Staff

Hello, if the speed is very similar on all of the 5 datacenters (Manassas, Fremont, Chicago, Jacksonville and Denver), it is a strong hint that your ISP has implemented port shaping on outbound 443 UDP. Test 53 UDP and 80 TCP for a comparison. If the speed remains very similar on every server, datacenter and port, your ISP might have implemented unconditional traffic shaping against your line on everything different than some limited protocols, ask your customer support for clarifications if it's the case. Kind regards

Hello, what is cd_build? If you refer to command cd, cd is a built-in bash command, and an example of its syntax is: cd [dir] where dir is the directory you wish to make the current directory. Kind regards

Hello, thank you for your subscription. As far as we can see it's all right, this account was active since the subscription date and has been successfully connected to some VPN server, can you please confirm? Kind regards

Hello, from the output of the commands you sent us, it seems there's no problem with your ISP: everything appears to work just fine. Would you please try, at your convenience, a connection directly with OpenVPN? It will take some minutes to be configured, but it may be worth the time, because the test will allow to see whether the problem is somehow related to Viscosity or not: https://airvpn.org/topic/9325-development-of-os-x-airvpn-client/ Kind regards

Hello, you have various options, maybe the most "elegant" is: https://airvpn.org/topic/3405-windows-comodo-prevent-leaks/ and then have OpenVPN running as a service. In this way your system can't get out on the Internet, not even before logging in, until a connection to an OpenVPN server is successful. This is a much more complete solution than the one you cite (which will not prevent your computer to communicate with the Internet while booting and starting services, before a user logs in), anyway please do not advertise competitors in our forum. Kind regards

Hello, no we don't. Please note that that was already answered in your ticket, please do not duplicate your requests across multiple contacts. Kind regards

Hello, it looks perfect. Can you please check your browser configuration? In particular, it must not be configured to connect over some proxy. Test also some different browser please. Kind regards

Changelog: - "Premium" field in "userinfo" service fixed. - Nested group "user" & "connection" in "userinfo" service. - Output format "text" now supports nested information. - Updated FAQ. Kind regards

Hello, it is now available: https://airvpn.org/faq/api/ Ports control is currently unimplemented, all the other features are working. Do not hesitate to post your feedback. Kind regards

Hello, it might be a DNS problem, can you please check? Feel free to send us the output of the following commands (while the system is connected to a VPN server): ping 10.4.0.1 traceroute google.com ping 8.8.8.8 and the Viscosity connection logs. Kind regards

@ciub Hello, make sure that your current directory includes openvpn executable file and .ovpn configuration files (generated by our Configuration Generator), or that openvpn executable is in the path. In order to change current directory, use the command cd, for example: cd "name_of_the_directory_where_you_have_openvpn_and_configuration_files" Kind regards

Hello, please access the Configuration Generator ("Client Area"-->"Config Generator") and follow the instructions. After you have downloaded the files you wish, decompress the archive if necessary, copy the files and paste them in the appropriate directory. Since you wish to run OpenVPN directly on OS X in order to connect OpenVPN over TOR, just paste the files in any folder you like and follow the instructions for OS X for direct OpenVPN usage (you can't use Tunnelblick because it does not support connections of OpenVPN over a proxy): https://airvpn.org/topic/9325-development-of-os-x-airvpn-client/ Kind regards

Hello, it's not our program, it's OpenVPN compiled for OS X. It is confirmed that it works. What problem do you experience? Kind regards

Hello, mix unencrypted and unimportant traffic with encrypted traffic. However, this problem is still unconfirmed and we might delete it, do you have something to add or note about it? If so, feel free to update the thread. Kind regards

Hello! Thank you very much for the information. Our monitoring system does not detect problems with Herculis. We'll test the server extensively and manually, anyway. It might be a (hopefully momentary) problem between your ISP and Herculis, or actually a problem inside Herculis datacenter (but we have no reports from the provider about any network issue at the moment). Does anybody else wish to report about Herculis? Kind regards

