Staff

@postergus Hello! The log shows that when the session network lock is disabled the persistent network lock is always enabled. When you shut down Bluetit, the persistent network lock is disabled as expected and intended. That's why we suggested as best solution that you do NOT shut down Bluetit. In your case, that's not only unnecessary, but even against what you want, we guess. Consider to manage Bluetit through Goldcrest for a proper usage for and a solution to your case. Please see also our previous message. Kind regards

Hello! The problem might be caused by Eddie, as you're running a very old version. We suggest that before you try anything else you upgrade to the latest stable release. You can download Eddie for macOS in the usual, dedicated download page here: https://airvpn.org/macos If you still experience any issue after you have completed the upgrade please do not hesitate to open a ticket to allow our support personnel to provide you with proper assistance. Kind regards

Hello! The "sleep 1" is unnecessary, you can delete it, as systemctl is synchronous. You can also order a restart to save time. Anyway you will still have a fraction of a second during which the ordinary, previous firewall rules are restored and Network Lock rules are not in place. At a first sight we see two alternative, possible solutions: don't stop Bluetit but interact with it through Goldcrest. Apparently there's no reason whatsoever to restart Bluetit in your case: Bluetit re-reads network configuration at each session start, as you may notice from the log. You can have a goldcrest.rc runfile too, therefore you can configure Goldcrest to avoid any keyboard interaction. Make sure you have networklockpersist enabled in /etc/airvpn/bluetit.rc, so that the Network Lock rules will remain in place while Bluetit is not connected keep blocking firewall rules in your system so no traffic will flow when Bluetit is not running: when Bluetit exits, it restores the blocking firewall rules. When it runs with networklockpersist, it enforces Network Lock. This second solution maintains the conceptual error to perform an unnecessary operation (restarting Bluetit) and requires total block rules by system default. Kind regards

Hello! We're very glad to inform you that the Black Friday week has started earlier this year in AirVPN! Save up to 74% when compared to one month plan price Check all plans and discounts here: https://airvpn.org/buy If you're already our customer and you wish to jump aboard for a longer period, any additional subscription will be added on top of already existing subscriptions and you will not lose any day. AirVPN is one of the oldest and most experienced consumer VPN on the market, operating since 2010. It never changed ownership and it was never sold out to data harvesting or malware specialized companies as it regrettably happened to most competitors. Since 2010 AirVPN has been faithful to its mission. AirVPN does not inspect and/or log client traffic, and offers: five simultaneous connections per account WireGuard support on all servers flexible and customizable opt-in block lists protecting you from adware, trackers, spam and other malicious sources. You can customize answers or exceptions globally, at account level or even at single device level. powerful API IPv6 full support comfortable access to your client certificates and keys management AES-GCM and ChaCha20 OpenVPN ciphers on all servers Perfect Forward Secrecy with unique per-server 4096 bit Diffie-Hellman keys active daemons load balancing for unmatched high performance - current 'all time high' on client side is 730 Mbit/s with OpenVPN and 1046 Mbit/s with WireGuard internal DNS. Each server runs its own DNS server. DNS over HTTPS and DNS over TLS are also supported. AirVPN is the only VPN provider which is actively developing OpenVPN 3 library with a fork that's currently 158 commits ahead of OpenVPN master and adds key features and bug fixes for a much more comfortable and reliable experience: AirVPN, in accordance with its mission, develops only free and open source software for many platforms, including Android, Linux (both x86 and ARM based systems), macOS and Windows. Kind regards & datalove AirVPN Staff

@Yammy75 Hello! "Better" or "resolved"? If not resolved, please do not hesitate to describe the behavior in detail. Kind regards

Hello! We can't help from here, please open a ticket at your earliest convenience (if you haven't already done so in the meantime). Please take care to mention your transaction ID to speed up the support team investigation. Kind regards

Hello! That's a list of the devices we physically have for testing (except Google TV, which has been tested only through emulators) but according to the Amazon internal checks (performed before an app obtains the authorization to be published on their store), the compatibility is full with any Amazon Fire device with Android TV 5.1 or higher version and a minimum of 1 GB RAM. Kind regards

Hello! It's probably a consequence of how Eddie picks a "recommended server". See also here: https://eddie.website/support/recommended-servers/ Remember that you can tell Eddie to connect only to a specific server set by defining a servers' white list in the "Servers" window (click the "Servers" tab to access it). Compile a white list by selecting the servers you prefer (multiple choice allows with CTRL+click or SHIFT+click) and then clicking the green checkmark. When you need to modify a white list, you can tick "Show all" to bring back the whole server list and operate again to delete, modify or create a white list (at the end of the operation remember to uncheck "Show all"). Kind regards

