Staff

Hello! Our Data Channel cipher is AES-256-CBC. An Atom 230 is probably not able to decrypt/encrypt on the fly much higher throughput than that you already detect. Perhaps you're facing a mixture of traffic shaping and computational limits. We're sorry, we could have detected the cause of the bottleneck much earlier if only we had read your signature more carefully... Kind regards

Hello! Yes, that's correct. Kind regards

Hello, you need a DD-WRT build which includes OpenVPN. After that, please follow the instructions here: https://airvpn.org/ddwrt If you can't or don't want to flash a DD-WRT build with OpenVPN in your router (for lack of memory for example) you can anyway connect directly with your computer, tablet, phone... Kind regards

Hello, prices are in EUR or BTC (BitCoin). We accept EUR or BTC. Kind regards

Hello! For a quick run, go for installation of Eddie client in your Windows system, it's much simpler. Nothing prevents you from configuring OpenVPN in your router in the future, should you need it some day. With the same account, you can connect simultaneously up to three devices (to different VPN servers), so maybe you don't need a connection from your router. By the way, instructions for DD-WRT are accessible by clicking "Enter" from the upper menu of our web site and then clicking the "DD-WRT" icon. Kind regards

Hello! $ apt-cache depends airvpn airvpn Depends: gksu Depends: mono-runtime Depends: mono-utils Depends: libmono-system-runtime2.0-cil Depends: libmono-winforms2.0-cil Depends: libmono-corlib2.0-cil Depends: openvpn Depends: stunnel4 Kind regards

Hello! All of your results suggest that everything is reasonably fine, except for port 53 UDP, where there's some problem (maybe traffic shaping to prevent DNS exploits). The fact that in TCP and even with a tunnel inside another tunnel (OpenVPN over SSL/SSH) you get the same performance than in UDP might suggest that UDP is shaped. Data also weakly suggest that there might be an unconditional cap set around 28 Mbit/s (3.5 MB/s) on anything different than some white listed protocol. Kind regards

Hello! The reason has been thoroughly explained in our "News and announcements" forum. You can anyway watch RAI, Sky Italia and some other services from any VPN server in the world: with our service you don't need to connect to an Italy VPN server. Kind regards

The TLS Cipher point seems contrary to the instructions here - ("Select TLS Cipher to "TLS-DHE-RSA-WITH-AES-256-CBC-SHA") https://airvpn.org/ddwrt/ Now changing it to none did then allow me to connect to the vpn but would appreciate understanding relevance of this. Thanks! Hello! You are right. The "problem" is that on some builds only TLS Cipher set to "None" will allow a correct connection. On some other builds only "TLS-DHE-RSA-WITH-AES-128-CBC-SHA" will work. Both are clearly wrong, but somehow they are bypassed by other settings. We don't know the reasons for this strange behavior. Kind regards

Hello! If OpenVPN runs in your router then yes, you need to forward ports to the devices connected to the router because they are behind another NAT (the router NAT). You would need a DNAT, please see for example https://airvpn.org/topic/9270-how-to-forward-ports-in-dd-wrt-tomato-with-iptables/ If OpenVPN runs in the same device (a computer, for example) that runs uTorrent too, then forwarding another port (even with the same number) on the router not only makes no sense (the port set and interface have nothing to do with the remotely forwarded port set) but it is also dangerous because may expose your system to correlation attacks. Kind regards

Hello, Eddie is the code-name of the Air client 2.x. There are several problems with the tun/tap adapter driver and with OpenVPN itself. Please uninstall OpenVPN completely and re-install it making sure that you do not mismatch versions (for example, one of the reported errors might be caused by a 64 bit version running on a 32 bit system). Do the same with Eddie please. Kind regards

Hello, if a direct OpenVPN connection is possible, then OpenVPN is probably not disrupted and it's a problem of line stability. When you are in more restrictive networks, try also OpenVPN over SSL: with our client Eddie click the "AirVPN" button, select "Preferences", click "Protocols" tab, select "SSL Tunnel - Port 443", click "Save" and finally connect to a VPN server. In this way the OpenVPN tunnel will be itself tunneled in an SSL tunnel, causing encryption of OpenVPN packets headers and making therefore impossible to identify its "fingerprint'". Kind regards

Hello, no. On the contrary it will speed up considerably names resolution. Kind regards

Hello, it is not necessary to re-start the client, but it is obviously necessary to disconnect and reconnect to the VPN if a change is performed while a connection is active. Kind regards

Hello, to prevent Windows DNS leaks with Eddie it is enough to activate option "Force DNS". Click "AirVPN" button, select "Preferences", click "Advanced" tab, select "Force DNS" option and click "Save". Kind regards

Hello! To both. Ports you specify in your control panel are forwarded in few seconds to your client VPN IP in each and every VPN server your account connects to. That's also why you need to connect to different VPN servers when you perform multiple, simultaneous connections. Kind regards

Hello! We do not detect any problem either on Persei or Heze for connections (but we detected a stats problem in Heze which has been now fixed), can you please publish the Eddie client logs taken after the problem has just occurred? The fact that Persei latency is not displayed on your client makes us think that Persei is not reachable from your node. Kind regards

Hello! We're sorry, our plans do not include any VPN server in Italy. Kind regards

Hello! Neither the previous versions of the Air client nor Eddie affect performance, they are both OpenVPN wrappers. The 10 Mbit/s is just a dummy hard coded value in the TAP-Win32 driver which has remained there since years ago, it does not mean anything. Kind regards

Hello, put the servers you don't want to connect to in the black list. You can also define a white list. Kind regards

Hello! Because there are system processes constantly exchanging data. Kind regards

Hello! The poll is now closed. The winner is: OpenNIC. Donation will be delivered in the next days. Details of the donation will be published in our web site as usual. Thank you for your participation! Kind regards AirVPN Staff

Hello! Normally OpenVPN over SSL can get rid of traffic shaping, unless the ISP throttles https too, of course... @pelado Make sure that no packet inspection tool is active either on your system or on your router. Kind regards

Hello! Yes, from your description everything is fine. OpenVPN connects to stunnel, which listens on 127.0.0.1 (localhost):1413, that's why you see correctly that OpenVPN is connected locally. For an ultimate proof, browse to airvpn.org (with a browser not configured to connect to any proxy) and make sure that the central bottom box is green. Kind regards

Hello! Thank you for the report. At the moment the information you provided are useful, should we need more information we will contact you, thanks again! Kind regards