Local bridge error

[Radiovan]

Hi!
I try to build VPN Server on SmartOS hypervisor (Solaris-based), but faced with a problem with a local bridge.
First of all, here is my setup (it's a bit complicated, I know):
- Hyper-V hypervisor with static public IP. It is a part of local network with 192.168.1.xxx addresses. It has a VM with two virtual network adapters, both with "mac spoofing: on".
- Inside the VM I have SmartOS Global Zone. First VM virtual adapter, dnet0, has IP from 192.168.1.xxx range and access to Internet. Only one port is forwarded to this IP (ssh access to Global Zone). Second vnic, dnet1, has no functionality in Global Zone.
- Inside I have NAT-Zone, it has access to both dnet0 and dnet1 (inside zone they are net0 and net1). dnet0 (net0) has IP from 192.168.1.xxx range and access to Internet. This IP has any-to-any port forwarding, so all connections from outside are forwarded to this Zone. Second vnic, dnet1 (net1), has self-assigned IP 10.0.2.1, gateway 10.0.2.1, and IPnat settings (this Zone acts as NAT server). IPNat includes redirection of 443, 500, 4500, 1701 to VPN-Zone.
- DHCP-Zone, with one vnic, net0 (dnet1), with IP 10.0.2.4 and acts as DHCP server. All other zones have "ip: dhcp" in their configs.
- VPN-Zone, with net0 (dnet1), with dhcp-get IP 10.0.2.12 with installed SoftEther VPN Server. It has virtual hub and all configs needed (I can connect to it from my Mac or iPhone using IPSec L2TP), but I see only 1 zone - VPN Zone. And only 1 Mac, that one I connected from. But I need to get access to all 10.0.2.x subnet and all subnet behind Mac. As I understood, I need to turn on local bridge between Virtual Hub and net0 vnic (10.0.2.12), but in SoftEther Server Manager there is an Error in local bridge settings. Also I was not able to connect to VPN Server until I turned on SecureNAT.

What should I fix to be able to link LANs on both sides? I am able to add/remove virtual nics both on Hyper-V and SmartOS.
Thanks a lot for all possible ideas.

[thisjun]

What error did occur?
Did you check a server log?

[Radiovan]

thisjun wrote:
> What error did occur?
> Did you check a server log?

I see Error in Local Bridge Settings window. There is no error number or so, just 'Error' label.
I try to recreate it and then look at log files list. Only 2 log files updated: server_log/vpn_xxxxxxxx.log and security_log/Hub_name/sec_xxxxxxxx.log
First one says that 'The Local Bridge connection definition "Algo VPN Hub" --> "net0" has been added' and 'The Local Bridge connection "net0" has started. The bridge session "SID-LOCALBRIDGE-9" was created.'
Second one says that '2016-01-21 12:29:35.298 The Local Bridge connection "net0" has started. The bridge session "SID-LOCALBRIDGE-9" was created.'
Unfortunately I see no additional information in log files provided by VPN Server Manager.
I attach screenshot with Local Bridge window and Error label.

[cedar]

SoftEther VPN uses DLIP to capture packets on the Solaris OS.
Does the SmartOS have such feature?

[kashifz]

I am using Solaris 11.3 latest build and having same error. snoop is active and work on both interfaces.

[thisjun]

Did you use a VM?

[kashifz]

Yes I am trying to deploy a local bridge on Virtual Machine but no Luck.

[thisjun]

I think VM might deny MAC spoofing.