Staff

If you mean requirements to infringe Net Neutrality, beyond our will (which is blocking outbound port 25 and nothing else), they are unlikely because the contract we sign with them is clear under this respect (and not all providers offer clear contracts). Furthermore, in so many years, a requirement to infringe Net Neutrality has never been made by M247. More in general, providers which requested or enforced by themselves NN infringements have been very few in these 12 years of operations, maybe four, as far as we remember, including one with strange infringements like blocking ICMP altogether. M247 servers, for your information, are 30% of the total in our infrastructure, not 50%, and yes, they can be replaced in the unlikely, worst case scenario. Remember that we still have an oversized infrastructure, so we would be able to do it with no service interruption. Of course if all of our providers enforced Net Neutrality infringements together, then our mission could not be accomplished anymore integrally, or at least not easily at all in a short time, but that's another story. Kind regards

@alternity75 Hello! Gliese is already down while Dimidium should work up to June the 5th. IP addresses will change, it's inevitable in this case. Kind regards

Hello! Unfortunately DediPath could not serve us anymore and demanded block of specific outbound ports to block traffic coming from the usual cretins who spam or have their Windows machines infected with spamware. M247 never posed such a problem to us. Before breaking net neutrality so blatantly we will try with reliable providers and port block remains the last option to be enforced only when absolutely unavoidable (currently we only block outbound port 25). Kind regards

Hello! We're very glad to inform you that two new 1 Gbit/s full duplex servers located in New York City are available: Haedus and Iklil. They are going to replace Dimidium and Gliese. The AirVPN client will show automatically the new servers; if you use any other OpenVPN or WireGuard client you can generate all the files to access them through our configuration/certificates/key generator (menu "Client Area"->"Config generator"). The servers accept connections on ports 53, 80, 443, 1194, 2018 UDP and TCP for OpenVPN and ports 1637 UDP for WireGuard. Haedus and Iklil support OpenVPN over SSL and OpenVPN over SSH, TLS 1.3, OpenVPN tls-crypt and WireGuard. Full IPv6 support is included as well. As usual no traffic limits, no logs, no discrimination on protocols and hardened security against various attacks with separate entry and exit-IP addresses. You can check the status as usual in our real time servers monitor: https://airvpn.org/servers/Haedus/ https://airvpn.org/servers/Iklil/ Do not hesitate to contact us for any information or issue. Kind regards and datalove AirVPN Team

Hello! For some reason we will probably investigate, when ExpressVPN driver and software are installed OpenVPN and WireGuard on their own don't work properly anymore: We don't know whether it's a highly customized driver which creates incompatibilities or it's just an interface lock problem caused by some Express process still running and interfering in the background. Anyway, we have noticed that by removing anything Express related, both OpenVPN and WireGuard work again just fine. Kind regards

Hello! It's unfortunately expected because Eddie doesn't handle Linux or desktop signals for a poweroff/reboot, therefore it will not restore system settings. At the next boot, a common occurrence is that your system still has VPN DNS set (if no DHCP occurred), not accessible from outside the VPN. Anyway, Eddie stores the settings in a backup file for additional security. By re-running Eddie and shutting it down from inside the graphical interface menu you should get the previous settings restored, otherwise you will need to manually set the proper DNS. In general, to circumvent this limitation shut down Eddie from inside the GUI itself before you shut down the system. Kind regards

Hello! Today we're starting AirVPN twelfth birthday celebrations offering special, strong discounts on longer term plans. From a two servers service located in a single country providing a handful of Mbit/s, the baby has grown up to a wide infrastructure in 23 countries in four continents, providing now 240,000+ Mbit/s to tens of thousands of people around the world. We still define it as a "baby", but AirVPN is now the oldest VPN in the market which never changed ownership, and it's one of the last that still puts ethics well over profit, a philosophy which has been rewarded by customers and users. During the last year, AirVPN added important features, even according to customers requests: integrated and full WireGuard support on all VPN servers optional lists selection to block spam, ads, trackers and other malicious sources, featuring a unique and fine grained customization which is exclusive on the nowadays market improved inbound remote port forwarding interface and implementation The infrastructure saw a robust power up in Tokyo, where we have now 14000 Mbit/s available (7000 Mbit/s full duplex), with more powerful hardware, and a small addition in Ireland. The VPN servers and the back service ones have had some minor security improvements as well as ordinary system updates as usual. Optimized software, and also WireGuard implementation, allowed our server to deliver high performance more smoothly, thanks to the improved balancing between threads and of course the good WireGuard scalability. On the software side, all AirVPN applications and libraries are still free and open source software released under GPLv3. WirteGuard has been fully integrated in the Desktop edition of Eddie, while Eddie Android edition will support it in the next version which is imminent (a public alpha release will be ready in June). All the applications are continuously developed and updated to provide an even better experience and performance. Kind regards and datalove AirVPN Staff 

