Skip to main content

How to enable VPN over ICMP / DNS in SoftEther VPN

Or where is the damn VPN over ICMP / DNS setting in SoftEther

Because the infrequent times I need to install a SoftEther server I seem to waste half an hour trying to locate this setting.

BUT, it's already enabled by default.

Well enjoy this tip and if this has helped do thank me by following me on twitter @danielsokolows.

Comments

  1. DgonitJanuary 30, 2014 at 11:14 AM

    Daniel, I have quick question.

    I have an ftp server as well as media server sitting right on the same machine where softether is installed. all those 3 services under the same pc. at first my ftp was working then not, short after that was my media server. The ports are set in softether to listen but no luck. Any suggestions? By the way I have a bridged connection... 2 ethernet ports bridged as one..

    ReplyDelete
    Replies
    1. Daniel SokolowskiJanuary 31, 2014 at 9:00 PM

      Not sure what the issue is, the last 5 minutes thinking about this and I can only suggest you start with the most basic setup and begin adding things and see what brakes things - maybe it's the bridged connection.

      Delete
  2. VPN-MASTERMarch 25, 2014 at 12:25 PM

    but how to setup the Softether VPN Client to use ICMP???

    waiting for your answer.

    Thank you.

    ReplyDelete
    Replies
    1. Daniel SokolowskiApril 20, 2014 at 9:25 PM

      I haven't been able to test this myself (the initial requirements I had no longer are there) BUT my understanding was from all my reading that the client will automatically select ICMP once all other options are tried and fail.

      Delete
    2. talfNovember 12, 2015 at 11:42 AM

      Daniel is right.
      I bumped into this page searching for the same answer..
      You cannot force the client to use icmp or dns. if TCP and UDP ports are blocked then ICMP is being used, if ICMP is blocked and UDP port 53 is open then DNS is used.
      I tested it by blocking protocols one by one with iptables.
      works like charm :)

      Delete
  3. UnknownApril 30, 2014 at 3:56 AM

    I tried to disable all ports from the server. But still unable to connect from my client to server. The client set to connect port 443.

    ReplyDelete
  4. ChaosCreaterJune 29, 2017 at 7:14 PM

    Would you still need to setup port forwarding on your router to forward port 53 (DNS) and ICMP port (not sure what port it is and I don't think you can forward this type of protocol on a router), to your Softether VPN server?

    ReplyDelete
    Replies
    1. Daniel SokolowskiAugust 27, 2017 at 12:47 PM

      No I don't believe you need to do that, the idea is that these are automatically allowed.

      Delete
  5. Luong SonNovember 3, 2017 at 12:56 PM

    If china also block vpnazure.net?
    Also Local Bridge not work on wireless card, so impossible to make site-to-site config with wireless card, only point=to-site is possible
    Compare to Microsoft builtin IpEnableRouter and SSTP VPN, site-to-site work flawless with wireless card

    ReplyDelete

Post a Comment

Popular posts from this blog

Duplicate value found: duplicates value on record with id: <unknown>.

System.DmlException: Insert failed. First exception on row 0; first error: DUPLICATE_VALUE, duplicate value found: <unknown> duplicates value on record with id: <unknown>. The above error is triggered in the database layer and caused by a trigger or workflow outside of your main code of block that is bubbling this exception. This is rather difficult to track down especially if you are unfamiliar with the code, I am sharing my procedure in the hopes this saves you time - if you find this helpful drop me a line or follow me on twitter @danielsokolows . This error is caused by unique field constraint on the object, so the first step is to examine the object and locate the API names of all unique fieds. You can do this through SF direclty 'Setup < Customize &lt <object being inserted> &lt Fields' or by downloading the `src/objects` metadata information and searching for <unique> ; I preffer the latter and actually download ALL matadata i
3 comments
Read more

Softeher 'Error occurred. (Error code: 2)' sollution

Protocol error occurred. Error was returned from the destination server. The Softether server by default to run on port 443 , if you server also hosts normal https then 443 is already taken and so Softether can't bind to it. When you run `vpncmd` it attempts to connect, find an active port, but of course fails with 'Protocol error occurred. Error was returned from the destination server.' because it's not actually connecting to the vpn server. By default Softether also listens on 992 , 1194 , and 5555 so the sollution is to modify specify `localhost:5555` when executing the `vpncmnd`. If this has helped you feel free to comment or follow me on twitter @danielsokolows .
6 comments
Read more

How to child proof a fireplace

DIY - Do it yourself fireplace child guard Our wonderful 8.5 month old Sofia has become a crawling race car with an untamed thirst for exploration. And so with the cold nights approaching we needed to child proof the fireplace. This however proved to be more difficult than would reasonably expect, I've checked the local Toys "R" Us, Walmart, and even a Canadian Tire with no success for a ready to use product. Internet search was more fruitful and returned a few online stores one could order from, however in all honestly they didn't look too sturdy to me. So I build my own relatively quickly and inexpensively. Materials needed is a privacy plastic lattice - the smallest hole pattern - a few screws and anchors; tools needed are a drill, and a handsaw if you don't have the lattice cut at the store - that’s it. The construction consits of screwing the lattice into the wall and the final product is easiest explained through following pictures.
11 comments
Read more