Search the Community

Thanks for the link. It is one of the extensions of the currently proposed law that wants to extend it to also ban VPNs. Even with that extension retracted, the original law still wants ISPs, DNS providers and browsers to block whatever the French government and authorities ask them to. The first amendment is off the table but the second one isn't and the entire law is not either. This is exactly how officially registered public VPNs in Russia ought to work currently. I have said in previous threads that it should be a red flag how the press/institutions do not highlight the fact that either China's Great Firewall or Russia's internet laws are all about blocking and governmental censorship. That's because similar laws are desired in other countries too, nobody wants to rally up the citizens against them. In my opinion only the US remains a tough nut to crack for such a law. We shall see what happens to Tiktok and that bill, maybe it will really fall into Microsoft's lap (and confirm Microsoft's allegiance to the government's power structures and cooperation).

Hello! It's a crack for some program unrelated to AirVPN or a malware. Our software does not need any crack, it is free and open source software which does not need the activation key they claim they give you. There's another "Air VPN" (with a space) in China using fraudulently this name but it was shut down recently. We will hide your link just in case it's malware. About NordVPN, yes, they have been cracked a couple of times and thousands of account were compromised in the past. By the way still unrelated to AirVPN. Kind regards

Up until last week, I was able to ping the Japanese servers and return around 80ms. Now the ping is around 240 - 50ms. I suspect it must be to do with changes on the ISP side but I'm curious if anyone else has noticed any similar performance hits within China? Is there anything I can do to improve things? Thanks!

Hello! It might be relevant to know (just in case) that currently connections from Russia, China, Egypt, UAE may work only with OpenVPN in TCP, to port 53 or 443, in tls-crypt (entry-IP address THREE). OpenVPN over SSH is working too. Connections from Iran do not work, no matter the connection mode you try. To Iranian citizens we recommend Tor obfuscated and private bridges. You will need to update your bridge frequently. Kind regards

Hi. I'm connecting from China, the normal speed is about 10mb/s ~ 15mb/s without a vpn, when use airvpn, I can get full speed in the morning, the speed continue dropping later, and in the evening(from UTC 10am) it becomes extrmely slow that I only get 100kb/s ~ 200kb/s. I have tried servers from America, Canada, Germany, Japan, Singapore but the results are similar. I wonder if it's because the China GFW or I have misconfigured something? Has anyone in China faced the same issue? System_Report.txt Eddie_20200214_071333.txt

I do not think the last part is particularly true. You will have a better chance bitTorrenting in areas that have more lax rules (think Netherlands, Sweden, Romania, Iceland etc.) and the Provider is less likely to get a court order inquiry for information. If, at the least, a Provider cannot directly tie you to the piracy, they might be able to tie payment method depending if that was anonymous (read AirVPN privacy policy carefully: they specifically state to use more anonymous payment gateways [BitCoin] but they don't explicitly state why). I think you are confusing who the Provider is and what data they own. The servers provider(s) are the datacenter owners (like Leaseweb). The service provider is AirVPN, based in Italy. AirVPN doesn't own the servers, it rents them from the servers providers. The servers providers, depending on the country in which it is located may receive a court rule (which, for movie piracy, is extremely unlikely). Not only they can't tie you to the piracy because of the no log policy, they also don't have any of your payment informations you only gave to AirVPN. Legally, the servers providers only know AirVPN for which they have a commercial contract. Concerning the privacy policy: Using anonymous payment gateways is very useful in countries where using VPNs are forbidden (Russia, China and many others). It will be way trickier for them to prove that you bought those illegal services.

I am using it in China. The connectino is a bit slow, but stable. There's no proble checking emails. I even watch YouTube and Netflix using airVPN regularly. Laptop: M1 Macbook Air, with the Eddie client. Mobile: IOS, OpenVPN software with configuration file generated from the airvpn website

I am using pf-sense 2.4.4 on a netgate SG-1100, configured for AirVPN using the guide listed on this site. I have a tp-link, c2600 dumb AP for wireless, configured with OpenWRT 18.06.05. Up until a few weeks ago, my connection was perfect: AirVPN connection to Gliese worked well at ~20mbs download speed. Fine for my needs. Latency is bad, ~300+ms, but then again, I'm in China and it's ok for my needs. Now, I am frequently experiencing the spinning wheel of frustration when I am streaming video on my Apple TV. 3-4 times of ~30 second pauses in a 5-10 minute period is not uncommon. Because I like to "tinker" with my settings (I recently tried the 19.07 rc2 for OpenWRT), I'm thinking I did something to cause the problem, but that doesn't appear to be it. I have reverted to the settings I had when all was working ok. I'm thinking it may be traffic shaping by the great Chinese firewall, but I'm not positive. It could also be a configuration issue on my end. One reason for my thinking it's a configuration issue is that when I try to login to pfsense from a network connection (not wireless), the pfsense dashboard doesn't load until my internet connection is working. Strange. I've monitored the download speed traffic via pfsense, and I can clearly see when download speed via the openvpn wan connection crawls to next-to-nothing. Short of doing that, I'm not sure how to troubleshoot the issue further. Since I'm a hobbyist, and not a trained network engineer, any advice to trace the problem would be of help. Thanking you in advance. PS Yes, this is in all likelihood NOT an issue with AirVPN and I am definitely not complaining about AirVPN service. I am and have been a very satisfied customer. That said, I know there are a lot of smart people on these forums and due to the totality of the issue (AirVPN + OpenVPN + China + networking) I'm thinking someone smarter than me may have a clue to troubleshoot.

