Staff

Hello! The suspicion that this is the case, especially since their VPN has proven disappointing and invasive advertising has intensified, is strong because Malwarebytes also flags entry addresses as sources of danger. On entry addresses there is obviously nothing but WireGuard, OpenVPN, and internal services that are not accessible to the public. Kind regards

Hello! We're glad to inform you that they are up now. Kind regards

Hello! Thank you for the suggestion. There is, but it's not based on firewall rules as the app is thought to be run even in unrooted devices, obviously. It's "VPN Lock" that you can find on the settings. Alternatively you can use the built-in Android "Always on VPN" and "Block traffic if VPN is inactive", which is a solution that's in general reliable and more flexible. Available on all Android versions except when suppressed by the manufacturer (in the recent past a few major Chinese phone companies suppressed "Always on VPN" in their custom Android implementation), but not available on Android TV 10 and higher versions on most (all?) implementations It is not "considered" open source, it IS free and open source software by definition (GPLv3 license), so not only open source, but also free (free as in freedom, not as in free beer ). We considered F-Droid but momentarily we decided not to make it available there. Anyway you can find the APK directly on our web site and side load it as usual. Kind regards

@CComet Hello! It's important (not only for Eddie) that the two interfaces don't have the same default gateway, which would be a critical error in general if routing table has not been set accordingly, for example through a robust policy-based routing. Once this problem is fixed, or if it was already addressed, please send us a system report, not only a log, in case the issue with Eddie persists: https://airvpn.org/forums/topic/50663-youve-been-asked-for-a-support-filesystem-report-–-heres-what-to-do/ Kind regards

@misamarumaru Hello! Can you please make sure that the FTP server listening data ports range is exactly matching the range of remotely forwarded ports? Kind regards

Hello! Perhaps this thread is suitable: https://airvpn.org/forums/topic/56980-vpn-servers-mostly-blocked-by-reddit If it's not, you can consider a new thread on the "Blocked website warnings" community forum. Kind regards

Hello! Very puzzling, 2.16 uses archaic libraries and OpenVPN versions. Can you tell us your Operating System name and version? Kind regards

Hello! Eddie 2.24.6 connects over WireGuard by default, whereas all the previous stable versions by default launched OpenVPN 2. Please try to set virtual network interface MTU to 1280 bytes. You can do it in Eddie's "Preferences" > "WireGuard" window. Re-start the connection to apply the change and check whether performance improves. If it does not improve, try to go back to OpenVPN. You can do it in Eddie's "Preferences" > "Protocols" window. Kind regards

Hello! Yes, definitely. We will consider it seriously and keep you posted. Kind regards

So it's hearsay, not a direct test. Auto login yes, but automatic connection when the user starts the app, either during the bootstrap or in any another moment, is not an available feature. Currently Eddie Android edition can connect automatically only during the device bootstrap (if it is configured to do so) and only when "Always on VPN" is enabled for the app. Kind regards

Hello! So the SOCKS proxy did not need any authentication, can you confirm? If so, it is then possible that the error message thrown by OpenVPN was misleading, i.e. the auth file was fine (the auth file is a text file containing username and password for the proxy on 2 lines) but not accepted by the proxy, or Eddie did not create it properly (further investigation needed). Kind regards

We already explained why this is not possible with non built-in apps and VPN protocols when Always on VPN is not available and background activities are restricted. It may become possible only after rooting the device or when the manufacturer has customized the device properly. Eddie and other VPN apps using wg and/or ovpn support “Auto‑Connect when app launches” or “Auto‑Reconnect if connection drops” etc. But that’s different from launching the app itself on boot and keep it running, which under stricter background/boot restrictions, and when Always on VPN is not available, is prevented by default. You can find confirmation on Google documentation that Always on VPN is strictly necessary: https://developer.android.com/develop/connectivity/vpn#always-on Kind regards

@tranquivox69 Hello! Correct. Here, we noticed now, you raise another issue, i.e. re-connection at wake up, which is not necessarily related. Please follow the instructions to send us the report related to a re-connection failure when the device is woken up to let us investigate. Kind regards

Hello! Thank you for your tests! It is expected, please see here: https://airvpn.org/forums/topic/65815-android-tv-vpn-connection-at-startup-why-openvpn-for-android-can-do-it-and-eddie-not/ Development will follow the plan as described, already on the 3.3.0 release. Kind regards

