Staff

Hello! Probably it's just resolvconf not installed in Dynamic Mode or some similar issue. Check here: https://airvpn.org/topic/14141-ubuntu-1504-potential-issue/?do=findComment&comment=27239 If so, it occurs only on some Ubuntu 15.xx upgraded with a dist-upgrade. Infrequent issue, but it is not caused by Eddie. Kind regards

Perhaps a possible explanation is a VPN using a Data Channel cipher such as 128 bit BF-CBC, while Air uses AES-256-CBC. Since BF-CBC 128 requires less computational power than AES-256 (except during re-keying, that's slower with Blowfish) the resulting performance difference with consumers' routers CPUs can be significant. We have not implemented BF for some security concerns (a class of keys is particularly weak, 64 bit blocks are used - which can be a potential problem for users exchanging in a VPN big amounts of data - >32 GB in one session, not unusual with several customers of our) and Schneier himself (Blowfish creator) eight years ago recommended to not use Blowfish anymore. See also http://crypto.stackexchange.com/questions/1098/is-blowfish-strong-enough-for-vpn-encryption (in particular, answer by "poncho"). Kind regards

Hello, yes, try to use "mssfix" directive (you can insert it in "AirVPN" -> "Preferences" -> "Advanced" -> "OVPN directives"). Try different mssfix values (1400, 1350, 1300...) because the Witch code is still unripe so it provides many many false positives. See also https://translate.google.com/translate?sl=ru&tl=en&js=y&prev=_t&hl=ru&ie=UTF-8&u=http%3A%2F%2Fhabrahabr.ru%2Fpost%2F216295%2F&edit-text= Kind regards

Hello! Please shut the software down properly (menu "AirVPN" -> "Exit" then confirm). Kind regards

Hello! In this case you can block all traffic to the Internet. When Network Lock is activated, only tunneled traffic is allowed. When Network Lock is inactive, no traffic is allowed at all. Kind regards

Hello, actually, if you run Eddie it's recommended that you do it from inside Eddie. You can do that in "AirVPN" -> "Preferences" -> "Advanced" -> "DNS" - do not forget to disable DNS check. Kind regards

Hello, at the moment if you don't want to use micro-routing please query any DNS server that's not the VPN DNS server. About Netflix Canada, unfortunately it blocks our Canada servers, so we have decided that US Netflix from CA servers is better than no Netflix at all. Kind regards

Hello, the logs are quite clear: 19700101 00:01:23 N VERIFY ERROR: depth=1 error=certificate is not yet valid We confirm that on Jan 1, 1970, our certificate is not valid. Kind regards

Hello, first of all, if you just want the click-and-go solution just use the Windows Firewall and click "Network Lock" button on our Windows client Eddie, which is also free and open source. See here: https://airvpn.org/topic/12175-network-lock Eddie implements Network Lock even for OS X and Linux, of course. These guides come from the community and we are very happy about them because they provide alternative, community-driven solutions, instead of centralized solutions proposed by ourselves (which are anyway available). We kindly ask you to get documentation before you write in our public forums. You will contribute to forum cleanness and readability and will avoid to write foolishness like the quoted sentence. Kind regards

Hello, thank you for your feedback. Server will be withdrawn in a few days. Kind regards

Hello, the server entry-IP address is wrong: 20150722 08:29:28 I UDPv4 link remote: [AF_INET]10.4.0.1:443 That's a private IP address. Please see here and determine the correct entry-IP address: https://airvpn.org/topic/14378-how-can-i-get-vpn-servers-entry-ip-addresses Kind regards

Hello! In any way we deem appropriate and according to the law. Any, according to the law. Kind regards

Hello, we act just like any other hosting provider in this case. Please see also https://airvpn.org/topic/7181-clarification-of-your-monitoring-policies/?do=findComment&comment=29972 Kind regards

