SoftEther VPN User Forum

Hi,

I have installed SoftEtherVPN Server on Windows Server 2012 R2. Client is installed on Windows 7.

With SecureNAT enabled I can connect VPN. But I need to need disable NAT because every client should connect by its own ip address.
How can I configure each client to connect LAN by its own IP but not by servers ip?

Additional details:
Local bridge is added.
Virtual network adapter: VMXNET3
Promiscuous mode: Allowed

With best regards,
Ulukbek

You should NOT use the "local Bridge" and "secureNat" at the same time because the SecureNat DHCP server will leak onto the physical network. Choose one or the other based on your needs. NOT BOTH. With "local Bridge" clients will receive a remote LAN Ip address from the DHCP server on the Physical network and use the remote gateway for their internet. With "secureNAt" the clients will receive a remote LAN IP address from the "secureNat" DHCP server and will be isolated from the physical network but will use due to NAT the physical gateway for their internet. If you disable the NAT feature the clients will not have internet access.

u1ukbek wrote: ↑

Mon May 27, 2019 8:17 am

I have installed SoftEtherVPN Server on Windows Server 2012 R2. Client is installed on Windows 7.

With SecureNAT enabled I can connect VPN. But I need to need disable NAT because every client should connect by its own ip address.
How can I configure each client to connect LAN by its own IP but not by servers ip?

*****Each client should get its own unique IP address from the remote DHCP server***

Dear centeredki69,

Thank You very much for your reply.

I have done following steps and it works as I needed:

1. Disabled SecureNAT completely
2. Added second NIC witout ip address - ex: VLAN 1010
3. Deleted previous "local bridge" which pointed to fist NIC
4. Added new "local bridge" which points to second NIC
5. Manually assigned IP Address from VLAN 1010 to client's VPN Adapter

With best regards,
Ulukbek