Staff

Hello! The first problem in the User Interface is that TLS Auth is not supported and there's no room for ta.key. So you can't use the UI to configure OpenVPN. Read https://airvpn.org/topic/9785-using-service-via-chromebook/?do=findComment&comment=17289 to see where we got stuck. We do not use username/password for authentication. The authentication phase (only after TLS Auth is passed successfully) is performed through certificates and client key. Kind regards

What is the difference between protocols? UDP is a connectionless protocol, so during the handshake it is not always possible to do an effective error correction. As a result, when there's high ping or low quality line during the OpenVPN login, the handshake may fail, although you could see no significant problem after (if) the connection is established. TCP is capable of handling these problems. On the other hand, UDP is more efficient once the connection is established. OpenVPN also implements a basic packets error correction even in UDP (only after the tunnel is established). If you experience problems with VoIP video/audio conversations when connected to the VPN through a TCP port, a typical case for which a difference may be visible (VoIP over TCP - for example UDP over TCP - is clearly inferior to VoIP over UDP because TCP implements ARQ, UDP does not), then go for an UDP connection. In general, you should always try an UDP connection if your ISP allows it and you don't experience any problem during the handshake. However, TCP is mandatory if you need a proxy to reach the Internet. VPN over TOR connections require a TCP connection. Variety of ports (53, 80, 443) is an additional option to try to bypass country or ISPs blocks, or bandwidth management. When OpenVPN connections are disrupted by your ISP (this happens for sure in China and Iran) then you need OpenVPN over SSL or OpenVPN over SSH supported by every AirVPN server and requiring, again, TCP.

Hello! We're very glad to inform you that a new 1 Gbit/s server located in Hong Kong is available: Hadar. The AirVPN client will show automatically the new server, while if you use the OpenVPN client you can generate all the files to access it through our configuration/certificates/key generator (menu "Client Area"->"Config generator"). The server accepts connections on ports 53, 80, 443, 2018 UDP and TCP. Just like every other Air server, Hadar supports OpenVPN over SSL and OpenVPN over SSH. As usual no traffic limits, no logs, no discrimination on protocols and hardened security against various attacks with separate entry and exit-IP addresses. Do not hesitate to contact us for any information or issue. Kind regards and datalove AirVPN Team

Hello! Brand new information on this very subject can be found here http://america.aljazeera.com/articles/2014/5/6/nsa-chief-google.html (anyway NOTHING that shows that Google was a PRISM data collection partner) Kind regards

Hello! Can you post the complete logs? What is the Operating System? Kind regards

Hello! Your system, not Alkaid. Those results are DNS queried by your system. Kind regards

Hello, the problems seems to lie here: May 4 11:03:47 username nm-openvpn[27015]: socks_handshake: server asked for username/login auth but we were not provided any credentials See here for a probable solution: https://airvpn.org/topic/11266-unable-to-connect-using-airvpn-with-tor/?do=findComment&comment=16294 Kind regards

Hello! Multi-hopping with servers belonging to the same operator will not protect you very effectively, anyway it is perfectly possible, you can already do it with our service. Please note that TOR over OpenVPN, or even OpenVPN over TOR, provides a much stronger anonymity layer than VPN server 1 over VPN server 2. Kind regards

Hello! Well no... at the moment our service does not support IPv6. Kind regards

Hello! No, it's not strictly necessary. If the field is left blank, trackers and peers will correctly detect the exit-IP address of the VPN server. Kind regards

Hello! What a bizarre idea... We can't know the MAC address of anyone because your computer network card MAC address never gets out of your local network since it is just not contained in an IP packet. Your router MAC address never gets out of your ISP network. Kind regards

Hello! Maybe the configuration file is corrupt, try to delete it. In order to see the name and path of the file you need to delete right-click the Air tray icon and select "Logs". In the first rows of the logs, look for the only file whose name ends with ".xml". Proceed to delete it and re-start the Air client. Kind regards

Hello! They are in RAM in real time. When a client disconnects they are lost. Kind regards

Hello! After the initialization sequence is completed, do not stop OpenVPN. Open a terminal, issue the following commands, copy everything and paste: ping -c 2 google.com ping -c 2 10.4.0.1 ping -c 2 8.8.8.8 traceroute google.com Since the logs are perfect (note that we wiped out an IP address to preserve your privacy), the above is basically a test to determine whether the problem arises from DNS. If it does, you might like to follow this guide (you'll need resolvconf installed): https://airvpn.org/topic/9608-how-to-accept-dns-push-on-linux-systems-with-resolvconf Kind regards

