Staff

Hello! Health status, reason, and entry IP added. Look at the bottom of the answer to the faq: https://airvpn.org/faq/api/ Any feedback improvement is greatly appreciated. @mblue: We understand you fetch our API with a custom script and generate OVPN config files. Maybe it can be interesting for our community if you explain your needs or reasons. Maybe we can improve our API or our config generator. Thanks. Kind regards

Hello, it seems that only airvpn.org is blocked in your system, but only through DNS hi-jacking, because you can ping the IP address. Can you please post the FULL output of commands: ping -c 4 airvpn.org nslookup airvpn.org Kind regards

Hello! The problem is here: . 2015.06.01 14:10:26 - OpenVPN > [uNDEF] Inactivity timeout (--ping-exit), exiting Please make sure that your router firewall does not block UDP packets (system firewall should be fine because you have Network Lock activated). In case it's your ISP to block UDP (rare but not impossible), try a connection in TCP. You can change connection protocol in client menu/tab "AirVPN" -> "Preferences" -> "Protocols". Kind regards

Hello, your local proxy is either not running, refusing connections or not listening to 127.0.0.1:9150. Which proxy is it? Is it Tor? If you did not mean to use a proxy please make sure that the proxy "Type" combo box is set to "None". You can find it in "AirVPN" -> "Preferences" -> "Proxy". Also make sure that in "AirVPN" -> "Preferences" -> "Protocols" you have not selected "Tor". Kind regards

Hello! Can you please tell us whether you get that error even while the client is NOT connected to a VPN server? As a side note (not related to the problem), we would recommend that you upgrade your client software. Kind regards

Hello! That's correct, in that case the OpenVPN daemon sees the connection from the local stunnel or sshd. Kind regards

Hello, we have finally added the answer to this FAQ: https://airvpn.org/topic/14378-how-can-i-get-vpn-servers-entry-ip-addresses We apologize for the delay. Kind regards

How can I get VPN servers entry-IP addresses? AirVPN servers have at least 4 entry-IP addresses (4 IPv4 and equivalent 4 IPv6 addresses). Different entry-IP addresses provide different tunnel protocols or abilities, please see https://airvpn.org/specs We have Fully Qualified Domain Names that resolve into one of the recommended server entry-IP addresses or ALL entry-IP addresses, in both cases according to geographical location. Such FQDNs are used automatically by our Configuration Generator. The recommended server is updated every 5 minutes, to balance users between servers. Available FQDNs which resolve into the entry-IP address you need are explained below: {name [entry-IP address number]}.vpn.airdns.org - to obtain the best entry-IPv4 address for specified name. {name [entry-IP address number]}.ipv6.vpn.airdns.org - to obtain the best entry-IPv6 address for specified name. {name [entry-IP address number]}.all.vpn.airdns.org - to obtain all IPv4 and IPv6 entry addresses for the specified name which can be an ISO two-letters country code (ISO-3166), a continent ('europe', 'america',' asia', 'oceania', 'africa'), or 'earth' {server name}.airservers.org for entry-IPv4 address 1 of a specific server. Note that resolution by server name is limited, so use the Configuration Generator or contact us if you need specific addresses you can't obtain via DNS. You can see server names in the real time servers monitor in our web site page https://airvpn.org/status [entry-IP number] is the entry-IP address number (2, 3 4), and it is optional. Don't valorize it in order to obtain the first entry-IP address, otherwise suffix the country code with the proper digit (e.g. 'be' for Belgium recommended/best rated server first entry-IP address, 'be3' for Belgium recommended server third entry-IP address). Examples nl.vpn.airdns.org resolves into the recommended server first entry-IPv4 for country NL (the Netherlands) nl.ipv6.vpn.airdns.org resolves into the recommended server entry-IPv6 address for country NL (the Netherlands) ca3.vpn.airdns.org resolves into the recommended server third entry-IPv4 address (tls-crypt connection) for country CA (Canada) europe.all.vpn.airdns.org resolves into all the first entry addresses of all VPN servers in continent Europe. alshat.airservers.org resolves into the first entry address of server whose name is "Alshat". Command line examples Obtain every first entry address (both IPv4 and IPv6) for all servers in Switzerland, asking directly our authoritative DNS server. Windows: nslookup ch.all.vpn.airdns.org dns1.airvpn.org Linux: dig ANY ch.all.vpn.airdns.org @dns1.airvpn.org +short

