Staff

Hello! We confirm you that the video you have embedded is accessible from every Air server except Phoenicis. The video you have linked is accessible from our Germany servers as well. You have already made sure that HTML5 geo location is disabled, that cookies and flash cookies have been wiped out and that you are not logged in YouTube with a German account, correct? If so, just for an additional check, please read here about a user in the USA who had your same problem and make sure that your system is clean from malware: http://productforums.google.com/forum/#!topic/youtube/zWnsZsxXa0c Please also test, if possible, with another machine where you run a portable browser to make a comparison. Kind regards

Hello! We recommend Comodo for Windows on the basis of objective tests on pro-active security. The PCMag article you refer to unfortunately lacks the depth and the objectiveness of such tests. Although the writer is a very competent person, the article seems to be targeted unfortunately to readers with rudimentary or none technical knowledge (the sentence "Super-techie users will love it; ordinary folks may be a bit overwhelmed." is disconcerting, to say the least). Compare the poorly mentioned tests of the PCMag article (for Comodo but also for ZoneAlarm) with the detailed and reproducible tests performed here: http://www.matousec.com/projects/proactive-security-challenge-64/results.php That said, we have always underlined that Windows lacks a real powerful packet filtering tool. If compared to iptables and pf, Windows firewalls are weak and lacking important functions. But there's no alternative for Windows users, so we recommend to use the firewall that at least passes successfully the highest number of leak tests, and Comodo performs better than any other software firewall for Windows. This is just a recommendation, of course we also recommend that you form your own, informed opinion and pick your firewall accordingly. Kind regards

Hello! Yes, the VPN server sees your IP address while your machine is connected to it and until it closes the connection, that's quite obvious (it's how the Internet is possible). If you need to hide your real IP address to our servers you have some options, for example: https://airvpn.org/tor We have widely discussed on this important argument since years ago, when a stronger anonymity layer is needed (typically for whistleblowers or persons operating in human rights hostile countries, or in any case in which you simply can't afford to trust us), for example here: https://airvpn.org/index.php?option=com_kunena&func=view&catid=3&id=54&limit=6&limitstart=6&Itemid=142#1745 Kind regards

Hello! In this case no possible correlation is visible to this admin. If anybody has some idea (which does not rely on web server intrusion/security breach) please feel free to post. Kind regards

Hello! We don't detect any problem in YouTube geo-location of all the other Air servers, so it's your browser or your system that's telling YouTube that you're in Germany. Please do not hesitate to inform us if you find the "guilty" leaker. HTML5 geo-location is disabled, right? EDIT: can you also post a link to a YouTube video not available in Germany that you can't access from Air servers (except Phoenicis)? Kind regards

Hello! As long as you don't allow correlations no security concerns are apparent. To make an example (it's a stupid example, but just to make it clear), assume that you want to run an FTP server behind an Air VPN server (for privacy reasons, for example), on a machine which also runs a web server which does not need that privacy. If you allow the web server to be reachable from the physical network interface and the FTP server only from the tun adapter, your machine may become vulnerable to correlations, i.e. it could be possible to discover that the web server runs on the same machine where the FTP server runs and therefore it would be possible to discover the real IP of the FTP server too. Kind regards

Hello! Understood, just one more question, the torrent client does not connect at all, or does it just display a yellow token and works anyway? In other words, the torrent client is unable to receive incoming connections or is it completely unable to work? Kind regards

Hello! If you're connected to Phoenicis, YouTube wrongly identifies Phoenicis exit-IP address as coming from Germany. It's a YouTube mistake, nothing more. Kind regards

Hello! Do you mean that when you forward remotely a port, everything is fine for some days and then the forwarded port does not work anymore for you on any server? If so, it's very strange, we'll investigate. We are looking forward to your confirmation (or feel free to elaborate, any detail could help us). Kind regards

Hello! Unfortunately there's nothing to add at the moment, please see here: https://airvpn.org/index.php?option=com_kunena&func=view&catid=3&id=9024&Itemid=142#9040 Have you already asked your ISP for explanations? Have you already tested a different machine on your same router? If so, what is the outcome? If not, you should do that at your earliest convenience. Kind regards

Hello! It's a PayPal security feature. PayPal refuses to complete a transaction if the account holder is logged from any IP address that does not match the previous data PayPal has about the customer country. It can't be ruled out that there are also additional security features we are not aware of. Please contact PayPal customer service for additional information. Kind regards

Hello! Thousands of forums and threads talk about AirVPN, it's humanly impossible to read them all. About the the thread you linked, it has been widely debated in our forum. We already provide guides to prevent any leak, including leaks in case of unexpected VPN disconnection, without forcing the customer to use closed proprietary software. Of course there will always be people who love closeness and do not appreciate openness, but we prefer openness. The next Air client release (only for Windows and Linux with Mono) will include a security feature to prevent such leaks, but it will not be based on unreliable methods. In any case, using a firewall is still the optimal solution, and we will never compel a customer to use our proprietary software, that must always remain totally optional. Finally, using a task that forcefully kill applications is deprecated and unsafe. Kind regards