I went through the same thing a few months ago when 2.5G wifi died on my Linksys WRTblah. The standard advice in the dd-wrt forum is to look at a used Netgear R7800, no longer available new, or its successor the XR500, which is effectively a repackaged R7800 with more memory. Or for higher performance, consider the Netgear R9000 or XR700. See that forum for a couple of others. The topic comes up frequently. I went with a used XR500 and stumbled into the fact that there are versions made in China and in Thailand. I found I needed the Thai version for the whole installation to work correctly. Flashing instructions for the R7800/XR500 are posted in the dd-wrt WiSoC Atheros forum. If you look at other routers for dd-wrt, look for a Qualcomm/Atheros wifi chipset. Because Broadcom keeps source to itself for its drivers, their chipsets are close to deprecated in the dd-wrt world now. I heartily disagree that dd-wrt is stagnant the last couple of years. Just the opposite is true. It's very actively developing, especially the last few years, with recent noteworthy improvements, for example, in its OpenVPN and wireguard systems, in VLAN configurability, and to security in general. FWIW, since this is a VPN crowd, I run both OpenVPN and wireguard tunnels to AirVPN servers on each of the several dd-wrt routers I maintain for my extended family. On some I run multiple wireguard tunnels. Virtual access points provide extra SSIDs, and policy-based routing controls which route through which VPN tunnel or simply bypass them all. The Air stuff all works like a charm, with Air wireguard especially easy to set up. This is all routine in the dd-wrt world.

Hello, I thought about starting this - at least for me - interesting topic about insecure or unsafe countries to run a VPN server from. I already figured out that most VPN providers aren't trustworthy at all and if you dig further into it, you will end up with AirVPN, IVPN and Mullvad. Maybe even Proton or Windscribe. Tracking free, open source providers without an affiliate program. One thing you will quickly notice: The first three only offer servers in a very little amount of countries, which obviously has a security purpose. Now my question is: Is there a list of unsafe countries to run a VPN server from? Or do you know certain countries it is simply not possible to safely run a VPN server from? And could you clarify why? This question is by the way for everyone. That is why I'm posting it here. I do know Proton is using virtual servers to mock the actual server location. But they indeed have servers in Russia for example. There is another provider who often is praised as "fan favorite" in "the scene" named Perfect Privacy. They also have a very small share of servers, but they indeed do have a sever in China. I also heard bad things about Australia. So, I naturally wonder why there are some countries where you hardly will find a VPN provider running servers from that are actually located there. I can understand you won't find a good data center in most African countries and I also can imagine that Russian or Chinese authorities would be very interested in your servers once they are placed there. So I do wonder if running a sever from there comes with some "conditions". I also wonder why - for example - Lithuania seems so unpopular to run a sever from? After all, the other Baltic countries Estonia and Latvia are very well represented with most providers. Maybe someone can provide some more details about this topic. Edit: I might have posted this in the wrong sub-board. Maybe someone can move it to the right place.

On August 7 Russian authorities introduced DPI ban over both OpenVPN and FireWire protocols. Unlike China defaults like OpenVPN-TCP-443 won't work. Changing servers is useles too. So this is topic might be better moved to the general troubleshooting topic.

Hello, In China currently i have issue connecting to America server. Only one working for me is Miami Cursa UDP but netflix is giving me the proxy error message. Is there anyway to make the others servers works from China ? Thx

If i'm connected through Titawin (Canada), Facebook has recently starting checking my logins saying I'm in shanghai china? It used to say Vancouver Canada when connecting while on the VPN.

Hello everybody, first of all, I love AirVPN, and I will continue to use it. It works perfectly 99,9% of the times. But for these 00,1% I need a good alternative. I am living in China. I need a good VPN for China. Price isn’t important. It would be nice to run on Android and Windows and have a similar excellent policy like AirVPN. Does anybody have a suggestion? (and be sure that it works in China in the year 2018). Thank you very much for your help!

