Staff

9 minutes ago, lebkuecher said:

How do I contact customer support for an issue with my account?

Hello!

Please click "Client Area" > "Support request" > "Create new" to open a ticket while you're logged into the web site, OR write to support@airvpn.org.

If you write an e-mail and you don't have an e-mail address linked to your AirVPN account, in the e-mail body please mention your AirVPN account name.

Kind regards
 

@alexander3423478

Hello!

In various AsusWRT Merlin firmware versions the default name of the tun interface is not tun1. Can you please check? If in doubt just modify your rules by replacing tun1 with tun+ (here + is an iptables wildcard for interfaces). For anything else the rules seem just fine.

Kind regards
 

Hello!

Updated and working solution from a ticket by the support team:
 

Quote

 

Please determine the local IP address of the machine running the listening program (for example the NVR server) and add the forwarding rules on the OpenWRT router Luci panel according to our previous message. Do it both for TCP and UDP. We paste the relevant part here for your comfort:
 

Inside Luci's Network > Firewall > Port forward panel please click the Add button to create a new port forwarding rule.

Then, proceed to configure Port Forwarding:

1.     Name: Give your rule a descriptive name you like
2.     Protocol: Select the protocol for the port you're forwarding (TCP & UDP)
3.     External Port: Enter the external port number that is forwarded from the VPN server, i.e. the port your account had been assigned on the AirVPN account port panel
4.     Internal IP Address: Enter the IP address (in your local network) of the final destination device (the device that shares the VPN traffic and where the listening program runs).
5.     Internal Port: Enter the port number on the final device that you want to forward the traffic to (IMPORTANT: for p2p software all the port numbers must be the same)
6.     Interface: Select the network interface which the VPN traffic is coming from, for example wg0

Kind regards

AirVPN Support Team

 

Kind regards
 

Hello!

We're very glad to inform you that Hummingbird 2.0.0 Release Candidate 1 is now available for macOS, both for Intel and M1/M2/M3 based systems. The links to the latest RC 1 and the main changes have been updated in the first message of this thread. This version differs from beta 5 for some updates on the OpenVPN3-AirVPN library. Besides, the M1/M2/M3 version is now C++20 compliant.

Kind regards
 

53 minutes ago, BaluX said:

Amazon Fire TV Stick (1st and 2nd Generation) need instructions for installation on TV. Thank you very much...

BaluX

Hello!

Please see here:
https://airvpn.org/android/eddie/apk/tv/

Kind regards
 

Hello!

We're very glad to inform you that AirVPN Suite 2.0.0 Release Candidate 1 for Linux is now available. The original post link is updated to show the new download URLs. The important differences from beta 5 are:

• a bug causing a crash when nft error messages exceeded a definite size has been fully addressed
• Bluetit features additional pause and re-connection attempts aimed at facilitating re-connection at system resume after suspension and other situations
• Hummingbirtd --allow-ping default value is now "output"

Please read here, it's very important: https://airvpn.org/forums/topic/70164-linux-network-lock-and-firewalld/

Please note that from now on compatibility with Debian 10 and its derivatives, that reached end of long term support and end of life on June 2024, is lost even for the legacy version, mainly because the Suite is now C++20 compliant. The legacy version remains suitable for Debian 11 and its derivatives.

Kind regards
 

Hello!

As far as we know, easytether doesn't support various VPN protocols over the tethered connection, unfortunately. However, our information is not up to date. Can you please contact the developers or the community to understand whether this old limitation is no more? We will do the same when we can (first we will need to re-test easytether).

Kind regards
 

Hello!

We're sorry to inform you that, due to inadmissible requests from provider Contabo, which demanded the blocking of p2p-related protocols, we have decommissioned Mesarthim server in Germany. The infrastructure in Gemany remains oversized, also thanks to the recent addition of 10 Gbit/s line and server.

Kind regards
AirVPN Staff
 

Hello!

For the readers' comfort we paste here an answer by the support team to the OP, whose system is Linux Mint 22.1.
 

Quote

 

Hello and thank you for your choice!

