Staff

@AR45H Hello! Eddie Desktop edition is not linked against any OpenVPN library. Instead, it runs external binaries with the proper options, according to customer preferences, in order to establish an OpenVPN based connection. It can run: OpenVPN 2.x, which is a binary Hummingbird, which is an AirVPN software (available to most Linux distributions and macOS) linked against OpenVPN3-AirVPN library a custom binary enforced by the user and provided that it is an OpenVPN drop-in replacement Furthermore: OpenVPN3-AirVPN is a forked library which (currently) is 161 commits ahead of OpenVPN:master. It's a fork of the OpenVPN 3 core library OpenVPN GUI is a Windows graphical user interface (GUI) of OpenVPN. Eddie can run the latest OpenVPN 2.x version installed in your system or the Hummingbird version included in the package Supporting connections over a SOCKS5 proxy and switching to UDP for data exchange is technically possible but currently not available in any OpenVPN version. We might evaluate the matter in our OpenVPN3 library in the future, but it's not planned at the moment. Kind regards

In Eddie there is a socks option under the proxy type. Is that just socks4 then if the client doesn't support socks5? Hello! OpenVPN is "socks" aware and supports connections to SOCKS4/5 proxies, as well as HTTP proxies. Eddie uses this feature. It's very useful if you are behind a corporate proxy and so on. Currently, to use this option OpenVPN must work over TCP because even when you enable UDP proxying on the SOCKS proxy (if the proxy supports it) you must first open a TCP connection to the proxy and, only once the method-dependent negotiation is complete, send an UDP ASSOCIATE request, acknowledge the reply, and properly process the port the proxy will indicate you to send UDP packets. The described process is currently unavailable on OpenVPN 2 and our OpenVPN3 library (while in WireGuard the option to connect over a proxy of any kind is totally missing). For more details and a thorough overview see RFC 1928 https://www.rfc-editor.org/rfc/rfc1928 Kind regard

@The_Purist Hello! Thanks, Eddie should not hang if the OpenVPN service is already running, it should warn you and only then exit. Probably it's a matter for developer's investigation. In the meantime you should be able to resolve the problem instantly by avoiding to start the OpenVPN service. Eddie manages either WireGuard or OpenVPN according to your preferences, so another OpenVPN or WireGuard instance already running will create conflicts. Kind regards

Hello! Thanks for the report. It shows two different problems. The latency tests remain stuck because of an Eddie bug which has been addresses in 2.22.2 version. Please test it and feel free to keep us posted at your convenience. You can download Eddie 2.22.2 on the usual download page for your system by clicking "Switch to experimental". In spite of the name, Eddie 2.22.2 is quite stable and after several weeks of public testing no serious bug has been found or reported. The second problem is related to OpenSSL 3 rejecting certificates signed via SHA1 (therefore it won't be resolved by the upgrade). Please see here for an explanation and a very quick solution: https://airvpn.org/forums/topic/53004-openssl-error-restart-every-3-seconds/ Kind regards

Hello! We're very glad to inform you that we have just released Hummingbird 1.2.1 for macOS (High Sierra or higher version required). Hummingbird is available natively both for Intel and M1 based Mac computers. Hummingbird is free and open source released under GPLv3: https://gitlab.com/AirVPN/hummingbird Main features Lightweight and stand alone binary No heavy framework required, no GUI Small RAM footprint Lightning fast Up to 100% higher throughput than OpenVPN 2.5 (on 1 Gbit/s lines) Based on OpenVPN 3 library fork by AirVPN Robust leaks prevention through Network Lock based on pf Proper handling of DNS push by VPN servers What's new all libraries and dependencies have been updated Important note for high speed line users Because of some architectural specifications and implementation in macOS, in particular in case of high speed traffic Hummingbird may warn the user about shortage of buffer space, specifically when connected with the UDP. This condition is signaled by Hummingbird with the below messages in the log: UDP send exception: send: No buffer space available ERROR: NETWORK_SEND_ERROR The error is caused by the maximum network sockets size set in macOS, a value usually small and unsuited for modern high speed networks. The solution consists in increasing the maximum allowed size for socket buffers and, in case the problem persists, the number of mbuf clusters. The procedure is simple, please find out all the details in the manual. Open the README.md file with any viewer and search for "SEND_ERROR", or consult the online manual. Download the software here: https://airvpn.org/macos/hummingbird/ Kind regards & datalove AirVPN Staff

