Staff

Hello! Are you meaning that you run OpenVPN both on the DD-WRT router AND on your Windows system at the same time? We asked "We're assuming that you connect your router to a VPN server, not your devices, is this correct?", can you please answer? If you connect ONLY your Windows system (and not your router): no port forwarding is necessary on the router. The listening port of the torrent client must match the remotely forwarded port (i.e. one of the ports you have opened on your control panel in our web site). The port must not be remapped to a different local port (that's due to how BitTorrent clients work). Kind regards

Hello, it is accessible from any Air server except Singapore ones. Strangely their web server blocks Singapore. Before posting in this forum you can check anytime an URL here: "Enter" -> "Checking routes" https://airvpn.org/routes Kind regards

Hello! You need to resolve server_name.airvpn.org You can see the server names in our real time monitor https://airvpn.org/status For example, to see the entry-IP address of Acrux: $ nslookup acrux.airvpn.org Server: 10.4.0.1 Address: 10.4.0.1#53 Non-authoritative answer: Name: acrux.airvpn.org Address: 37.48.81.12 or even $ dig @8.8.8.8 acrux.airvpn.org +short 37.48.81.12 Kind regards

Hello! You just don't care about the VPN IP in this case. That's the IP address that is DHCP-assigned by the VPN server to your DD-WRT router tun interface. The static IP address we were talking about are the IP addresses in your private network of the devices connected to the DD-WRT router, because those devices are behind the router NAT. We're assuming that you connect your router to a VPN server, not your devices, is this correct? Kind regards

Hello! Yes. It will be easier if you keep the devices connected to your router with static IP addresses. Set a DNAT on the router with iptables according to our "How To" here: https://airvpn.org/topic/9270-how-to-forward-ports-in-dd-wrt-tomato-with-iptables/ Kind regards

Hello! Actually, the mandatory installation on a system is the driver for the tun/tap interface (the virtual network card used by OpenVPN), with the exception of OS X Mavericks which implements a tun interface by default. Maybe you're running Eddie portable version? About Persei, it seems a problem that was related either to your node or your ISP, because we did not detect any problem on Persei, clients could connect successfully as usual and we did not change anything substantial in the last days (except for an upgrade of openssl and libssl). Glad to hear that it's solved anyway. Kind regards

If openvpn was shaped then I wouldn't get results(see above) I got using another vpn provider though, don't you think? Hello! It might mean nothing, especially if outbound port is different. The fact that OpenVPN over SSL provides better performance to your node than direct OpenVPN in UDP looks much like an ultimate proof. What is the connection port of the other VPN service? Kind regards

Hello! If you get higher performance with OpenVPN over SSL then OpenVPN is shaped, because when you use OpenVPN over SSL you don't only add a second tunnel overhead, but you also force OpenVPN to run in TCP, which is significantly slower than UDP. Kind regards

Hello! Our Data Channel cipher is AES-256-CBC. An Atom 230 is probably not able to decrypt/encrypt on the fly much higher throughput than that you already detect. Perhaps you're facing a mixture of traffic shaping and computational limits. We're sorry, we could have detected the cause of the bottleneck much earlier if only we had read your signature more carefully... Kind regards

Hello! Yes, that's correct. Kind regards

Hello, you need a DD-WRT build which includes OpenVPN. After that, please follow the instructions here: https://airvpn.org/ddwrt If you can't or don't want to flash a DD-WRT build with OpenVPN in your router (for lack of memory for example) you can anyway connect directly with your computer, tablet, phone... Kind regards

Hello, prices are in EUR or BTC (BitCoin). We accept EUR or BTC. Kind regards

Hello! For a quick run, go for installation of Eddie client in your Windows system, it's much simpler. Nothing prevents you from configuring OpenVPN in your router in the future, should you need it some day. With the same account, you can connect simultaneously up to three devices (to different VPN servers), so maybe you don't need a connection from your router. By the way, instructions for DD-WRT are accessible by clicking "Enter" from the upper menu of our web site and then clicking the "DD-WRT" icon. Kind regards

