Staff

Hello! 1.) Yes. You don't need to do anything on your side. 2.) Any https site will see your connection as coming from an Air VPN server exit-IP address. OpenVPN adds a further layer of encryption (on top of the the web site encryption) from your node to the VPN server you're connected to, which is important if you wish to prevent your ISP from knowing which https sites you access and have some other beneficial side effects, such preventing SSL/TLS BEAST-like attacks. Kind regards

Hello! Thank you very much for your information! After some investigation, it comes out that, for some reason we can't imagine at all, OpenDNS servers resolve (intermittently or not) our *.vpn.airdns.org domain names absurdly. We have no idea about why OpenDNS is breaking our domain names, we will contact them, in the meantime please do NOT use OpenDNS or generate configuration files only with IP addresses. air# dig @208.67.222.222 europe.vpn.airdns.org ; > DiG 9.8.4-rpz2+rl005.12-P1 > @208.67.222.222 europe.vpn.airdns.org ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;europe.vpn.airdns.org. IN A ;; ANSWER SECTION: europe.vpn.airdns.org. 0 IN A 67.215.66.132 ;; Query time: 640 msec ;; SERVER: 208.67.222.222#53(208.67.222.222) ;; WHEN: Fri Aug 23 20:13:40 2013 ;; MSG SIZE rcvd: 55 Kind regards

Hello! Plans for tls-auth have been postponed to 2014/2015. Priorities for 2013: 1) release of Eddie 2) infrastructure expansion Kind regards AirVPN Support Team

Hello, either it was a mistake or you have requested multiple trial accesses. Please feel free to re-submit your request. Make sure to do it from a registered account, using the "Contact us" form. Please also make sure to select "Trial request" as department. Kind regards

Hello! You need to install OpenVPN on the AppleTV. There are both commercial and free solutions that allegedly allow that. Patchstick: http://patchstick.ca/ aTVFlash: http://firecore.com/atvflash-black atv-usbcreator: http://code.google.com/p/atvusb-creator Kind regards

When I renewed my second account, I tried using the discount code that I had used when I first bought it. And it did not work. At the time I was not that concerned and just went ahead. Should I have asked for another code? I am about to renew my second account again. Hello! Yes, please feel free to do so (just ask for it with "Contact us" form at your convenience - it's the fastest way). Kind regards

Hello, we currently have 6 servers in the UK, in 3 different datacenters. Please try them all to make a comparison and detect the one that can give you the best performance. If you get the very same performance from each of them, chances are that you're using the maximum bandwidth cap allowed by your ISP, in which case you might like to get informed about their traffic shaping/capping policies. Also, in this case, try different ports to try to bypass traffic shaping. Kind regards

Hello, we inform you that Algol provider will migrate its datacenter on August 26. Algol will go down for 24/48 hours. At the end of the migration Algol will have different IP addresses. As usual the servers monitor will keep you informed about the server status. Kind regards

Hello! Persei is in Fremont (California). We do not detect any latency problem at the moment, hopefully it was just a momentary problem from your node. See also the Ping Matrix: https://airvpn.org/pingmatrix Kind regards

Hello! Those addresses are DNS servers from Verizon. In order to change OS X DNS please see for example here: http://www.howtogeek.com/howto/38793/how-to-switch-mac-os-x-to-use-opendns-or-google-dns/ Kind regards

Hello, it is available, perhaps you missed the FAQ. Kind regards

Hello, not that it really increases or lowers security in every circumstance, anyway the answer is yes. Kind regards

@retiredpilot In your case (TOR usage raising alerts), TOR over OpenVPN might be a perfectly acceptable solution: our servers would come to know your real IP address, but our servers (and therefore any malignant entity that could have the power to fully monitor the server you're connected to) would know nothing about your traffic content, real origin, real destinations and real protocols (assuming that that malignant entity does not control, in addition to the server, even the relevant portions of the TOR network: extremely unlikely anyway). Your country would not see TOR usage from your node. Of course there is a major limitation, you can't use UDP over TOR. Evaluate this possible solution, only you can decide if it's ok or not. Kind regards

@csc106 Hello! Following hints by ZPKZ, can you please try to delete file: C:\Users\******\AppData\Roaming\AirVPN\Air\1.0.0.0\AirVPN.xml It's the Air client configuration file. When you re-start the Air client, it will re-create the file (you will have to enter again your login name). If that file is somehow corrupt, deleting it will solve the problem. Kind regards