Hello! We're very glad to inform you that AirVPN Suite version 1.2.1 is now available. The suite includes: Bluetit: lightweight, ultra-fast D-Bus controlled system daemon providing full connectivity and integration to AirVPN servers, or generic OpenVPN servers. Bluetit can also enforce Network Lock and/or connect the system to AirVPN during the bootstrap Goldcrest: Bluetit client, allowing full integration with AirVPN servers, users, keys, profiles as well as generic OpenVPN servers Hummingbird: lightweight and standalone binary for generic OpenVPN server connections What's new in 1.2.1 Packages are available both for OpenSSL 3 and OpenSSL 1.1.x (legacy). Pick one according to the version you have in your system. If in doubt, run openssl version command from a terminal. bluetit.rc new directive forbidquickhomecountry to allow or forbid quick connections to home country servers Goldcrest bluetit-status option now shows the status of network lock and connection update of all support libraries, including OpenVPN-AirVPN bug fix: invalid user key label issue. Now, in case an invalid user key label is provided, the proper error is returned Please check the changelog included, as usual, in the packages for detailed information. AirVPN Suite is free and open source software released under GPLv3. Source code is available here: https://gitlab.com/AirVPN/AirVPN-Suite Download page: https://airvpn.org/linux/suite/ User's manual: https://airvpn.org/suite/readme/ Bluetit Developer's reference manual: https://gitlab.com/AirVPN/AirVPN-Suite/-/blob/master/docs/Bluetit-Developers-Reference-Manual.pdf Some notes: for Raspberry OS pick the ARM 64 bit legacy package, because Raspberry OS is based on Debian 11 and uses OpenSSL 1.1.x by default. for old Raspbian operating system and other 32 bit ARM systems pick the ARM 32 bit legacy package for Ubuntu 22 for Raspberry, pick ARM 64 bit mainline package (not legacy) if you run some i686 Linux let us know. You can still run AirVPN Suite 1.10 but if we have requests we can prepare a package for abandoned systems. Link to AirVPN Suite 1.1.0 for i686: https://eddie.website/repository/AirVPN-Suite/1.1/AirVPN-Suite-i686-1.1.0.tar.gz sha256 checksum: 6454cafc860ccc89da5da933c5bed279b1e1534a750f4423e6937e4fb84779e1 Kind regards & Datalove AirVPN Staff

@htpc Hello and thank you! Eddie 3.0 is currently under review on the Amazon Appstore. The review started on December the 1st, so approval (or rejection) should arrive very soon. In the meantime a side load is mandatory if you don't have access to the Google Play Store (where Eddie 3 is live). Kind regards

Hello! Let's see the new OpenVPN log, after the previously mentioned changes, at your convenience. Kind regards

@colorman Hello! Excellent, we see that everything works as expected. route-delay directive is not supported by OpenVPN3, and it has been deleted from the Configuration Generator too. Please delete the directive or renew your profile. You can tell Bluetit to generate a new profile directly, through Goldcrest commands (see the manual, search for --air-save Goldcrest option), or don't use a profile at all and have Goldcrest pass the connection order to Bluetit (probably this is a more comfortable usage). Kind regards