(Pasted from mazz's ticket for readers' comfort - The suggested setup solved the problem) Hello! The problem seems to be here: . 2015.07.22 09:11:07 - OpenVPN > /etc/resolvconf/update.d/libc: Warning: /etc/resolv.conf is not a symbolic link to /etc/resolvconf/run/resolv.conf Either resolvconf is not installed or it is installed but not in Dynamic Mode. In client menu "AirVPN" -> "Preferences" -> "Advanced" -> "DNS", please change "DNS Switch Mode" into "Renaming". Click "Save" and try a new VPN connection. Kind regards

Hello, it is unreasonable to pretend that any software works with a preview version of an OS. When El Capitan will get out of beta testing, then we'll see if the Eddie needs a specific version/rewrite or if the problems are only due to the fact that El Capitan is in preview, just like it happened in the past with previous OS X versions, when not even OpenVPN could run. Kind regards

Hello! Thank you for any feedback. To anyone: please feel free to post about this issue (posting in this thread is perfect), your feedbacks will be taken into high consideration before making any decision. Kind regards

Hello! Problem fixed, can you try again at your convenience? Kind regards

Yes. We had an agreement for a network neutral datacenter but clearly it's not the case. Staff members will have a meeting very soon to decide what to do. Kind regards

Hello, thank you for your question which provides us with an additional opportunity to clarify our rules and, once again, our mission. We confirm that we do not monitor online activities of our OpenVPN clients and that we do not inspect traffic. However, it's perfectly possible to verify some infringements of our ToS without monitoring activities and without inspecting traffic. Just two trivial examples to make it clear. 1) A customer runs a web site or an FTP server behind one of our VPN servers which infringes, or aids or abets infringement of, human rights as enshrined in the ECHR. A human rights defending organization or a jurisdictionally competent authority warns us or one of our providers about the infringement. We proceed, on the Internet (no connection to VPN servers required), to verify the claim and if we see that the claim of the infringement is correct, at our sole discretion, we start a procedure for violation of our ToS. 2) A customer runs a web site behind one of our VPN servers which surreptitiously tries to inject malware. We receive a complaint for that and we proceed as above. It must be clear that we are configured as a mere conduit of information as providers of a service in the Information Society according to Directive 2000/31/EC (see below articles 12, 14 and 15). When our service can be assimilated to "hosting" (this is possible due to remote port forwarding), an essential requisite to have exemption of liability for infringements perpetrated by users of our service, is acting "expeditiously" to put an end to an infringement when we are notified about it. While a "notification" can be interpreted as an official notification by a jurisdictionally competent authority only, in cases of alleged infringements of human rights, malware injections, phishing services aimed to catch fraudulently personal data,, and services aiding or abetting infringements of human rights (including the fundamental right to privacy), we proceed to check claims even if they come from private entities, when such entities have (at our sole discretion) a good reputation and/or can provide (at our sole discretion) substantial proof. The general reasons for which we are willing to extend scope of article 14.3, even when we are not legally bound to do so: a quick intervention can be essential when human rights are at stake and other critical activities are being performeda lack of intervention and/or a delayed intervention may imply a betrayal of our mission and/or cause substantial damage to human beings and/or harm safety of a human being Article 12 "Mere conduit" 1. Where an information society service is provided that consists of the transmission in a communication network of information provided by a recipient of the service, or the provision of access to a communication network, Member States shall ensure that the service provider is not liable for the information transmitted, on condition that the provider: (a) does not initiate the transmission; ( does not select the receiver of the transmission; and © does not select or modify the information contained in the transmission. 2. The acts of transmission and of provision of access referred to in paragraph 1 include the automatic, intermediate and transient storage of the information transmitted in so far as this takes place for the sole purpose of carrying out the transmission in the communication network, and provided that the information is not stored for any period longer than is reasonably necessary for the transmission. 3. This Article shall not affect the possibility for a court or administrative authority, in accordance with Member States' legal systems, of requiring the service provider to terminate or prevent an infringement. Article 14 Hosting 1. Where an information society service is provided that consists of the storage of information provided by a recipient of the service, Member States shall ensure that the service provider is not liable for the information stored at the request of a recipient of the service, on condition that: (a) the provider does not have actual knowledge of illegal activity or information and, as regards claims for damages, is not aware of facts or circumstances from which the illegal activity or information is apparent; or ( the provider, upon obtaining such knowledge or awareness, acts expeditiously to remove or to disable access to the information. 2. Paragraph 1 shall not apply when the recipient of the service is acting under the authority or the control of the provider. 3. This Article shall not affect the possibility for a court or administrative authority, in accordance with Member States' legal systems, of requiring the service provider to terminate or prevent an infringement, nor does it affect the possibility for Member States of establishing procedures governing the removal or disabling of access to information. Article 15 No general obligation to monitor 1. Member States shall not impose a general obligation on providers, when providing the services covered by Articles 12, 13 and 14, to monitor the information which they transmit or store, nor a general obligation actively to seek facts or circumstances indicating illegal activity. 2. Member States may establish obligations for information society service providers promptly to inform the competent public authorities of alleged illegal activities undertaken or information provided by recipients of their service or obligations to communicate to the competent authorities, at their request, information enabling the identification of recipients of their service with whom they have storage agreements. Kind regards

