Jump to content
Not connected, Your IP: 3.129.45.92
AirVPN

Staff

Staff
 View Profile  See their activity

  • Content Count

    10630

  • Joined

    ...

  • Last visited

    ...

  • Days Won

    1772

Everything posted by Staff

  1. Staff
    Hello! While you're connected to Virginis, can you please perform the following tests (from a shell) and send us the output of the commands? ping 10.4.0.1 ping speedtest.air Also, try to open speedtest.air with a browser. Additionally, can you please make sure that you have nothing that might block communications with Virginis from/to the tun0, such as LittleSnitch, some firewall rules... Kind regards
  2. Staff

    Staff replied to p3leceyfj's topic in General & Suggestions

    Hello! Linux-based systems are not affected by DNS leaks (as long as their OpenVPN client accepts the push from our OpenVPN server), since they have a global DNS. The "DNS leak" is a problem which normally torments only Windows systems which lack the concept of a global DNS. Anyway, you might like to secure your OpenVPN connection in Linux against any leak, including leaks in case of unexpected VPN disconnections: https://airvpn.org/index.php?option=com_kunena&func=view&catid=3&id=1713&limit=6&limitstart=30&Itemid=142#2010 Kind regards
  3. Staff
    Hello! You have probably blocked communications with your DHCP server. If so, this method has another significant side effect besides the ones you noticed, which may be good or annoying according to your tastes, that is your computer will not be able to get any connectivity at the boot (it will not even be able to connect to your router), because it can't communicate with any DHCP server. If you don't like this, you can anyway set a suitable static IP address for your computer network adapter. Make sure that you pick it inside your home net IP range and that it does not overlap with any other address in the network. Generally speaking, be aware that this method does not necessarily prevent DNS leaks, so if you set a static IP and static DNS servers to render DHCP pushes superfluous, re-check carefully for these leaks while you're connected to the VPN. Yes, it is necessary because the Air client needs to resolve airvpn.org in order to handle the login, display the list of servers and download files before giving control to OpenVPN. But with the recommended Comodo rules we have blocked DNS queries outside the tunnel. And the tunnel is not yet existing. So we need to allow "airvpn.org" resolution internally, that is exactly the purpose of the hosts file on any system. Playing with the hosts file is not dangerous, as long as you know what you're doing. On the contrary it becomes an extremely dangerous issue if some malware is playing with your hosts file, because it can hijack your connections (you type a hostname, you think you are accessing a certain service or website, while in reality you're on a fake one). So having a look at the hosts file after all is beneficial, not dangerous. Kind regards
  4. Staff
    Hello! Try to force your router to use the VPN DNS as primary, for example 10.4.0.1 if it connects to 443 UDP https://airvpn.org/specs Kind regards
  5. Staff
    Hello! This is very puzzling, because you can connect and exchange data without problems on any other server, and Virginis configuration is just the same. Can you please tell us whether you see in the logs this very same line (near the DEBUG lines) when you connect to a server that works for you? *Tunnelblick client.up.tunnelblick.sh: ServerAddresses '10.4.0.1' ignored because ServerAddresses was set manually Kind regards
  6. Staff
    Hello! Glad to know that the problem is solved. Probably the XML was corrupt and the autofix procedure did not work properly for some reason. About the version, forget the question. The version is specified at the beginning of the logs that you correctly pasted, you are using 1.7 (currently the latest version). Kind regards
  7. Staff
    Hello! Probably you have not followed step 1. Guides and tutorials are already available. We have now added two links in our guide (see them in step 1) which point to official Comodo Help tutorials. They should take you just a couple of minutes each. There are approximately 368000 tutorials (including dozens of videos) on Comodo firewall currently available on the web. Probably just another tutorial would have the same significance of a tutorial on how to perform copy and paste on a computer. We are confident on the intelligence of our customers and users and we'll never treat them like idiots. In the fields of security and privacy it's definitely better to push someone into studying 5 minutes more than giving pre-packaged solutions which may be dangerous and give a false sense of security. If this approach is not appreciated (but at this point we can safely say quite the opposite), then the HMA and other VPNs disasters have taught nothing. Kind regards
  8. Staff
    Hello! Probably it's not related to Comodo. Anyway you can be sure of this by setting Comodo firewall and Defense+ to "Disabled". Try to delete the file C:\Users\Alex\AppData\Roaming\AirVPN\Air\1.0.0.0\AirVPN.xml (while the Air client is not running). The Air client will re-generate it at the next run (you will have to enter again your login). Are you using the latest Air client version (1.7)? Kind regards
  9. Staff
    Hello! You have enormous latency and probably packet loss, unfortunately. If it's not a hardware problem, then there are major peering issues between your ISP and all the servers you have tested. In order to see which bandwidth you can obtain with our servers with normal peering and no packet loss, please see the table "Top 10 Users Speed" on the right of the following page: https://airvpn.org/status Kind regards
  10. Staff