Hello! IMPORTANT NOTE: auto-start connection of VPN apps during system bootstrap has been forbidden in Android TV 10 and higher versions by removing the essential option pertaining to all apps using VPNService API. This system castration is suspected to be a deliberate choice to hinder VPN usage while a TV or a set top box with Android TV is booting up. If your TV is running one of the aforementioned versions, be aware that this is a prohibition by design, and we can't do anything about it directly on Eddie, unfortunately. We may anyway invite you to check whether any boot management app for your system is available, for example Launch on Boot or AutoStart No-Root. If so, you might be able to force Eddie startup during the final stage of the bootstrap. Once Eddie starts, then it can auto-connect. If you're running Android TV 9 or older versions go on, you will not need any of the aforementioned apps. First and foremost, make sure that "Always on vpn" option is enabled (this is the mandatory option we mentioned, which has been removed). Are you running Eddie 2.5 or 3.0? If it's 2.5, please upgrade. If you are already running 3.0, or anyway the problem persists after you have upgraded, can you send us a report generated by Eddie after a boot when the auto-start and auto-connection did not went through? Open the "Setting" view, tap the paper plane icon on the top right corner, note down or copy to clipboard the link that Eddie returns to you, and send it to us (in a ticket, if you want more privacy). Kind regards

Hello! The log you sent us shows that you have installed AirVPN Suite 1.2.0. Here we test AirVPN Suite 1.2.1. For your system, openSUSE 15.4, AirVPN Suite 1.2.1 legacy is required, because of the glibc library version (2.31). According to our tests 1.2.1 legacy runs fine in openSUSE 15.4. The secondary issue which prevents connection to ipleak.net and therefore hinders location extrapolation: can be ignored at the moment, it's related to CA certificates path and libcurl. If you need geo-location for a more accurate server choice after a quick connection request, you may use the country directive in bluetit.rc file. Kind regards

Hello! First things first: contrarily to what we stated above, openSUSE 15.4 Leap by default runs OpenSSL 1.1.1l and glibc 2.31. AirVPN Suite 1.2.1 legacy runs successfully (tested). Second, if you installed OpenSSL 3 (it is available only as an experimental package), you don't have to remove it. The AirVPN Suite 1.2.1 legacy version is linked against libssl 1.1 so it will run out of the box if you have that library. If you still experience any issue please make sure that you're running the legacy version and that libssl 1.1 is really available. Feel free to keep us posted. Kind regards

Hello! Note that it was a Configuration Generator bug which has been fixed after you found it. Now the CG correctly compiles the profile interface with a /32 address. Kind regards

@colorman Hello! Thank you for your tests. Unfortunately openSUSE 15.4 offers libssl 3 but an older C library, a combination unsupported by the Suite 1.2.1 RC 1, either legacy or not. If possible install libssl 1.1 and run Suite 1.2.1 RC 1 legacy version. In the meantime we will ponder the issue. Kind regards

@cheapsheep Hello! The authorization access is decided by the AirVPN infrastructure and not by the Suite. Thank you for the head up, we will look into the potential issue you mention. Also keep in mind that when you connect via UDP and your router crashes (or reboots), none of the clients will be able to notify the respective servers that they are leaving the VPN. Therefore, even with OpenVPN, you will experience much longer time for connection slots release (normally a maximum of 2 minutes). This is already implemented and it's the expected networklockpersist (but not networlock!) behavior. Bluetit will not "lift" a persistent network lock if the (re)connection attempt fails, and not even when it is disconnected and waiting for commands. Note how the behavior of networklockpersist is different from that of networklock . Should you notice that network lock firewall rules are unexpectedly no more in place when you suffer an AUTH_FAILED error and netwokrlockpersist is enabled, please report at your earliest convenience. Kind regards

