Staff

Hello! The current information unfortunately are insufficient to tell something effective. As a preliminary suggestion, please make sure that your VPS has tun support enabled. This support must be enabled on the host hypervisor, so it's up to your VPS provider to make sure that the VPS supports a "tun" VPN interface (without it, OpenVPN and WireGuard can't work). Please open a ticket, the support team will ask you for additional information and reports to diagnose the problem both on your PC and VPS and offer a possible solution. In order to open a ticket you can click "Contact us" or write to support@airvpn.org. Do not add insults anyway, the support team is instructed to ignore tickets with insults and forward them to us, so you will only waste a lot of time. Of course the thread remains open to allow community members to reply to help you, if they wish so. Kind regards

Hello! Let's verify whether changing connection mode helps or not, just in case the ISP is interfering with UDP and/or OpenVPN: from Eddie's main window please select "Preferences" > "Protocols" uncheck "Automatic" select the line with OpenVPN, protocol TCP, port 443, entry-IP address 3 (three). The line will be highlighted click "Save" and test again connections to various servers Kind regards

Hello! Totally correct. AirVPN forums ("News", "How-To" and "Databases") are technical and service forums where a new thread can be started only by AirVPN staff. "News" is restricted to announcements and news regarding AirVPN and its infrastructure, "How-To" is restricted to guides for the customers, and "Databases" pertains to geo-routing db as well as residential ISPs around the world, to report their behavior and blocks against VPN or Tor. So they are totally inappropriate for any "free speech" purpose. The community forums are a gift of AirVPN to the community, mainly managed by the community itself with self-proposed, voluntary moderation. AirVPN basically provides the infrastructure and cover its expenses. Ads are forbidden, netiquette is enforced, but we do not monitor these forums closely, except for "Troubleshooting", dedicated to technical problems and their resolutions, where we can intervene (if we have the time) before the professional support team is involved through a ticket. However most problems are resolved by the community itself without our intervention. Of course you can't abuse the community forums for generic "freedom of speech" as they would lose their purpose: community member support by other community members. They could also become unreadable if all topics were allowed! In the community forums you also find the "Off-Topic" forum where you can post various arguments, even not specifically related to AirVPN. Ads prohibition and netiquette enforcement stay even in "Off-Topic" of course. More in general, we provide you with an infrastructure to aid free speech trough a layer of privacy and even anonymity, as anonymity as been recognized both by the UN and by the USA Supreme Court as an essential tool in order to exercise freedom of expression and information. We also support or supported monetarily other tools which aid directly freedom of speech, such as PeerTube, Mastodon, Tor, and organizations which support freedom of speech (for example EDRi and EFF). All of the above is in accordance with our mission https://airvpn.org/mission : it's not in our mission to maintain and deliver directly tools to exercise freedom of expression, but it's in our mission to "Deliver a service capable of providing a strong anonymity layer in order to exercise the Right to Remain Anonymous (*), which has been widely recognized as a key to freedom of speech". Specialization is essential in this case given our resources: do one thing and do it well. If we dispersed our resources in more and more projects with too many purposes, we might end up being ineffective in all areas. Kind regards

@ScanFarer Hello! New 10 Gbit/s full duplex server has been added in Los Angeles. Another server with high bandwidth has been added in Denver (Colorado) with a 10 Gbit/s interface and port and 3 Gbit/s bandwidth (full duplex) guaranteed, burstable to 10 Gbit/s. https://airvpn.org/status Kind regards

Hello! We're very glad to inform you that a new 3 Gbit/s (full duplex) server located in Denver, CO (USA) is available: Sadachbia. Sadachbia supports OpenVPN over SSL and OpenVPN over SSH, TLS 1.3, OpenVPN tls-crypt and WireGuard. The AirVPN client will show automatically the new server; if you use any other OpenVPN or WireGuard client you can generate all the files to access it through our configuration/certificates/key generator (menu "Client Area"->"Config generator"). The server accepts connections on ports 53, 80, 443, 1194, 2018 UDP and TCP for OpenVPN and ports 1637 and 47107 UDP for WireGuard. Full IPv6 support is included as well. As usual no traffic limits, no logs, no discrimination on protocols and hardened security against various attacks with separate entry and exit-IP addresses and 4096 bit DH key not shared with any other VPN server. You can check the status as usual in our real time servers monitor: https://airvpn.org/servers/Sadachbia Do not hesitate to contact us for any information or issue. Kind regards and datalove AirVPN Staff

