Staff

Hello! As far as this admin knows no, it is not possible on Windows with our setup and our server pushes. You can anyway achieve the same purpose by running a VM and performing an OpenVPN connection on the host and a different OpenVPN connection on the guest OS. Connect the guest OS to the host via NAT, not bridged mode. In this way in the guest OS you will have connections over OpenVPN over OpenVPN. Kind regards

Hello! Don't worry, it's a problem easily fixable. It is caused by the fact that Tunneblick 3.2.8 is not compatible with Mac OS X 10.8.x. Please upgrade to Tunnelblick 3.3beta21b: http://code.google.com/p/tunnelblick/wiki/DownloadsEntry?tm=2 Kind regards

Hello! Excellent! Everything you did is correct and the tests you have performed confirm that you are protected against any leak. The uTorrent application rules are superfluous but you can keep them, they do no harm (but see below). As a side note, you might like to disable logging for the "Allow" rule in the uTorrent application rules in order not to overload Comodo logging which in some cases might slow down your system slightly. Kind regards

Hello! This is a copy & paste of an e-mail from the support team you should have received a few minutes ago, this admins pastes it here for general knowledge: On 02/06/2013 04:55 AM, fawkesguy wrote: > I have port forwarding enabled, and it's working for my web server and webcam, but I can't get it setup for Xbox Live. Xbox Live needs port 3074 UDP & TCP opened. I have my AirVPN forwarded port set to UDP & TCP, local port 3074. I've also tried it without setting the local port. Doesn't work either way. I'm also using DNAT. Below is what's in my firewall. The Xbox is 192.168.1.50 I've deleted the entries for the web server and webcam. > > iptables -I FORWARD -i br0 -o tun1 -j ACCEPT > iptables -I FORWARD -i tun1 -o br0 -j ACCEPT > iptables -I FORWARD -i br0 -o eth0 -j DROP > iptables -I INPUT -i tun1 -j REJECT > iptables -t nat -A POSTROUTING -o tun1 -j MASQUERADE Hello! The rule iptables -I FORWARD -i br0 -o eth0 -j DROP might be right or wrong (it depends on your setup) try to delete it for testing purposes (only after you have corrected another rule, see below). > > iptables -t nat -I PREROUTING -i tun1 -p tcp --dport 2127 -j DNAT --to-destination 192.168.1.50 > iptables -t nat -I PREROUTING -i tun1 -p tcp --dport 2127 -j DNAT --to-destination 192.168.1.50 Why the above rules are duplicated? Maybe the Xbox needs UDP packets as well, try to change the second one to: iptables -t nat -I PREROUTING -i tun1 -p udp --dport 2127 -j DNAT --to-destination 192.168.1.50 (note "-p udp" instead of "-p tcp" on the second rule) Kind regards AirVPN Support Team

Hello! Please note that 4 Mbit/s is the minimum guaranteed allocated bandwidth per each user, please see here for more details: https://airvpn.org/faq#speed In order to pick the server which can provide you with the best performance please: - connect to various server which are NOT at 100% capacity on different ports (in particular try 443 UDP, 53 UDP and 80 TCP) - perform the internal speed test on different times for each connection to every server, every port and every protocol, so that results are not biased by further, external servers and time fluctuations: http://speedtest.air Kind regards

Hello! The Air client is portable, it is not installed in the system. OpenVPN installation does not change anything pertaining to port forwarding. If you could be more specific, we should be able to provide you with additional support. Kind regards

Hello! About web sites, you might like to check for DNS leaks here while your system is connected to an Air VPN server: http://dnsleaktest.com If you run a torrent client, you can check that there are no leaks here (remember to launch your torrent client AFTER your system is connected to the VPN: http://checkmytorrentip.com/ For a general check of a successful connection, see your client logs, also browse to our web site from the connected to the VPN system and look at the central bottom box, it must be green showing "Connected!" and the server name your system is connected to. Kind regards

Hello! Yes, but not with OpenVPN. Have you ever managed to disclose a real IP address from a client behind an OpenVPN server with Flash? If so, in which environment? Kind regards

Hello! Can you please make sure that you select a TCP port in the "Modes" tab of the Air client just before you start the connection over the proxy? Kind regards

