Staff

Hello, yes, actually it is assumed that the instructions for Linux are read entirely. We're sorry if it has caused troubles. Kind regards

Hello, could you both try to run OpenVPN GUI (or OpenVPN directly) so that we can determine for sure whether the problem is in the Air client or somewhere in OpenVPN? Apparently it's in the client, but anyway doing so is not a waste of time: if it's the client, then you have an effective way to connect in any case. If it's OpenVPN, more clues will come out. Kind regards

Hello, it's TLS 1.0, but implemented on OpenSSL 0.9.6 or higher, so enhancements of TLS 1.1 and 1.2 are irrelevant for the infamous CBC vulnerability of TLS 1.0. This vulnerability was resolved by OpenSSL with a workarpound 12 years ago, in 2002. Not to mention that practical attacks based on that (such as BEAST, CRIME, BREACH) need additional support from browsers, cookies etc. etc. so they can't even begin with OpenVPN. Our web site server supports TLS 1.1, TLS 1.2 and Perfect Forward Secrecy, up to TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 for example. Perform this cool test https://www.ssllabs.com/ssltest/analyze.html?d=airvpn.org Of course you must have a browser supporting them. Kind regards

Hello, it's written in the Windows instructions page. Air client for Windows XP, Vista and 7 requires .NET 2.0. It should be installed by default but you have the link in the same page to download it, in case it's missing. Air client for Windows 8 requires .NET 4 (preinstalled on Windows 8). Also make sure that you do not mismatch 32 bit with 64 bit version or vice-versa. Kind regards

Hello, *.airvpn.org resolves into all the entry-IP addresses of the servers for that country or continent. *.vpn.airdns.org resolves into the "best" server entry-IP (chosen by the system through a rating system with parameters such as status, packet loss, latency and available bandwidth). Examples: ~$ dig @8.8.8.8 gb.airvpn.org +short 84.39.116.179 84.39.117.56 78.129.153.40 94.229.74.90 ~$ dig @8.8.8.8 gb.vpn.airdns.org +short 78.129.153.40 ~$ dig @8.8.8.8 nashira.airvpn.org +short 84.39.116.179 Kind regards

Hello, it looks like an IP geo-location database error. Kind regards

Hello! Please make sure that you're running the proper .NET framework and the proper client version for your system. Kind regards

Hello, the Configuration Generator works fine. In the instructions you can read: Select "Advanced Options"Tick "Separate certs/keys from .ovpn files"Kind regards

Hello! We're sorry, Paysafecard does not accept merchants who offer VPN services. Kind regards

Hello, thank you for your subscription renewal. bitcoincodes.com is an authorized reseller as usual. Kind regards

Hello, the percentage shows the busy bandwidth of each VPN server. Therofore 100% means that the server is at capacity. Values higher than 100% mean that the server is over capacity (bursts). The lower the % value, the more bandwidth a VPN server is able to provide. Kind regards

Hello, very well! No. However, the limit pertains to the data exchange connections. In Air you can forward up to 20 ports so you can add some more simultaneous data exchange connections to your FTP server. Kind regards

Hello! Therefore Singapore Telecommunications seems to be applying traffic shaping only on download, not on upload. Kind regards

Hello! Actually not, we have not detected any problem in our VPN DNS... Kind regards

Hello, yes, it's possible. About an FTP server, please see here: https://airvpn.org/topic/1700-ftp-server-and-client-on-air-vpn/?do=findComment&comment=1702 Kind regards

Hello! That's correct, the purpose of that option is "redirect-gateway def1" which is already accomplished in our service. It's totally equivalent to tick that box or not. Kind regards

Hello! We're very glad to inform you that a new payment processor for Bitcoin is available: BitPay. From now on, you can more comfortably pay in Bitcoin with an automated order in our web site. During the checkout, just select "Bitcoin (via BitPay)" and follow the quick & easy instructions! Paying in Bitcoin effectively enhances your privacy and improves the anonymity layer provided by our service. We would like to remind you that ONE and ONLY ONE authorized AirVPN reseller currently exists (12-Feb-2014), bitcoincodes.com. Anybody else selling or proposing AirVPN subscriptions or selling coupon codes is NOT authorized by us (12-Feb-2014). Kind regards and datalove AirVPN Staff

