12 hours ago, copykitty said:

https://dnsviz.net/d/airvpn.org/dnssec/

There are dangling DS records. Breaks DNSSEC for strict resolvers.

Hello!

It's all pre-defined by GoDaddy and nothing can be configured on our side, unfortunately. We will query GoDaddy and warn them about the issue. We own and control authoritative DNS for almost all of our domain names but not for airvpn.org. to add redundancy.

Kind regards
 

16 hours ago, rkp said:

I set permanent Windows Filtering Platform rules that block outgoing traffic, except traffic to the local network and for DHCP purposes.But now of course no connection to AirVPN is possible. How to deal with this? 

Hello!

Already explained in the previous post: enable Network Lock to allow connections to AirVPN infrastructure.

Kind regards
 

Hello!

Thank you for the feedback!
 

7 hours ago, 477277 said:

why does operating 20 tor nodes cost 6k per year?  Shouldn't it be like, I don't know, way less?

That's our contribution to cover the expenses. Just check the price for each 10 Gbit/s full duplex unmetered dedicated line for 1 year to get an idea of expenses for the network traffic, then also consider the depreciation of 20 servers and their maintenance (hardware replacements, manpower maintenance hours...) over the years. It's not like managing a VPS with a few TB per month and a few Mbit/s shared line, and we're talking about exit nodes.

Kind regards
 

1 hour ago, almarateogoza said:

it SOMETIMES switches the IP address to some random country that isnt even owned by airvpn (from whois info). This makes no sense since i have only one peer configured that is to a single airvpn server.

Does anyone have any idea how to fix this? I have problems with my private tracker

Hello!

If the private tracker IP address ended inside some geo-routing for whatever reason (accessibility, or because it is inside some address block that necessitates geo-routing) this behavior would get an explanation. Please disable geo-routing on your AirVPN account DNS panel by switching "AirVPN anti-geolocation system" combo box to "Not active", start a new connection and verify whether the problem disappears or not. 

Kind regards
 

@discov

Hello!

We removed the files attached to your message because they contained your private key. You should proceed to renew it immediately from your AirVPN account "Devices" panel.

After that, in order to generate a configuration working with tls-auth, on the Configuration Generator simply select entry-IP address 1 after you have turned on the "Advanced" switch and you have selected "2.4" on the "Ovpn profile" combo box.

Kind regards
 

14 hours ago, 183aTr78f9o said:

@Staff
Are NixOS packages planned at some point, after the stable version is released? Just curious.

Hello!

The Suite distribution concept avoids any specific package manager for their excessive proliferation. Most of these package managers are incompatible with each other. We count nowadays 18 package managers on 800+ different distributions. Development team is committed to offering exclusively tarballs and an installation script written in sh to ensure compatibility with a wide range of distributions. 

Kind regards
 

@discov

Hello!

Thank you very much.

OpenVPN 2.4 is the oldest supported version but you can try to use 2.4 profiles and a connection to entry-IP address 1 to avoid tls-crypt which is not supported by 2.3.x but it is mandatory on entry-IP addresses 3 and 4. Entry-IP addresses 1 and 2 still support tls-auth, supported by OpenVPN 2.3 as well.

Also consider that OpenVPN 2.3.7 is affected by many bugs which can potentially interfere with the connection. Please try to upgrade, if possible, to OpenVPN 2.3.17, the latest release of 2.3 branch:
https://community.openvpn.net/Changelogs/ChangesInOpenVPN23

If it is not possible to upgrade and you see from the log that the failure is caused by something related to IPv6, consider to disable IPv6 and refuse the IPv6 related push; you have this option on the Configuration Generator, or you can simply delete the following directives from the configuration file:

push-peer-info
setenv IPV6=yes

Kind regards
 

On 5/25/2025 at 4:43 PM, Monar11 said:

Run an FTP service on a different port.

Hello,

addition, FTP servers need special configuration care due to data port allocation:
https://airvpn.org/forums/topic/1700-ftp-server-and-client-on-air-vpn/?do=findComment&comment=1702

Kind regards
 

44 minutes ago, alcatraz3333 said:

I try to open some ports and no one of them work. They are all closed and it gives me a timeout error. How to fix this?

Hello!

Please follow this preliminary checklist first and then report back:Kind regards

 

Hello!

Today we're starting AirVPN 15th Birthday celebrations with big discounts on longer term plans.
 

From a two servers service located in a single country providing a handful of Mbit/s, the baby has grown up to a wide infrastructure in 23 countries on four continents!

AirVPN is now one of the few major consumer VPNs that is still independent. In other words, it is not owned by large corporations with diverse interests that interfere through editorial publications or conflict with privacy protection.

