Page 1 of 1
Web Server Software Integration
Posted: Tue Sep 17, 2013 10:07 am
by kh_tsang
When will SoftEther VPN Server supports Web Server Softwares integration such as Apache, IIS etc. Some servers still need port 443 for hosting websites but port 443 is the most powerful to pentrates firewalls.
Re: Web Server Software Integration
Posted: Wed Sep 18, 2013 8:30 am
by dnobori
Hi kh_tsang,
Unfortunately we can not afford to write a code for port sharing now. I hope that either us or other volunteers will write such a code after it will be open source.
Re: Web Server Software Integration
Posted: Wed Sep 18, 2013 9:21 am
by kh_tsang
Is there any way to enable reverse proxy for irrelevant directory of connecting to SoftEther VPN Server? For example, I don't think the root directory will be useful for the VPN connection(e.g.
https://server.example.com/).
Re: Web Server Software Integration
Posted: Thu Sep 19, 2013 10:25 am
by dnobori
SoftEther VPN Protocol uses the path "/vpnsvc/" during the establishing of tunnels. I have never tried reverse proxy, but it might be work.
Re: Web Server Software Integration
Posted: Fri Sep 20, 2013 1:55 am
by kh_tsang
Then I will wait for good news.
Re: Web Server Software Integration
Posted: Fri Sep 20, 2013 4:06 am
by kh_tsang
I think using reverse proxy may cause security problem on checking remote IP address by $_SERVER['HTTP_X_FORWARDED_FOR']. So can I use .htaccess to set up reverse proxy for the VPN Server instead and forbid clients to use reverse proxy to connect by .htaccess configurations.
Re: Web Server Software Integration
Posted: Sat Mar 22, 2014 4:57 am
by inten
Nobori-san,
Looks like something has changed to the code and reverse proxy with Apache has stopped working.
Could you please advise what has changed? Using the latest SE version I can see the below behavior in the log files when trying to connect:
==> /var/log/apache2/error.log <==
[Sat Mar 22 00:51:44 2014] [error] [client 183.171.17X.XXX] client sent HTTP/1.1 request without hostname (see RFC2616 section 14.23): /vpnsvc/connect.cgi
==> /var/log/apache2/ssl_access.log <==
183.171.17X.XXX - - [22/Mar/2014:00:51:44 -0400] "POST /vpnsvc/connect.cgi HTTP/1.1" 400 7613 "-" "-"
UPDATE1:
==> /var/log/apache2/ssl_access.log <==
183.171.17X.XXX - - [22/Mar/2014:01:39:03 -0400] "POST /vpnsvc/connect.cgi HTTP/1.1" 400 7613 "-" "-"
183.171.17X.XXX - - [22/Mar/2014:01:39:34 -0400] "GET /vpnsvc/ HTTP/1.1" 403 7779 "-" "Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/33.0.1750.154 Safari/537.36"
183.171.17X.XXX - - [22/Mar/2014:01:39:46 -0400] "GET /vpnsvc/connect.cgi HTTP/1.1" 404 712 "-" "Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/33.0.1750.154 Safari/537.36"
Error 404 for /vpnsvc/connect.cgi
Didn't I miss any files after compilation?
dnobori wrote:
> SoftEther VPN Protocol uses the path "/vpnsvc/" during the
> establishing of tunnels. I have never tried reverse proxy, but it might be
> work.