Hello! It might be related to this: Kind regards

Hello! First of all, for you and the readers, a significant amount of time is wasted due to arbitrary editing of reports and logs. If you edit something please make it visible for example with a <deleted for privacy reasons> string. If you just delete something you can sabotage against your own interest any support attempt. Now, we need to discern whether OpenVPN 2.6.12 is compiled without socks-proxy support for some unfathomable reason, or Eddie passes any invalid argument. Can you please download and install the new OpenVPN 2.6.14 and check whether the problem persists or not? Download page: https://community.openvpn.net/Downloads Kind regards

Hello! Kind regards

Hello! Very odd and hinting to a corrupt configuration file that somehow can not be updated properly. Try to delete it while Eddie is not running. In order to locate Eddie's configuration file please see here: https://eddie.website/support/data-path/ At the next run Eddie will create a new configuration file with default settings (you will need to re-enter your AirVPN account credentials). If the the current file is corrupt, this procedure will resolve the problem. Kind regards

Hello! The problem is here above. OpenVPN 2.6.12 recognizes socks-proxy option, but a paremeter is missing, specifically, we infer (see below), the hostname (or IP address). This error is visible in Eddie's report: proxy.host is not valorized (empty string?); can you please re-check this setting and fix accordingly? Kind regards

@blackbox0815 Hello! We're sorry to hear that, but are you sure that the problem is not on your ISP side and/or due to the fact that you want to connect only to few specific servers? Please open a ticket to check, just in case, because the overall bandwidth per account has increased dramatically in the last 12 months - we added 220 Gbit/s full duplex in USA, Canada and Europe. The customer satisfaction and the general stats reflect the increased bandwidth availability so your message is somehow unexpected. However, please consider the trend in Western providers to enforce tougher, selective and AI driven traffic shaping, which necessarily affects the type of traffic that can not be inspected and identified uniquely (therefore VPN traffic too) during peak times: https://editorialge.com/emerging-trends-isp-network-architecture/ See also the specific thread (where we are merging these messages): https://airvpn.org/forums/topic/48234-speedtest-comparison/

Hello! Consider to block any outbound packet except those directed to localhost, local network and those necessary for DHCP. Example (you will need to adjust your local network subnet): sudo iptables -F OUTPUT sudo iptables -A OUTPUT -d 127.0.0.1 -j ACCEPT sudo iptables -A OUTPUT -p udp --dport 67 -j ACCEPT sudo iptables -A OUTPUT -p udp --dport 68 -j ACCEPT sudo iptables -A OUTPUT -d 192.168.0.0/16 -j ACCEPT sudo iptables -A OUTPUT -j DROP sudo ip6tables -F OUTPUT sudo ip6tables -A OUTPUT -d ::1 -j ACCEPT sudo ip6tables -A OUTPUT -p udp --dport 546 -j ACCEPT sudo ip6tables -A OUTPUT -p udp --dport 547 -j ACCEPT sudo ip6tables -A OUTPUT -d 2001:db8::/64 -j ACCEPT sudo ip6tables -A OUTPUT -j DROP Then you can make the rules persistent (check how to use iptables-save and ip6tables-save). Kind regards

Hello! Excellent. Yes, but use iptables-legacy (in general, the same frontend used by Eddie too for Network Lock) and not gufw; also do not define custom chains. Kind regards

@p1geon Hello! It reminds us of this archaic bug: https://issuetracker.google.com/issues/36906622 It's unclear why it's DuckDuckGo specific. At first we suspected of the different engine: Firefox uses Gecko, DuckDuckGo instead uses Blink. Since Blink (a WebKit fork) is used by Chromium, if the problem were caused by the engine the issue should be reproducible on Chrome, Opera, Brave and other Chromium-based browsers but it is not. The matter deserves additional investigation, if anything relevant comes out we will update this thread. Kind regards

Hello! Please publish also a system report generated by Eddie (please do not edit the destination IP address as you did earlier) and also disable gufw completely. Set rules only through iptables-legacy, do not mix with any overlapping frontend during the tests (and do not create your own chains) in order to avoid that gufw custom chains in the filter table interfere. Kind regards

Hello! We're very glad to inform you that Eddie Android edition 3.3.0 beta 2 is now available. Link on the announcement first post has been updated accordingly. Thank you very much if you decide to test this new version and report any problem and bug you experience! New in beta 2: all the beta 1 reported by testers problems have been addressed replaced code with lambda expressions in all classes and where applicable additional bug fixes linked against the latest OpenVPN3-AirVPN library (20250911) all deprecated by Google classes replaced Kind regards