SoftEther VPN User Forum

I'm preparing a softether cluster and must be accessible at vpn.webrobot.eu.

The moment I perform the bind to port 992 for example in nginx:

daemon off;

tcp {
      
    upstream softether {
       server 10.7.0.100:992 ; #softether server in vip
Check interval = 3000 = 2 rise fall = 5 timeout = 1000;
}
    server {
      server_name vpn.webrobot.eu;
      listen 992;
      proxy_pass softether;
    }
    }
   
worker_processes 20;

events {
     worker_connections 1024;
}

the controller is not reachable.

The problem does not occur if I delete the associated to the subdomain.

Can 'be a problem with fireware within the private network managed from my docker cloud provider ?

Ok, the problem is present only for haproxy.

But now i have other problem.

When i connect with the softether client i have error code 1 after the autentication process.

The problem is not present with DEFAULT hub

Is there any error on server log?

i see that the problem is present when i insert the virtual ip generated with keepalived.

nginx run in the ubuntu machine and keepalived run in the centos machine inside docker cluster.

ok, the problem occurs when the controller performs a redirect to a member server. Upon connection to the vpn there a direct request to the ip 10.7.0.4 which is not publicly visible.

I am committing that error in the definition of the cluster?

The IP members must also be public?

Yes.
All cluster members must have public IP address.
(At least, 1 TCP port with public IP should be assigned for each member.)

yes, i have only other problem.

Can i set the path of vpn_server.config ?

vpn_server.config is placed in the same folder as the executable file.
If you want to place the config file to other folder, you can create a symbolic link to real config file.

In linux i have this configuration when i connect with the client:


vpn_vpn: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
inet6 fe80::2ac:35ff:feda:4ac prefixlen 64 scopeid 0x20<link>
ether 00:ac:35:da:04:ac txqueuelen 500 (Ethernet)
RX packets 683 bytes 91329 (89.1 KiB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 453 bytes 37494 (36.6 KiB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0


Where is the ipv4 adress?

him. i undestand now. I must use a dhcp client to resolve the problem.

i'm using dhclient with interface vpn_vpn after the connection to the vpn server but i don't have the dynamic ip from virtual dhcp server.

The problem is not present in windows environment.

what is the port and the adress of the dhcp server?

Is the softether controller adress?

The linux distribution is centos

In general, the DHCP server responds to the broadcast, so you don't need to specify the IP address of the DHCP server.
Do you have prepared the appropriate DHCP server in the segment?