Your system is based on nftables but ufw will rely on iptables translations. This could cause some trouble so we would recommend that you keep ufw disabled and enforce "blocking" rules through nft. For your purposes, we think that you need to block all outgoing traffic, except for DHCP and local network, is it right? If so, consider this while Eddie is NOT running:

# Clear any existing nftables rules
sudo nft flush ruleset

# Create a new table for filter rules
sudo nft add table inet filter

# Create a chain for outgoing traffic (the default one for filtering)
sudo nft add chain inet filter output { type filter hook output priority 0 \; }

# Allow DHCP traffic (UDP ports 67 and 68)
sudo nft add rule inet filter output udp dport 67 accept
sudo nft add rule inet filter output udp sport 68 accept

# Allow local network traffic (adjust network range according to your own local subnet!)
sudo nft add rule inet filter output ip daddr 192.168.0.0/16 accept
sudo nft add rule inet filter output ip6 daddr fc00::/7 accept

# Block all other outgoing traffic
sudo nft add rule inet filter output drop

When you enable Network Lock, the above rules will be deleted and only traffic to VPN servers is allowed. When you shut down Eddie, or disable Network Lock, the above rules will be restored.

Then, you need to make the above rules persistent across reboots.

# Save the rules
sudo nft list ruleset > /etc/nftables.conf

# Make sure that nftables service is enabled by systemd:
sudo systemctl enable nftables

Reboot the system and verify that the rules are still in place and that your system can communicate only with the local network and not to the Internet:

sudo nft list ruleset

 

Start Eddie and activate Network Lock to restore external connectivity to VPN servers only.

Kind regards

 

2 hours ago, bubee said:

I think I managed to find the issue. So far, I have not had any major events, and the ports have remained open.

Hello!

Can you describe the nature of the problem and the solution you found if possible? It may be relevant for readers with the same problem.

Kind regards
 

34 minutes ago, Condobloke said:

Is there a setting to prevent the download happening, when eddie is not fired up and running ?

Hello!

If you run Windows please see here: https://airvpn.org/forums/topic/69097-permanent-kill-switch-for-eddie-client/

Similar rules can be enforced with any other system with the respective firewall. If you do not run Windows feel free to tell us your Operating System name, version and firewall.

Kind regards
 

1 hour ago, oont said:

My port shows Open when I test via https://airvpn.org/ports/

Hello!

Please note that your service is reachable, we have just tried, so the port test is correct. However, as soon as we are re-directed to /web/index.html the connection is closed by your host. This is also visible through telnet:
$ telnet <edited for privacy> 41898
Trying <>...
Connected to <>
Escape character is '^]'.
Connection closed by foreign host.

Therefore, VPN port forwarding works properly and your node is configured to accept correctly incoming connections from the Internet. However, for some reason that must be found, your host, or maybe Plex itself, shuts down the connection within 5-10 seconds, and specifically after the index.html page is accessed. The re-direction to that page works, but the page is not served. Please re-check the whole Plex web server setup.

Kind regards
 

Hello!

Since your Linux system is connected via WiFi please try to get a stronger signal and consider to change channel. It could greatly mitigate the problem. Prefer a channel whose frequency does not overlap with any other neighborhood WiFi equipment. Some considerations on WiFi channels and why it's so important to pick the correct channel:
https://www.metageek.com/training/resources/why-channels-1-6-11/

If it's a viable option, connect via Ethernet cable to compare.

Kind regards
 

1 hour ago, Daniel2025 said:

OK, thanks, but this only resolves the issue during startup or after a restart. However, before shutting down Windows, I need to manually close Eddie. This also disables the Network Lock, causing my computer to briefly connect to the internet with its real IP and without a VPN for a few seconds or minutes. 

Hello!

You need to set permanent Windows Filtering Platform rules that block outgoing traffic, except traffic to the local network and for DHCP purposes. In this way when Network Lock disengages the block "all traffic" rules are restored. When Network Lock is engaged the new rules enforced by Eddie will allow Internet communications to the VPN servers only.

Kind regards
 

Hello!

The fix has been applied. Please disconnect and re-connect to check whether the problem is resolved for your own account. Should any issue persist do not hesitate to write again here and/or on a ticket.

Kind regards
 

Hello!

The issue has been detected, understood and isolated. A fix is ongoing.

Kind regards
 

3 minutes ago, PaulKnauer said:

Hi, I am having a strange issue. When I connect to the Air VPN using the Mac SW in the air vpn sw i get IP 213.152.162.154 and if I go to the port checker site or my IP site I get a different one 213.152.161.162 this way the port fwding doesn´t work. Can someone help?