    Hello! That's fine, as it is just as expected from the logs (DNS push ok). We asked however for the "ipconfig /all" output (feel free to delete of course possible sensitive data), just to check the DNS of your physical adapter(s): if your system keeps refusing to send DNS queries to 10.4.0.1, you can force it by setting 10.4.0.1 as primary DNS in your physical interface. See also https://airvpn.org/specs Kind regards
  11. Staff
    Hello! Your system did not use the VPN server DNS: speedtest.air is resolved only by them. Can you please send us the output of "ipconfig /all" while your computer is connected to a VPN server? Kind regards
  12. Staff
    Hello! Although unlikely (since all the other servers work fine with your client) can you please check whether it's a DNS problem? http://code.google.com/p/tunnelblick/wiki/cConnectedBut#If_OpenVPN_is_connected_to_the_server_but_you_can%27t_access Kind regards
  13. Staff
    Hello! When you define that rule, in the "Destination Port" tab of the Network Control Rule just select "A Single Port", specify 53, and tick the "Exclude" box (i.e. the "NOT" Comodo operator). Please note that your real IP address must NOT be visible, regardless of Comodo usage or not, when you're connected to a VPN server. Please send us your client logs if you have this problem. Kind regards
  14. Staff
    Hello! You need to delete "route add -p 85.17.123.26 mask 255.255.255.255 192.168.67.2 metric 1" To achieve your purpose to prevent leaks in case of unexpected VPN disconnection and prevent any leak while connected, you may set up the appropriate firewall rules in your VM (assuming that it's in bridge mode). You may also consider to change the approach: connect your host machine to the VPN, connect the guest with NAT (instead of bridging). This will allow you to connect multiple VMs with just one Air account (used by the host). Finally, secure the connection with a firewall only on the host. Kind regards
  15. Staff
    Hello! Yes, that route addition allows OpenVPN client connection to Leonis but prevents any communication inside the VPN. Kind regards
  16. Staff
    Hello! The logs look just fine. Are the devices which connect to the router forced to use some particular DNS? EDIT: please also check this, just in case: http://www.dd-wrt.com/phpBB2/viewtopic.php?p=680573 Kind regards
  17. Staff
    Hello! It's very important that you follow step 1. Adding highly customized global rules with the stealth port wizard is not possible. The Global Rules can be added, deleted and edited in the Global Rules tab. The Network Zones can be added, deleted and edited in the Network Zone tab. Again, you should follow step 1. It's just so easy to use Comodo firewall and set rules that most of the doubts come out just because step 1 has not been followed. The rules are exactly as reported in the guide, word by word. A screenshot will show you the very same rules, word by word. Kind regards
  18. Staff
    Hello! Obviously but unfortunately this is not possible. Anyway, before dismissing Vega we are urging the provider to detect and solve the problem. Kind regards
  19. Staff
    Hello! It does not seem normal. Do you experience the same with other servers? Did you test a connection on a TCP port? Can you please send us the logs of your client? Kind regards
  20. Staff
    Hello! That's correct, however please note that you will also lose the ability to communicate with devices in your home network and you will prevent permanently DNS resolution on your computer when not connected to the VPN. Also, be aware that option -p will make the route permanent, so it will survive a reboot. Most importantly, it will prevent any connection to any of our servers. That's normal: each Air server has an entry-IP and and an exit-IP address. The servers accept connections from OpenVPN client only on the entry-IP. In your case, you have the routing table with an exit-IP (Leonis'). Leonis entry-IP is 85.17.123.26. The Air client connects to airvpn.org to allow your login and display the list of servers (only if you have set in your hosts file resolution for airvpn.org), then launches OpenVPN which can't establish a connection (not even if you choose Leonis) because of the routing table. Please check the central bottom box in our web pages (restart the browser if necessary): only if it's green your device is connected. Kind regards
  21. Staff
    Hello! You can use pfctl. http://www.openbsd.org/faq/pf/config.html Kind regards
  22. Staff
    Hello! Thank you for the information, we're glad to know that the problem is solved. Can you please tell us if you changed anything in your system? Kind regards
  23. Staff
    Hello! Can you please make sure that you start Transmission AFTER you have established a VPN connection? Also, can you please test with completely disabled LittleSnitch and firewall? Kind regards
  24. Staff
    Hello! Please make sure that Transmission listens to the correct port (the port number must match the remotely forwarded port number) and that this port is forwarded both for TCP and UDP (various modern p2p clients use both protocols). Kind regards
  25. Staff
    Hello! It is opinion of this admin that a pre-configured .cfgx Comodo file containing global rules meant to prevent any leak represents a security risk for our customers and would need anyway to be highly customized (too many variables seem to make impossible to cover all cases). It is also opinion of this admin that a basic knowledge of a firewall is an essential requisite for a person really interested in network security and privacy. The guides and Comodo manuals are perfectly suitable to master all the Comodo firewall free edition features. Our guide is designed precisely to be unlinked to a particular Comodo firewall version: all the rules are reported in text format and care to avoid references to specific menus, options etc. has been used in order to provide maximum flexibility. However we will discuss internally about this option. Kind regards
×
×
  • Create New...