Hello! Yes, you posted it in "General & Suggestions" and we moved it here to "Reviews", a more appropriate location since it compares AirVPN with PIA. It is more likely that it gets higher visibility here, not there, and you can see that actually the debate has become hot. We like and we reserve the right to move any thread in any forum section to make the forum more readable. At same time, we are pleased to see that this forum has become an attractive place for several PIA customers. Interestingly, this thread is showing some important information that PIA customers might like to consider carefully. We show it because we have it. It's a matter of transparency. It is not logged: it is showed in real time and stays in RAM until the client disconnects. Note that contrarily to some of our competitors, we don't keep keys, user data etc. on the VPN servers. All the data are kept in backend servers which never communicates directly with clients, frontends or VPN servers. However, it is obvious that the VPN server knows the IP address a client connection is coming from: how would it communicate with the client otherwise? This is how the Internet works. Additionally, you can hide your real IP address to our VPN servers, by connecting OpenVPN over a proxy (even Tor). And our client Eddie implements all of these options. It is the only free and open source VPN software that allows with a click a connection of OpenVPN over Tor even in OS X and Linux, with no requirements for any additional setup (except running Tor, of course), Virtual Machine etc. Not only these features are not implemented in our competitors software, but in most cases our competitors software, including PIA software, is closed source. Hiding to the user data (that any VPN service has) could be a trick to attract less technically skilled persons, or even gullible people. It can be a marketing strategy. We don't like it and it is not compliant with our mission. https://airvpn.org/mission If you share the connection with people you blindly trust, your concern is deeply illogical. But from your words it seems that you share your account with people you don't completely trust. In this case, with AirVPN you can share your account with other people and keep control of your account: you just need to provide keys and certificates to the other persons, and keep your password for yourself. Inviolability of your Data Channel encryption is guaranteed by Diffie-Hellman exchange. In this way other people can connect to VPN servers but can't access your user control panel, can't change the password to gain total control of your panel etc. If they occupy all of your slots, you can even force a disconnection to free the slots. They can't forward ports, only you can, so that you can keep under control the most dangerous situations (example: an illegal web site "hosted" behind a VPN server). This is not possible with PIA and this is important with our service, because we have implemented a dynamic remote port forwarding system (with DDNS if you need it) which is "light-years ahead" than PIA system. Anyway, it is important to underline that the account holder will be held responsible for any action of anyone using that account (assuming that PIA ToS allows this practice). Note: As of 2017 AirVPN now supports 5 connections per account. But this has NOT changed our commitment to minimum allocated bandwidth. About 5 connections instead of 3, this is also a consequence of our commitment to minimum allocated bandwidth, which PIA does not provide. When you provide a "best effort" service without any warranty on bandwidth allocation per client, things change radically. Since AirVPN birth we have never used VPS for our VPN servers. We have dedicated servers with redundant uplink ports and bandwidth (with the exception of Hong Kong, where we were forced to accept a sufficient compromise) and PoP with tier 1-2 transit providers. Compare our servers status page with any competitor servers status page https://airvpn.org/status/ Click on the servers name to access plenty of data about them. Please define properly and technically how "the security of the VPN" can be harmed by this: the point of hiding data that are anyway there, during the whole duration of a client session, is nonsensical. The client just shows you the information that the VPN server has got and which it already communicates with (incidentally, very useful for other purposes); the frontend does the same. On top of that, we remind you once again that our client Eddie is free and open source, that it is totally optional to use it, and that, contrarily to the setup of most our competitors, entry-IP address and exit-IP address of VPN servers are different. Kind regards

