Skip to content

Instantly share code, notes, and snippets.

@dammyammy

dammyammy/SoftEther VPN client tutorial

Created June 11, 2020 18:56
Show Gist options

  • Select an option

    Learn more about clone URLs
  • Save dammyammy/a4f7a950b1b7a3ca8a2a6c9caee98b29 to your computer and use it in GitHub Desktop.

Select an option

Learn more about clone URLs
Save dammyammy/a4f7a950b1b7a3ca8a2a6c9caee98b29 to your computer and use it in GitHub Desktop.
Download ZIP

Revisions

  1. @kozak127 kozak127 revised this gist Nov 21, 2016. 1 changed file with 41 additions and 1 deletion.
    42 changes: 41 additions & 1 deletion SoftEther VPN client tutorial
    View file
    Original file line number Diff line number Diff line change
    @@ -132,4 +132,44 @@ kozak127@callisto:~$ sudo sysctl -p
    ######################

    # this is not a typo - in vpncmd is silvermedia, in iptables is vpn_silvermedia
    sudo dhclient vpn_silvermedia
    kozak127@callisto:~$ sudo dhclient vpn_silvermedia

    ######################################
    ### AFTER REBOOT, TO RUN VPN AGAIN ###
    ######################################

    cd ~/Downloads/vpnclient

    kozak127@callisto:~/Downloads/vpnclient$ sudo ./vpnclient start
    The SoftEther VPN Client service has been started.

    kozak127@callisto:~/Downloads/vpnclient$ sudo ./vpncmd
    vpncmd command - SoftEther VPN Command Line Management Utility
    SoftEther VPN Command Line Management Utility (vpncmd command)
    Version 4.21 Build 9613 (English)
    Compiled 2016/04/24 16:39:47 by yagi at pc30
    Copyright (c) SoftEther VPN Project. All Rights Reserved.

    By using vpncmd program, the following can be achieved.

    1. Management of VPN Server or VPN Bridge
    2. Management of VPN Client
    3. Use of VPN Tools (certificate creation and Network Traffic Speed Test Tool)

    Select 1, 2 or 3: 2

    Specify the host name or IP address of the computer that the destination VPN Client is operating on.
    If nothing is input and Enter is pressed, connection will be made to localhost (this computer).
    Hostname of IP Address of Destination:

    Connected to VPN Client "localhost".

    VPN Client>accountconnect silvermedia
    AccountConnect command - Start Connection to VPN Server using VPN Connection Setting
    The command completed successfully.

    kozak127@callisto:~$ sudo dhclient vpn_silvermedia

    #################
    ### AND VOLIA ###
    #################
  2. @kozak127 kozak127 created this gist Nov 16, 2016.
    135 changes: 135 additions & 0 deletions SoftEther VPN client tutorial
    View file
    Original file line number Diff line number Diff line change
    @@ -0,0 +1,135 @@
    #############################
    ### GENERATE CERT AND KEY ###
    #############################

    # when generating key and cert, use password provided by administrator

    cd ~/Workspace/Silvermedia/vpn

    kozak127@callisto:~/Workspace/Silvermedia/vpn$ openssl pkcs12 -in michal.wesoly.p12 -nocerts -nodes -out michal.wesoly.key
    Enter Import Password:
    MAC verified OK

    kozak127@callisto:~/Workspace/Silvermedia/vpn$ openssl pkcs12 -in michal.wesoly.p12 -clcerts -nokeys -out michal.wesoly.crt
    Enter Import Password:
    MAC verified OK

    ######################################
    ### RUN CLIENT AND MANAGEMENT TOOL ###
    ######################################

    cd ~/Downloads/vpnclient

    kozak127@callisto:~/Downloads/vpnclient$ sudo ./vpnclient start
    The SoftEther VPN Client service has been started.

    kozak127@callisto:~/Downloads/vpnclient$ sudo ./vpncmd
    vpncmd command - SoftEther VPN Command Line Management Utility
    SoftEther VPN Command Line Management Utility (vpncmd command)
    Version 4.21 Build 9613 (English)
    Compiled 2016/04/24 16:39:47 by yagi at pc30
    Copyright (c) SoftEther VPN Project. All Rights Reserved.