Since our 14th birthday celebration, our customer base has grown impressively, and we would like to thank all the old and new customers who chose or confirmed AirVPN.

AirVPN has focused on comprehensive enhancements, including:

• line and server expansion to accommodate the outstanding customer growth. The infrastructure can now deliver up to 970,000 Mbit/s. Compared to the 694,000 Mbit/s available in May 2024, this is a 39.7% increase in a single year
• yet another thorough rewrite of remote inbound port forwarding logic to offer greater convenience and true scalability. The new implementation was designed to meet the growing demand for remote inbound port forwarding
• the unlimited traffic quota for every and each customer subscription plan has never been modified

 

On the software side:

• all AirVPN applications and libraries are free and open source software released under GPLv3
• new, greatly improved Eddie Desktop and Eddie Android editions
• Eddie Android edition implements a new community request: an opt-in GPS spoofing feature integrated with the infrastructure in order to provide coordinates consistent with the location of the VPN server the device is connected to
• Eddie Desktop edition new version included several bug fixes and the new CLI edition is built on .NET7. Thus, it no longer needs Mono (Linux, macOS) and is built without Xamarin (macOS)
• the development of traffic splitting features on an application basis, already available in AirVPN Eddie Android and Android TV edition, and implemented on the AirVPN Suite for Linux last year, has been improved together with the new Suite features during the year long internal and community tests
• the OpenVPN3-AirVPN library is actively maintained as usual.

If you're already our customer and you wish to extend your stay, any additional subscription will be added to your existing subscriptions and you won't lose any days.
 

Check the promotional prices here: https://airvpn.org/buy

 

 

Kind regards and datalove
AirVPN Staff 

2 hours ago, jcharley said:

I have used the config generator and opened the port in airvpn, however my issue is that I am not connecting to the server that I selected when using the config generator.

Hello!

A possible explanation: some docker instances such as GlueTun offer an AirVPN integration and ignore parts of the OpenVPN or WireGuard profile. Please check whether this thread applies to your case:
https://airvpn.org/forums/topic/67862-random-connections-to-different-cities-with-a-specific-city-vpn/?do=findComment&comment=245613

Kind regards
 

On 5/19/2025 at 11:58 AM, JJGGY said:

Eddie hasn't been working for two weeks, and he hasn't connected at all. Help please. 

Hello!

The SSH connection to port 22 fails. Have you tested different connection modes (WireGuard, OpenVPN over TCP but without SSH and so on)? Furthermore, we see you have a Radmin interface. Please make sure that no Radmin related software (VPN) or service (remote desktop via VPN or not) is running while you run AirVPN software to avoid likely conflicts. If in doubt check with the Task Manager and disconnect the interface itself.

Kind regards

46 minutes ago, hifiboombox said:

The route checker should have worked then, I have a website running on port 80.

Hello!

You said that the services had to be reached while the system is behind the VPN through an FQDN, and port 80 can not be forwarded. In such a scenario the failure is expected and due.
 

48 minutes ago, hifiboombox said:

I managed to completely fix my problem with these settings in /etc/wireguard/wg0.conf:

So you needed to bypass the VPN. We assumed the contrary, i.e. that you wanted your services (torrent etc.) "protected" by the VPN, hence the misunderstanding. All good then!

Kind regards
 

7 hours ago, hifiboombox said:

screenshot of the route checking tool saying every server failed to connect to MYSUBDOMAIN.duckdns.org.

Hello!

The route checker tries ports 80 and 443 so the failure is due and expected. Please make sure that your domain name resolves into the correct IP address and that you point to the correct port(s). Please note that we can reach your listening program on the proper port (the only port you have remotely forwarded on your AirVPN account port panel) but only over IPv6, and not over IPv4. Maybe the torrent client "listens" only to v6.

Kind regards
 

29 minutes ago, DarkKman said:

I simply had to "Disable" the port then "Enable" again and all worked

Hello!

Thanks for the report. This (the switch Enable/Disable/Enable) should not be necessary, so the problem was unexpected and deserves an investigation, thank you again.

Kind regards
 

28 minutes ago, nestegg101 said:

Over the weekend, Antares was down for well over two days:

Hello!

After the weekend intervention it is up again. The problem was that some IP address(es) was/were null routed on the datacenter.
 

29 minutes ago, nestegg101 said:

Subsequently, Auriga and Luyten went down and are still down at the time of this post:

They both suffer of severe networking problems (destinations unreachable intermittently). We are waiting for datacenter assistance. It could be an attack, although not a flood.

Kind regards


 

@Bohdan Kushnirchuk

Hello!

How to solve:
 

To grant Terminal full disk access (except some specific critical directories) on macOS, follow these steps:

1. Open System Settings (or System Preferences):

   • On macOS Ventura and later, click the Apple menu at the top-left of your screen, then choose System Settings.

