Page 1 of 1

softether always send my private information back

Posted: Fri Jun 02, 2017 5:29 am
by oakridge
Softether is a great VPN server to use, but I noticed recently that, it periodically send my private information back to 130.158.6.116 UDP port 5004, which is owned by University of Tsukuba. The information dump make me nervous because it contains my server's:
1. hostname
2. machine_key
3. my private_ip
4. my private_port
5. session_key
6. token
... etc.
it also periodically send small packet to 130.158.6.56 UDP port 80
has anyone noticed this?
why Softether send those information back to a server owned by University of Tsukuba?

any insight would be appreciated!

Re: softether always send my private information back

Posted: Thu Jun 15, 2017 5:20 am
by thisjun
These information is sent to NAT-T broker server.
The server is operated by University of Tsukuba.

Re: softether always send my private information back

Posted: Thu Jun 15, 2017 6:13 am
by oakridge
thisjun wrote:
> These information is sent to NAT-T broker server.
> The server is operated by University of Tsukuba.

Thank you for the insight!
in this case, does it means that, if I block those traffic, softether won't be able to work as a site to site VPN if both side of the VPN tunnel sit behind NAT gateway, because UDP hole punch won't work without a broker?

For other use case which don't need UDP hole punch, blocking those traffic won't affect softether VPN ?
if so, does softether provide any software package for user to setup their own UDP hole punching broker?

thanks

Re: softether always send my private information back

Posted: Thu Jun 29, 2017 7:39 am
by thisjun
> in this case, does it means that, if I block those traffic, softether won't be able
> to work as a site to site VPN if both side of the VPN tunnel sit behind NAT gateway,
> because UDP hole punch won't work without a broker?

No. NAT-T doesn't work.
However, VPN session can be made with TCP port forwarding.

> For other use case which don't need UDP hole punch, blocking those traffic won't
> affect softether VPN ?

If you use DDNS or VPN Azure, it affects them..

> if so, does softether provide any software package for user to setup their own UDP
> hole punching broker?

Now, SoftEther project doesn't provide such software.

Re: softether always send my private information back

Posted: Wed Mar 27, 2019 2:55 pm
by the6thbook
Is there a way to turn it off?

Re: softether always send my private information back

Posted: Tue Jun 04, 2019 9:18 am
by cedar
Please check 'disable NAT-T' box.