Staff

So can anyone explain why choosing Port 443 under SSL Tunnel worked and nothing else did? I'm in a tiny hotel in southern France, not some corporate behemoth! I'd really like to understand this better. Also is there a tool that might have hinted at this choice as the only one not being blocked? Protocol TCP Port 443 did not work. Port 443 under SSL Tunnel did. Hello! OpenVPN puts additional information in the headers for purposes of packets re-ordering. This represents a typical fingerprint which makes OpenVPN traffic recognizable with proper header analysis. When you tunnel OpenVPN over stunnel you encrypt OpenVPN packets headers and your traffic is pure SSL/TLS. Kind regards

Hello! Please upgrade to Eddie 2.9 Experimental. In Eddie 2.8.8 there is an issue with ip6tables: IPv6 outgoing traffic is not blocked. This has been fixed in Eddie 2.9 Experimental. Make sure to activate Network Lock and verify that the issue is fixed. Kind regards

Unlikely, they offered to re-provision our very same machine immediately. However, this is not the first time, but even if it was the first time, we can't go on with this provider. Kind regards

Hello! You can't, because the VPN DNS servers are accessible only inside the VPN. Kind regards

Hello! Can you please upgrade to version 2.8.8 or 2.9.2 Experimental? Kind regards

Hello, hey watch out, this is a kind of "false solution", because in this way you will not use VPN DNS. See https://airvpn.org/topic/14141-ubuntu-1504-potential-issue for an effective solution. Kind regards

Hello, Eddie must be able to connect to VPN servers even without DNS at all. There was a version with a bug which prevented connection when there was no DNS at all, which Eddie version are you running? Kind regards

Hello! Finally we got a response from Zaurak datacenter. They wiped out the server by mistake. We do not wish to comment at the moment. Kind regards

Hello! We installed a fresh Ubuntu 15.04, and installed Eddie 2.8.8 .deb edition. Unity -> AirVPN icon, on click it shows: Eddie automatically detects privileges and relaunches itself, with gksu. Automatically. As a discerning proof, we ran airvpn from terminal. We see logs in terminal that Eddie automatically restarts itself: Eddie main window never shows up if Eddie doesn't have the root privileges. Two separate issues in this topic: Ubuntu 15.04 DNS issue and your 'gksu/beesu' issue. Please continue here about the gksu/beesu issue, and in this topic: https://airvpn.org/topic/14141-ubuntu-1504-potential-issue for the Ubuntu 15.04 DNS issue. Kind regards

Ubuntu 15.04 possible issue We have a some tickets that notify us about an issue with Ubuntu 15.04. Symptoms: - Eddie with a loop on connection, caused by failed DNS checking - /etc/resolv.conf doesn't contain our DNS (10.4.0.1 or similar) after the VPN connection. It seems that resolvconf package doesn't push correctly the DNS. Workaround with Eddie - AirVPN client Use Preferences -> Advanced -> General or DNS tab -> DNS Switch Mode -> set Renaming method. ------------------------ Currently we can't reproduce the issue with our test environment. Our fresh installation of Ubuntu 15.04 works as expected. However, various users have this issue. Please help us: if you use Ubuntu 15.04, reply in this topic to the following questions: - Do you connect without problems (with Eddie and/or with OpenVPN / Network Manager / etc)? We need to understand how many Ubuntu 15.04 users have this issue. - If you have the issue, did you perform a fresh Ubuntu installation or did you upgrade from older version? Kind regards

@rainmakerraw DarkRaven's problem was completely different, it had nothing to do with grayed out servers (it was related to the DNS push) and anyway it has been solved with Eddie 2.9.x. We know from a ticket, you could not know that. The problem you experience with Ubuntu 15.04 is not reproducible at the moment by us, we need to try again, is it with Eddie 2.8.8, 2.9 or both? Kind regards

Hello! @DarkRaven Please provide to us more details, like @rainmakerraw explains.[EDIT: IGNORE, we see you provided details on the current ticket we are investigating] @rainmakerraw /usr/bin/airvpn is a simple bash script that launches Eddie. When launched, Eddie automatically detects if it needs to re-run itself with gksu/kdesu/etc. Eddie NEVER arrives to show the main window if it doesn't have the privileges to run openvpn. "Connect now" context menu is grayed only if nothing is selected, it's not related to privileges. Kind regards