    By using vpncmd program, the following can be achieved.

    1. Management of VPN Server or VPN Bridge
    2. Management of VPN Client
    3. Use of VPN Tools (certificate creation and Network Traffic Speed Test Tool)

    Select 1, 2 or 3: 2

    Specify the host name or IP address of the computer that the destination VPN Client is operating on.
    If nothing is input and Enter is pressed, connection will be made to localhost (this computer).
    Hostname of IP Address of Destination:

    Connected to VPN Client "localhost".

    ######################################
    ### CREATE VIRTUAL NETWORK ADAPTER ###
    ######################################

    VPN Client>nicCreate
    NicCreate command - Create New Virtual Network Adapter
    Virtual Network Adapter Name: silvermedia

    The command completed successfully.

    ###########################
    ### CREATE USER ACCOUNT ###
    ###########################

    VPN Client>accountcreate silvermedia
    AccountCreate command - Create New VPN Connection Setting
    Destination VPN Server Host Name and Port Number: remote.silvermedia.pl:443

    Destination Virtual Hub Name: SILVERMEDIA

    Connecting User Name: michal.wesoly

    Used Virtual Network Adapter Name: silvermedia

    The command completed successfully.

    ###############################
    ### ADD KEY AND CERTIFICATE ###
    ###############################

    VPN Client>AccountCertSet silvermedia
    AccountCertSet command - Set User Authentication Type of VPN Connection Setting to Client Certificate Authentication
    Read X.509 certificate from file name: /home/kozak127/Workspace/Silvermedia/vpn/michal.wesoly.crt

    Read private key from file name: /home/kozak127/Workspace/Silvermedia/vpn/michal.wesoly.key

    The command completed successfully.

    ######################
    ### VERIFY ACCOUNT ###
    ######################

    VPN Client>accountget silvermedia
    AccountGet command - Get Setting of VPN Connection Setting
    Item |Value
    -----------------------------------------------------+-------------------------------------------------------------------------------------------------------------------------------
    VPN Connection Setting Name |silvermedia
    Destination VPN Server Host Name |remote.silvermedia.pl
    Destination VPN Server Port Number |443
    Destination VPN Server Virtual Hub Name |SILVERMEDIA
    Proxy Server Type |Direct TCP/IP Connection
    Verify Server Certificate |Disable
    Device Name Used for Connection |silvermedia
    Authentication Type |Client Certificate Authentication
    User Name |michal.wesoly
    Client Certificate for Authentication Use |CN=michal.wesoly, SERIAL="00" (Digest: MD5="XXX", SHA1="XXX")
    Number of TCP Connections to Use in VPN Communication|1
    Interval between Establishing Each TCP Connection |1
    Connection Life of Each TCP Connection |Infinite
    Use Half Duplex Mode |Disable
    Encryption by SSL |Enable
    Data Compression |Disable
    Connect by Bridge / Router Mode |Disable
    Connect by Monitoring Mode |Disable
    No Adjustment for Routing Table |Disable
    Do not Use QoS Control Function |Disable
    The command completed successfully.

    #######################
    ### CONNECT ACCOUNT ###
    #######################

    VPN Client>accountconnect silvermedia
    AccountConnect command - Start Connection to VPN Server using VPN Connection Setting
    The command completed successfully.

    #############################
    ### ENABLE IP4 FORWARDING ###
    #############################

    kozak127@callisto:~$ sudo echo 'net.ipv4.ip_forward=1' >> /etc/sysctl.conf
    kozak127@callisto:~$ sudo sysctl -p

    ######################
    ### ALTER IP TABLE ###
    ######################

    # this is not a typo - in vpncmd is silvermedia, in iptables is vpn_silvermedia
    sudo dhclient vpn_silvermedia