Staff

Hello, our OpenVPN Data Channel cipher is AES-256-CBC. You're getting the maximum AES-256 throughput that can be sustained by your router CPU (assuming that OpenVPN runs on Shibby Tomato). AES-256 is a high grade encryption that's computationally heavy for a consumers' router CPU. In other services, if no encryption or weak encryption is used in the OpenVPN Data Channel, throughput will be obviously much higher, at the price of significantly lower security. You can anyway bypass the bottleneck by connecting directly your computers (up to three simultaneously) or using a more powerful routing box (see pfSense for example). Kind regard

Hello! We're very glad to inform you that five new 1 Gbit/s servers located in the Netherlands are available: Ceres, Julliet, Pallas, Riguel and Sedna. The AirVPN client will show automatically the new servers, while if you use the OpenVPN client you can generate all the files to access them through our configuration/certificates/key generator (menu "Client Area"->"Config generator"). The server accepts connections on ports 53, 80, 443, 2018 UDP and TCP. Just like every other Air server, Ceres, Julliet, Pallas, Riguel and Sedna support OpenVPN over SSL and OpenVPN over SSH. As usual no traffic limits, no logs, no discrimination on protocols and hardened security against various attacks with separate entry and exit-IP addresses. Do not hesitate to contact us for any information or issue. Kind regards and datalove AirVPN Team

Hello, route checking fails, please try to disable it. Un-tick "Check if the tunnel effectively works" in "AirVPN" -> "Preferences" -> "Advanced". After that try again a connection to a VPN server, browse to airvpn.org and verify whether the central bottom box is green or red. If it's green, everything is fine. Since the route checking is somehow a security check, if you need to keep it disabled for this problem we would suggest that you activate "Network Lock" (available only on Eddie 2.5 or higher). Kind regards

Hello! Clearly some system of our customers is infected. Kind regards

Hello! The TLS Cipher is wrong. Try with "None". If it fails, try with "TLS-DHE-RSA-WITH-AES-128-CBC-SHA". Both are very wrong but for some DD-WRT glitch, on newer builds either the first or the second work, while all the other ones (wrong as well) fail. Kind regards

@dd79 thank you very much!

Hello, it seems that some certificate or key has not been pasted correctly or that the cipher you selected is wrong. A screenshot of the DD-WRT OpenVPN client configuration page may help. Kind regards

Hello! Your method is perfectly fine. In Eddie Network Lock has not been implemented in this way for some potential problems in specific configurations, we needed a method that must be as generic as possible and applicable to a wide amount of systems. Additionally, Eddie performs a lot of tests for servers ratings, but the route command execution can be extremely slow in Windows: keeping the rating system with Network Lock would have needed dozens and dozens of route commands with huge delays. Kind regards

Can you explain as to why is this? Other VPN providers are working fine with Hulu.. Which ones? Kind regards

Hello! The tun interface (the virtual network card used by OpenVPN) does not come up. Please try the following: https://airvpn.org/topic/8320-solved-connects-but-ip-doesnt-change-on-windows-server-essentials-2012/?do=findComment&comment=8321 Kind regards

Hello! Since Ultrasurf employs HTTP proxies, probably your company Fortigate firewall allows those packets. Additionally, your solution (OpenVPN over Ultrasurf if we understand it correctly) is quite elegant. There is widespread concern about Ultrasurf, the addition of a further OpenVPN tunnel potentially solves any risk, because data are still encrypted by OpenVPN when they pass through Ultrasurf servers. See for example https://en.wikipedia.org/wiki/Ultrasurf#Evaluation in particular Appelbaum's concerns and criticism. Kind regards

@hakrins You might like to run Eddie with "Network Lock" function enabled: https://airvpn.org/topic/12175-network-lock Kind regards

Hello, we think we will not be able to restore Hulu access in the near future, we're sorry. Kind regards

Hello! The only way to have an automated subscription is with "PayPal subscription". Any other mode (credit card, PayPal, Bitcoin) will not charge you automatically. If you have picked "PayPal subscription" unintentionally just delete the authorization to payments from inside your PayPal account. Kind regards

Hello! Thank you very much for all the information you provided! Of course, if you gather more data, feel free to publish. Did you contact OpenVPN community (in the forums) or OpenVPN Technologies about this problem? Kind regards

Hello, any confirmation on this by third parties? We have a roughly estimate of >5000 systems with Win 7 64 bit using the latest tun/tap adapter driver and not even one single report about this problem. Bug tracker? Links? Kind regards

Hello! Thank you for the report. Some documentation about the bug? Ways to reproduce it? Kind regards

Hello! Provided that you downloaded the original package (check the fingerprint) it's a false positive. As a side note, please upgrade to 2.6. Kind regards

Hello! 1. It does not seem necessary because authentication and data integrity are already guaranteed by the tunnel itself... we will ponder about it. 2. Not in 2014, sorry. Support to IPv6 on our side has not yet a defined time line. But of course sooner or later it will be necessary. Informally, we have postponed IPv6 discussions to 2015. All in all, OpenVPN full support to IPv6 has been implemented only recently. 3. It is technically possible and this argument will be evaluated soon. Currently a user.key change requires our intervention, it is not possible to do it on the client side alone, and the system is configured to have one single key per account at the moment, so some work will be necessary. Kind regards

@McLoEa Hello, an "original" DNS restore might fail under very rare circumstances which however we need to be able to reproduce. Eddie has also an emergency recovery in case it could not restore before shutting down (for example if it was forcefully killed). Feel free to keep us posted if the problem re-occurs: if possible try to detect a pattern for which the failure is reproducible. Even OpenVPN itself, if put in conditions to be unable to execute the down script, would leave the DNS settings not restored. Kind regards

Hello! Which Eddie version are you running? A possible explanation is that Eddie does not reset your original DNS, maybe because they were already set to VPN DNS for some reason (in this case, for Eddie the "original" DNS are the VPN DNS...). While you're disconnected from the VPN, please verify which DNS are set in your system, before you perform any card reset. Kind regards

Hello! Do you mean that we should solve a problem that's occurring in another platform and servers completely out of our control? What should we do? Kind regards

Hello! We do not block NTP, absolutely not. Additionally, connection to NTP servers from the router, when booting, should be performed before a connection to a VPN server, to allow the router to set the correct date and time, otherwise authentication will fail. Kind regards

Hello! If you click (left-click) on the "AirVPN" button with a down arrow (menu symbol) in the upper left corner of the Eddie client main window, does a drop down menu appear or not? If so, "Preferences" is one of the items of such menu. Kind regards

Remember that the tool tells you nothing about UDP ports, that test is only for TCP. Kind regards