Hello! Yes, it is possible, and the Ubertechie is completing its implementation. We are all confident it will be ready in the next 24 hours. (see here for further references about some obscure Air operators, if you dare) Please do not hesitate to send us your feedback, it will be much appreciated. Kind regards

Hello, please run OpenVPN directly. There are issues in connecting OpenVPN over a proxy with Viscosity and Tunnelblick. Please read here: https://airvpn.org/topic/9325-development-of-os-x-airvpn-client/ Kind regards

Depends. It would be difficult if Youtube streams everything encrypted and doesn't cooperate, but I believe streaming goes out over plain unencrypted http. (I could be wrong.) So you should be able to find out what video a certain stream is just by looking at it. Hello, as a side note: you should be right, while you can access YouTube web site over SSL/TLS, the videos download is not encrypted end-to-end (not to be confused with encryption of the content for DRM purposes, which is active on some videos and that can be "circumvented" by anyone), according to a quick research performed by Martin Sauber at the end of 2012: http://mobilesociety.typepad.com/mobile_life/2012/12/observation-youtube-is-now-https-but-the-streams-are-not.html Re-performing that test, now that 7 months have passed since the writing of the article, is easy with Wireshark. Kind regards

Hello, we wrote something last year about how to defeat an adversary with similar powers, or multiple adversaries that co-operate with each other (and also with some higher powers): https://airvpn.org/topic/54-using-airvpn-over-tor/?do=findComment&comment=1745 Kind regards

Hello, just a "curiosity" side note, technically "over" is the correct term of common usage, while "through" may be confusing in some contexts. It's not that packets headers and payload are "pasted through" other packets headers, see also here to understand why "over" is preferred to avoid confusion: http://en.wikipedia.org/wiki/Tunneling_protocol So, for example, "OpenVPN over SSH" is a clear definition, while "OpenVPN through SSH" might cause ambiguity, it could be unclear whether it means "SSH over OpenVPN" or "OpenVPN over SSH" or even something else. Kind regards

Hello, we don't know how Netflix operates, anyway as a first, preliminary attempt, try to delete cache and cookies (including LSO Flash cookies) from your browser and from your Flash environment (if Netlifx uses Flash). Thanks to a very kind Air user, we should be able to test Netflix in the nearest future. Kind regards

Hello, that's correct. SSH connects to our servers and OpenVPN connects to SSH (it's OpenVPN over SSH). Once OpenVPN packets are encrypted again (the previous unencrypted header becomes part of the new encrypted by ssh payload, the previous encrypted header and payload are again encrypted and become part of the new encrypted payload; the new cleartext header is by SSH) and encapsulated, your SSH "client" sends them to our servers. In your system outgoing/incoming traffic, OpenVPN fingerprint is therefore never visible. Kind regards

Hello, yes! Kind regards

Hello, background for the readers: http://blogs.cisco.com/security/hijacking-of-dns-records-from-network-solutions/ You are wrong in searching for a solution on your side or on VPN side. We mean that maybe you're looking at the problem from an incorrect point of view. The exploit (if we can call it exploit... technically it might be incorrect to name it so) works by obtaining unauthorized access to the DNS authoritative nameservers, or by fraudulent practices by the operators of the nameservers themselves against their own customers! About the case you cite, please see also here: http://en.wikipedia.org/wiki/Network_Solutions#Controversy_over_subdomain_hijacking We also strongly recommend that you read this: http://en.wikipedia.org/wiki/Network_Solutions#Controversy_over_domain_name_front_running Thank you for having brought into attention this important topic. We're moving the thread to "General & Suggestions", everyone interested in registering domain names should be aware of the aforementioned practices and should avoid searching for domain names availability from Network Solutions systems. Kind regards

Hello, https://en.wikipedia.org/wiki/Extended_Validation_Certificate#Criticism Anyway we'll keep this option open. Kind regards