Staff

Amazingly good for a TCP connection from a Windows machine. Test OpenVPN over SSL as well. Kind regards

Hello! Please make sure to run Eddie 2.11.x beta, because Eddie 2.10.3 is not compatible with Mono 4 and will pose a variety of issues on Ubuntu 16.04. https://airvpn.org/topic/18625-eddie-211beta-available/ Kind regards

Connection modes with destination port 1194 are available only in 2.11.x, not in 2.10.3 or older versions. Re-upgrade to 2.11.3 and anyway keep driver 9.21.2. Maybe a combination of bad peering, congestion and traffic shaping enforced only on certain peak times. Of all the modes you tested, you missed the "OpenVPN over SSL/TLS", test it as well. The fact that you don't see any difference between UDP and TCP, however, hints to traffic shaping. because if the network was really agnostic, and any other condition is the same, there would be no way to reach the same performance of UDP with TCP. Note: it remains to be seen what performance the new tun/tap drivers can handle with the tun interface. The old 9.9 ones could not beat 100-110 Mbit/s on Windows (this peculiar limitation affected only Windows, of course), while 9.21.0 and 9.21.1 are bugged, so we recommend that you rely only on 9.21.2. Anyway 170 Mbit/s on the tun/tap interface looks like a very good performance in Windows. Kind regards

"Allowing" does not mean "no shaping". Anyway please test port 1194 (the "officially reserved to" OpenVPN port) to check whether there's any performance improvement. Also test with sockets buffers forced to 256 KB and 512 KB (verify on the client logs what your system currently sets). In Windows, the sockets buffers sizes should not be set to "Automatic" by default: which Eddie beta version are you running? Did you manually set them to "Automatic" (even in some past version of Eddie)? Finally post all the logs of a single connection, just in case there's some useful clue. Kind regards

What MTU do you refer to? tun MTU is 1500 bytes and can't be modified unilaterally, of course. Ethernet MTU is 1500 bytes as well, are you in a jumbo-frames supporting network? See also https://en.wikipedia.org/wiki/Maximum_transmission_unit Kind regards

Hello! For practical purposes, Windows tun/tap driver versions "9.0.0.x.y" are defined as "9.x.y" (i.e. the ".0.0" is stripped out). Driver 9.21.0 and 9.21.1 are problematic and should not be used anymore. However, driver 9.21.1 is still included in Eddie 2.10.3 package. Driver 9.21.2 fixes a lot of issues and is included in Eddie 2.11.x package (currently in public beta testing). Driver 9.9.2_3 appears to perform very well on every Windows version, except Windows 10, for which we have reports of compatibility problems. Kind regards

Hello! In your case the problem appears different: route check and DNS check do not even start because the connection can not be established. Something is blocking UDP and/or OpenVPN packets, according to the logs. Before anything else please check any packet filtering tool, both on your system and router. Kind regards

Hello! Either that's not the hosts file used by the system or you didn't save it after the edit (we see it's "Locked" according to the editor). Kind regards

Hello, please add the line: 127.0.0.1 localhost anywhere in the hosts file. Kind regards

If content providers made an effort to make content available everywhere there'd be fewer people stealing it. Copyright infringement has nothing to do with stealing, because copyright is not a property but an enforced monopoly that grants exploitation and rights (with limitations and exceptions) of an original intellectual work. In most legal frameworks, stealing and copyright infringements with profit purposes are completely different criminal infringements, while copyright infringement without profit purposes is a civil offense, not a criminal infringement at all. Maybe your demented definition has been encouraged or influenced by the campaign of some copyright enforcement agencies which preferred to make confusion in advertising campaigns clearly targeted to ignorant people. Kind regards

Hello! There an inconsistency between your claims and your system claims. Both can't be true at the same time: Kind regards

Unfortunately it's not possible for anyone to provide you with proper help. At least, logs taken after the problems occurred are strictly necessary. Since you all have in common Windows usage, first of all do the following, and then let's start over troubleshooting with logs and relevant information on your systems. Also we must underline that your description of the problems is confused, contradictory and seems to be mixing different, overlapping problems. make sure that your network interface driver as well as your router firmware are up to dateupgrade to Eddie 2.11.3 beta, which will automatically upgrade tun/tap driver to version 9.21.2 (older versions can cause various problems, including those which you describe)make sure that you do not run any third party network managermake sure that you do not run antimalware tools, "security suites" and all that jazz (disable them momentarily for your tests)Note: release of Eddie 2.11.4 beta is imminent: upgrade to Eddie 2.11.4 when available. Kind regards

