connections on ports 53, 80, 443, 2018 UDP and TCP. Just like every other Air server, Baiten and Hamal support OpenVPN over SSL and OpenVPN over SSH. As usual no traffic limits, no logs, no discrimination on protocols and hardened security against various attacks with separate entry and exit-IP addresses. Do not hesitate to contact us for any information or issue. Kind regards and datalove AirVPN Team

Hello! We regret to inform you that our server Arneb in Switzerland has been withdrawn. Unfortunately the datacenter did not meet anymore out technical requirements about uptime. Arneb will be replaced in the nearest future by an additional server in Switzerland in a different datacenter. Kind regards AirVPN Staff

Have you tested alternative entry-IP addresses? It's easy to block all the VPN servers entry-IP addresses because they can be taken just by resolving one name. Alternative entry-IP addresses, instead, are not public and "the censorship lovers" would need to generate a configuration file for each server to get them all. At least you would make them earn properly the money they get to censor your school connections. Kind regards

Remotely forwarded ports are not logged. The information about them is lost when you un-forward (cancel) them. But you need to remember to do so because otherwise those ports will remain reserved to your account, for your comfort. Kind regards

Yes, the "Seamless tunnel" option was lately implemented in "openvpn-connect" for iOS application. Kind regards

That's not a leak, PacSwitch datacenter houses one of our Hong Kong servers. DNS leaks are especially dangerous in countries controlled by human rights hostile regimes, because by sending out in clear text a DNS query, your ISP (and anybody wiretapping your line) can see which domain names you want to resolve (therefore the web sites you plan to access and so on). Kind regards

@annon3876 In addition to NaDre and go558a83nk suggestions, please make sure that your tun interface name is correct. Verify with command "ifconfig". On several DD-WRT builds the default interface name is tun1, not tun0. Error 111 means that the packets are actively refused by your system. Do not forward ports from the router web panel. If you do so, you might expose your system to correlation attacks. You need to forward packets from tun interface, which is not affected by the port web panel of the router. Kind regards

Please check here https://airvpn.org/services/changelog.php?software=client&format=html and here https://airvpn.org/topic/18625-eddie-211beta-available/ Kind regards

We have 62 servers in North America, so if you wish to provide more useful information to the readers (or even a head-up to us) you might like to specify which server or servers you talk about. Kind regards

Hello! For the readers (the OP has been already informed via ticket) with ppp we have a very special situation: Please see http://blog.wsensors.com/2011/04/openvpn-and-ppp-on-linux-vpn-traffic-forwarding-default-gateway-fix/ where you will find a manual fix as well. Kind regards