Staff

Excellent. Done and problem sorted. Thanks for the help

Hello!
 
The "situation" is perfectly under control. As a courtesy (absolutely not an obligation) you might evaluate to use servers in the Netherlands.
 
Kind regards

Hello,
 
we don't know how Netflix operates, anyway as a first, preliminary attempt, try to delete cache and cookies (including LSO Flash cookies) from your browser and from your Flash environment (if Netlifx uses Flash). Thanks to a very kind Air user, we should be able to test Netflix in the nearest future.
 
Kind regards

Hello,
 
we don't keep any log that can be exploited to identify a customer or a VPN client IP address and there's no law (not even in the UK) which enforces that. In the countries we operate, either our service is not within the scope of 2006/24/EC transposition, if such transposition exists, the 2006/24/EC transposition has been declared unconstitutional, or the transposition does not exist.
 
Additionally, we do not monitor or inspect OpenVPN clients traffic and we do not transmit any data to third parties while a client is connected to a server.
 
Kind regards

OpenVPN over SSL just saved me trying to establish a VPN Tunnel in a very restrictive network - glad you guys have that. Awesome work.

Hello! No problems at all.


With Comodo, the procedure is simple and fast. When you connect to AirVPN, regardless of the server you're connected to, your TUN/TAP adapter is DHCP-assigned an IP address in the range specified by our Technical Specs page. https://airvpn.org/specs/

Therefore, in order to block a program to send out packets when you're not connected to Air, just block (for any program you wish) any outgoing packet NOT coming from range 10.4.0.0->10.9.255.255, from any port to any port. Comodo supports both IP ranges (without need of CIDR notation) and the NOT operator.

Open you Comodo control center, click on the tab "Firewall", select "Network Security Policy", click on the tab "Application Rules".

Detect the application you want to block when not connected to Air, or add it in the list through the "Browse" command, right-click on the application entry, select "Edit rule" (or "Add rule" if the application has no rules), and define the rule as you can see in the attached image. Leave "Source Port" and "Destination Port" to "Any".

Please do not hesitate to contact us for any further information.

Kind regards

Hey all,
 
The recent network solutions hijack got me wondering about VPN connections in such a circumstance. I would assume the DNS exploits would still "work" against a client whose traffic was inside a tunnel because you STILL need to resolve IPs, right? DNS being basically a big trust relationship this seems like a real problem to me.
 
If my question makes sense, can someone explain or point to sources regarding protecting against such exploits if it is possible?
 
Thanks

Hello,
 
we don't keep any log that can be exploited to identify a customer or a VPN client IP address and there's no law (not even in the UK) which enforces that. In the countries we operate, either our service is not within the scope of 2006/24/EC transposition, if such transposition exists, the 2006/24/EC transposition has been declared unconstitutional, or the transposition does not exist.
 
Additionally, we do not monitor or inspect OpenVPN clients traffic and we do not transmit any data to third parties while a client is connected to a server.
 
Kind regards

Hello!
 
Is Plex Media Server running and listening to the correct port when the check is performed?
 
Kind regards

Website: http://www.ligtv.com.tr

What is the difference between TCP and UDP ports? Which port should I choose?

UDP is a connectionless protocol, so during the handshake it is not always possible to do an effective error correction. As a result, when there's high ping or low quality line during the OpenVPN login, the handshake may fail, although you could see no significant problem after (if) the connection is established. TCP is capable of handling these problems.

On the other hand, UDP is more efficient once the connection is established.

If you experience problems with VoIP video/audio conversations when connected to the VPN through a TCP port, a typical case for which a difference may be visible (VoIP over TCP - for example UDP over TCP -  is clearly inferior to VoIP over UDP because TCP implements ARQ, UDP does not), then go for an UDP connection.

In general, you should always try an UDP connection if your ISP allows it and you don't experience any problem during the handshake.

A particular case is a connection over TOR or over an http-proxy. In this case, TCP is mandatory.

Variety of ports (53, 80, 443) is an additional option to try to bypass country or ISPs blocks, or bandwidth management.

You provide Remote Port Forwarding, what is it?
 
"Remote port forwarding" forwards traffic coming from the Internet to our VPN server ports to a specified local port of your client.

By default, your account has no forwarded ports, and this is good as long as you don't wish to have a service reachable from the Internet. For example, suppose that you want to run a web server behind our VPN, or that you wish to receive incoming connections to your BitTorrent client in order to improve p2p performance, or to seed a file. Without at least one remotely forwarded port, your service could not be reached from the outside, because our VPN server would reject the proper packets to your service.

Usually this is a good security measure against attacks, but it prevents your services to be reached from the Internet.