@HenningAlexander Hello! Apparently the router or the implemented ovpn-client does not support IPv6. Please check. If the problem persists even when IPv6 is supported, what happens if you connect over IPv4? Kind regards

Hello! We're very glad to announce a special promotion on our long terms Premium plans. You can get prices as low as 2.20 €/month with a three years plan, which is a 68% discount when compared to monthly plan price of 7 €. You can also send an AirVPN plan as a gift: you have the option to print or send a colorful, dedicated picture with the code to activate the plan. You can do it in your account Client Area -> Your membership: Purchase and credit -> Print X-Mas after you have bought a coupon. If you're already our customer and you wish to stay aboard for a longer period, any additional subscription will be added on top of already existing subscriptions and you will not lose any day. Please check plans special prices on https://airvpn.org and https://airvpn.org/buy Promotion will end on January the 8th, 2024 (UTC). Kind regards & datalove AirVPN Staff

Hello! We're very glad to inform you that a new 10 Gbit/s (full duplex) server located in Los Angeles (California, USA) is available: Saclateni. Saclateni supports OpenVPN over SSL and OpenVPN over SSH, TLS 1.3, OpenVPN tls-crypt and WireGuard. The AirVPN client will show automatically the new server; if you use any other OpenVPN or WireGuard client you can generate all the files to access it through our configuration/certificates/key generator (menu "Client Area"->"Config generator"). The server accepts connections on ports 53, 80, 443, 1194, 2018 UDP and TCP for OpenVPN and ports 1637, 47107 and 51820 UDP for WireGuard. Full IPv6 support is included as well. As usual no traffic limits, no logs, no discrimination on protocols and hardened security against various attacks with separate entry and exit-IP addresses and 4096 bit DH key not shared with any other VPN server. You can check the status as usual in our real time servers monitor: https://airvpn.org/servers/Saclateni Do not hesitate to contact us for any information or issue. Kind regards and datalove

Hello! Can you please open a ticket? We need to investigate this issue more thoroughly as we detected an apparent anomaly after a ticket by a different user with identical route outside problem even when the IP addresses were correctly entered. NOTE: if you are the same person and you opened a ticket from a different account, can you please reply to the support team? They are waiting for an important information from you since days ago and they have not received any reply. You need to re-start the VPN connection. Kind regards

Hello! Yes, stay tuned! Kind regards

Hello! For the readers, the problem has been explained, simply AROU666 does not have and has never had access to the VPN servers. 😲🤨 The community forums are open to everyone, not only to users with a valid VPN access plan. Kind regards

Hello! All servers except Metallah (Pennsylvania, USA) support IPv6. IPv6 malfunctions in datacenters are more frequent than IPv4 malfunctions, but our server monitor will detect them and a server with IPv6 problems will become "yellow" (ongoing problems) or "red" (inaccessible). Kind regards

Hello! Please keep using WireGuard and modify the MTU size through the "MTU = n" directive, where n is in bytes. For each size re-start the connection and test the performance thoroughly. Consider at least a couple of VPN servers located around your node and maintain them to cross-test consistently. To modify the MTU size please edit (with any text editor) WireGuard's configuration file and add a line in the [Interface] section. Start with: MTU = 1280 then go up at 20 bytes steps (1300, 1320, 1340, ..., 1420). Do not exceed 1420 at the moment. If you see a performance improvement, keep going up. When you see a performance degradation, fine tune between the last and the current value. If you see poor performance regardless of the MTU size, consider to switch to OpenVPN in TCP mode, in case UDP is capped in your network. Kind regards

Hello! It is probably impossible for the community to give you a problem solving suggestion with the current information and maybe someone will ask you for more info, such as your system name and version, the log of the program you run to connect to the VPN and so on. Please feel free to open a ticket in the meantime (by clicking "Contact us" on the web site or by writing to support@airvpn.org) to receive assistance directly from the "AirVPN Support Team". Kind regards