Hello, we don't confirm this, still working on all the VPN servers we have just tested. Remember, you must query VPN DNS ONLY. Kind regards

Hello! You don't need to re-generate. When you select a country in the Configuration Generator (assuming that you don't tick "Resolved hosts in .ovpn file"), the generated configuration file contains the line "remote .vpn.airdns.org ". So the system connects to .vpn.airdns.org, which is a name which resolves into entry-IP address of the server with the best rating according to the Air system (for Canada, ca.vpn.airdns.org). The system computes the rating for each server every 5 minutes according to a formula which uses weighted parameters: packet loss, server status, server latency from all other Air nodes and available bandwidth. Then the DNS record for each country is set to the exit-IP address of each server with the highest rating in that country. Therefore ca.vpn.airdns.org resolves to the Canadian server with the highest rating, which (when you tried connections) was not Thabit. If Thabit becomes the server with the highest rating in Canada, then the DNS record for Canada name is updated so that ca.vpn.airdns.org will resolve into Thabit entry-IP address. That happens for continents too. If Thabit becomes the server with the highest rating in America (continent) then the DNS record for america.vpn.airdns.org is updated accordingly. In the servers monitor (accessible by clicking "Status" from the upper menu of our web site) you can always see the current best server for each country, continent and planet, in one of the tables on the right. Kind regards

Hello! Yes, according to the antivirus. Remove it and perform a full system scan for malware. Kind regards

Hello! No, do NOT bypass the antivirus. According to the screenshot it seems that your system is infected, not the PayPal web site. Do NOT proceed to enter your PayPal credentials until you have resolved the issue. We would recommend that you do NOT run Internet Explorer in general. Kind regards

Hello! Yes it's possible, AirVPN fully supports remote port forwarding. Log in our web site with your account (the same account that you use to connect to the VPN servers), click "Client Area" from the upper menu, click "Forwarded ports" from the left tabs. Forward a random port and configure Apache to listen to that port. Alternatively, forward a random port and remap it to the local port Apache listens to (for example 80). You can also use our DDNS service, it will help your site to be more easily reachable. Web sites behind our servers must of course be compliant to our Terms of Service. Remote port forwarding references: https://airvpn.org/topic/9161-you-provide-remote-port-forwarding-what-is-it DDNS references: https://airvpn.org/faq/ddns Kind regards

Sorry, Windows 7. I tried http://ipleak.net/ and in the middle it shows the IP of the DNS of my ISP even though I entered 10.4.0.1 (or is it 10.0.4.1? I found different things in this forum...) as DNS. Best, Demon Slayer Hello! You should ask yourself how your system can know your ISP DNS address. It must be written somewhere, probably in the DNS settings of your physical network card or on your router. One random guide to change DNS in Windows 7: http://www.sevenforums.com/tutorials/15037-dns-addressing-how-change-windows-7-a.html or just search for "change dns" "windows 7" with some www search engine. Kind regards

Hello! If the tray icon is blue then the connection is established. However an established OpenVPN connection does not always imply that the traffic is tunneled. The next client release, Eddie, will include features to block all non-tunneled traffic. Feel free to post the Air client/OpenVPN logs, they may show important clues. Kind regards

Hello! Which Windows version? Kind regards

Hello! The connection appears to be fully successful. Check your DNS and whether you can ping/reach IP addresses, because it could be just a DNS issue. The VPN DNS server private IP address is 10.4.0.1, reachable from any VPN server regardless of the connection port and protocol. Kind regards

Hello! The solution can't come from our side. RAI works from our servers so it must be something in iOS. We'll try to investigate. What do you run to stream RAI? Is it a program which might communicate your location to RAI servers? Kind regards

Hello! We're very glad to inform you that a new 1 Gbit/s server located in Canada is available: Thabit. The AirVPN client will show automatically the new server, while if you use the OpenVPN client you can generate all the files to access it through our configuration/certificates/key generator (menu "Client Area"->"Config generator"). The server accepts connections on ports 53, 80, 443, 2018 UDP and TCP. Just like every other Air server, Thabit supports OpenVPN over SSL and OpenVPN over SSH. As usual no traffic limits, no logs, no discrimination on protocols and hardened security against various attacks with separate entry and exit-IP addresses. Do not hesitate to contact us for any information or issue. Kind regards and datalove AirVPN Team