Staff

Hello, in the VM it is maybe a bottleneck due to the CPU. An OpenVPN daemon is run only by one core in any case so even if this core is at capacity you will not see the CPU particularly stressed, unless this is a single CPU, single core system. Currently OpenVPN does not scale well on multi-processor systems, it does not support HT. Kind regards

Hello, note that your definition of PFS is wrong: https://en.wikipedia.org/wiki/Forward_secrecy#Perfect_forward_secrecy We confirm to you that our cryptographic setup satisfies the properties of PFS. From your client logs you can see that Data Channel keys (used to encrypt the traffic) are re-negotiated every hour through DHE (Diffie-Hellman Exchange). Kind regards

Hello! Yes, assuming that you run our client it is possible to do it in "AirVPN" -> "Preferences" -> "Routes". Select "Not specified routes go: inside the tunnel" and enter the IP address(es) of the web sites. Without our client the same purpose can be achieved in this way (see the last part of the post): https://airvpn.org/topic/3721-netflix/?do=findComment&comment=3724 Kind regards

Hello! Our service is based on OpenVPN which is not included by default in Windows. Kind regards

Hello, many consumers' routers CPUs can't process more than 10 Mbit/s AES-256 throughput due to their processing power. Our Data Channel cipher is AES-256-CBC. Probably bottleneck is the router CPU. Try to connect directly from your computer to make a comparison. Kind regards

Hello, if you see your real IP address in ipleak.net or you see the central bottom box in our web site home page red while your system should be in the VPN, something is not working properly. According to your description it seems that the connection is established but the traffic is not tunneled. Please publish the client logs after a connection has been allegedly established. Kind regards

Hello, to change connection mode (ports, protocol etc.) select in the client "AirVPN" -> "Preferences" -> "Protocols". Do not trust speed tests and try different connection modes just in case your ISP is throttling OpenVPN connections. Kind regards

No, you can not confirm that. You not having DNS leaks (or whatever that is) does not mean "there is NO dns leak". It just means you're not having DNS leaks. Hello! Linux queries global DNS servers that are specified. Windows queries DNS servers specified on every and each network card, even with an apparently random behavior. A DNS leak occurs when a DNS server is queried against system settings for a particular connection. This can happen if a system lacks the concept of global DNS and starts querying randomly all the DNS servers it can find anywhere configured in any network card. Since Windows lacks the concept of global DNS and Linux does not, a DNS leak by definition can occur on Windows and can not occur on Linux. On 100% of the cases, so-called DNS leaks on Linux are configuration mistakes. Kind regards

Hello, it can be anything except a DNS leak. For "ISP's IP" do you mean the IP address assigned to you by your ISP? If so, the problem is different: your traffic is not tunneled. Feel free to clarify. Kind regards

If I understand correctly, this infers that they are not obligated to give out any information regarding to non-Canadian citizens using the service. How about requests for information pertaining to actual Canadian citizens using the service however? Hello, we presume that no Canadian citizens connect to Canadian servers, but if a competent authority (with jurisdiction on our company) can prove otherwise we'll be happy to evaluate any proof and consider new options. Kind regards

Hello! We confirm to you that we repute that we have no obligation to follow Canadian laws for services provided outside Canada and to non-Canadian citizens, with data only transiting through servers in Canada. Additionally, we also repute that for us the privacy and data protection framework of the European Union takes precedence on any Canada law, in case the latter conflicts with the first, because our company is under EU legal framework jurisdiction and not under Canada jurisdiction. Kind regards

Hello, which version of Eddie are you running? Kind regards

Hello, as suggested by zsxawerdu the directive "route-delay 5" solves the problem. Fedora 21 users can enter that custom directive on their Eddie clients, or on the Configuration Generator. We're considering whether to put a "route-delay" directive as default (for Linux only) in the next client release and in the Configuration Generator. Kind regards

Hello, no problems, we understood. Yes, this setting (Network Lock enabled and active) is 'sticky'. What you describe is an anomaly on your system that we would need to reproduce to understand why it happens on your system, if there's some hidden bug in the client etc. Kind regards