Hello! You're right, without the option "All servers for area/region" (which we deleted for good reasons) getting all the entry-IP addresses through the CG has become a time consuming task. We need to insert the following information in the "How-To" forum. We apologize for the delay and for any inconvenience. You can resolve "server_name.airvpn.org" to get a specific server entry-IP address. Server names can be found in the "Status" page of our web site, or in the Configuration Generator. For example, from a command line interface: nslookup nihal.airvpn.orgto get entry-IP address of Nihal server. Please resolve country_code.airvpn.org to get all the entry-IP addresses of that country VPN servers. Example: dig @8.8.8.8 nl.airvpn.org +short(NL is the country code for the Netherlands) or nslookup nl.airvpn.orgYou can resolve "continent_name.airvpn.org" as well, to get the full list of entry-IP addresses of VPN servers in a continent. Finally, resolve "earth.airvpn.org" to get ALL the entry-IP addresses of all the VPN servers. Note: dig is not available by default on Windows, you need to install it. Alternatively, you can use nslookup, but the output of dig with the option "+short" could be easier to parse in some cases. Kind regards

Hello, you probably mean OS X 10.10.4. In this case, we're aware that Eddie does not run in 10.10.4. On the other hand, that's a preview version. Kind regards

Hello! Today we're starting AirVPN fifth birthday celebrations! From a two servers service located in one single tiny country providing a handful of Mbit/s, the baby has grown up to a wide infrastructure in 16 countries in three continents, providing now 86000 Mbit/s to tens of thousands people around the world. Quite electrifying for a service initially thought as a small experiment! Well, at least WE are electrified... you know, sometimes creators tend to overrate their creatures. If you're curious to know something about a series of fortunate events which gave birth to AirVPN, have a look here: https://airvpn.org/aboutus To worthily celebrate Air's fifth birthday, we're glad to inform you that starting from now we will offer a 25% discount on all plans. Hurry up, celebrations as well as this special offer will end on June the 6th, 23:59:59 UTC! Kind regards and datalove AirVPN Staff

Hello, glad to know it. Nothing worrying, your post was split because you entered it in an unrelated topic (the announcement about problems and resolution on the auth servers). Kind regards

UPDATE: we believe we have solved all the problems. We'll be closely monitoring the infrastructure to make sure it's stable again and be ready to intervene in case of unexpected problems. Kind regards

Hello! Please follow this thread: https://airvpn.org/topic/14362-problems-on-authentication-servers Kind regards

UPDATE: it is now possible to download the client software. Any other previously inaccessible page of the web site is now reachable. Kind regards

Please follow this thread: https://airvpn.org/topic/14362-problems-on-authentication-servers Kind regards

UPDATE: we are aware that it's currently not possible to download any version of our client software, we're working on this as well. The main problem has been partially mitigated but we still need to work hard on some part of the infrastructure. We'll keep you updated. Kind regards

Hello, due to different causes we are experiencing issues on our authentications servers. We have been and are working on the problem in order to resolve it as soon as possible. NOTE: the problem will make VPN connections difficult or slower to be established for those using our client Eddie, but it does NOT affect VPN connections stability or performance once they are established. Additionally, VPN server might be unable to forward your reserved ports. Kind regards

Hello! We have been and are experiencing problems on the authentication servers, we're working on the issue. Kind regards

Hello! We're experiencing connectivity issue with our authorization servers, please hold on, we're working on it. Kind regards

Hello, that 443 port is a port that one of our OpenVPN daemons listen to.443 is also a listening port (in the alternative entry-IP address) for SSL connections. Both of those ports have nothing to do with your system ports or with your VPN remotely forwarded ports. Kind regards

Hello! It's harmless, you can safely ignore it. Kind regards

Hello! Every peer is peer to any other peer, hence "peer to peer": no node acts as a client only, no node acts as a server only (with a relevant exception for the initial seeder of something). For true p2p, each client must be able to accept incoming packets from the Internet. If all the nodes were unable to receive incoming connection, p2p would completely stop working. That's correct. Disable UPnP, NAT-PMP and any other auto port mapping when in the VPN, and do not forward any port from the router to the devices connected to it (assuming that it's NOT the router itself to connect to a VPN server by running OpenVPN). That will only expose you to correlation attacks. You don't need your physical network card ports. This FAQ answer may clarify concepts: https://airvpn.org/faq/what_is Kind regards

Hello! Servers marked as closed for "Imminent Withdrawal" are closed to new connections because their withdrawal is imminent. Already connected clients will be disconnected only at the very last minute before the withdrawal. We also recommend that clients connected to such servers disconnect as soon as possible. Please connect to any open server. Kind regards