Use Wireguard as a protocol; can only offer you instruction via my own Windows Desktop usage - in Eddie, click upper left hand corner "cloud" icon, click preferences, click protocol, choose "Wireguard". Specific to Mac, or iOS, or Android, or user-generated certs for other clients ie directly on router hardware, uncertain of guidance, but since I stopped using OpenVPN, speeds to my nearest "preferred country" are pretty much constant 100%, especially important for my a heavy torrent leecher. There's lots of different VPN protocols. New ones are constantly being developed, and AirVPN's Eddie as I've described above, present the user with lots of different "tunneling methods" dependant on what sort of network restrictions you're in, ie University Network, China etc. It was known for a longtime that OpenVPN is very CPU intensive, but since newer competing protocols/"tunneling methods" have been developed almost exclusively with the aim of being "lightweight" - ie, requiring little calculation, but maintaining speed and strength - now OpenVPN itself is trying to compete by implementing "DCO" - the lead(?) on this is even active in these very forums. The only other stipulation I'd make, apart from waiting for OpenVPN DCO, is to connect to whatever country nearest you: whilst I can trust Singapore, Japan, New Zealand, I can't expect to max out my 250/250mBit/s to any server there, that's just fact.

Is there any setting that would force Eddie to reconnect. I live in China and it seems connection works for some time. Then it I get OpenVPN3 KEEPALIVE_TIMEOUT and have to manually reconnect.

Airvpn is not in normal use in China (Mainland) I found that based on the openvpn protocol, there are also ssl, ssh (forget it put in China) Maybe you think about supporting the wiregurad protocol, or participating in support. And consider similar v2ray confusing traffic technology Https://github.com/v2ray/v2ray-core I know that the client can set the pre-agent I prefer a fundamental solution (although it is difficult) The Chinese firewall IPS part is the easiest to prevent too simple "settings" (such as ssh, ssl pre-proxy settings) SSL-SNI full verification promotion has not been seen on the ssl platform recently. Idea: distributed (perhaps blockchian) tcp/udp protocol extension development + ML to handle routing and detection being attacked or blocked (both done at the bottom layer rather than at the application layer, not centralized but decentralized)... Goodluck

Hi, Sorry to bump up this old thread. I've got an issue with DNS leak here and would like some help. This is the most relevant thread I found. I'm based in China and using ASUS Merlin with OpenVPN. The China Great Firewall blocks us from accessing google/youtube/twitter etc. AirVPN has been a tremendous help for us to access the internet freely. However, sometimes I found myself losing access to these websites. When I try ipleak.net, it usually shows my local ISPs. So I suspect that's the reason. What would be the best practice to avoid this? If I specify an open DNS server, it usually massively reduce my internet speed accessing local websites. I tried to change the OpenVPN DNS config to "Exclusive" and sometimes it works, but I'd love to know what's the best solution here. Thanks in advance!

In retrospect, I'd like you to present a proper explanation on why you think I'm unhealthy and toxic. From my perspective, I haven't spammed the forum. I haven't really posted many posts. In fact, I'm trying not to post unless I need to post. I haven't intentionally lied. I could be wrong, but that's not lying. I haven't coerced anyone. I haven't forced anyone to pay attention to my posts by using quotes and user handles multiple times. If people tell me to stop bothering them to pay attention to my comments, I wouldn't bother them. I didn't intentionally hurt anyone or anyone's feelings. It's only natural for humans to cast doubts on the usual suspects. The doubts could be wrong, but feasible. Scientific process requires proposing guesses and being wrong multiple times. I haven't said I was right when I casted doubts. And, I haven't intentionally hurt anyone or anyone's feelings by violating their personal space with unwanted attention. I'm not trying to force them to pay attention to my posts. I'm just passing by and leaving a few comments occasionally on this forum. I may be a bit active on this forum now, but don't take my participation in the forum for granted. I could stop being active soon. That being said, I haven't really tried to prove my doubts because proving my doubts was not my intention. If someone knows extensive agreements between governments on internet spying and various dystopian nightmares that actually happen in different regions, it is only natural to suspect authorities for anything that they have motivation to pursue. What I don't know is whether they targeted DANE specifically, but if they didn't target DANE specifically and DANE was not implemented in web browsers due to lack of interest, authorities are certainly targeting other things. We all know that authorities are trying various ways to censor DNS and the internet. In some regions, facebook and twitter and wikipedia are blocked. In china, most websites are blocked. Deep packet inspection is now mundane reality. So, don't take my doubts on secret DANE lobbying literally. See it as a metaphor for attempts by authorities to censor the internet in various ways that they can pursue. I was merely trying to guess what they were going to do next. VPN attracts certain kinds of people. I'm one of the kinds. On VPN forums, you will certainly see people who know a lot of negative things and cast negative doubts. Paying attention to negative things is not bad if you train yourself to calmly respond to the negative. If you don't believe me, go to subreddits. Subreddits about VPN and privacy have people who talk a lot of negative things.

