Staff

Hello! About the ping, probably you have blocked only TCP and/or UDP in the Application Rules. To solve the issue please either block IP, which includes ICMP, or add rules to block ICMP. In order to forward a port to the VM you need to build a DNAT on the router AND forward the port(s) on the host machine virtualization software NAT to the guest. On the host machine just forward the appropriate ports through the relevant virtualization software options, while on Tomato have a look at our guide in the "How-To" section https://airvpn.org/topic/9270-how-to-forward-ports-in-dd-wrt-tomato-with-iptables Kind regards

Hello! With the VM attached to the host via NAT and the host machine running Comodo and OpenVPN running on the Tomato router there's an ultra-fast solution (with a side effect, though). You can just use Application Rules for the virtualization software process (for example virtualbox.exe) to block any packet to devices in your local network (except the router, of course). The side effect is that this block will affect all the VMs you run in the host through the same virtualization software process. Kind regards

Hello, if the VM is attached to the host in "bridge mode", you can run a firewall in the VM dropping outgoing packets to any local address except your router address and (if you need DHCP) 255.255.255.255. If the VM is attached to the host via NAT, in addition to the above option you can alternatively run a firewall on the host dropping packets from the VM to any local address except the router and the host machine address. Kind regards

Hello, what's the problem...? Kind regards

Hello, according to our system your account subscription expired 218 days ago. If you think this is a mistake, please do not hesitate to open a ticket to Department "Sales" by clicking "Contact us" from the upper menu of our web site, including any relevant information such as your last payment details. Kind regards

Hello! Your setup prevents any leak, so it's not necessary anything else to "secure" Bittorrent. Optimal settings for Bittorrent: DHT, PEX and Local Peer Discovery enabled UPnP and NAT-PMP disabled, because Bittorrent must listen to a definite port that you know in advance (so that you can match it with a remotely forwarded port on our system that you can set in your "Client Area"->"Forwarded port" panel accessible while you're logged in our web site). Kind regards

Hello, when the VM is attached to the host via NAT and OpenVPN runs on the host, make sure to forward (via the host virtualization software) the proper ports to the guest. If OpenVPN runs on the guest machine that's not necessary. If OpenVPN runs neither on the host nor on the VM, but it runs on an external device, and the VM is attached via NAT, make sure to build the appropriate DNAT on that device, and then forward the proper ports via the host virtualization software to the guest. Kind regards

Hello! Ok, that was done. Changes in micro-routing will be effective in a matter of minutes. Can you tell us, if you know, whether the Swedish contents are different than the Netherlands contents, out of curiosity? And is there any advantage, in terms of content access, in using Sweden Netflix instead of USA Netflix? Kind regards

Hello! Yes, you can do that with iptables, provided that the owner module is available in your system. You can block outgoing packets on every physical interface (for example eth0, wlan0... determine your interface names for example with command "ifconfig") coming from the qBittorrent owner. An example: iptables -A OUTPUT -o eth+ -m owner --uid-owner user -j DROP iptables -A OUTPUT -o wlan+ -m owner --uid-owner user -j DROP The two rules above will drop any outgoing packet of any process launched by user user from any WiFi and Ethernet interface in your system. Replace user with the User ID that launches qBittorrent. In order to determine this UID use for example "ps aux | grep -i torrent" (provided that the qBittorrent process has "torrent" contained in its name). Therefore, only packets coming from tun+ (the network virtual interface used by OpenVPN) can get out. Be aware, though, that in this case the rule will block leaks (i.e. packets outside the tunnel) of ANY process launched by the same qBittorrent owner, not of qBittorrent only. Kind regards

Hello, you need a simple DNAT on the router according to our guide that you can find in the "How-To" section of the forum: https://airvpn.org/topic/9270-how-to-forward-ports-in-dd-wrt-tomato-with-iptables Kind regards

Hello, the logs are just fine. If OpenVPN does not display anything when you assume that the connection drops (not even after the 60 seconds ping timeout), either the connection has not really dropped, OpenVPN crashed (but you should see it) or we're missing something. When you assume that the connection drops, can you please try to ping 10.5.0.1 or 10.4.0.1? Kind regards

Hello! After the problem occurs, can you please copy the OpenVPN output in the shell window you launch OpenVPN from, and paste it in your message? Kind regards

Hello, you might like to inquire Comcast. Maybe they are shaping all traffic different than http, or something similar. Feel free to keep us informed, information may be useful for every Comcast customer (or for any person planning to subscribe to Comcast). Unfortunately we can't do that ourselves, because we are neither Comcast customers nor we know some Comcast customer who could do that for us. Kind regards

Hello, you need a subscription of any kind to access the CG. Please feel free to apply for a free trial if you wish so. Kind regards

Hello, please try OpenVPN over SSL https://airvpn.org/ssl This will be effective IF your ISP caps OpenVPN more than pure SSL. Kind regards

@Flex Hello, do not forget DNAT on the Tomato router https://airvpn.org/topic/9270-how-to-forward-ports-in-dd-wrt-tomato-with-iptables Kind regards

Hello! Due to the following DDoS against a part of the Leaseweb datacenter: http://leasewebnoc.com/en/networkstatus/premium-network-connectivity-issues-5 clients connected or connecting to some of our NL servers may have experienced high latency and packet loss for about 1 hour. We apologize for any inconvenience. Kind regards

Hello, yes it's ok. Doing so ensures Google that there's a human being using the service. Kind regards

Hello! Serpentis is in Sweden, not in the Netherlands. Google displays that message when the search engine receives multiple queries from the same IP address according to a pattern which seems to identify a bot, an automated script or anything similar that sends non-manual queries. Kind regards

Hello, answered in your ticket (wrong TLS cipher setting). Kind regards

07/12/2013, Funded with 500€.

Hello, it looks like a DNS issue. Please make sure that one of your nameservers (the first one) is 10.4.0.1 (VPN DNS IP address) - check /etc/resolv.conf. If your system queries a non-public DNS, the queries might be dropped if they come from an unknown network. Alternatively accept DNS push from our servers according to our guide https://airvpn.org/topic/9608-how-to-accept-dns-push-on-linux-systems-with-resolvconf, it's the most elegant solution (it requires resolvconf or openresolv). Kind regards

@citruhead Hello, please try different servers, ports and protocols. In particular test 53 UDP and as a second attempt 80 TCP. Kind regards

Hello, the Air client is portable, it's a stand-alone executable. You don't install or uninstall it. Kind regards

Hello, we have had a momentary problem for a few minutes preventing access to the Air client for Windows only. The problem has been fixed, we apologize for any inconvenience. Kind regards