Hello! UPDATE: AirVPN Suite 1.2.1 has been released. https://airvpn.org/forums/topic/55264-linux-airvpn-suite-121-available/ We're very glad to inform you that AirVPN Suite version 1.2.1 Release Candidate 1 is now available. This is a quick fix release. The suite includes: Bluetit: lightweight, ultra-fast D-Bus controlled system daemon providing full connectivity and integration to AirVPN servers, or generic OpenVPN servers. Bluetit can also enforce Network Lock and/or connect the system to AirVPN during the bootstrap Goldcrest: Bluetit client, allowing full integration with AirVPN servers, users, keys, profiles as well as generic OpenVPN servers Hummingbird: lightweight and standalone binary for generic OpenVPN server connections What's new in 1.2.1 Packages are available both for OpenSSL 3 and OpenSSL 1.1.x (legacy). Pick one according to the version you have in your system. If in doubt, run openssl version command from a terminal. bluetit.rc new directive forbidquickhomecountry to allow or forbid quick connections to home country servers Goldcrest bluetit-status option now shows the status of network lock and connection update of all support libraries, including OpenVPN-AirVPN bug fix: invalid user key label issue. Now, in case an invalid user key label is provided, the proper error is returned Please check the changelog included, as usual, in the packages for detailed information. Some notes: for Raspberry OS pick the ARM 64 bit legacy package, because Raspberry OS is based on Debian 11 and uses OpenSSL 1.1.x by default. for old Raspbian operating system and other 32 bit ARM systems pick the ARM 32 bit legacy package for Ubuntu 22 for Raspberry, pick ARM 64 bit mainline package (not legacy) if you run some i686 Linux let us know. You can still run AirVPN Suite 1.10 but if we have requests we can prepare a package for abandoned systems. Link to AirVPN Suite 1.1.0 for i686: https://eddie.website/repository/AirVPN-Suite/1.1/AirVPN-Suite-i686-1.1.0.tar.gz sha256 checksum: 6454cafc860ccc89da5da933c5bed279b1e1534a750f4423e6937e4fb84779e1 Thank you very much for your tests and please report any bug, glitch, malfunction etc. in this thread! Packages Please note that the Suite is no more built for i686 systems (32 bit architecture). If you need the Suite for such systems please run 1.1.0 release in the meantime and contact us in this thread or through a ticket. Linux x86-64: https://eddie.website/repository/AirVPN-Suite/1.2.1-RC1/AirVPN-Suite-x86_64-1.2.1.tar.gz $ sha256sum AirVPN-Suite-x86_64-1.2.1-RC-1.tar.gz b0ed16882279376e413c316594d215c230632301a5281f12260b0e765366a251 AirVPN-Suite-x86_64-1.2.1-RC-1.tar.gz *** Linux x86-64 legacy: https://eddie.website/repository/AirVPN-Suite/1.2.1-RC1/AirVPN-Suite-x86_64-legacy-1.2.1-RC-1.tar.gz $ sha256sum AirVPN-Suite-x86_64-legacy-1.2.1-RC-1.tar.gz 172e5a8436ded9a201e11722245bd399d04749d8448eddaf5ae4832de681e37d AirVPN-Suite-x86_64-legacy-1.2.1-RC-1.tar.gz *** Linux ARM 64 bit: https://eddie.website/repository/AirVPN-Suite/1.2.1-RC1/AirVPN-Suite-aarch64-1.2.1-RC-1.tar.gz $ sha256sum AirVPN-Suite-aarch64-1.2.1-RC-1.tar.gz c1a31310376eb7c58a8c17d3daf7389cf00ca654a19b941b61907ecd17caa159 AirVPN-Suite-aarch64-1.2.1-RC-1.tar.gz *** Linux ARM 64 bit legacy https://eddie.website/repository/AirVPN-Suite/1.2.1-RC1/AirVPN-Suite-aarch64-legacy-1.2.1-RC-1.tar.gz $ sha256sum AirVPN-Suite-aarch64-legacy-1.2.1-RC-1.tar.gz 18da433c1a073efcabef5cc00f17a6a75abdd4ed9b9efc0e66caa09070bcfac7 AirVPN-Suite-aarch64-legacy-1.2.1-RC-1.tar.gz *** Linux ARM 32 bit legacy: https://eddie.website/repository/AirVPN-Suite/1.2.1-RC1/AirVPN-Suite-armv7l-legacy-1.2.1-RC-1.tar.gz $ sha256sum AirVPN-Suite-armv7l-legacy-1.2.1-RC-1.tar.gz 323d8ef34ae6a53e3e64a39dff1df05eb91ee8f011ab416cb4c2fb5724ce4c4a AirVPN-Suite-armv7l-legacy-1.2.1-RC-1.tar.gz User's manual (1.2.0): https://airvpn.org/suite/readme/ Bluetit developer's reference manual (1.2.0): https://gitlab.com/AirVPN/AirVPN-Suite/-/blob/master/docs/Bluetit-Developers-Reference-Manual.pdf Kind regards and datalove AirVPN Staff

