cant connect to SQL Server

Post your questions about SoftEther VPN software here. Please answer questions if you can afford.
Post Reply
rghouse
Posts: 2
Joined: Wed May 31, 2023 12:15 pm

cant connect to SQL Server

Post by rghouse » Wed May 31, 2023 12:35 pm

Hi

Have SoftEther VPN server running on remote office server, have client SoftEther on my desktop and can connect to the VPN

VPN is setup with VirtualHub and SecureNAT enabled

Trying to connect to the SQL server from my desktop but it wont work

This connection was working fine with the other VPN we had before, which was part of the modem. We have switched offices and currently using SoftEther VPN on server

Kindly help

solo
Posts: 1228
Joined: Sun Feb 14, 2021 10:31 am

Re: cant connect to SQL Server

Post by solo » Wed May 31, 2023 11:49 pm

Disable the SQL and SoftEther servers' firewalls, make a VPN connection, and post as code the output of:

Code: Select all

VPN server:
netstat -r
ipconfig /all
vpncmd localhost:port /server /password:*** /cmd BridgeList
vpncmd localhost:port /server /password:*** /adminhub:@@@ /cmd SecureNatStatusGet
//replace: *** with SE admin password; @@@ with VPN hub's name

If applicable, VM host of the VPN server:
netstat -r
ipconfig /all

If the SQL server is on a different PC/VM:
netstat -r
ipconfig /all

VPN client:
netstat -r
ipconfig /all
tracert [the SQL server's address]

rghouse
Posts: 2
Joined: Wed May 31, 2023 12:15 pm

Re: cant connect to SQL Server

Post by rghouse » Thu Jun 01, 2023 8:44 am

VPN Server
netstat -r

Code: Select all

C:\Users\Administrator>netstat -r
===========================================================================
Interface List
 18...2c ea 7f da 8b 1d ......Broadcom NetXtreme Gigabit Ethernet
 16...00 09 0f aa 00 01 ......Fortinet SSL VPN Virtual Ethernet Adapter
  6...2c ea 7f da 8b 1c ......Broadcom NetXtreme Gigabit Ethernet #2
 44...00 ff 81 22 cb 8a ......TeamViewer VPN Adapter
 13...00 09 0f fe 00 01 ......Fortinet Virtual Ethernet Adapter (NDIS 6.30)
  1...........................Software Loopback Interface 1
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      172.30.1.30     172.30.1.106     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    331
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    331
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    331
       172.30.1.0    255.255.255.0         On-link      172.30.1.106    281
     172.30.1.106  255.255.255.255         On-link      172.30.1.106    281
     172.30.1.255  255.255.255.255         On-link      172.30.1.106    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    331
        224.0.0.0        240.0.0.0         On-link      172.30.1.106    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    331
  255.255.255.255  255.255.255.255         On-link      172.30.1.106    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    331 ::1/128                  On-link
  6    281 fe80::/64                On-link
  6    281 fe80::a14a:acf9:7ccf:33b7/128
                                    On-link
  1    331 ff00::/8                 On-link
  6    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
ipconfig /all

Code: Select all

C:\Users\Administrator>ipconfig /all

Windows IP Configuration

   Host Name . . . . . . . . . . . . : T140
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter NIC2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : fritz.box
   Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet
   Physical Address. . . . . . . . . : 2C-EA-7F-DA-8B-1D
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Ethernet 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Fortinet SSL VPN Virtual Ethernet Adapter
   Physical Address. . . . . . . . . : 00-09-0F-AA-00-01
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter NIC1:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet #2
   Physical Address. . . . . . . . . : 2C-EA-7F-DA-8B-1C
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::a14a:acf9:7ccf:33b7%6(Preferred)
   IPv4 Address. . . . . . . . . . . : 172.30.1.106(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Sunday, 21 May 2023 11:48:12 AM
   Lease Expires . . . . . . . . . . : Friday, 2 June 2023 2:36:56 PM
   Default Gateway . . . . . . . . . : 172.30.1.30
   DHCP Server . . . . . . . . . . . : 172.30.1.30
   DHCPv6 IAID . . . . . . . . . . . : 103606911
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-26-A0-14-A2-2C-EA-7F-DA-8B-1D
   DNS Servers . . . . . . . . . . . : 172.30.1.30
   NetBIOS over Tcpip. . . . . . . . : Enabled

