-
Content Count
11043 -
Joined
... -
Last visited
... -
Days Won
1866
Everything posted by Staff
-
[COMPLETED] WireGuard beta testing available
Staff replied to Staff's topic in News and Announcement
@monstrocity Hello! Watch out, the fact that WireGuard's transport layer is UDP does not prevent (as it happens with OpenVPN, on the other hand) both TCP and UDP wrapping, of course. TCP and UDP packet forwarding must work both with WireGuard and OpenVPN in the same way Please feel free to open a ticket if they don't. Kind regards -
@CXX Thank you very much! Kind regards
-
Hello! Have you added the generated magnet link to your torrent software? Kind regards
-
@jelegend Hello! About remote port forwarding you though right. Your ISP can't interfere because the data stream is still encrypted in the ISP devices, up to your own node. Strange question... It's the software that must receive the packets, in other words the software you run in your system which must be reachable from the Internet, the only software you forwarded an inbound port for. Kind regards
-
@Agrock Hello! DNS over TLS is supported since several months ago. It is almost useless since plain DNS queries to our VPN DNS, and their replies, are anyway encrypted and authenticated because they stay in the tunnel, but you might need DoT for peculiar configurations. Check the usual specs page for more details: https://airvpn.org/specs You can define anyway custom per "device" (i.e. client certificate/key pair) block lists, personalized exceptions and blocks, regardless of the fact you use DoT or not. Kind regards
-
Hello @jelegend "Connection refused" usually implies that the packets reached your node and were actively refused. A firewall, or maybe the final service, might have dropped them. If you had had the packets lost between the server and you, or not forwarded at all, you would have seen "Connection timeout" error. Kind regards
-
@jamesmac77758 Hello! It is possible, but Network Lock rules would have blocked traffic leaks by qBittorrent even in this case. Do the allegedly shared content and the listening port match? If so, it should be authentic. On https://ipleak.net you find a torrent dedicated test, "Torrent address detection", make sure you perform it. Also, check the firewall rules (what is your Operating System?) while Network Lock is enabled and your system is operating in the VPN. Send them to us if in doubt. Kind regards
-
@jamesmac77758 Hello! So, the first time you had Network Lock off and therefore a letter might be expected in certain countries (no matter whether you shared free or copyrighted content). About the second case, keep in mind that Network Lock is based on your default system firewall. If that firewall doesn't work, or its rules are modified by some process with administrator privileges, the whole concept fails, and you might have even more serious problems than a letter from your ISP: if administrative actions were performed without your knowledge, it would mean that your system is compromised. Also, you never know, check the letter and make sure that it's not a bogus letter. Ascertain its authenticity, if you haven't already done so. In particular, verify whether the complainant really tried to connect to your torrent client (check the port is really the one you employ, check the datestamp of presumed infringement and so on). Since recently, smaller copyright trolls did not validate with an active connection the IP address harvested from trackers (too expensive), and therefore it was so easy to engulf trackers with announcements containing fake IP addresses, just to prank people you don't like for example, or any other joke. Kind regards
-
VPN network adaptor not found: install fail (0901)
Staff replied to Ratta02's topic in Troubleshooting and Problems
Hello! What happens if you switch to the wintun driver? From Eddie's main window select "Preferences" > "Advanced", tick "Use wintun driver", click "Save", and re-start Eddie. The wintun driver is more modern than the TAP driver and in various cases it is able to resolve several TAP driver issues as well as providing higher performance. Should it resolve your issue, you can probably forget the TAP driver. Kind regards -
Hello! The deal will end in a few hours, around 2021-11-02 23:59 UTC. Kind regards
-
[COMPLETED] WireGuard beta testing available
Staff replied to Staff's topic in News and Announcement
I too am confused as to where and why the user's IP address is stored permantly. I understand that while connected to Air servers, the user IP address will be known. Why is this not purged from the Air after disconnect or server change? Hello! Keeping permanently the client IP address is a WireGuard feature, see also https://airvpn.org/faq/wireguard That's why we force a purge of the real IP address. "In AirVPN servers, if no handshake has occurred within 180 seconds, the peer is removed and reapplied. Doing so removes the real IP address from server memory.". Note that 180 seconds are not 10 minutes. If that's not acceptable you must not use WireGuard, keep using OpenVPN, which will get rid of the client IP address by itself (no need of active deletion). About the VPN IP address, which is another privacy problem, we invite to read the above linked FAQ answer. Kind regards -
External links don't work in AirVPN .onion website
Staff replied to Strathe's topic in Troubleshooting and Problems
Hello! We don't think they don't understand because the error message seems clear. You're asking to delete the reason of existence of airvpn.dev. Explanation can be found in the specs page: "airvpn.dev web server configuration provides a hardened security configuration to get a rating aiming to 100% (Qualys SSL Labs, CryptCheck) which sacrifices compatibility with older systems and browsers (example: Android 6 will not connect)." Kind regards -