Hello! Check the following thread and see whether it helps: https://www.reddit.com/r/WireGuard/comments/ejxkm3/wireguard_as_both_client_and_server/ Kind regards

Hello! You describe some actions which do not give birth to a system notification. No system notification implies no sound. If you see an Android notification without a sound in spite of your settings please warn us. Kind regards

Hello! Correct, you will need to side load as Google doesn't want it for Android TV (new investigation on the reasons will start for the nth time very soon).. Amazon Appstore doesn't have such a problem. Download the APK from our web site, enable in your device external installation, and install the APK through any good file manager. Kind regards

@zsam288 Understood now, thanks! Kind regards

Hello! Thanks. Isn't the big central button on the "Quick connection" view already what you want? You can always reach it with a single tap from any app section except "Settings" which requires two taps. Kind regards

Hello! We're very glad and proud to inform you that Eddie Android edition 3.0 has been released, a breakthrough from version 2.5. The new release achieves full compatibility with Android 13 and maintains it down to Android 5.1. Various app sections have been extensively rewritten. Now Eddie Android supports WireGuard with swift integration with AirVPN infrastructure. A dark theme has been added for additional comfort together with new, improved connection logic and management. A sharp WireGuard networking management has been implemented: no more "forever dead wg client" haunting users running the Android WireGuard client in mobility. Profile generation have been improved: external export option has been added, and WireGuard profiles can be generated too according to the user selection. Profile generation now provides for a quick alternative to the web site Configuration Generator. Eddie Android edition is free and open source software released under GPLv3. We invite you to check from independent 3rd parties lack of trackers code signatures, for example here: https://reports.exodus-privacy.eu.org/en/reports/search/org.airvpn.eddie You can download Eddie Android 3.0 APK directly from our repository: or from the Google Play Store, please see here: https://airvpn.org/android/eddie/ Soon it will be available on the Amazon Appstore too. Source code (and of course changelog) is available in GitLab: https://gitlab.com/AirVPN/EddieAndroid/ Direct link to the changelog: https://gitlab.com/AirVPN/EddieAndroid/-/blob/master/ChangeLog.txt What's new Complete WireGuard support with full integration with AirVPN infrastructure WireGuard networking management to allow quick re-connections even when WireGuard would remain stuck after a failure. No more "forever stuck wg client" haunting users running the Android WireGuard client. Linked against the new OpenVPN-AirVPN 3.8.2 library Dark theme support and option to switch to dark, light or system default theme Improved VPN profile management Full compatibility with Android 5.1 up to 13 Extensive architectural revision and improvements VPN profile export both to internal database and external file or app Get faster support and more easily: send the app log and the device logcat to AirVPN support team with a tap and provide the team with just the link the app will give you back. No more adb or any other external tool and device connection required to generate the logcat. IMPORTANT: due to Google policy the local data encryption cipher has been changed from AES-256-CBC into AES-256-GCM. Therefore, before upgrading, we strongly recommend that you decrypt local data first if you had them encrypted by a Master Password. To do so simply disable the Master Password and then upgrade, so you will not lose your local data (not a big deal, but even so...). (*) (*) We could not even implement a failover AES-CBC recovery because the "smart" (???) automated Google review rejects the app as soon as it sees AES-CBC somewhere for local storage. Main features: The only official AirVPN Android client designed, developed and programmed by AirVPN team Full WireGuard support and integration with AirVPN Linked against "OpenVPN 3.8.2 AirVPN" (free and open source software library by AirVPN) ChaCha20-Poly1305, AES-CBC and AES-GCM support on both OpenVPN Control and Data channel Battery-conscious application Low RAM footprint Ergonomic and friendly interface Ability to start and connect the application at device boot Option to define which apps must have traffic inside or outside the VPN tunnel through white and black list Localization in simplified and traditional Chinese, Danish, English, French, German, Italian, Portuguese, Russian, Spanish, Turkish Full integration with AirVPN Enhanced security thanks to locally stored encrypted data through optional master password Quick one-tap connection and smart, fully automated server selection Smart server selection with custom settings Manual server selection Ability to start and connect during device startup according to a priority list which includes automatic choice, your defined country and your defined AirVPN server Smart attempts to bypass OpenVPN blocks featuring protocol and server fail-over Full Android TV compatibility including D-Pad support. Mouse emulation is not required. Enhancements aimed at increasing accessibility and comfort to visually impaired persons AirVPN servers sorting options Customizable "Default", "Favorite" and "Forbidden" servers and countries OpenVPN mimetype support to import profiles from external applications Multiple OpenVPN profile support. The app now imports and manages multiple OpenVPN profiles Support for custom bootstrap servers Support for favorite and forbidden countries AirVPN broadcast messages support User's subscription expiration date is shown in login/connection information The app is aware of concurrent VPN use. In case another app is granted VPN access, Eddie acts accordingly and releases VPN resources Optional local networks access. In such case, local network devices are exempted from the VPN and can be accessed within the local devices Localization override. User can choose the default language and localization from one of the available ones Favorite and forbidden lists can be emptied with a single tap Ability to directly select an AirVPN area (country, continent, planet) to connect to VPN re connection in case of unexpected OpenVPN disconnection. (It requires VPN Lock to be disabled) VPN concurrency management Full integration with VPN traffic leaks prevention by system in Android 7 or higher version Full compatibility with Android versions from 5.1 up to 13. User can generate or save an OpenVPN profile for any AirVPN server or country and save it in the internal OpenVPN profile manager or export it On the fly language change allowing to switch language without re-starting application Exclusive optional VPN lock in case the device cannot take advantage of Android's VPN direct management (Android 5 and 6) Server scoring algorithm implementing the latest AirVPN balancing factors in order to determine the best server for quick connection Network name and extra information are shown along with network type Device network status management Fully compatible with Android TV 5.1 and higher versions Complete changelog: https://gitlab.com/AirVPN/EddieAndroid/-/blob/master/ChangeLog.txt Kind regards & datalove AirVPN Staff