I don't have an evidence for lobbying behind DANE, but there certainly has been power interest in DNS censorship. There is nothing wrong with suspecting such lobbying could have happened. I didn't say it certainly happened. That would be factually wrong without further research. It is already dystopian in regions like north korea, china, and pakistan. But, things can either improve or degrade. Nothing is set in stone at this stage. Being put in prison for just publishing political contents on the internet is certainly dystopian. If you don't think it's dystopian, you can present your own arguments. And, my belief is that people already live in varying degrees of dystopian nightmares in different regions. In some regions, it's not nearly as dystopian, but it's still pretty bad. If you think I'm wrong, I challenge you to methodically present your own arguments against my specific points instead of suddenly telling me I'm toxic and unhealthy. Truth can look horrifying, assuming I'm right about my points. Is it toxic to look at horrible truths? I'm inviting you to a real discussion here. If you methodically point out where and how I am wrong, I would be happy to discuss.

By censorship, I indirectly mean how blindly people obey authority. Regions where people obey authority less are better for bittorrents. For example, if you use a VPN server in china, you may get DMCA letters for using bittorrent. Censorship is anything that blocks free flow of information. Censorship is not a (good) way to address evil behaviors. Another example is using a japan VPN server for downloading japanese contents on bittorrent network. That's not going to fly very well because japanese government claims ownership on people who come in contact with japanese contents. I don't want to burden my VPN provider with additional pressure. At some point, the VPN provider may give up resistance. I don't know which regions are free enough, so I tend to pick a region where people are least likely to obey authority blindly. Censorship index is one measure of how blindly people obey authority. The current server I'm using has enough throughput. I don't need maximum throughput because, most of the time, the bottleneck is not VPN server throughput. Something that works at all is a lot faster than something that doesn't exist. If VPN gives up resistance, there is no point in throughput.

Hey Guys, since yesterday all airVPN servers in Beijing (China) are down. I'm subscribed to two VPN providers and right now only 2 servers are working, none from airVPN. All servers went offline at the same time. Can't connect through my phone either. Just me? Thanks for quick responses!

@itsmeprivately Hello! Please try the following settings (usually they are strictly necessary to bypass China blocks): switch to OpenVPN (if you haven't already done so) by tapping the icon "VPN Type" on the main view. Each tap switches between WireGuard and OpenVPN. force connection over TCP to port 443 in the following way: open "Settings" and expand "AirVPN" by tapping on it tap "Default OpenVPN protocol", select "TCP" and tap "OK" tap "Default OpenVPN port", select "443" and tap "OK" tap "Quick connection mode", select "Use default options only" and tap "OK" Finally test again connections to various servers in various locations. Kind regards

Hey guys, just thought I'd provide some detail of my experiences using Airvpn in mainland China. Disclaimer: I'm in IT Platform: Nexus 6P, Oreo 8.1 April security patch, *not* rooted Client: OpenVPN for Android Location: Nanning, Guangxi I was last in mainland China in Oct 2017. We visited Guangxi and Guangdong, and I was forced to use the Hong Kong UDP-Altentry as nothing else worked. This was quite unreliable and whilst some places we visited were remote and rural, they still had good broadband speed for the locals. This time around everything works. Everything in the screenshot. I find that strange. The Chinese government officially cracked down *more" in Feb 2018, so why would these now all work? One thing I have noticed is in one hotel, only Hong Kong UDP-Altentry would work. This was sometimes the case in public free WiFi hotspots also. Everyone in IT security knows that layers are important, so I can only assume that large enough public WiFi (large hotel chains etc.) are required by law to have a level of filtering (perhaps dropping all UDP on 80 and 443, as sometimes only TCP would work) Presumably the Chinese government may look at forums like these in order to bolster their security, but perhaps they have relaxed VPN access in order to "catch" more nationals in the act. A friend lent us a SIM card, which is China Telecom and not only is the LTE *fast*, but again, all VPN tunnels in the screenshot here worked. Perhaps OpemVPN have upgraded their termination points, but either way this is both good and worrying news. On the plus side, there's no need for me to consider an alternative (nonsense chameleon marketing aside), and the speed is just as good as I've experienced when at home. On the down side, I'm convinced they are monitoring in order to create more filtering policies to block VPNs by allowing them to run more freely. I hope the cynic in me is wrong.

As an addition to the above: When connecting to Eddie on the Huawei mobile phone in China, everything *looks* fine, too. It says in Eddie that it *is* connected (to a server in Singapore). However, when Eddie is connected, the internet of the phone sudenly does not work at all anymore. (No websites or social media apps, no internet at all.). Sending the Log to Air Support also does not succeed for the same reason, because there is no internet on the phone anymore when Eddie is connected. On the other hand, when Air is NOT connected, the internet on the phone works fine (but of course only Chinese-approved websites).