Hello! $ apt-cache depends airvpn airvpn Depends: gksu Depends: mono-runtime Depends: mono-utils Depends: libmono-system-runtime2.0-cil Depends: libmono-winforms2.0-cil Depends: libmono-corlib2.0-cil Depends: openvpn Depends: stunnel4 Kind regards

Hello! All of your results suggest that everything is reasonably fine, except for port 53 UDP, where there's some problem (maybe traffic shaping to prevent DNS exploits). The fact that in TCP and even with a tunnel inside another tunnel (OpenVPN over SSL/SSH) you get the same performance than in UDP might suggest that UDP is shaped. Data also weakly suggest that there might be an unconditional cap set around 28 Mbit/s (3.5 MB/s) on anything different than some white listed protocol. Kind regards

Hello! The reason has been thoroughly explained in our "News and announcements" forum. You can anyway watch RAI, Sky Italia and some other services from any VPN server in the world: with our service you don't need to connect to an Italy VPN server. Kind regards

The TLS Cipher point seems contrary to the instructions here - ("Select TLS Cipher to "TLS-DHE-RSA-WITH-AES-256-CBC-SHA") https://airvpn.org/ddwrt/ Now changing it to none did then allow me to connect to the vpn but would appreciate understanding relevance of this. Thanks! Hello! You are right. The "problem" is that on some builds only TLS Cipher set to "None" will allow a correct connection. On some other builds only "TLS-DHE-RSA-WITH-AES-128-CBC-SHA" will work. Both are clearly wrong, but somehow they are bypassed by other settings. We don't know the reasons for this strange behavior. Kind regards

Hello! If OpenVPN runs in your router then yes, you need to forward ports to the devices connected to the router because they are behind another NAT (the router NAT). You would need a DNAT, please see for example https://airvpn.org/topic/9270-how-to-forward-ports-in-dd-wrt-tomato-with-iptables/ If OpenVPN runs in the same device (a computer, for example) that runs uTorrent too, then forwarding another port (even with the same number) on the router not only makes no sense (the port set and interface have nothing to do with the remotely forwarded port set) but it is also dangerous because may expose your system to correlation attacks. Kind regards

Hello, Eddie is the code-name of the Air client 2.x. There are several problems with the tun/tap adapter driver and with OpenVPN itself. Please uninstall OpenVPN completely and re-install it making sure that you do not mismatch versions (for example, one of the reported errors might be caused by a 64 bit version running on a 32 bit system). Do the same with Eddie please. Kind regards

Hello, if a direct OpenVPN connection is possible, then OpenVPN is probably not disrupted and it's a problem of line stability. When you are in more restrictive networks, try also OpenVPN over SSL: with our client Eddie click the "AirVPN" button, select "Preferences", click "Protocols" tab, select "SSL Tunnel - Port 443", click "Save" and finally connect to a VPN server. In this way the OpenVPN tunnel will be itself tunneled in an SSL tunnel, causing encryption of OpenVPN packets headers and making therefore impossible to identify its "fingerprint'". Kind regards

Hello, no. On the contrary it will speed up considerably names resolution. Kind regards

Hello, it is not necessary to re-start the client, but it is obviously necessary to disconnect and reconnect to the VPN if a change is performed while a connection is active. Kind regards

Hello, to prevent Windows DNS leaks with Eddie it is enough to activate option "Force DNS". Click "AirVPN" button, select "Preferences", click "Advanced" tab, select "Force DNS" option and click "Save". Kind regards

Hello! To both. Ports you specify in your control panel are forwarded in few seconds to your client VPN IP in each and every VPN server your account connects to. That's also why you need to connect to different VPN servers when you perform multiple, simultaneous connections. Kind regards

Hello! We do not detect any problem either on Persei or Heze for connections (but we detected a stats problem in Heze which has been now fixed), can you please publish the Eddie client logs taken after the problem has just occurred? The fact that Persei latency is not displayed on your client makes us think that Persei is not reachable from your node. Kind regards