Hello! No, it isn't expected. We are trying to reproduce the issue, in the meantime can you please send us a report generated just after the problem has occurred? Kind regards

Hello! Eddie Android edition 2.5 and 3.0 preview have been fully and successfully tested on: nVidia Shield TV and TV Pro (Android TV 7, 8, 9, 10, 11) (physical devices) Amazon Fire TV Cube 4K Ultra HD (Fire OS 7 = Android TV 9) (physical device) Amazon Fire TV Stick Lite (Fire OS 5 = Android TV 5.1) (physical device) Google TV (Android TV 7, 9, 11, 13) (emulated) On Amazon devices you can download and install the app directly from the Amazon Store. On the Shield TV you need to side load the APK (a swift procedure anyway). Not tested on Chromecast, we're sorry. Kind regards

Hello! We see two different problems. The first one is caused by OpenVPN: apparently it has been built with an hard coded wrong path to ip: . 2022.11.13 16:34:09 - OpenVPN > /bin/ip link set dev tun0 up mtu 1500 . 2022.11.13 16:34:09 - OpenVPN > Linux ip link set failed: could not execute external program . 2022.11.13 16:34:09 - OpenVPN > Exiting due to fatal error As we can see from what Eddie log entries, you have ip in /usr/sbin. Eddie locates and runs it successfully, for example: . 2022.11.13 16:34:09 - Elevated: Exec, path:'/usr/sbin/ip', arg:'-4', arg:'route', arg:'show', exit:0, out:'default via 192.168.0.254 dev enp5s0 proto dhcp metric 100 Please create a symbolic link from /bin/ip to /usr/sbin/ip, or copy the ip file in /bin too, so the first problem will be resolved. Then, another problem is visible: W 2022.11.13 16:34:09 - Unexpected: Network interface unknown - Stack: at Eddie.Core.ConnectionTypes.IConnectionType.SearchTunNetworkInterfaceByName (System.String id) [0x00066] in <2af199c257ac4ca1aad2d2fb8c81a0e5>:0 W 2022.11.13 16:34:09 - at Eddie.Core.ConnectionTypes.OpenVPN.OnLogEvent (System.String source, System.String message) [0x00726] in <2af199c257ac4ca1aad2d2fb8c81a0e5>:0 W 2022.11.13 16:34:09 - at Eddie.Core.Session.ProcessLogEvent (System.String source, System.String message) [0x00014] in <2af199c257ac4ca1aad2d2fb8c81a0e5>:0 This might be a critical problem as well (try again anyway when you have solved the 1st problem). If the problem persists or any other issue comes out, can you send us a system report generated by Eddie, to let us can check various settings, including network interfaces? Kind regards

Hello! Thank you very much for your review. Normally we do not comment reviews, but please allow us just a quick "interference" pertaining to the software development. A lot has been done in the last years under this respect. Eddie Desktop edition backend is written in C++ (that's why you see it quite fast even in Linux or Mac), while AirVPN Suite for Linux and Hummingbird for Mac are natively built on their respective systems and written in C/C++. The OpenVPN3-AirVPN library never relied on C#, ça va sans dire, Eddie Android app also got rid of C# since the early beginning and even the ancient 1.0 version was Mono-free.. The only C# leftover is the Eddie Desktop graphical interface at the moment, and even this last one might drop C# in the future. Kind regards

@mamegoma It was a 2021 beta which is still there, as you can see from the date, only for those subscribed to beta testing phases. We will remove it even from beta testers as we see it causes confusion, thanks. Kind regards

Yup i have verified and it is indeed the correct hash. Also by the way, the application on the play store is misspelt. i believe its missing "N" for the beta version. Hello! Eddie 3 beta versions are not available on the play store, can you please elaborate? Kind regards

Hello! That's expected (unfortunately) because of the reported bug which has been addressed in Eddie 2.22.2. Please test Eddie 2.22.2 and check whether the problem has been sorted out. To download Eddie 2.22.2 in the usual download page select "Other versions" then click "Experimental". You will be brought back to the download page, pointing this time to 2.22.2. Download and install as usual. Kind regards

Hello! Reference for readers on the pinned topic here: https://airvpn.org/forums/topic/53004-openssl-error-restart-every-3-seconds/?do=findComment&comment=187787 Kind regards

Hello! Please check the APK SHA based signature (published in this thread 1st message) carefully to confirm that it's a false positive. Kind regards