Hello! First of all, let's clarify the units for every reader. MB: Megabyte Mbit: Megabit s: second 1 Byte = 8 bit 1 MB/s = 8 Mbit/s Assuming a good quality line and low latency from your node to the VPN server (if you have high latency, for example with a satellite connection, then you will be unable in any case to get stellar performance with OpenVPN), a couple of possible reasons for poor performance are: 1) Traffic shaping. In the past years many ISPs (the majority in the world) have performed wild overselling, promising peak bandwidth performance that they could deliver constantly only if a tiny fraction (1% of even less) of their customers were connected simultaneously. They now prefer to shape traffic on almost everything instead of investing in infrastructure expansion. Comcast performs traffic shaping. In the European Union, an ISP is obliged by law to tell you if it performs traffic shaping or applies any other technique limiting your usage of any service or protocol, but not in the USA. https://airvpn.org/topic/10967-slow-airvpn-speeds-050mbs-down-or-less/?do=findComment&comment=15358 2) Wrong MTU size, so that you get packet fragmentation that hits performance. Possible solutions to problem 1 are changing connection ports (try in particular port 53 UDP) and switching to a protocol which might be less capped than another, for example by trying OpenVPN over SSL if you see that your "https traffic" is not as slow as pure OpenVPN traffic. A more effective solution might be changing ISP with one that can deliver what it advertises. Solution to problem 2 is changing the packet size with mssfix. Do not change TUN MTU size with directives "tun-mtu" and/or "fragment"! Without a corresponding change on the server side, doing that would have unpredictable effects and might also prevent a connection. Change it by using "mssfix" only. Start with "mssfix 1350" and test, then increase or decrease the size with little steps, re-testing each time. Please note (important) that mssfix directive makes sense only in UDP mode. On the www you can find also good methods which help you determine the correct value in order to speed up the trial-and-error process. See for example here for some more information and details http://www.dslreports.com/faq/695 Once again: do not touch the MTU of your physical or virtual network cards (unless you exactly know what you're doing), just operate through the OpenVPN directive mssfix. Kind regards

Why do I have to pay transaction fees on Bitcoin transfers? Why do I get the message "This transaction is over the size limit. You can still send it for a fee of 0.0005 BTC"? For transactions which draw coins from many bitcoin addresses and therefore have a large data size, a small transaction fee is usually expected. The transaction fee is an incentive on the part of the bitcoin user to make sure that a particular transaction will get included into the next block which is generated. See also https://en.bitcoin.it/wiki/Transaction_fees

Hello, Autoconfiguration" IP Addresses: 169.254.0.0 - 169.254.255.255Addresses in the range 169.254.0.0 to 169.254.255.255 are used automatically by most network devices when they are configured to use Internet Protocol, do not have a static IP Address assigned and are unable to obtain an IP address using DHCP. Please see also RFC-1918. http://www.iana.org/help/abuse-answers Kind regards

Hello, we do not detect any problem on Singapore servers, is there any feedback from customers living in some Asian country? Feel free to post! Kind regards

Hello, is the DD-WRT router behind some other network device? Kind regards

Hello! We're very glad to inform you that two new 1 Gbit/s servers located in Virginia, USA, are available: Electra and Kuma. The AirVPN client will show automatically the new servers, while if you use the OpenVPN client you can generate all the files to access them through our configuration/certificates/key generator (menu "Client Area"->"Config generator"). The servers accept connections on ports 53, 80, 443, 2018 UDP and TCP. Just like every other Air server, Electra and Kuma support OpenVPN over SSL and OpenVPN over SSH. As usual no traffic limits, no logs, no discrimination on protocols and hardened security against various attacks with separate entry and exit-IP addresses. Do not hesitate to contact us for any information or issue. Kind regards and datalove AirVPN Team

Hello, performance improved probably because your ISP performs traffic shaping on a port/protocol-basis or deprioritizes certain packets. UDP traffic to port 53 is less likely to be capped or deprioritized because it is normally made of DNS queries. Anyway, what you experience is a hint of possible illegal behavior from your ISP, IF you live in the EU and you have not been informed in a clear, comprehensive and understandable way in the contract about limitations on services and protocols (when such limitations are allowed by national and Community laws). Please see Directive 2009/136/EC (amending directive 2002/22/EC article 20): 14) Articles 20 to 23 shall be replaced by the following: ‘Article 20 Contracts 1. Member States shall ensure that, when subscribing to services providing connection to a public communications network and/or publicly available electronic communications services, consumers, and other end-users so requesting, have a right to a contract with an undertaking or undertakings providing such connection and/or services. The contract shall specify in a clear, comprehensive and easily accessible form at least: [...] — information on any other conditions limiting access to and/or use of services and applications, where such conditions are permitted under national law in accordance with Community law, [...] — information on any procedures put in place by the undertaking to measure and shape traffic so as to avoid filling or overfilling a network link, and infor­ mation on how those procedures could impact on service quality, Kind regards

Hello, just an additional note to the above: in checkmytorrentip, from our USA servers, you will see a different IP address, because the traffic is re-routed (this is performed to bypass a lot of trackers problems we were made aware of in the past, so for consistency the traffic is re-routed even to the checkmytorrentip address). Just make sure that your real IP address never comes out in the test. Kind regards