Staff

Hello, when you start it, the TOR proxy starts as well. Remember that if you wish a browser traffic tunneled over OpenVPN over TOR, you must run a browser NOT configured to connect over TOR. If you use a browser configured to connect to the TOR proxy, that browser traffic will be tunneled over TOR only. Kind regards

Hello! Yes. It's not that it "breaks" the chain, it's that the final exit-node is a VPN server, which is not a TOR exit node. On the Internet your system is visible with the VPN server exit-IP, since OpenVPN connects to the TOR proxy. Your outgoing data, after having passed through the TOR nodes (still encrypted by OpenVPN), reach the VPN server. Kind regards Kind

Hello, which GUI are you running? Kind regards

Hello! Maybe, or maybe not... after all it is clearly written that it's a working tested configuration, of course you are free to experiment with different configurations, including different bundles, TOR proxies and anything you like. Kind regards

Hello! The first correct DNS detection was by ipleak.net. According to your description, that was a real DNS leak: a DNS query was sent outside the tunnel to your router which sent it to your ISP DNS server. The reply followed all the way back up to your Windows box. The confusion you claim is normal. To understand the behavior you must consider first and foremost that Windows lacks the concept of global DNS. DNS servers can only be defined inside network cards (a configuration which must be customized to be replicated on system where DNS is properly implemented). You have also to consider that svchost.exe is the system process running with very high privileges which (amongst many other things) reads DNS addresses from network card configurations and sends DNS queries out. Now, even when a routing table and a default gateway are correctly defined in a way that only DNS of a certain interface should be queried, svchost.exe reads anyway all the DNS servers IP addresses of all cards. In some circumstances (apparently in a random way, but probably there's some underlying "rule") svchost.exe sends DNS queries to different DNS servers listed in other network cards. All the trouble is caused by this particular DNS implementation in all Windows systems which still nowadays lack the concept of global DNS. Eddie client has a feature for Windows that prevents DNS leaks, as you are already aware of, by forcing the correct DNS on other network cards, besides the tun/tap adapter. Client 1.92 and older versions do not have this feature. Kind regards

Hello, from the logs it appears that the TOR proxy is either not running or not listening to localhost:9150. Another option is that a firewall is blocking OpenVPN packets to/from localhost. Kind regards

Hello, the Malwarebytes message is a false positive (not uncommon with it), while the error message with Firefox is correct, there is no web server on Phoenicis (OpenVPN responds). Funny thing is that Malwarebytes was already informed (last year) and aware that our web site is obviously not a malicious web site but they kept their absurd point that it is. Draw your own conclusions. Kind regards

Hello! Yes, that's totally normal. If any contact with any possible frontend server fails, Eddie will try to bypass censorship by using any possible older available configuration file to connect to a VPN server. Once inside the VPN (where contacts will be again possible) Eddie will update everything transparently. Kind regards

Hi. Interesting idea. We ALREADY have a XMPP server, but it's used only by our staff (we use Pidgin+OTR on pc, and Xabber on mobile). It's not actually ready for public only because it has a lower priority : - We need help to study how XMPP works to configure it. - It's not currently under failover servers. - It needs a join between registered AirVPN forum members and XMPP accounts. We don't know how, but maybe it's possible to create chat rooms with XMPP, maybe with a web frontend that can be used from a page in https://airvpn.org website Kind regards

Hello, if it happens on every and each server you try, it might be your ISP line. If the same behavior occurs with many different providers the probability that it's our ISPs fault extremely low. If it happens only on some servers, can you please post a list? Kind regards

Hello! The test is hosted inside the VPN server. Random data are created and then sent to/from your system from/to VPN server entry-IP (therefore out of the tunnel) and inside the tunnel. These tests are not very reliable in absolute terms, their value lies more on relative comparisons between in-tunnel and out-tunnel throughput. Increase the buffer to try to get more precise results. We wanted to implement a test that does not need Flash or Java and that at the same time is running inside the VPN server in order not to rely on a 3rd node which causes bias. Kind regards

Hello! Because the test is performed to and from the same VPN server your system is connected to (that's why this test can work only with our service and when your system is connected to a VPN server). There is no bypass at all, routing table is respected. Kind regards

A beneficial mistake. Kind regards

Hello, true, in Mavericks the tun interface is UTUN and does not seem to be easily accessible by the user, we need to investigate. Kind regards

Hello! In case of geo-location errors, "real" Google search engine is anyway available at https://www.google.com/ncr ("ncr" is "no country redirect"). Kind regards

Hello! iwih2gk comment is good especially for security. In order not to weaken anonymity layer, it is even more important not to mix identities. As long as identities are not mixed, the anonymity layer is not compromised. An isolated from the rest of the local network computer can anyway weaken the anonymity layer if it uses, over the VPN, non-VPN identities. For "identities" in this context we mean any possible account, behavior, pattern. Such elements should not be used over the VPN and not over the VPN. Kind regards

Hello, those instructions are quite outdated and are not fine for Mavericks, which should use pf as packet filtering tool, not ipfw. First of all, be informed that OpenVPN clients are available in Android 4 or higher. https://airvpn.org/android If you need to share the VPN connection on Mavericks please follow this Apple guide: http://support.apple.com/kb/PH13855 keeping in mind that the interface you wish to share is tun0 (the network card used by OpenVPN), while the interface you wish to make accessible to the Android device is the WiFi card. Kind regards

Hello, bug confirmed, under investigation. Kind regards

Hello! What about point 3? Kind regards

Hello! Thank you very much for the information! We'll check. Just an additional information, is resolvconf package installed in your system? Kind regards

Hello! The IP range is ok. About the DHCP service: Please check your Windows manual or have a look here: http://computerstepbystep.com/dhcp_client_service.html Make sure that the service is set in "Automatic" (default value when Windows is shipped). Kind regards

Hello! The problem: ROUTE: route addition failed using CreateIpForwardEntry: The object already exists. [status=5010 if_index=11] etc. Please check: 1) Is your local network IP range not overlapping with VPN one (10.4.0.0/16)? 2) Is the DHCP client service running? 3) Does the same problem occur if you disable any firewall and antivirus? Kind regards

Hello, we would recommend troubleshooting. All of these problems are not reproducible in our Debian systems. Consider that Eddie for Linux has been developed first in Debian 7 machines! Additionally, Eddie is in beta version, so we need as much feedback as possible to fix any bug. Eddie 2.2 will have a lot of fixes. This is interesting, can you provide additional information? This is not Eddie's fault, connections are handled anyway by OpenVPN, regardless of network-manager or Eddie or any other OpenVPN wrapper. Kind regards

Actually, I'm hating ipleak.net. Would it please be possible for you to provide an actual .torrent file, not a magnet link, for testing the torrent piece of ipleak? I'm using a NAS box configured to access AirVPN; the client embedded in the box doesn't support magnet links. In fact, magnet links only work on a computer, and appear to download the actual .torrent file from a peer with the file in question, so I *can't* even extract the info to make a torrent file from the magnet link. Please stop assuming that all users use your system in a single way. Thanks. Hi, probably not, we'll see what we can do... in the meantime use another service which provides torrent files instead of magnet links to test. Kind regards

Hello! You can connect to the same server but make sure to connect different devices to different ports, otherwise you will always experience the problem you report. Also, port forwarding will not work properly in any case if you connect multiple times simultaneously to the same server. Kind regards