SoftEther VPN User Forum

I'm trying to configure the local bridge option (as secureNAT seems to lower performance). Unfortunately the machine that I'm running the SoftEther VPN server on is an Azure VM (Windows server 2012) which does not offer DHCP. So I enabled just the Virtual DHCP Server from the SecureNAT screen but unfortunately I cannot seem to figure out if this scenario is supported.
The problem is that the Client wants to use the internet connection (route all traffic through VPN) but the status says: "No internet access".
Is there anything specific I need to enter in the Virtual DHCP Server settings (like default gateway) to make this scenario work?

It might be a easier way possible, but i go for my v-server this way:

bridge softether with a tap-device (via softether gui)
install a nativ dhcp-server and bind it to the tap device
make Source-NAT with iptables

you can find a very good tutorial here:
http://blog.lincoln.hk/blog/2013/05/17/ ... al-bridge/


Edit: oh, you are using windows. Then I have no experience. You can try setup "internet connection sharing" for you real network interface and set as "local-adapter" the softether device. Windows* should play dhcp-server and gateway for all clients. Maybe you have to set IPs manually....

* i know it for workstation-os lile Windows7/8, but never used a windows-server-os for that.

Unfortunately in the windows server GUI there is no option to bridge with a tap device.
So now I tried:
local bridging with ethernet adapter
enabling internet connection sharing

Still having the same problem, client is not getting an IP address and manually setting doesn't make sense as it would possibly create conflicts in the Azure subnet and is probably not allowed. I'm not sure:
- how to force the Azure DHCP server to give out an IP adres to the VPN clients OR
- how to create my own DHCP server that does not conflict with the Azure DHCP server and still shares the internet connection.

theplacetobe wrote:
> Unfortunately in the windows server GUI there is no option to bridge with a
> tap device.
> So now I tried:
> local bridging with ethernet adapter
> enabling internet connection sharing
>
> Still having the same problem, client is not getting an IP address and
> manually setting doesn't make sense as it would possibly create conflicts
> in the Azure subnet and is probably not allowed. I'm not sure:
> - how to force the Azure DHCP server to give out an IP adres to the VPN
> clients OR
> - how to create my own DHCP server that does not conflict with the Azure
> DHCP server and still shares the internet connection.


did u ever find a solution?

The securenat option allows for a dhcp server to be installed. You'll need to remove the default gateway settings in the securenat config, and push the route to pass all packets to the securenat IP (thus it becomes the default gateway for local access to the server).