Unknown adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : TeamViewer VPN Adapter
   Physical Address. . . . . . . . . : 00-FF-81-22-CB-8A
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Ethernet:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Fortinet Virtual Ethernet Adapter (NDIS 6.30)
   Physical Address. . . . . . . . . : 00-09-0F-FE-00-01
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
vpncmd localhost:port /server /password:*** /cmd BridgeList -- *** were replaced with password

Code: Select all

vpncmd command - SoftEther VPN Command Line Management Utility
SoftEther VPN Command Line Management Utility (vpncmd command)
Version 4.41 Build 9787   (English)
Compiled 2023/03/14 11:00:03 by buildsan at crosswin with OpenSSL 3.0.7
Copyright (c) 2012-2023 SoftEther VPN Project. All Rights Reserved.

Specified host name is invalid.
vpncmd localhost:port /server /password:*** /adminhub:@@@ /cmd SecureNatStatusGet --- @@@ replcaed with hubname

Code: Select all

vpncmd command - SoftEther VPN Command Line Management Utility
SoftEther VPN Command Line Management Utility (vpncmd command)
Version 4.41 Build 9787   (English)
Compiled 2023/03/14 11:00:03 by buildsan at crosswin with OpenSSL 3.0.7
Copyright (c) 2012-2023 SoftEther VPN Project. All Rights Reserved.

Specified host name is invalid.

VPN Client

netstat -r

Code: Select all

C:\Users\Dimuthu>netstat -r
===========================================================================
Interface List
 55...5e 57 4f f4 fc e3 ......VPN Client Adapter - AtronicsVPN
 49...00 ff 21 c9 c0 f1 ......TeamViewer VPN Adapter
 21...00 ff 2c 8c c2 b2 ......AnchorFree TAP-Windows Adapter V9 #2
 15...00 09 0f fe 00 01 ......Fortinet virtual adapter
 11...d4 be d9 dc 7c 05 ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
 13...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
 19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
 24...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1    192.168.0.113     10
     115.70.21.93  255.255.255.255      192.168.0.1    192.168.0.113     10
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
    130.158.6.108  255.255.255.255      192.168.0.1    192.168.0.113     10
      192.168.0.0    255.255.255.0         On-link     192.168.0.113    266
    192.168.0.113  255.255.255.255         On-link     192.168.0.113    266
    192.168.0.255  255.255.255.255         On-link     192.168.0.113    266
     192.168.15.0    255.255.255.0   192.168.18.109   192.168.18.108      1
     192.168.15.2  255.255.255.255   192.168.18.109   192.168.18.108      1
   192.168.18.108  255.255.255.255         On-link    192.168.18.108    257
     192.168.30.0    255.255.255.0         On-link     192.168.30.10    257
    192.168.30.10  255.255.255.255         On-link     192.168.30.10    257
   192.168.30.255  255.255.255.255         On-link     192.168.30.10    257
  220.244.232.229  255.255.255.255      192.168.0.1    192.168.0.113     10
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     192.168.0.113    266
        224.0.0.0        240.0.0.0         On-link    192.168.18.108    257
        224.0.0.0        240.0.0.0         On-link     192.168.30.10    257
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     192.168.0.113    266
  255.255.255.255  255.255.255.255         On-link    192.168.18.108    257
  255.255.255.255  255.255.255.255         On-link     192.168.30.10    257
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 11    266 ::/0                     fe80::d635:1dff:fe8b:2549
  1    306 ::1/128                  On-link
 11    266 2001:8003:546b:b200::/56 fe80::d635:1dff:fe8b:2549
 11     18 2001:8003:546b:b200::/64 On-link
 11    266 2001:8003:546b:b200:cb8:1cb5:f640:80b1/128
                                    On-link
 11    266 fe80::/64                On-link
 15    276 fe80::/64                On-link
 55    276 fe80::/64                On-link
 11    266 fe80::cb8:1cb5:f640:80b1/128
                                    On-link
 55    276 fe80::983f:b50a:cd0f:534f/128
                                    On-link
 15    276 fe80::a9c9:b455:c6d5:556e/128
                                    On-link
  1    306 ff00::/8                 On-link
 11    266 ff00::/8                 On-link
 15    276 ff00::/8                 On-link
 55    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
ipconfig /all