Hello! We're sorry to hear that, but we see that the support team sent you two courtesy e-mail and two replies on the ticket. Maybe you don't receive our e-mail and you don't consult your ticket in the website account panel... anyway, we paste here the reply by the support: Kind regards

Hello! Yes, you can test AirVPN Suite 1.2.1 RC1 linked against libssl 3 right now. It's a quick fix release, while all the major new options will be implemented in the next version, whose development started. You can download Release Candidate 1 for x86-64 at the moment, The internal beta testing ended successfully and any known bug has been fixed. Inside the tarball you also find the changelog. As soon as all the other packages (for ARM) are ready, we will announce everything on a new thread, but feel free to start using it right now of course. Find the changelog inside the tarball. Download link: https://eddie.website/repository/AirVPN-Suite/1.2.1-RC1/AirVPN-Suite-x86_64-1.2.1-RC-1.tar.gz Checksum to verify: # sha256sum AirVPN-Suite-x86_64-1.2.1-RC-1.tar.gz d50682222c6f3294de2eacdb833966c91c9d27fb931e043f0d063a19c1d1a7e4 AirVPN-Suite-x86_64-1.2.1-RC-1.tar.g If you need the legacy version (linked against libssl 1.1) the download link is: https://eddie.website/repository/AirVPN-Suite/1.2.1-RC1/AirVPN-Suite-x86_64-legacy-1.2.1-RC-1.tar.gz # sha256sum AirVPN-Suite-x86_64-legacy-1.2.1-RC-1.tar.gz a1aa78c2508bbd8fe3e1a5d02d475d32d48e40a35adf59a6535d15c93af7efcc AirVPN-Suite-x86_64-legacy-1.2.1-RC-1.tar.gz Kind regards

To moderators: please don't unlock. Account korgen subjected to pre-moderation for abusive behavior (obscene language, flames, insults) in order to protect community forum composure.