Softether VPN over CDN

Post your questions about SoftEther VPN software here. Please answer questions if you can afford.
Post Reply
kh_tsang
Posts: 551
Joined: Wed Jul 24, 2013 12:09 pm

Softether VPN over CDN

Post by kh_tsang » Sun Jan 18, 2015 9:44 am

Is it possible?

thisjun
Posts: 2458
Joined: Mon Feb 24, 2014 11:03 am

Re: Softether VPN over CDN

Post by thisjun » Fri Jan 30, 2015 3:58 am

What do you want to?

kh_tsang
Posts: 551
Joined: Wed Jul 24, 2013 12:09 pm

Re: Softether VPN over CDN

Post by kh_tsang » Mon Feb 09, 2015 11:48 am

I don't want direct connection. However, the latency can be very high if using vpnazure, packets flowing between countries. I want to use CDN so that it can have better performance than vpnazure.

thisjun
Posts: 2458
Joined: Mon Feb 24, 2014 11:03 am

Re: Softether VPN over CDN

Post by thisjun » Wed Feb 18, 2015 8:10 am

I think CDN is not designed for handling dynamic data.
Why don't you set up VPN server on a VPS.

kh_tsang
Posts: 551
Joined: Wed Jul 24, 2013 12:09 pm

Re: Softether VPN over CDN

Post by kh_tsang » Wed Feb 18, 2015 9:38 am

But it is expensive to get a VPS.

I find that using cloudflare, connecting with port 8443 gets error.

qupfer
Posts: 202
Joined: Wed Jul 10, 2013 2:07 pm

Re: Softether VPN over CDN

Post by qupfer » Wed Feb 18, 2015 11:30 am

You know what a VPN is?

It's a (virtuell) connection between two points. Call them A and B.
If you are connected to your server, you have a connection between A and B, like A <-----------> B.

What happens, if you use a CDN. You have a third-party-"device" in your connection, like
A<-----------> C <-------------> B.
How should this be faster than a direct connection? It's impossible.
C can't know thats B sending next, because it's "private" (and encrypted, and dynamicly). So, if you are sending a request from A to C, C will always ask B. And this will increase the latency.

A VPN can't bypass physical laws and also can not clairvoyance.

kh_tsang
Posts: 551
Joined: Wed Jul 24, 2013 12:09 pm

Re: Softether VPN over CDN

Post by kh_tsang » Wed Feb 18, 2015 12:58 pm

qupfer wrote:
> You know what a VPN is?
>
> It's a (virtuell) connection between two points. Call them A and B.
> If you are connected to your server, you have a connection between A and B, like A
> <-----------> B.
>
> What happens, if you use a CDN. You have a third-party-"device" in your
> connection, like
> A<-----------> C <-------------> B.
> How should this be faster than a direct connection? It's impossible.
> C can't know thats B sending next, because it's "private" (and encrypted,
> and dynamicly). So, if you are sending a request from A to C, C will always ask B.
> And this will increase the latency.
>
> A VPN can't bypass physical laws and also can not clairvoyance.

Faster than vpnazure, not direct connection.

mehdi
Posts: 2
Joined: Sun Dec 25, 2022 2:11 am

Re: Softether VPN over CDN

Post by mehdi » Mon Dec 26, 2022 9:35 pm

Hi Everyone,

There is a possibility for V2RAY VPN servers to put them behind a CDN network and hide their real IP address. At the same time, in some countries like Iran, service providers are limiting the per-connection bandwidth, and that is affecting the VPN tunnels; by using CDN in between, (like people do in V2RAY), the client will initiate many connections to CDN servers, and bypass the per connection bandwidth limit.

If you know any way to use CDN for SSTP (or any other type of connection), please help us fight censorship in countries like Iran and China.


Best regards,

Mehdi

KatherineEddie
Posts: 25
Joined: Fri Nov 11, 2022 9:45 am

Re: Softether VPN over CDN

Post by KatherineEddie » Tue Dec 27, 2022 12:19 pm

kh_tsang wrote:
Sun Jan 18, 2015 9:44 am
Is it possible?
CDN providers e.g CloudFlare they proxy HTTP/HTTPS protocols not VPN ones, except WebSocket which is possible for example put a V2RAY VPN behind a CDN at the expense of decreasing client's speed.

KatherineEddie
Posts: 25
Joined: Fri Nov 11, 2022 9:45 am

Re: Softether VPN over CDN

Post by KatherineEddie » Tue Dec 27, 2022 12:25 pm

mehdi wrote:
Mon Dec 26, 2022 9:35 pm
Hi Everyone,

There is a possibility for V2RAY VPN servers to put them behind a CDN network and hide their real IP address. At the same time, in some countries like Iran, service providers are limiting the per-connection bandwidth, and that is affecting the VPN tunnels; by using CDN in between, (like people do in V2RAY), the client will initiate many connections to CDN servers, and bypass the per connection bandwidth limit.

If you know any way to use CDN for SSTP (or any other type of connection), please help us fight censorship in countries like Iran and China.


Best regards,

Mehdi
I have tested this scenario with
- SE server
- OpenConnect server
and trying to hide their IP address behind A CDN e.g CloudFalre, unfortunately I could not make it work.

Also have tried with Nginx as reverse proxy, and did not work either.
And it makes sense since VPN protocols are different than HTTP/S

Testing with HaProxy, it was possible to forward to OC or SE but HaProxy does not hide the IP of the endpiont :(.

Post Reply