Code: Select all

C:\Users\Dimuthu>ipconfig /all

Windows IP Configuration

   Host Name . . . . . . . . . . . . : Dimuthu-New
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Broadcast
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : modem

Unknown adapter AtronicsVPN - VPN Client:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : VPN Client Adapter - AtronicsVPN
   Physical Address. . . . . . . . . : 5E-57-4F-F4-FC-E3
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::983f:b50a:cd0f:534f%55(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.30.10(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Thursday, 1 June 2023 6:31:14 PM
   Lease Expires . . . . . . . . . . : Thursday, 1 June 2023 8:31:13 PM
   Default Gateway . . . . . . . . . :
   DHCP Server . . . . . . . . . . . : 192.168.30.1
   DHCPv6 IAID . . . . . . . . . . . : 928929615
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-24-3E-FB-D4-BE-D9-DC-7C-05

   DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
                                       fec0:0:0:ffff::2%1
                                       fec0:0:0:ffff::3%1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection 7:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : TeamViewer VPN Adapter
   Physical Address. . . . . . . . . : 00-FF-21-C9-C0-F1
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection 6:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : AnchorFree TAP-Windows Adapter V9 #2
   Physical Address. . . . . . . . . : 00-FF-2C-8C-C2-B2
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection 2:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Fortinet virtual adapter
   Physical Address. . . . . . . . . : 00-09-0F-FE-00-01
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::a9c9:b455:c6d5:556e%15(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.18.108(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.255
   Lease Obtained. . . . . . . . . . : Wednesday, 31 May 2023 4:41:06 PM
   Lease Expires . . . . . . . . . . : Monday, 9 July 2159 1:11:32 AM
   Default Gateway . . . . . . . . . :
   DHCP Server . . . . . . . . . . . : 192.168.18.109
   DHCPv6 IAID . . . . . . . . . . . : 352323855
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-24-3E-FB-D4-BE-D9-DC-7C-05

   DNS Servers . . . . . . . . . . . : 192.168.15.2
                                       0.0.0.0
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . : modem
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : D4-BE-D9-DC-7C-05
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:8003:546b:b200:cb8:1cb5:f640:80b1(Pr
eferred)
   Link-local IPv6 Address . . . . . : fe80::cb8:1cb5:f640:80b1%11(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.0.113(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Monday, 20 March 2023 4:19:54 PM
   Lease Expires . . . . . . . . . . : Friday, 2 June 2023 1:23:44 PM
   Default Gateway . . . . . . . . . : fe80::d635:1dff:fe8b:2549%11
                                       192.168.0.1
   DHCP Server . . . . . . . . . . . : 192.168.0.1
   DHCPv6 IAID . . . . . . . . . . . : 248823513
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-24-3E-FB-D4-BE-D9-DC-7C-05

   DNS Servers . . . . . . . . . . . : 2001:8003:546b:b200::1
                                       192.168.15.2
                                       192.168.0.1
   NetBIOS over Tcpip. . . . . . . . : Enabled
   Connection-specific DNS Suffix Search List :
                                       modem

Tunnel adapter isatap.{2C8CC2B2-44B5-416C-B7BE-6CA741066BE8}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{3DE553F4-DFC1-4BA0-BF5E-06B14D150154}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.modem:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{21C9C0F1-7A4E-409B-AF36-7EC06D7A20FF}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{1563FB25-7EEF-40DB-B43E-CCDE2817231C}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
tracert [the SQL server's address]

Code: Select all

C:\Users\Dimuthu>tracert 192.168.30.1

Tracing route to 192.168.30.1 over a maximum of 30 hops

  1    23 ms    11 ms    12 ms  192.168.30.1

Trace complete.

solo
Posts: 1228
Joined: Sun Feb 14, 2021 10:31 am

Re: cant connect to SQL Server

Post by solo » Thu Jun 01, 2023 9:56 am

The vpncmd didn't work because you need to replace localhost:port with actual port number. Anyway, assuming that you had enabled SecureNAT with all defaults, and as the SQL server is presumably on the same PC with SE server, you can connect to it with address 172.30.1.106 but keep in mind that it is DHCP assigned and may change later.

EDIT
No, you've changed SecureNAT's defaults. To make it work, in "Static Routing Table to Push" add the 172.30.1.0 subnet.

Post Reply