Hello! Relevant vulnerabilities affect OpenVPN from 2.6.0 to 2.6.6, from 2.5.0 to 2.5.2, and 2.5.6 (as well as multiple openvpn-connect versions, not relevant here), but not 2.5.5. https://www.cvedetails.com/vulnerability-list/vendor_id-3278/Openvpn.html Do you have any breaking news on OpenVPN 2.5.5? Kind regards

Hello! We see two different problems. Please see here for an explanation and a quick solution of the first problem: https://airvpn.org/forums/topic/56657-cant-connect-to-anything/?do=findComment&comment=225418 The second problem seems related to IPv6. Maybe your ISP does not support it, or the first problem is causing the second one too. If the solution to the first problem does not solve the second one, please go back to the default setting. You have forced Eddie to connect over IPv6 in "Preferences" > "Networking" window. Switch the "Protocol used for connection" combo box back to "IPv4, IPv6" (currently you have set it to "IPv6, IPv4"). Kind regards

@Koalaman Hello! Even better now. And yes, 396 Mbit/s in download is expected from New Zealand servers (consider that on the server 2x bandwidth is needed). It's anyway a good performance in general in our infrastructure. The upload speed is very close to max capacity (40 Mbit/s) so it's perfect now. Kind regards

Hello! With connection timeout (error 110) the port tester did not receive any reply. With connection refused (error 111) the connection was reset (packet "actively rejected") by your node (with error 111 you know for sure that the packet reached your client). In both cases you must make sure that the docker is configured to accept unsolicited packets on the proper ports and that the respective listening programs are really running and listening to the correct ports. Furthermore, no packet filtering tool must block incoming packets. Support team is available if you need official support. In this case, if you decide to open a ticket, it may be useful that you include the docker-compose file and the list of the programs which should receive (and reply to) the incoming packets. Kind regards

Hello! Let's check directly from inside a VPN server where you experience the problem so we can definitely see whether there's some problem in the server itself. Please open a ticket to arrange the tests at your convenience. Please note that we can reach regularly your Plex server on the current VPN server (not in Canada) you're connected to. Re-direction to Plex services (app.plex.tv) then occurs for login purposes, and this is exactly what we suspected, i.e. it's possible that some AirVPN servers are blocked by this in-the-middle service, while others are not. Is it possible to reach a home Plex server without any interference by or re-direction to Plex owned infrastructure? Kind regards

Hello! All server port forwarding works identically and no anomalies have been detected in specific investigations brought on manually during these very days for "false alerts". You can safely assume that port forwarding is working perfectly and identically on all servers. The problem might have a different cause. Do you use some in-the-middle Plex server (i.e. machines operated by Plex company for example aimed at Plex Pass, Plex Streaming, Plex Cloud) to access anything? Kind regards

Hello! All problems were resolved. For the readers: YuNoGuy problem was caused by the Windows Firewall blocking the incoming traffic of other programs his/her main listening program relied on. Check the message here for interesting and useful details: https://airvpn.org/forums/topic/56970-port-forwarding-connection-timeout-error-110/?do=findComment&comment=227771 JebediahWolfe (original poster) problem was caused by the fact that the remotely forwarded port was disabled by the user in the control panel. All ports are enabled by default when you reserve them to your account and a new option allows you to disable them without de-allocating them. It is an option which can be useful under specific circumstances and required by some users. Always pay attention when you change settings. Voja Ten. problem "disappeared by itself" from one day to another so we can't say anything about it. Kind regards

@AROU666 Hello, please see our previous message and open a ticket. Since your account doesn't have access to AirVPN the whole discussion has been pointless, we're sorry. Kind regards

@AROU666 Hello! 1. Please disable UPnP too. 2. Port 50632 is not assigned to your account. Please configure SoulSeek to listen to the correct port. Assuming no "re-mapping" for simplicity's sake, the remote port number and the local port number must match. 3. Your account does not have access to AirVPN servers, please check your account status. Kind regards

Hello! Since OpenVPN works, it is plausible that your ISP blocks WireGuard. If that's the case you must keep using OpenVPN only (or change ISP of course). You might like to get informed about the block / traffic management policy enforced by your ISP. To investigate on the Android side, please open a ticket at your convenience. Kind regards

@AROU666 Hello! First and foremost please check the post set as best answer in this thread, the mentioned setting modification resolved the problem in other cases. In your specific case, you have an apparent double mis-configuration, as you keep even UPnP enabled, on top of NAT-PMP. Kind regards