Hello! We're very glad to inform you that Eddie Android edition 3.0 Beta 4 is now available. The original post has been updated accordingly. New in Beta 4: Improved management of WireGuard in Android 13 to resolve a WireGuard issue related to system network changes The mentioned issue has been found out by community testers and other persons using the official WireGuard client with any VPN service only in some Android 13 kernel releases. The implemented modification aims at resolving the problem at its root by having WireGuard re-connect every time the device records a network change, provided that "Always on VPN" and "Block connections without VPN" Android settings, as well as "VPN reconnection" Eddie option, are all enabled. Find full description, download link and SHA256 signature in the first post of this very thread. Thank you very much for your tests and please report and describe any bug you find! Kind regards

Hello! Please open a command prompt and run the rmdir command: https://learn.microsoft.com/en-us/windows-server/administration/windows-commands/rmdir Make sure to enforce /s option and type the directory name between double quotes (because a space is in the path name). Therefore: rmdir /s "absolute path and name here" Finally (re)install Eddie. Kind regards

Problem solved, it was not related to Starlink or AirVPN, but to client settings. We also have a line with Starlink in Italy and VPN traffic doesn't seem shaped. Of course consider the higher than landline latency, anyway not as high as the ones you get with old style satellite links because of low Earth orbit satellites. Kind regards

Thank you, we're glad to know that the problem is resolved! About the "latency tests", half an hour is not normal. The long time is probably caused by a bug affecting various Eddie versions. The problem has been addressed in latest Eddie 2.22.2, feel free to test it and check whether the problem has been sorted out or not. To download it, in the usual download page for your system click "Other version", select "Experimental" and you will be brought back to the download page, pointing this time to 2.22.2. Download and install as usual. Kind regards

Hello! If necessary, you might consider to revert back to Eddie Network Lock, by disabling Comodo when you need to use the VPN with Network Lock. Eddie will enforce WFP rules to prevent any type of traffic leak outside the VPN tunnel. When you shut down Eddie remember to re-enable Comodo. A second quick and easy procedure which might come handy is binding the torrent software to the tun/tap interface, if you decide to keep Comodo enabled and experiment with rules. Bind options are nowadays available is various torrent programs. In this way if you make any mistake with Comodo rules, the binding of the torrent software will ensure that, at least for the torrent traffic, you will have no leaks even in case of unexpected disconnection. If you need testing your rules and binding in real time, ipleak.net may test your torrent traffic too and it will tell you the IP address it sees your torrent traffic coming from (ipleak.net offers a specific option to do so). Kind regards

@Blasio @Tanchingis Hello! You have both renewed your client certificate recently. Each time you renew your client key and certificate in your account "Devices" panel you need to log your account out and in again from Eddie main window (uncheck "Remember me" to be sure that Eddie really resets the credentials), as you might have read in the instructions. In this way you force Eddie to download the new pairs. If Eddie via OpenVPN sends an expired certificate you will get AUTH_FAILED from the VPN server, and not from the infrastructure, so no message is visible in the Client Area, in spite of the wrong suggestion by Eddie, we're sorry. Kind regards

@Vekh Hello! The poor performance you experience is not caused by Air VPN in itself.. The fact that OpenVPN over SSH helps a bit proves that you are suffering traffic shaping or maybe some technical issue related to MTU size, because OpenVPN over SSH on an agnostic network is remarkably slower than any direct connection mode. You may see from our servers monitor that many users enjoy up to 40 times the minimum guaranteed bandwidth allocated per user by our ToS commitments. Traffic shaping may be self-inflicted (for example if you have uTP enabled in your torrent software, or you have some filtering tool in your router or system which caps or de-prioritize certain traffic types - please check!) or enforced by your ISP (get informed about the traffic shaping policy, sometimes called "traffic management", "fair traffic use", "quality of service" etc. enforced by your ISP). MTU size problems can be fixed too (open a ticket, see below). Also check a connection over WireGuard, just in case your ISP explicitly caps OpenVPN and/or specific ports, or you have some MTU size problems. Do not hesitate to open a ticket for a more specific support. In the ticket make sure to declare your Operating System name and version and include the connection log, taken while the problem is ongoing. If you run Eddie (an Air client software) include the system report, see here: https://airvpn.org/forums/topic/50663-youve-been-asked-for-a-support-filesystem-report-%E2%80%93-heres-what-to-do/ Kind regards

@Nitrox Hello! The bandwidth pattern we see in the graph you posted might be caused by uTP (a traffic shaping tool inside various torrent software which usually can't work properly with a p-t-p VPN), can you please verify and make sure that this option is disabled in your torrent software settings? On top of that, test a connection over WIreGuard too. If you run Eddie you can switch to WireGuard in "Preferences" > "Protocols" window, otherwise you can follow the WireGuard instructions for your Operating System. The Configuration Generator will create the configuration files WireGuard needs. The fact that your traffic throughput is higher when you do not activate remote inbound port forwarding hints again to shaping triggered by incoming traffic. If you can't manage to resolve the problem please open a ticket at your convenience. Kind regards