Hello, from what we can see in the screenshot your system can't resolve the name "localhost". Your hosts file has been somehow modified incorrectly. Please fix by inserting the line: 127.0.0.1 localhost as first line of the hosts in your hosts file. Instructions on how to edit the hosts file in your Operating System can be found by using any web search engine (if in doubt, tell us your exact OS version). Side note: please never send logs in pics, send text instead. Kind regards

Thanks - but I dont understand exactly; what should I look for in resolv.conf? The name servers. Set the first nameserver to 10.4.0.1, with the line: nameserver 10.4.0.1 when connected to the VPN. You might also like to answer to zhang requests for additional investigations. Accepting DNS push on systemd based systems poses different issues than in initd based systems. Alternatively just run Eddie 2.11.3 beta, it directly and automatically manipulates resolv.conf Kind regards

Hello, please explain the meaning of this sentence. What directives did you enforce? If it has something to do with mssfix, note that unless you have fragmentation you must NOT limit TCP sessions packets sizes inside UDP. If you have no fragmentation, that will only harm performance, not improve it. Try larger OpenVPN buffers sizes, alternative connection modes, different servers in various locations and if you run Windows take care to use tun/tap driver 9..21.2, latest available driver for your physical network interface and no third-party packet filtering tools and network managers. If your problem persists include connection logs and system report, without them it's hard to say anything else. Kind regards

Hello, yes, it's obvious that if you want maximum performance you must disable uTP. uTP purpose is to cap/limit/throttle in various refined ways the bandwidth your system reserves to p2p. In the VPN the shaping effects can be amplified. Kind regards

Hello! @Milou13 You are probably running a Kali version with Mono 4 package. Eddie 2.10 is not compatible with Mono 4. Run Eddie 2.11.3 beta, which is fully compatible. @highchilled There are no DNS leaks in Linux. Check resolv.conf https://airvpn.org/topic/18625-eddie-211beta-available/ Kind regards

Hello, thanks zhang and everybody. ipleak.net maintainers are now aware of the issue. Kind regards

Hello, about Eddie, you should run Eddie 2.11.3 beta, because Eddie 2.10.3 is not compatible with Mono 4. Additionally, have a look at libgdiplus bug which affected older openSUSE versions, just in case the bug has not been fixed Probably it has, but from your description it's worth a check anyway, because the issue somehow reminds that bug. https://airvpn.org/topic/11573-opensuse/ On top of that, a major issue in openSUSE was that Eddie started but without root privileges if Mono was not installed, so it's safer that you manually check (and resolve if necessary) dependencies. Kind regards

@AN566 Hello! This is a misconfiguration on a few servers which will be fixed probably during this day. Thank you. Kind regards

Your router can't resolve that, the message is quite self-explanatory. Check DNS or use only IP addresses to make names resolution unnecessary when not in the VPN. Kind regards

Hello, try to specify the full path to ca.crt in airvpn.conf file. Kind regards

Eddie 2.10.3 is unable to restore previous DNS settings if one or both DNS are previously omitted in the network interface and some other concurring circumstance is satisfied. Upgrade to 2.11.3 beta where this bug has been fixed. Kind regards

Hello! It looks like a matter related to sockets. . Also consider DNS caching by Firefox. The browser (but this behavior might change on different Operating Systems) might still be using some "old" socket, when your system had a different default gateway, a different routing table, different DNS settings and even an additional network interface When you restart the browser you get rid of all of the above. The behavior you describe has been successfully reproduced on various GNU/Linux systems (for example Debian 7 and 8) and is considered perfectly normal. Kind regards

We were talking about Windows. There is a specific bug (or a series of bugs) in OS X which makes things more confused. Try this, it's worth a test: http://osxdaily.com/2015/10/16/fix-wi-fi-problems-mac-os-x-el-capitan/ The post for Windows is useless for you, anyway here it is for the Windows readers: https://airvpn.org/topic/17037-cannot-log-on-to-any-servers/?do=findComment&comment=38862 Give us a way to reproduce this behavior first. Until then, we must assume it's not an Eddie bug. This does not mean that Eddie is not bugged, just like any software. Have a look at the changelog to see the amount of bugs which have been fixed and surely more bugs will be discovered. But a bug is considered real only when it is reproducible. Mono is bugged as well, so this pragmatic but scientific approach is strictly necessary, otherwise we would be hunting ghosts and talking about the sex of angels, with effects that would impair or even stop Eddie development. King regards