When you remotely forward an inbound port, our servers will open that port (TCP, UDP or both, according to your selection) and will properly forward incoming packets to you on that port. The service will be reachable from the exit-IP address of the VPN server your system is connected to.

You can forward up to 20 ports simultaneously. You can do that on our website, in your account "Client Area". You can't forward ports lower than 2048.

You can map a remotely forwarded port to a different local port: this is useful for a variety of cases, for example when your service listens to a port lower than 2048 or when the port is already reserved. More details about it here below.

Once you reserve an inbound remote port for your account, you have two options:

1) Leave the "Local" field empty. In this case, packets arriving to the VPN server exit-IP address port n will be forwarded to your machine IP address inbound local port with the very same number n

2) Fill in the "Local" field with a different port number x. In this case packets arriving to port n will be forwarded to your system inbound local port x.

In both cases you need to reach the service on the VPN server exit-IP address port n.


IMPORTANT: do NOT forward on your router the same ports you use on your listening services while connected to the VPN. Doing so exposes your system to correlation attacks and potentially causes unencrypted packets to be sent outside the tunnel from your client. However, if you connect a router (for example DD-WRT, Tomato based firmware router) an additional step is required, please see https://airvpn.org/topic/9270-how-to-forward-ports-in-dd-wrt-tomato-with-iptables/  
NOTE: you can't reach your listening service(s) through the VPN server exit-IP address from the very same machine that's running it/them and is connected to a VPN server, or from any other machine connected to that same VPN server.

Hello!

That's just fine, it's not a DNS leak, they are all Air DNS servers. The reason for which we maintain and run different recursive DNS servers is basically to provide redundancy and fight censorship.
 
Kind regards

The tracker is:
 
tracker.torrenting.com
 
I am using it right now from Corvi. It is working.
 
I had a problem accessing the tracker from Corvi, but reported it and you guys fixed it.
 
I believe I have reported a couple of other Netherlands servers that had issues with it too, and you also fixed those. Thanks again.

Website: http://tv.nrk.no/

Hello,
 
we have read that "review". We reserve the right to reply, therefore our comments follow.
 
 
 
That's not exact. You fail to mention that iVPN is a VPN service competitor.
 
 
 
False, Air is based in Italy as clearly stated in the Privacy Notice.
 
 
False: "These data are not collected to identify, through elaboration or any other technique" has an unequivocal legal meaning in the EU. It means that personal data, including IP addresses (regardless of the debate whether an IP address is a personal data or not), are not collected at all and in any way. Therefore not only we legally state that they are not stored when a client accesses a VPN service, but we also say that they are not even sent to third-parties WHILE a client is connected to a VPN server, which is a higher privacy condition. It seems, to say the least, bizarre that a higher privacy protection policy is interpreted as a lower one.
 
 
Once again, the sentence has a very precise legal meaning in the EU. The service is erogated when a client is connected, therefore when a client is disconnected the service is not erogated, ergo when a client disconnects those data are no more on the servers and the data retention period is, in the worst case, the timeout period (up to 60 seconds), in the best case 0 seconds.
 
 
 
False. The Privacy Notice states, since three years ago:
 
 
 
And also:
 
 
 
This fact alone shows that iVPN either did not even read our documents, or the writer(s) voluntarily lied.
 
Additionally, we don't need to cite ads or affiliates because: we have no ads and we don't plan to host any ad; and affiliates (if any) are totally separated from the system and can't access in any way any personal data, according to our Privacy Notice (see again above: data are not transmitted to third parties).
 
 
 
That's true and IT MUST BE SO. We will never mention how we "respond" to laws that are outside our jurisdiction and that are therefore inapplicable, simply because we are not forced to and we MUST NOT comply (and of course we must not even "respond") to such laws. An USA Act "has jurisdiction" on the USA. We are not subject to every single law existing in the world and we will NEVER mention them as if we recognized their validity. Doing so would imply an utter incompetence on the legal field. Ironically, we would like to ask to iVPN staff why they do not state in their policy how they "respond" to every single law in the world which makes VPN business illegal.
 
 
 
Broken English or illiterate iVPN reviewer? We recommend iVPN people to open a dictionary, for example the Webster dictionary, and search for "erogate", which means "give, lay out, provide, deal out".
 
And about you, centerc3290=@3, why don't you actually read our Tos and Privacy Notice, instead of relying on a COMPETITOR review, spreading it as a review "from IT professionals"? Use your own brain!
 
Kind regards

Hello,
 
at the moment of this writing we have no information at all about the issue and we have not been warned about any problem. Supported payment processors remain the same, without any variation.
 