Hello!

We are investigating this confirmed malfunction, thanks a lot for the head up. We will keep you posted as soon as possible.

Kind regards
 

13 hours ago, Diaboli said:

This update has broken my port forwarding with Plex

Hello!

This update did not change anything for your account already reserved ports so the problem must lie elsewhere. Not to be discussed here, we recommend that you open a separate thread and a support ticket.

Kind regards
 

On 3/12/2025 at 9:55 AM, rohko said:

Not everybody wants to allow all ICMPv6 traffic (ping and others) just to get the IPv6 working in VPN.

Hello!

AirVPN Suite 2.0.0 beta 5 implements the required features:
https://airvpn.org/forums/topic/66706-linux-airvpn-suite-200-preview-available/?do=findComment&comment=247401

Kind regards
 

Hello!

We're very glad to inform you that AirVPN Suite 2.0.0 beta 5 for Linux is now available. The original post link is updated to show the new download URLs. This is an extensive bug fix version addressing all the issues reported ever since beta 4 was released and with the addition of new Network Lock related options offering more flexibility. Now you can accept or deny incoming, outgoing or both ICMP-echo packets, and independently you can permit or forbid IPv6 NDP, which is based on ICMPv6. The new options supported by Bluetit and Hummingbird are:

allowping [on | off | input | output], default: output
allowipv6ndp [on | off], default: on

The Goldcrest and Hummingbird corresponding options are:
--allow-ping
--allow-ipv6ndp

with the very same possible values and default settings. EDIT: BUG/error: the Hummingbird default value of allow-ping is "on" - please take note! It will be fixed in the next version.

Please check the changelogs for each application included in the packages to see all the changes in detail.

Kind regards and datalove
AirVPN Staff
 

3 hours ago, Dwelled7577 said:

Thank you for your efforts, your solution sounds awesome and very much futureproof! Do you have an ETA on when the new system will apply to existing customers? I only had forwarded ports within the first pool, however currently I only this pool which means only very few open ports are left

Hello!

Thank you very much. The system is already operational. You are on pool 1, where you can forward (if needed) all the ports available for your plan and account.

Kind regards
 

Hello!

A very important update which improves the system dramatically has been finalized. Now you don't have to worry anymore about pools and p2p programs. Find the new features in the original message. The paragraphs that do not apply anymore appear with strike through characters. The new system is simpler, fully scalable and with zero impact on current and future users. Enjoy AirVPN!

Kind regards & datalove
AirVPN Staff
 

1 hour ago, xistal_ said:

This does not appear to work either. It still says checking authorization.

Hello!

Please upgrade to Eddie 2.24.6 (latest stable release), try again and in case of failure publish a system report according to the instructions available here:
https://airvpn.org/forums/topic/50663-youve-been-asked-for-a-support-filesystem-report-%E2%80%93-heres-what-to-do/

Kind regards
 

34 minutes ago, superfk7 said:

How can I force it connect automatically?
Also eddie ui is installed on system too. Shouldn't cli retrieve the same profile file?
If I stop the service and do: eddie-cli -logi=myusername -password=mypassword --remember , I get bash: !s+: event not found. "!s+" is part of my password.
 

Hello!

Please make sure to run Eddie with the proper options, do not forget --connect . Also add specific server or country if you prefer connections always to the same server or country. Avoid bash parsing or expansion of your password special characters by enclosing the password in single quotes (Quoting is used to remove the special meaning of certain characters or words to the shell) or by escaping it with backslash character \ (or pick a password without characters that pose this problem). For additional details please check the bash manual Quoting paragraph (type man bash to see it locally or read the web page previously linked).

Type on a terminal

man eddie-cli

to read the manual of your Eddie version, it explains all the options.

Kind regards


 

14 hours ago, colorman said:

@Staff
Is there any development on the next Beta version?
It's very quiet.
Thanks in advance

Hello!

Yes, there has been intensive work behind the scenes to fix some tricky bugs and improve the implementation of specific parts (special thanks to beta testers behind the scenes). The next beta version, or perhaps the first Release Candidate, is scheduled for the very first days of April.

Kind regards