Web Server Software Integration
-
kh_tsang
- Posts: 551
- Joined: Wed Jul 24, 2013 12:09 pm
Web Server Software Integration
When will SoftEther VPN Server supports Web Server Softwares integration such as Apache, IIS etc. Some servers still need port 443 for hosting websites but port 443 is the most powerful to pentrates firewalls.
-
dnobori
- Posts: 230
- Joined: Tue Mar 05, 2013 10:04 am
Re: Web Server Software Integration
Hi kh_tsang,
Unfortunately we can not afford to write a code for port sharing now. I hope that either us or other volunteers will write such a code after it will be open source.
Unfortunately we can not afford to write a code for port sharing now. I hope that either us or other volunteers will write such a code after it will be open source.
-
kh_tsang
- Posts: 551
- Joined: Wed Jul 24, 2013 12:09 pm
Re: Web Server Software Integration
Is there any way to enable reverse proxy for irrelevant directory of connecting to SoftEther VPN Server? For example, I don't think the root directory will be useful for the VPN connection(e.g. https://server.example.com/).
-
dnobori
- Posts: 230
- Joined: Tue Mar 05, 2013 10:04 am
Re: Web Server Software Integration
SoftEther VPN Protocol uses the path "/vpnsvc/" during the establishing of tunnels. I have never tried reverse proxy, but it might be work.
-
kh_tsang
- Posts: 551
- Joined: Wed Jul 24, 2013 12:09 pm
Re: Web Server Software Integration
Then I will wait for good news.
-
kh_tsang
- Posts: 551
- Joined: Wed Jul 24, 2013 12:09 pm
Re: Web Server Software Integration
I think using reverse proxy may cause security problem on checking remote IP address by $_SERVER['HTTP_X_FORWARDED_FOR']. So can I use .htaccess to set up reverse proxy for the VPN Server instead and forbid clients to use reverse proxy to connect by .htaccess configurations.
-
inten
- Posts: 370
- Joined: Fri Oct 18, 2013 8:15 am
Re: Web Server Software Integration
Nobori-san,
Looks like something has changed to the code and reverse proxy with Apache has stopped working.
Could you please advise what has changed? Using the latest SE version I can see the below behavior in the log files when trying to connect:
==> /var/log/apache2/error.log <==
[Sat Mar 22 00:51:44 2014] [error] [client 183.171.17X.XXX] client sent HTTP/1.1 request without hostname (see RFC2616 section 14.23): /vpnsvc/connect.cgi
==> /var/log/apache2/ssl_access.log <==
183.171.17X.XXX - - [22/Mar/2014:00:51:44 -0400] "POST /vpnsvc/connect.cgi HTTP/1.1" 400 7613 "-" "-"
UPDATE1:
==> /var/log/apache2/ssl_access.log <==
183.171.17X.XXX - - [22/Mar/2014:01:39:03 -0400] "POST /vpnsvc/connect.cgi HTTP/1.1" 400 7613 "-" "-"
183.171.17X.XXX - - [22/Mar/2014:01:39:34 -0400] "GET /vpnsvc/ HTTP/1.1" 403 7779 "-" "Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/33.0.1750.154 Safari/537.36"
183.171.17X.XXX - - [22/Mar/2014:01:39:46 -0400] "GET /vpnsvc/connect.cgi HTTP/1.1" 404 712 "-" "Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/33.0.1750.154 Safari/537.36"
Error 404 for /vpnsvc/connect.cgi
Didn't I miss any files after compilation?
dnobori wrote:
> SoftEther VPN Protocol uses the path "/vpnsvc/" during the
> establishing of tunnels. I have never tried reverse proxy, but it might be
> work.
Looks like something has changed to the code and reverse proxy with Apache has stopped working.
Could you please advise what has changed? Using the latest SE version I can see the below behavior in the log files when trying to connect:
==> /var/log/apache2/error.log <==
[Sat Mar 22 00:51:44 2014] [error] [client 183.171.17X.XXX] client sent HTTP/1.1 request without hostname (see RFC2616 section 14.23): /vpnsvc/connect.cgi
==> /var/log/apache2/ssl_access.log <==
183.171.17X.XXX - - [22/Mar/2014:00:51:44 -0400] "POST /vpnsvc/connect.cgi HTTP/1.1" 400 7613 "-" "-"
UPDATE1:
==> /var/log/apache2/ssl_access.log <==
183.171.17X.XXX - - [22/Mar/2014:01:39:03 -0400] "POST /vpnsvc/connect.cgi HTTP/1.1" 400 7613 "-" "-"
183.171.17X.XXX - - [22/Mar/2014:01:39:34 -0400] "GET /vpnsvc/ HTTP/1.1" 403 7779 "-" "Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/33.0.1750.154 Safari/537.36"
183.171.17X.XXX - - [22/Mar/2014:01:39:46 -0400] "GET /vpnsvc/connect.cgi HTTP/1.1" 404 712 "-" "Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/33.0.1750.154 Safari/537.36"
Error 404 for /vpnsvc/connect.cgi
Didn't I miss any files after compilation?
dnobori wrote:
> SoftEther VPN Protocol uses the path "/vpnsvc/" during the
> establishing of tunnels. I have never tried reverse proxy, but it might be
> work.