Accepting cash in mail would pose serious, practical operational problems, and perhaps legal problems as well.
 
We are anyway working to add more and more payment methods.
 
Kind regards

Hello,
 
at the moment of this writing we have no information at all about the issue and we have not been warned about any problem. Supported payment processors remain the same, without any variation.
 
Accepting cash in mail would pose serious, practical operational problems, and perhaps legal problems as well.
 
We are anyway working to add more and more payment methods.
 
Kind regards

Synopsis
 

 
This program, for Windows, Linux and OS X, opens a socket to listen or send packets to an address.
It can be useful to debug the Port Forwarding with AirVPN.
The IP list is automatically compiled from your interfaces. If you connect to a different server, refresh (the green icon) the list to view the new 10.* IP address. Using IP 0.0.0.0 and listening means listening on all interfaces. Each line in the log is a connection. The Send button sends a string with AirVPN text and the current date (RFC 822) to the specified address. If you use the Check button in AirVPN Port Forwarding page, you will see a line without 'IN' bytes and with 'TCP Closed' status. This is because our checking simply opens and closes a socket, without sending any data.
Download
Current version: 1.3 - 27/06/2013
Binary (.NET Framework 2, recommended with Windows XP/Vista/7) Binary (.NET Framework 4, recommended with Windows 8 and above) Source code (GPL3)
Linux and OS X support
Download the ".Net 2" version. The program requires Mono.
Packages required:
Debian / Ubuntu:apt-get install mono-runtime libmono-winforms2.0-cil libmono-corlib2.0-cil RHEL6, Centos6, Scientific-Linux6, etc and Fedora distros:sudo yum install mono-core mono-winforms Under OS X, install Mono. Launch with:mono PortListen_net2.exe

Hello,
 
we're glad to inform you that a new payment processor is available: Authorize.net, by CyberSource, a VISA company.
 
Air is an Authorize.net verified merchant.
 
The processor accepts VISA, MasterCard and JBC credit cards, including prepaid cards.
 
Privacy and security notice: we never come to know your credit card number. The transaction core is handled by Authorize servers in compliance to Payment Card Industry Data Security Standard (PCI DSS).
 
Kind regards

Hello!

We regret to inform you that due to 4 (four) alleged copyright infringement notices in the last 40 days, our provider decided to cancel Fornacis. ISP did not provide any proof of such alleged infringements. We apologize for the inconvenience clearly not caused by us, we'll look for alternative providers in France.
 
Kind regards

Hello,
 
this is a report we had from one of our customers (thanks jd83751) running Windows 8.1 Preview, it might be very useful for you too:
 
"okay I fixed it. somebody helped me out on a microsoft forum. this is what they told me and just in case somebody else has this issue this is what I did.

I went into the "Device Manager", looked for TAP-Windows v9 adapter and uninstalled it. after that I uninstalled OpenVPN. then I went into "Regedit" and deleted this key: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\ROOT\NET
after that I re-installed OpenVPN and got it to work. thank you for your time and trying to help me out. hopefully the steps above will help out anyone else that has this problem. thank again for cooperating with me."
 
Kind regards

Hello!
 
1. Yes: https://airvpn.org/tomato and https://airvpn.org/ddwrt You can anyway run OpenVPN automatically at your system startup, you don't need to launch it manually.
 
2. Your question is somehow unclear, can you please elaborate and explain what you mean with protection?
 
Kind regards

Hello!
 
We have already been contacted by Freenode a few hours ago, they kindly explained that the problem is abusive behavior from user(s) from our nodes. Probably they have gone ahead by themselves and started blocking all our exit-IP addresses. This could make things worse because we could start multi-hopping and rotating as many IP "secret" addresses as we wish from 4 continents, making their task desperate, but in this case we will NOT do so at the moment: Freenode is an IRC platform that supports free & open source software and their users, as well as any other service and any other user of any other service, must NOT be harassed by our nodes. We could have studied alternative solutions with automatic triggering, but if they have already chosen to block indiscriminately, that's their legitimate right. We will do nothing to circumvent the blockade before we carefully evaluate the problem and get also an informal opinion by Mr. Stallman, Mr. Cerf and Sir Berners-Lee (if they will wish to give us one, of course) on such general matters next time we meet them in person or virtually.
 
The general point is if it's ethically acceptable for a service like ours, which provides free access to people working in human-rights hostile countries, to fight net neutrality violations and end-to-end principle violations from private entities over their private will when such fight will help harassing behavior.
 
Kind regards

Hello,
 
we have a report according to which OpenVPN 2.3.2 works on Windows 8.1 preview. We are not testing at the moment Windows 8.1 preview but you might like to try anyway.
 
Kind regards