New version 2.21.8 This release follows the stable version 2.21.6 by fixing some minor issues. Released as stable. This was an urgency release to resolve common issues discovered. Other issues also reported in this topic are under evaluation. [bugfix] [windows] "Network interface no more available" in some situation [change] [linux/macOS] Hummingbird available also in High Sierra [change] [linux] eddie-tray updated to GTK3 (cleaning dependencies issue) [bugfix] [all] Minor bugfixes

Hello! AES-CBC is no more supported, please switch to AES-GCM or CHACHA20-POLY1305. You can edit the ovpn file with any text editor or you can generate new configuration files. If you do so, make sure you select "OpenVPN >= 2.5" in the proper combo box of the Configuration Generator page: the CG will generate files including no references to AES-CBC. Kind regards

@Wave_Rider Hello! It looks like your system downloaded the whole HTML page in place of the actual ovpn generated file. Which browser did you run? Can you please test Chrome and Firefox? Alternatively, run Eddie Android edition. It is fully integrated with AirVPN so you can get rid of configuration files. https://airvpn.org/android/ Kind regards

Hello! From your description it looks like Eddie starts minimized. Check the system tray (click the up arrow to see hidden icons) for Eddie's tray icon, a small cloud in a circle. Double-click on it to bring up Eddie main window. Kind regards

@unn4m3d @BKK20 Your consideration can not be agreed upon, as micro-routing fights censorship as well as end-to-end connectivity principle infringements by bypassing, when possible, third-party blocks. We are seriously considering to offer an option to disable micro-routing. Remember that those trackers (and any service in general) which block our NL VPN servers will become completely unreachable with micro-routing disabled.

Hello! Check here for ideas and practical implementation on pfSense (a FreeBSD distribution strongly focused on firewalling and routing): https://nguvu.org/pfsense/pfsense-multi-vpn-wan/ In general, it should be possible on *BSD and Linux systems, but it requires custom solution as our various programs don't support failover and load balancing via multiple network interfaces. Kind regards

@prplshroud Hello! For a quick resolution, please renew your client certificate from your account "Devices" panel, available in your "Client Area" in airvpn.org web site, then log your account out and in again from Eddie's main window (or generate new configuration files if you don't use Eddie). We started signing client certificates through SHA512 since 2017, so you must have an older one: thank you, you're a long time customer! Explanation of the problem with additional details: https://airvpn.org/forums/topic/49811-urgent-cant-connect-to-vpn-anymore-on-openvpn-for-android-0725/?do=findComment&comment=169523 Kind regards

Hello, please note that your ticket received a reply 9 hours before you posted the quoted message, please consult the ticket at your earliest convenience. Kind regards

New version 2.21.7 This release follows the stable version 2.21.6 by fixing some minor issues, mainly the linux tray-icon support and the annoying Windows UAC at boot. It will replace the stable 2.21.6 version soon. [bugfix] [linux] tray-icon restored [bugfix] [linux] fix for 'no available or enabled Network Lock mode' when IPv6 disabled at OS level [bugfix] [windows] UAC at first startup [bugfix] [linux] minor fixes to deploy scripts, and an openSUSE fix [change] [linux/macOS] Hummingbird 1.2.0 [change] [linux] AppImage deployed in tar.gz format

Hello! The problem is caused by the micro-routing feature, especially if the tracker is in a CDN and therefore might be reached on different IP addresses, some of them micro-routed and some of them not micro-routed. Consider to use DHT and avoid those trackers at the moment. DHT makes trackers redundant and obsolete, they are zombies kept alive only for "private torrenting" purposes. In the meantime we will consider to offer an option to disable micro-routing. Kind regards

Hello! Yes, you still need to, for the current version did not set Hummingbird as default choice. Kind regards

@encrypted Hello! The minimum requirements for x86-64 architecture are very low, i.e kernel and libraries you can find in Debian 9: kernel version 4.9, glibc 2.29 etc Any distribution not older than 4-5 years should be fine. You have Mint 19.3, a Ubuntu 18.04 derivative released in 2019. Hummingbird is tested in Ubuntu 18, so in theory it should run in Mint 19.3. Let's see the log and any error message. However, not here: this is an Eddie thread, so let's first ascertain whether the problem is Hummingbird specific. Please feel free to open a ticket at your convenience. Kind regards