Hello! Does it happen with every and each Air server? Kind regards

Hello! Apparently the Air client passes to OpenVPN a wrong remote address (localhost) or does not pass any parameter at all. Can you please try again with any antivirus or similar program disabled? When you "login" with the Air client, does it show the correct servers list? Can you please check that "Proxy" settings in client "Preferences" are set to "None"? Kind regards

Hello, probably it's true that "balls of steel are needed to run a TOR exit-node". You must be ready to take into account necessity of legal fights and potential, serious annoyances if you really wish to help TOR with an exit-node. The following links show some of the bad things that happened to TOR exit-node operators (essentially due to "authorities" lack of understanding of how TOR works and general incompetence): https://lists.torproject.org/pipermail/tor-talk/2009-September/019511.html http://www.techdirt.com/articles/20121130/07495221185/tor-exit-node-operator-charged-with-distributing-child-porn.shtml etc. On the other hand, we have never seen a telecom operator general manager charged with similar accusations, when "abuses" and "infringements" probably occur much more frequently on any telco network than on the whole TOR infrastructure. That said, please read the Tor Project recommendations to run a TOR exit-node: https://blog.torproject.org/running-exit-node Kind regards

@Royee You don't see anything outside Windows because DNS leaks occur on Windows only. In the "How-To" section of the forum you can find various guides to prevent any leak on systems running iptables. Kind regards

Hello! No collisions are possible: when the system reserves a port to your account, you can rest assured that you don't need to worry about that. We have investigated the issue and one of your forwarded port is totally blocked by the system on some servers. This is due to very particular circumstances: either an attack against our servers toward that port has been detected by the server or activity that infringes our Terms of Service to that/those IP:port has been reported to us. In both cases momentary port blocking/packets dropping is essential to protect our system without infringing customer's privacy. Thank you for your understanding. For any further information and/or for your problem with the Air client please open a ticket at your convenience. Kind regards

Hello! We confirm you that you should NOT forward ports on your router. That would potentially expose your system to correlation attacks. Kind regards

@itsmeprivately Hello, it's just a matter of automatic triggers (when they are possible to implement) to be decided on a case by case basis. Kind regards

Hello, as you have correctly noticed, Cygni load has been more or less constant during last days. Such extreme performance differences are usually due to network congestion, from your ISP or anywhere between your node and our node, or (but in this case you would be warned on the servers monitor and we confirm you that Cygni has had no problems) to some server malfunctioning (typical example: packet loss) or attack against the server itself. Check the servers monitor https://airvpn.org/status and the Ping Matrix https://airvpn.org/pingmatrix to have an overview of the servers. Do not hesitate to switch server to perform a comparison. Also, you might like to have a look at your OpenVPN logs to check whether there's some intermittent problem (such as packet loss, or packet fragmentation). If in doubt, do not hesitate to send us a copy of the logs, taken while the problem is occurring. Kind regards

Hello, can you please perform a test with our PortListener available here: https://airvpn.org/topic/9315-port-forwarding-tester/ and report the results? Please set the PortListener to listen to your VPN IP address (10.x.x.x) on your remotely forwarded port, then log in the web site, go to your ports panel and start a test for that port (and also for some other port, for a more extensive test). Look at the PortListener and check whether any incoming packet is detected or not. Kind regards

Hello! Theoretically, very few kbit/s would be sufficient to maintain the tunnel active. From the logs, it seems that periodically the bandwidth goes to 0 (see activity timeout lines) and therefore the connection is lost. Maybe there are "dropouts" in Starbuck connection? Kind regards

Hello, your system is resolving europe.vpn.airdns.org to 67.215.66.132, which is not an entry-IP address of any of our VPN servers. In fact, it is an OpenDNS server IP address (OpenDNS is in no way related to AirVPN, of course). So Tunnelblick tries to establish a connection to... an OpenDNS server, which obviously fails. We can't say why it happens, can you please check your hosts file? Which DNS servers is your system using? Could you please open a command line and type ping europe.vpn.airdns.org and send us the output of the command? As an immediate solution, you can re-generate your configuration file(s) ticking, on the Configuration Generator, "Advanced Options", and then ticking both "Resolved hosts in .ovpn file" and "All servers for area or region", so that the generated file will contain only IP addresses and not host names. It would be anyway very interesting to investigate on the issue, so do not hesitate to reply if you wish so. Kind regards