Staff

Hello, https://en.wikipedia.org/wiki/Extended_Validation_Certificate#Criticism Anyway we'll keep this option open. Kind regards

Hello, the traffic on the physical interface is equal to the sum of the traffic on the tun interface plus the overhead plus the internal network traffic plus some more (for example ping to VPN server) - so it is always higher than the tun0 traffic. If it's reasonably higher, it's perfectly normal. Browse to our web site and check the central bottom box for additional security (it must be green), or browse to http://ipleak.net Kind regards

Hello, it's already so (dynamic assignment). However that should not increase (or lower) security. Kind regards

Hello, geographical location detection through IP address is a messy matter. It's very difficult to keep a database in good order. It's very common that geo-IP location errors happen. Kind regards

Hello, excellent. Well, it's there (both on the Linux instructions and on the Config Generator help page) since months, maybe you missed it... Kind regards

Hello, we don't keep any log that can be exploited to identify a customer or a VPN client IP address and there's no law (not even in the UK) which enforces that. In the countries we operate, either our service is not within the scope of 2006/24/EC transposition, if such transposition exists, the 2006/24/EC transposition has been declared unconstitutional, or the transposition does not exist. Additionally, we do not monitor or inspect OpenVPN clients traffic and we do not transmit any data to third parties while a client is connected to a server. Kind regards

Hello, can you please publish the OpenVPN and network-manager logs? Kind regards

Hello! You can download OpenVPN, configuration files (including certificates and key) and tun/tap package all at once in our Configuration Generator as usual (just like with Tunnelblick, but in this case tick "Bundle with executables"). For very important information about using OpenVPN directly on OS X, please see here: https://airvpn.org/topic/9325-development-of-os-x-airvpn-client/ Do not hesitate to contact us for any issue. Kind regards

Hello, Tunnelblick, OpenVPN and Viscosity are all ready to use. Kind regards

Hello, thank you for your efforts and thank you for sharing! It looks good and very comfortable, some of us will test it and after that if it's all right we'll move it to the how-to. Some specifications for the readers: in order to work properly, the script needs the Configuration Generator set to "Resolved hosts" (*) so that in the .ovpn files "remote" line(s) there will always be an IP address, not a name (would the Windows firewall work properly with domain names instead of IP addresses?). It's important to specify because the majority of Windows users run the Air client, so they probably have never used the Configuration Generator. (*) anyway "Resolved hosts" is forced if the Configuration Generator is set in Windows mode - problems may arise only if a Windows user runs the Configuration Generator in some other OS mode. EDIT: alternatively we might provide something like "fake.ovpn", a simple text file with all entry IP addresses preceded by the "remote" keyword (if the script scans all the "remote" lines, i.e. if it does not stop at the first found "remote" line). Kind regards

Hello! The LAN/WiFi card DNS. Kind regards

Hello, no: the 10 Mbit/s value is just hard coded as a bogus value, it means nothing. Kind regards

Hello, can you please open a command prompt, issue the following command and send us its output? tracert airvpn.org Kind regards

Hello, if you use network-manager, please make sure you follow the instructions, in particular when they say to tick "Advanced Mode" and tick "Separate certs/keys from .ovpn files", because nm does not support embedded OpenVPN configuration files. Kind regards

Hello! We detect high packet loss (see also the Ping Matrix from the Status page) at the moment. EDIT: the problem seems solved now. Kind regards

Hello, about how that's possible, probably you're running Windows. Windows lacks the concept of global DNS. When Windows needs to send out a DNS query, svchost.exe (a system process running with high privileges that does many things) takes care of it. However, svchost.exe does not always send out the DNS query to the DNS server of the correct network card according to routing table and gateway. Now and then, under certain conditions (some of which are probably unknown to us, while others have been empirically determined) svchost.exe decides to send out DNS queries to the DNS server specified in some other network card, following the routing outside the VPN and causing the DNS leak. About fixing the DNS leak, you have various options, the quickest is probably forcing 10.4.0.1 and 10.5.0.1 as primary and secondary DNS IP addresses in your system physical network card. But please search the forum or look at How-To section for more solutions. Kind regards

Hello! Something's wrong, probably during the connection, can you please send us the Air client logs after a connection is allegedly established? Please right-click on the Air dock icon, select "Logs", click "Copy to clipboard" and paste in your message. Kind regards

Hello and welcome aboard! You need to follow the guide linked at the bottom of the instructions for Windows, direct link: https://airvpn.org/windows_autostart Alternatively, you can disable UAC. Kind regards

Hello, you can run either the Air client, any OpenVPN wrapper (such as OpenVPN GUI) or OpenVPN directly, according to your preferences. The Air client does not need installation. Kind regards

@miamiplayer Hello, it's just that you're running a Tunnelblick version (3.2.9) which is incompatible with your OS X (Mountain Lion)... nothing relevant or serious. Kind regards

Hello, VISA and MasterCard never did that. Please see the updates to the original article which started all the speculations: https://torrentfreak.com/mastercard-and-visa-start-banning-vpn-providers-130703/ Kind regards

Hello, your account has currently no ticket associated to it, please (re)write it. Kind regards

Hello, we can't confirm the 1st problem, can you please elaborate? 2nd problem confirmed, you are right, it's a bug occurring just after the registration. It does not affect registration in any way, it just requires that you reload the home page. Kind regards

Hello, it's already implemented. PFS is on SSL/TLS, which is used by OpenVPN. OpenVPN with double certificate authentication in TLS mode (as implemented in Air) provides forward security. New encryption key is negotiated every hour by default ("re-keying"), so this is a higher security degree than that described about IPsec. You can also lower this time frame. Kind regards

Hello, we can't confirm this, we can access it (the web site, we don't know the tracker) from the NL servers we tested. Can you please specify which specific servers you can't access the site from? Kind regards