Hello! This is not an issue, so there's nothing to be sorted out for any user. Various apple.com subdomains, such as advertising.apple.com and banners.itunes.apple.com, are blocked by the "Ads & Trackers block list", which is a merge of public lists not compiled by us. Please remember that we do not add blocks by ourselves whatsoever. The blocks do not seem to affect Apple Store, though, as confirmed by other users at the moment. Please be aware, however, that Apple may block access to Apple Store from VPN and Tor. This happened already in the past, even to ProtonVPN, so we can't rule out that some of our servers are already blocked by the Apple Store. If you don't think that Apple advertising is advertising or anyway the list disturbs you, you should not enable this anti-ads list, or you can add exceptions. When you click "LIst", all the blocked domains are shown. Quickly search for "apple.com" and you will see immediately which subdomains are blocked. You can also propose some other block list against advertising which does not block advertising by Apple, if you can find one. Kind regards
-
@rohko Hello! No, it's not implemented. Float has remained non functional on server side for 8-9 years and we lost interest, so we don't know if they have patched it recently, see also: https://community.openvpn.net/openvpn/ticket/49?__cf_chl_jschl_tk__=pmd_yzGy8a2GqeOej9TBOdABZf81gch.hzGsPQGiNPHhyfg-1635686027-0-gqNtZGzNAiWjcnBszQal Kind regards
-
External links don't work in AirVPN .onion website
Staff replied to Strathe's topic in Troubleshooting and Problems
@benfitita Hello! Technically it would be possible, but we don't want to make it possible, because airvpn.dev is meant to comply to higher security features. Copy the URL and paste it into your browser bar. Kind regards -
[solved] airvpn-suite and hummingbird failing
Staff replied to amw's topic in Troubleshooting and Problems
@amw Hello! Bug noted, under investigation, thank you! Kind regards -
Hello! Can you please also test Eddie 2.21 beta and check whether the crash persists? Feel free to report any problem here: https://airvpn.org/forums/topic/49638-eddie-desktop-221-beta-released/ In the above linked thread you can also fine instruction on how to download latest Eddie beta version. Kind regards AirVPN Support Team
-
@rohko Hello! We have not examined or tested the method you suggest, we're sorry. By the way, from the OpenVPN 2.4 manual: --mark value Mark encrypted packets being sent with value. The mark value can be matched in policy routing and packetfilter rules. This option is only supported in Linux and does nothing on other operating systems. https://openvpn.net/community-resources/reference-manual-for-openvpn-2-4/ Kind regards
-
[COMPLETED] WireGuard beta testing available
Staff replied to Staff's topic in News and Announcement
@mith_y2k Hello! First, there is no WireGuard team which comes to know anything about our data and our customers' data. Our system will wipe out the public IP address within the specified amount of seconds if, during that time frame, no packet is exchanged between server and client. About the private IP address in the VPN, you need to act by yourself when you want to destroy the correlation between your account key and your account private IP address, in the way you can read on the FAQ answer. Kind regards -
Astounding Speed Improvement with WireGuard Beta
Staff replied to Strathe's topic in General & Suggestions
Hello! So far, the All Time High measured with multiple HTTP streams and in a way that line, CPU and peering could not be bottlenecks, and in an agnostic network, are 717 Mbit/s with OpenVPN and 864 Mbit/s with WreGuard. Your claimed peak of 1064 Mbit/s is a new record. Of course some hardware can have more gain, other almost nothing, and other could even have lower performance with WireGuard, as we have seen experimentally. Remember: use WireGuard only when you have understood perfectly the privacy issues it poses and you are sure that they are not a problem for your threat model. Kind regards -
Hello! Yes, it's in public beta testing. If you want to test it, please read here: https://airvpn.org/forums/topic/49877-wireguard-beta-testing-available/ Kind regards
-
New record so far! Kind regards
-
@OpenSourcerer @yoyall Hello! You can use the list to bypass illegal seizures by ICANN (for example via ICE orders). This happened in the past, when domain names were seized in infringement of EU court decisions and inaudita altera parte (the right to have a legal defense was canceled and the seizure occurred without any judicial overview), so those seizures were illegal under every point of view. Not real news for USA "justice" (???) system. In the last years we have not heard anymore of illegal seizures, but we guess that the precedents are set so they can happen again potentially. Therefore, that's the only list which is not a "block list" whatsoever, quite the contrary. We apologize for the ambiguity. If you have information about seized domains which are not in the list, and the correct IP address they should resolve into, please let us know. Kind regards
-
[COMPLETED] WireGuard beta testing available
Staff replied to Staff's topic in News and Announcement
@Spyker Hello! It will appear only when you select Wireguard and you can select Wireguard only if you enable "Beta features" from your account "Client Area" panel. Kind regards -
[COMPLETED] WireGuard beta testing available
Staff replied to Staff's topic in News and Announcement
New All Time High throughput! Record! Congratulations! Feel free to add it here: https://airvpn.org/forums/topic/48234-speedtest-comparison/ Kind regards