Hello! Yes, please select "Enter" menu and click the iOS icon to see instructions for iOS, direct link: https://airvpn.org/ios Kind regards

Hello! The performance you experience may be normal in optimal conditions. After you have connected please browse to our web site with the same connected computer and look at the central bottom box. If it's green your system is really connected, if it's red it's not. In this latter case, please send us the client connection logs. Kind regards

Hello! Let's determine if it's a DNS issue. When you connect to a VPN server and you can't browse, please open a command prompt and issue the following commands: ping 10.4.0.1 ping google.com ping 212.117.180.25 and send us the output at your convenience. Kind regards

Please see here: https://airvpn.org/faq#speed Correct. Yes, it is possible, and yes, you can use external desktop connection in the same network. Kind regards

Hello! Maybe they are two distinct problems. Can you please send us your client logs? After you have tried a connection and the problem occurs, please right-click the Air client dock icon, select "Logs", click "Copy to clipboard" and paste in the forum message. Kaspersky might interfere if not configured properly, let's see if the logs can help in troubleshooting. Kind regards

Hello! Can you please tell us your exact OS version? Kind regards

Hello! Great news, thank you for keeping us informed. About Replay-window backtrack, a few of them may be unavoidable with UDP, due to network congestion, sporadic packet loss... if it's a replay attack, OpenVPN can defeat it easily. A connection toward a TCP port will prevent that error (and it is also an additional security layer against replay attacks at the price of a performance hit due to full error correction implemented in TCP). There is some admin's article about that in the forum, you might find it interesting: https://airvpn.org/index.php?option=com_kunena&func=view&catid=3&id=3773&Itemid=142#3784 We strongly recommend NOT to alter OpenVPN replay protection sliding-window size and time unless absolutely necessary. Modofying such parameters in a human rights hostile country is an unacceptable risk. Increasing replay protection sliding-window size and/or time on an UDP connection may significantly weaken OpenVPN ability to defeat replay attacks, exposing you to injection of forged packets from malignant governments or entities with the ability to monitor your ISP lines. Kind regards

Hello! It's UDP, please see here: https://airvpn.org/faq#udp_vs_tcp Kind regards

Hello! Let's determine if it's a DNS issue. When you connect to a VPN server and you can't browse, please open a command prompt and issue the following commands: ping 10.4.0.1 ping google.com ping 212.117.180.25 and send us the output at your convenience. Kind regards

Hello! Yes, in order to determine if it's your ISP fault you need to be disconnected from the VPN when you perform tracert and ping. Kind regards

Hello! Ok, the results show that Herculis entry-IP address is not null-routed by your ISP. Now, you should make sure that no program in your system (firewall, interfering programs like Malwarebytes, PeerGuardian/PeerBlock...) drops UDP packets toward Herculis and/or from openvpn.exe. Kind regards

Hello! No, it's not possible for them. About problems in seeding, please see here: https://airvpn.org/faq#p2p Kind regards

Hello! Apparently Herculis is not reachable from your system. Can you please open a command prompt, issue the commands: ping 94.242.205.234 tracert 94.242.205.234 and send their output to us? Kind regards

Hello! That's because the subscription for "dre2112" and its grace period expired. You can anytime check your account status on the "Member Area" section of the web site. If you think this is a mistake, do not hesitate to contact the support team at your earliest convenience (menu "Support"->"Contact us"). Kind regards

Hello! Did you receive the e-mail from the support team? Basically there's no difference, you can just follow Linux instructions. Also, see this post by jessez: https://airvpn.org/index.php?option=com_kunena&func=view&catid=3&id=7363&Itemid=142 About the logs, would you please send the complete logs? Kind regards

Hello! An account can have only one active connection at a time. This means that you can connect as many devices as you wish simultaneously from the SAME network. If you need to connect different devices from multiple, different networks simultaneously, you need multiple accounts. A FAQ with answer is available on that. More than 1 simultaneous connection from the same account is not allowed, the main reason is our commitment to guaranteed allocated bandwidth. It would be a real problem if we could not know in advance the number of connections from different networks from the same account and the plans pricing should be reviewed (i.e. higher prices), causing no advantage to multiple networks users and a disadvantage (in terms of price) to single network customers. Thank you! Kind regards