Hello! Just for readers information, we have the following countries list where Bitcoin usage is allegedly forbidden (of course such laws are very difficult to be effectively enforced due to how Bitcoin software works). If you have additional information feel free to share. Bangladesh Bolivia Ecuador Iceland Kyrgyzstan Kind regards

Idealy I want network lock to stay active at all the time when I'm not connected to an airvpn server but having the eddie client running. Hello! Yes, and that's exactly what happens. If you are disconnected from a VPN server but Eddie is not shut down, Network Lock remains active. If Eddie is killed without grace or crashes Network Lock remains active. In the moment you shut down Eddie, we have no rights to interfere with your system and we have no will to make invasive software that permanently modifies your system settings. Routing table, DNS and all previous firewall rules will be restored. Kind regards

Is this something I have to do manually, or is it done by the client? If I have to do something manually, how do I do this? I can find the pf.conf in the airvpn directory that has all the rules in it, but how do I load/activate it so eddie can work with it? on a side note, when I activate network lock and restart my machine, connections seem to be blocked until airvpn connects to a server, but as soon as I disconnect from a a server network lock is shown as not active. this setting should be sticky, right? thx for your help Hello! Everything is done automatically. The behavior you detect is anomalous and we can't reproduce it: Network Lock works properly in our test systems. We don't even have any warning from other OS X customers about this issue. We'll keep investigating. On your side, make sure that when you enable Network Lock you also activate it by clicking on the big button on the "Overview" window. The token must become green. On the contrary, if you shut the client down properly, it's correct that Network Lock is de-activated. Network Lock, however, remains active if the client is killed or crashes, which is good for security. Kind regards

Hello! We ceased support to RC4, that's causing the problem in XP with the old client. However, please note that Air client 1.x series is obsolete. Upgrading to client series 2, codename "Eddie", will solve the problem even on XP SP3. Also keep in mind that XP is discontinued and, as you rightly say, switching to more modern Operating Systems is an option to be seriously taken into consideration. Kind regards

Hello, PPTP has not been taken seriously since years and years ago and we think that it does not deserve any consideration, unless security is not required. Maybe fifteen years ago, when several vulnerabilities were not yet discovered, it spread out considerably due to the fact that Microsoft strongly supported it. But we're talking about 1999, "ages ago" in computer science and networking. Some more details here: https://en.wikipedia.org/wiki/Point-to-Point_Tunneling_Protocol#Security As you can see, core problems are the protocol authentication implementations. By the way, it remains as an historical curiosity and a solution with quick deployment when security and other factors are not required. Kind regards

Hello, this guide is quick and effective and it should be easily applicable to a wide variety of Linux installations. http://xmodulo.com/internet-connection-sharing-iptables-linux.html Kind regards

Hello! What are your Operating System and the software you run to connect to our service? Kind regards

Hello! Please see the last part of this message: https://airvpn.org/topic/12671-upgrades-for-eddie/?do=findComment&comment=21663 About latency: https://en.wikipedia.org/wiki/Latency_%28engineering%29 - in particular https://en.wikipedia.org/wiki/Latency_%28engineering%29#Packet-switched_networks Kind regards

Hello, your account is authorized to access every VPN server and as usual it can establish three simultaneous connections from different devices to different VPN servers. Please feel free to publish client logs pertaining to some failed connection. Kind regards

Hello! We don't experience any problem with 2.8RC3 on OS X 10.10. Can you please make sure that you're running RC3 (select "AirVPN" -> "About" menu item)? Can you please provide more details? Is pf running? If so, which rules does it have after you have enabled and activated Network Lock? Kind regards yes, I'm running RC3. I tried with PF or automatic. In both cases after disconnecting from airvpn servers I do have a network lock active confirmation on the overview page of the eddie client. However I can connect to the internet via browsers or apps without any problem. Hello, in this situation, print out pf rules. Open a shell and type the command: sudo pfctl -sr Copy everything and paste into your message. Do you know whether your ISP supports fully IPv6? Kind regards

Hello! We don't experience any problem with 2.8RC3 on OS X 10.10. Can you please make sure that you're running RC3 (select "AirVPN" -> "About" menu item)? Can you please provide more details? Is pf running? If so, which rules does it have after you have enabled and activated Network Lock? Kind regards