Your ISP knows you are connected to one IP but you are visible through another. Compare the entry IP in OpenVPN's log file with the exit IP displayed by ipleak.net for example. It will never be the same. Yes but like I said, it's very similar because it's the same server. like xx.xxx.xxx.x1 for the entry xx.xxx.xxx.x2 for the exit so it's easy to track a user if you have access to the exit and entry IP. Hello, not for all servers but yes, for several of them the IP addresses are in the same /24 subnet. There are relevant exceptions in our servers but anyway the correct approach is different, for this purpose it is much safer to run Tor after the connection to a VPN server has been established, especially when you can't afford that your ISP or government detects Tor usage by you. Kind regards

Hello! Yes. You can "multi-hop" whenever you wish with AirVPN. Each account can establish up to FIVE simultaneous connections so you can multi-hop easily with a VM (connect the host to a VPN server, attach the VM to the host via NAT, connect the VM to a different VPN server). However "multi-hopping" on servers all owned by the same entity is a sub-optimal solution. A formidably stronger anonymity layer can be built just by multi-hopping with Tor, at least for TCP applications. Just connect to a VPN server then use Tor. Kind regards

Hello! The cap you experienced on upload should have been caused by an anti-UDP flood system which was too strict. It has been de-activated by the dc now. Could you please test again now? Kind regards

To be perfectly honest - this is the complete opposite of what I experienced. Mr. EdensSpire, which port do you need and for what reason? Hello! Actually ports reserved to inactive accounts are not released... we will investigate the issue soon. Kind regards

Hello, they are not in the VPN servers. Kind regards

Hello! As a first check, please compare your rules for port forwarding with those showed in the following guide: https://airvpn.org/topic/9270-how-to-forward-ports-in-dd-wrt-tomato-with-iptables Kind regards

I am using 2.9.2 experimental No. I am always using NL and it is leaking as well. Hello! Can you please confirm that: - "Force DNS" is ticked - "Network Lock" is active - IPv6 is enabled - no firewall other than Windows Firewall is running and under these conditions you have DNS leaks in your Windows system with Eddie 2.9.2 Experimental? Can you send us the output of the command "ipconfig /all" (issued from a command prompt) while the system is connected to the VPN with the aforementioned settings? Kind regards

Hello, what is your Operating System? Kind regards

Sources please for AirVPN having the highest rated customer service. I'm not doubting, I would just like to read the review(s). I hope I don't offend the folks at AirVPN, but TorGuard seems to be inflexible about compromising on user experience and anonymity. Again, I hope I don't offend the AirVPN staff, but TorGuard offers a server(s) in Dallas and Las Vegas. Hello! We are finalizing an agreement for a couple of 1 Gbit/s servers in Dallas. Do you know whether TorGuard allows p2p there and/or in the USA? Yes, it's nice. Kind regards

Hello! Does anybody else experience this problem with the new Sweden servers in upload? Kind regards

Hello! With CoinBase and with Bitcoincodes you can transfer directly from your client to a BitCoin account, no need to open an account and/or keep a wallet with them. Do not forget that Bitcoin transactions are not "anonymous", but you can put a very strong anonymity layer simply by always running your client in Tor. Kind regards

Hello! OpenVPN over Tor mode "works ONLY with AirVPN Client, because our software talks to Tor Control to detect and route correctly the guard(s) IP addresses. Otherwise an infinite connection loop occurs because communication between Tor and the guard node (the first node of each circuit) will fall back to the VPN (causing errors like Inactivity timeout, recv_socks_reply: TCP port read timeout expired: Operation now in progress, Assertion failed at misc.c:785)." (from https://airvpn.org/tor ). You should mimic the Air client behavior or you can connect Tor over OpenVPN, which is a configuration that's capable to provide a strong anonymity layer. In this case you just need to connect to a VPN server and then use Tor. All the applications using Tor will have their traffic tunneled over Tor over OpenVPN. Kind regards

Hello! It's possible, yes. For example, you might be querying your ISP DNS with queries over IPv6 over IPv4, or just over IPv6. Network Lock (even if IPv6 remains enabled) should prevent that, can you confirm? Maybe it is some problem in 2.8RC1. which, although candidate, then never became the final version.What about 2.8.8 stable or 2.9.2 Experimental? Kind regards