SoftEther 1:1 NAT to branch offices overlapping ip's

[engineer69]

Following scenario I'm able to get working with OpenVPN. But for the various reasons I would like to get it also working with SoftEtherVPN. Could you help me with configuration to get routing working.

[attachment=0]Softether_scenario.jpg[/attachment]

I should be able to connect for each device in branch offices from the application server by using 10.10.x.x IP addresses. In routers I have set iptables rules to enable 1:1 NAT.

iptables -t nat -D PREROUTING -d '10.10.10.0/24' -i tun0 -j NETMAP --to '192.168.1.0/24'
iptables -t nat -I PREROUTING -d '10.10.10.0/24' -i tun0 -j NETMAP --to '192.168.1.0/24'
iptables -t nat -D POSTROUTING -s '192.168.1.0/24' -o tun0 -j NETMAP --to '10.10.10.0/24'
iptables -t nat -I POSTROUTING -s '192.168.1.0/24' -o tun0 -j NETMAP --to '10.10.10.0/24'

But how I should set routing and interfaces on SoftEther server to get it working?

I have tried to add push route 10.10.10.0/255.255.255.0/192.168.30.10 to the VirtualNAT, but without success. Also tried to add same routing rule to the L3 switch routing table where VirtualHUB belongs to.

Additionally I have road warrior which uses 192.168.30.x address. This should also be able to connect branch offices, but I have same problem. In practice, I can't get 10.10.x.x addressing working over tunnels.

[thisjun]

Please try to use tap mode localbridge.

[engineer69]

Do you mean that I should bridge VPN connections and then do routing on the server OS instead of SoftEther?
Maybe short example would help me most.

[thisjun]

Please read this page.
https://www.softether.org/4-docs/1-manu ... ap_Devices