   • On macOS Monterey or earlier, choose System Preferences.

2. Go to Privacy & Security:

   • In System Settings (Ventura and later), select Privacy & Security in the left-hand menu.

   • In System Preferences (Monterey and earlier), click Security & Privacy, then go to the Privacy tab.

3. Select Full Disk Access:

   • In the Privacy & Security or Security & Privacy tab, scroll down and click Full Disk Access in the left menu.

4. Unlock Settings:

   • At the bottom-left of the window, you might need to click the lock icon and enter your admin password to make changes.

5. Add Terminal:

   • Once the lock is open, click the + button beneath the list of apps with Full Disk Access.

   • In the file chooser window that pops up, go to Applications > Utilities, and select Terminal.

   • Click Open to add it to the list.

6. Restart Terminal:

   • Close the Terminal app if it’s open, then reopen it to apply the changes.
     
      

2. Open the terminal and change ownership of the relevant files:

sudo chown root /Applications/Eddie.app/Contents/MacOS/*

Kind regards
 

Hello!

For the readers' comfort, this problem is resolved. The problem was caused by qBittorrent's settings. Speed limit that was set to 10 Kib/s.

Kind regards
 

26 minutes ago, karn said:

Why have the NY servers lost there download speed?
The NY servers have traditionally give me both best latency and speed. When they lost download speed (fluctuating between 2-11Mbp), I switched to Sadamelik, yesterday it was 400+, now it is down to (9 Mbp) My IP is 900+ up and 900+ down.

Hello!

It seems to be more of a problem on your side or anyway external to our infrastructure because the servers in New York City always provide the same amount of bandwidth ranging from 4 to 10 Gbit/s each. No change is noticeable in the last 24 hours. However Sadalmelik started operating (publicly) 36 hours ago so we don't have historic data, but it is currently delivering 7.4 Gbit/s that look normal. Please check the older servers traffic graphs by week, month or year on the real time servers monitor to confirm.

Kind regards
 

On 4/27/2025 at 1:54 AM, ScanFarer said:

Just curious if there are any upcoming server upgrades or additions planned for the Chicago area. It would be great to have at least one multi-gig server there, considering how utilized or nearly maxed out the existing servers are.

Hello!

Yes, as you might have already noticed:Kind regards


 

Hello!

Hello!

5 hours ago, hedgehoq said:

'm not that computer-savvy, and I have no idea what I'm doing

Hello!

Should you have the will to try and "beat your limits" the user's manual should be understandable by everyone, it's quite explicative and very verbose. It's the file "README.md" in the package you already have. It is much simpler than it may appear and faster than any GUI.

Since you have already installed the Suite and have Bluetit running, you can:
1. configure Bluetit to support traffic splitting by editing with a text editor with root privileges the file /etc/bluetit.rc (just type a line "allowtrafficsplitting on" and save the file)
2. restart Bluetit
3. connect Bluetit to a VPN server via Goldcrest
4. start Chromium in the specific traffic split namespace ("cuckoo --run /path/to/chromium")

Each of the above steps requires just a few minutes, probably well spent, to read the documentation (each step is exhaustively documented in the manual) once and for all and perform the action.

Otherwise you can wait for a Text User Interface which is the next planned improvement for Goldcrest (one of the Suite components).

Kind regards
 

11 hours ago, hedgehoq said:

I have one app on my Ubuntu laptop (ungoogled chromium) that I use specifically for banking, work, and Wikipedia editing. I'd like a way to use this app, and only this app, with my real IP‌ address without VPN, while still having the VPN‌ connection running for the rest of the laptop e.g. for Firefox, Brave, email app, etc.

Hello!

Yes, you can do it with the AirVPN Suite 2.0.0 component Bluetit. You can run that application via the provided software cuckoo once the system is connected to the VPN (also run airsu before in order to prepare the graphic environment variables for the ungoogled Chromium). Then, only this one app will have its traffic routed outside the VPN tunnel. Please see here:
https://airvpn.org/forums/topic/66706-linux-airvpn-suite-200-preview-available/

AirVPN Suite 2.0.0 is currently a Release Candidate, but it has reached a remarkable reliability and stability. Release Candidate 2 is also imminent, so the stable release will come in the very near future.

Kind regards
 

@b0n

Hello!

On top of the previous excellent answer by @EMULE (thank you, we'll examine your analysis to improve the software) please make sure that any Radmin Famatech related software is NOT running when you run Eddie. Also consider to disable this interface:

Quote

Radmin VPN (Famatech Radmin VPN Ethernet Adapter)

when you want to use AirVPN.

Kind regards