Page 1 of 1
VPN behind NAT/FW
Posted: Thu Oct 02, 2014 9:18 am
by b_soft
Hi
I have a Network (192.168.15.0) behind NAT and Firewall.
I Need to connect a single Client to this Network (192.168.1.0).
The Problem is, I cannot do portforwarding or something else on the SERVER side. On Client side, it is possible to open ports.
VPN Azure works but the latency is to high from europe (700ms)...
I Need a vpn Setup in which i not must Open ports on Server side.
Ideas?
Thanks
Re: VPN behind NAT/FW
Posted: Fri Oct 03, 2014 12:05 am
by redbean
If I understand correctly, this is one of the key features of SoftEther VPN: "SoftEther VPN uses HTTPS protocol in order to establish a VPN tunnel. HTTPS (HTTP over SSL) protocol uses the 443 of TCP/IP port as destination. This port is well-know and almost all firewalls, proxy servers and NATs can pass the packet which are consisted in HTTPS protocol."
Please view
http://www.softether.org/1-features/1._ ... nnectivity for more.
If you are able to use SoftEther client software on the device, you're set.
Re: VPN behind NAT/FW
Posted: Fri Oct 03, 2014 6:15 am
by b_soft
Hi
I think you missunderstand me. I can't connect to Server in any way, no portforwarding is possible.
Or another question: I can only do portforwarding on Client side. Is it possible to connect from the Client to the Server and see from the "Server" side the net behind the "Client" side?
Thanks
Benjamin
Re: VPN behind NAT/FW
Posted: Fri Oct 03, 2014 10:09 am
by redbean
b_soft wrote:
> I think you missunderstand me. I can't connect to Server in any way, no
> portforwarding is possible.
I also fear I misunderstand. So you are saying that even port 443 is blocked? This port should be open by default without port forwarding, even behind a firewall. Have you tried?
> Or another question: I can only do portforwarding on Client side. Is it
> possible to connect from the Client to the Server and see from the
> "Server" side the net behind the "Client" side?
What if you install the server software on the client device?
Re: VPN behind NAT/FW
Posted: Fri Oct 03, 2014 10:29 am
by b_soft
> I also fear I misunderstand. So you are saying that even port 443 is blocked? This
> port should be open by default without port forwarding, even behind a firewall.
> Have you tried?
No, the port is not open (why should be open by Default??) i have tried....
> What if you install the server software on the client device?
Yes, thats my idea but if i connect this way, i can't Access the devices from the "Server" i think?!
Normaly its only possible to see to the Server subnet and not the Client subnet?! Or not?
Thanks
Re: VPN behind NAT/FW
Posted: Mon Oct 06, 2014 5:56 am
by b_soft
The Server is a gsm device. The Providers blocks all incoming traffic...
But I found another solution. I use Teamviewer VPN to get a "vpn" to the server and then I use softether in the normal Client Server Scenario.
Thanks
Re: VPN behind NAT/FW
Posted: Thu Oct 16, 2014 7:50 am
by thisjun
There is a way to solve this problem.
Setup a VPN server and a VPN client on the network of 192.168.1.0.
Setup a VPN bridge on the network of 192.168.15.0 and create a localbridge.
Create a cascade connection from the bridge to the server.
Connect to the same virtual on the server hub from the client.
I think this document helps you.
http://www.softether.org/4-docs/1-manua ... Permission
Re: VPN behind NAT/FW
Posted: Fri Oct 17, 2014 6:26 am
by b_soft
Ok, thanks for the Information.