Hello! WireGuard does not support authentication via certificate at all. OpenVPN does, and we have it implemented of course, but not with specific fields. If we implemented it we would force all of our customer to change certificate every time they change server, which is not a viable solution in most router and pfSense machines. Totally unacceptable. You must also consider that in order to impersonate a server, not only would the attacker need to steal the secret WireGuard key or the various OpenVPN certificate/key pairs, but she would also need to cage the target and hijack route via IP addresses, because the target can not be actively reached (forbidden in OpenVPN settings). Also, DH keys are unique in each VPN server, so the attacker can't even try an impersonation from another server while the connection is ongoing to a real server. Kind regards

Hello! Which system exactly? Hummingbird requires not so new systems (Debian 9 and higher versions for example), but it may not run in very old systems Make sure to include a system report as Eddie writes HB log too, and test Hummingbird on its own. Kind regards

Hello! Yes, Eddie for macOS and Linux is packaged with Hummingbird. In macOS, Eddie runs Hummingbird by default, and not OpenVPN. @jazzeyman Yes, Hummingbird latest version is 1.2, if some Eddie packages include an obsolete version the problem will be fixed soon, but in the meantime you can manually download latest Hummingbird version and have it run by Eddie. Kind regards

@aishm Hello! The feature is not implemented in Eddie Android edition, but you can setup manually, even if the device is not rooted. Please see here: https://airvpn.org/forums/topic/13486-ssh-tunneled-vpn-on-stock-android/ Note: the guide mentions OpenVPN for Android, but we have many users reporting OpenVPN for Android as very unstable on Android 11 and 12, so you can run Eddie Android with profiles in any case and especially if you have recent Android versions. Kind regards

@Philiberti Hello! Please remove completely the mentioned directory. If you can't do it with administrator privileges, it's plausible that some process is locking the directory,, so reboot in Safe Mode and try again to remove the directory. Then, reboot in normal mode and run again the installer. Kind regards

Eddie 2.21.6 Desktop Edition released Hello! We're very glad to inform you that a new stable release of Eddie is now available for Linux (various ARM based architectures included, making it compatible with several Raspberry Pi systems), Mac, Windows. Special thanks to all the beta testers, whose invaluable contributions and suggestions in the last 9 months have helped developers fix several bugs and improve the overall stability of the software. Eddie is a free and open source (GPLv3) OpenVPN GUI and CLI by AirVPN with many additional features such as: traffic leaks prevention via packet filtering rules DNS handling optional connections over Tor or a generic proxy customizable events traffic splitting on a destination IP address or host name basis complete and swift integration with AirVPN infrastructure with OpenVPN and WireGuard white and black lists of VPN servers ability to support IPv4, IPv6 and IPv6 over IPv4 What's new in Eddie 2.21.6 WireGuard support including thorough and swift integration with AirVPN enhanced wintun support in Windows, resolving TAP driver adapter issues and boosting performance, and now set by default as a replacement of TAP driver (which remains optionally available) updated Hummingbird 1.2.0 support in Linux and macOS for increased performance (up to 120% boost in macOS i7 and M1 systems when compared against OpenVPN 2) new ping engine updated Portable and AppImage bundles for improved Linux distributions compatibility constant monitoring of resolv.conf in Linux to mitigate and resolve DNS interference refined network interface management and driver detection in Windows bootstrap servers IPv6 address support unquoted service fix aimed at security hardening in Windows updates of all underlying linked libraries as well as dynamic link against some libraries providing enhanced robustness resolution of memory leaks in Windows starting to occur after numerous usage hours several bug fixes Operating and architectural notes Eddie GUI and CLI run with normal user privileges, while a "backend" binary, which communicates to the user interface with authentication, gains root/administrator privileges, with important security safeguards in place: strict parsing is enforced before passing a profile to OpenVPN in order to block insecure OpenVPN directives external system binaries which need superuser privileges (examples: openvpn, iptables, hummingbird) will not be launched if they do not belong to a superuser Eddie events are not run with superuser privileges: instead of trusting blindly user's responsibility and care when dealing with events, the user is required to explicitly operate to run something with high privileges, if strictly necessary Backend binary is written in C++ on all systems (Windows included), making the whole application faster. Settings, certificates and keys of your account stored on your mass storage can optionally be encrypted on all systems either with a Master Password or in a system key-chain if available. Download Eddie 2.21.6 Eddie 2.21.6 can be downloaded here: https://airvpn.org/linux - Linux version (several architectures and various distribution specific packages for easier installation) https://airvpn.org/macos - Mac version https://airvpn.org/windows - Windows version Eddie is free and open source software released under GPLv3. Source code is available on GitHub: https://github.com/AirVPN/Eddie Complete changelog can be found here. Kind regards & datalove AirVPN Staff