Hello! The only way for Google to track your real location is when it's your system that informs Google about y it, for exampe with HTML5 geo-location or simply if you have an account in Google associated to your real country. Disable HTML5 geo-location, delete geo-location permanent tokens, delete cookies and do not send to Google deliberately your information. Kind regards

Hello! Which browser do you run? Kind regards

Hello! Your case does not require policy routing. If your server is connected to an Air VPN server but you want it to reachable via ssh NOT behind the VPN server, just bind sshd to the IP address of the network card you want it to listen to. In /etc/ssh/sshd_config locate the line ListenAddress and set it to the appropriate address. Then restart sshd. You can also specify multiple IP addresses with multiple "ListenAddress" lines. On the contrary, if it's your client connected to an Air server, and your server is not, just use ssh normally. Kind regards

Hello! We'll surely do our utmost best. Kind regards

Hello! Don't forget that this service is experimental and not advertised. We'll look into the issue but we don't guarantee anything. That was an additional information, we tested YouTube as well. Yes, obviously. It's not a database with problem, it's a database with wrong data. Phoenicis is in Bucharest, Romania. A service that correctly geo-locates Phoenicis IP addresses is http://ip2location.com. Kind regards

Hello! No, it's an IP geo-location error, the Singapore servers are in Singapore. You can see the real locations of our servers here: https://airvpn.org/status Kind regards

Hello! Currently BBC iPlayer is accessible from every server except Phoenicis, where an error is returned by the BBC (it does not appear as a geo-location problem). About YouTube, YouTube recognizes the Phoenicis IP address as a german one (a database error), so use another server as well if you want to access YouTube contents not accessible from Germany (except German servers, of course!). Therefore your setup should be fine, just don't connect to Phoenicis. Kind regards

Hello! The only explanation this admin thinks of is that you're running Windows and you're having a DNS leak. In this context, with "DNS leak" we mean an unencrypted DNS query sent by your system OUTSIDE the established VPN tunnel. Windows is the only OS which suffers of DNS leaks, basically because it lacks the concept of global DNS, so it's not an OpenVPN fault. Please check here: http://ipleak.net If you see, in the list of DNS IP addresses, an address belonging to your ISP, then you have DNS leaks. In order to fix DNS leaks on Windows you have various options: - follow the instructions you have received in the welcome e-mail, or - follow our guide https://airvpn.org/index.php?option=com_kunena&func=view&catid=3&id=3405&Itemid=142 , or - set 10.4.0.1 and 10.5.0.1 as primary and secondary DNS IP addresses of your physical network card and modify your hosts file as specified in the above linked guide (in this case follow only step 12). In order to modify DNS in your physical network interface, please tell us your exact Windows version and we'll link one of the several guides on the Internet. Kind regards

Hello! Thank you for your subscription. It's our fault, not yours, we have installed a completely new, much more powerful configuration generator without updating instructions for DD-WRT. Now the configuration generator by default generates embedded with certificates and keys configuration files. In order to force the configuration generator to generate separate files: - click on "Advanced Mode" - tick the box "Separate certs/keys from .ovpn files" In this way you will get separate user.key, user.crt and ca.crt files, in addition to .ovpn configuration file according to your choices. In order to see all the new features of the service and the configuration generator please see here: https://airvpn.org/index.php?option=com_kunena&func=view&catid=3&id=8517&Itemid=142#8517 Instructions will be updated very soon. Kind regards

Hello! It's not what we see... please let's continue this conversation in private, going further in public might compromise your privacy. Or just take the additional days, no problems. Kind regards

Hello! It is nice, but not 100% reliable. The script puts down your physical interface when OpenVPN exits. If OpenVPN is trying a connection, or a re-connection, the interface is still up and a leak is possible. On the other hand, you can't keep down the physical interface, otherwise OpenVPN will never re-connect. Alternatively, set iptables rules to prevent securely any leak: https://airvpn.org/index.php?option=com_kunena&func=view&catid=3&id=1713&limit=6&limitstart=30&Itemid=142#2010 Kind regards

Hello! The expiration date of your account looks correct according to your payments... in this case it does not appear that we have donated free days to your account. Kind regards

Hello! So it seems that outgoing UDP packets are blocked anyway. Is there anything in your system or in your router that can cause such a block? If not, a possible explanation (although unlikely) is that your ISP is dropping every outgoing UDP packet (except those for its own DNS). If it's the case, you are forced to connect over TCP. Such an over-blocking however would prevent usage of every application that rely on UDP, so it's very unlikely and would imply that your ISP is not really providing you with Internet access. Anyway, if you can't find anything in your system and in your router that causes the problem, try to connect to a VPN server with another machine connected to the same router. If the problem persists, eventually you might like to ask your ISP for explanations. [EDIT] Have you tested different servers? Kind regards