UPDATE 24-JUL-15: SERVER WILL BE WITHDRAWN Hello! We're very glad to inform you that a new 200 Mbit/s server located in the Republic of Korea (South Korea) is available: Dsiban. The AirVPN client will show automatically the new server, while if you use the OpenVPN client you can generate all the files to access them through our configuration/certificates/key generator (menu "Client Area"->"Config generator"). The server accepts connections on ports 53, 80, 443, 2018 UDP and TCP. Just like every other Air server, Dsiban supports OpenVPN over SSL and OpenVPN over SSH. As usual no traffic limits, no logs, no discrimination on protocols and hardened security against various attacks with separate entry and exit-IP addresses. Do not hesitate to contact us for any information or issue. Kind regards and datalove AirVPN Team

How long usually a trial request will be granted? I submitted the request yesterday and now got only an automatic reply. Hello, it takes 0-72 hours and you will get in most cases only replies from a bot. If you need to ask questions to the support team you must not select "Trial request", but you must send your ticket either to "Support" or to "Sales" department. Kind regards

Hello, since Latvia, Lithuania and Sweden are Member States of the European Union, their laws must comply to EU Directives and Regulations. The national governments must transpose approved by the Council and the Parliament Directives into national law within the usual term of 18 months, however a Directive is binding even if it has been wrongly implemented or not implemented at all. See also doctrine of direct effect: https://en.wikipedia.org/wiki/Directive_%28European_Union%29 and Supremacy of European Union Law: https://en.wikipedia.org/wiki/Supremacy_of_EU_law Of course, this says nothing about illegal or secret actions of a State body (usually while many other bodies of the very same State are not aware of such actions) but that's true for every and each country in the world. Kind regards

Hello, we do not detect any problem. Your data are not sufficient to say anything more specific. The only sure thing is that the problem is on your side simply because it's impossible that 6 different datacenters with more than a dozen different transit providers have all the same identical problem at the same time. We recommend that you open a ticket if you want support and send the logs pertaining to the problem. Kind regards

Hello, this looks like your problem, not ipleak problem. Maybe your browser, it's hard to tell. Remember to wait enough (even 30-40 seconds) to complete the DNS test. If it still fails, try some other service. That happens only when necessary and it's perfectly fine. Kind regards

Hello, this is correct, it's just a MaxMind database error (MaxMind database is queried by ipleak.net). This is again correct, we have a DNS server in Ireland that's queried (only when necessary) by VPN servers. It's still working just fine. The important problem we had on July 14 was with authoritative DNS servers for airdns.org. The problem lasted three hours and was solved (see previous post in this thread). Kind regards