Local Bridge - Client DHCP Request not working

Post your questions about SoftEther VPN software here. Please answer questions if you can afford.
Post Reply
toke@xtracon.dk
Posts: 6
Joined: Tue Sep 27, 2022 1:45 pm

Local Bridge - Client DHCP Request not working

Post by toke@xtracon.dk » Wed Sep 28, 2022 9:14 am

Hello

I have a Softether VPN, with local bridge, and a Windows DHCP server.
Secure NAT i disabled.

The problem i am facing, is that the clients are getting an IP, and DNS from the DHCP.
But the subnet mask is /32 instead of the /24 that it should be.
And no gateway. (Gateway is 0.0.0.0)

I have sniffed the packets on the Softether server, and i can see that the DHCP server, offers all the info.
But the client just dosent grab everything.

I have tried from different clients, from several networks, and all the same.
You do not have the required permissions to view the files attached to this post.

solo
Posts: 1228
Joined: Sun Feb 14, 2021 10:31 am

Re: Local Bridge - Client DHCP Request not working

Post by solo » Wed Sep 28, 2022 12:30 pm

Your client's setup: "DHCP Enabled. . . . . . . . . . . : No"

So...?

toke@xtracon.dk
Posts: 6
Joined: Tue Sep 27, 2022 1:45 pm

Re: Local Bridge - Client DHCP Request not working

Post by toke@xtracon.dk » Wed Sep 28, 2022 2:20 pm

Its Windows In-built VPN
And the properties for the VPN is set to DHCP.
See image.

Its the same on several clients.
You do not have the required permissions to view the files attached to this post.

solo
Posts: 1228
Joined: Sun Feb 14, 2021 10:31 am

Re: Local Bridge - Client DHCP Request not working

Post by solo » Thu Sep 29, 2022 12:23 am

toke@xtracon.dk wrote:
Wed Sep 28, 2022 2:20 pm
Its Windows In-built VPN
So why did you post it? Confusing.
Post the following after a connection without any firewalls, formatted as code, no pictures:

Code: Select all

VPN server
"netstat -r" and "ipconfig /all"
vpncmd localhost:port /server /password:*** /cmd BridgeList
vpncmd localhost:port /server /password:*** /adminhub:@@@ /cmd SecureNatStatusGet
//replace: *** with SE admin password; @@@ with VPN hub's name

VPN client
"netstat -r" and "ipconfig /all"

toke@xtracon.dk
Posts: 6
Joined: Tue Sep 27, 2022 1:45 pm

Re: Local Bridge - Client DHCP Request not working

Post by toke@xtracon.dk » Thu Sep 29, 2022 7:41 am

I posted it, so it was visual, what my problem was.
Anyway, as requested.

Code: Select all

PS M:\> netstat -r
===========================================================================
Interface List
 16...00 50 56 be db 4e ......vmxnet3 Ethernet Adapter
  1...........................Software Loopback Interface 1
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0     172.29.160.1    172.29.160.28    271
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    331
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    331
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    331
     172.29.160.0    255.255.255.0         On-link     172.29.160.28    271
    172.29.160.28  255.255.255.255         On-link     172.29.160.28    271
   172.29.160.255  255.255.255.255         On-link     172.29.160.28    271
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    331
        224.0.0.0        240.0.0.0         On-link     172.29.160.28    271
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    331
  255.255.255.255  255.255.255.255         On-link     172.29.160.28    271
===========================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
          0.0.0.0          0.0.0.0     172.29.160.1  Default
          0.0.0.0          0.0.0.0     172.29.160.1  Default
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    331 ::1/128                  On-link
 16    271 fe80::/64                On-link
 16    271 fe80::59c:232b:197a:2ccb/128
                                    On-link
  1    331 ff00::/8                 On-link
 16    271 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
PS M:\> ipconfig /all

Windows IP Configuration

   Host Name . . . . . . . . . . . . : bms-vpn-intern
   Primary Dns Suffix  . . . . . . . : removed for privacy
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : removed for privacy

Ethernet adapter BMS_LAN:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : vmxnet3 Ethernet Adapter
   Physical Address. . . . . . . . . : 00-50-56-BE-DB-4E
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::59c:232b:197a:2ccb%16(Preferred)
   IPv4 Address. . . . . . . . . . . : 172.29.160.28(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 172.29.160.1
   DHCPv6 IAID . . . . . . . . . . . : 385896534
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-2A-BA-7A-F0-00-50-56-BE-71-43
   DNS Servers . . . . . . . . . . . : 172.29.160.160
                                       172.29.160.47
   NetBIOS over Tcpip. . . . . . . . : Enabled
PS M:\>
PS M:\>
PS M:\> vpncmd localhost /server /password:password /cmd  BridgeList
vpncmd command - SoftEther VPN Command Line Management Utility
SoftEther VPN Command Line Management Utility (vpncmd command)
Version 4.38 Build 9760   (English)
Compiled 2022/02/18 09:01:10 by mp at xtradev
Copyright (c) SoftEther VPN Project. All Rights Reserved.

Connection has been established with VPN Server "localhost" (port 443).

You have administrator privileges for the entire VPN Server.

VPN Server>BridgeList
BridgeList command - Get List of Local Bridge Connection
Number|Virtual Hub Name|Network Adapter or Tap Device Name                       |Status
------+----------------+---------------------------------------------------------+---------
1     |bmsint          |VMware vmxnet3 virtual network device (2) (ID=0630863642)|Operating
The command completed successfully.

PS M:\>
PS M:\>
PS M:\> vpncmd localhost /server /password:password /adminhub:bmsint /cmd SecureNatStatusGet
vpncmd command - SoftEther VPN Command Line Management Utility
SoftEther VPN Command Line Management Utility (vpncmd command)
Version 4.38 Build 9760   (English)
Compiled 2022/02/18 09:01:10 by mp at xtradev
Copyright (c) SoftEther VPN Project. All Rights Reserved.

Connection has been established with VPN Server "localhost" (port 443).

You have administrator privileges for the entire VPN Server.

The Virtual Hub "bmsint" has been selected.
VPN Server/bmsint>SecureNatStatusGet
SecureNatStatusGet command - Get the Operating Status of the Virtual NAT and DHCP Server Function (SecureNat Function)
Item                     |Value
-------------------------+---------
Virtual Hub Name         |bmsint
NAT TCP/IP Sessions      |0 Session
NAT UDP/IP Sessions      |0 Session
NAT ICMP Sessions        |0 Session
NAT DNS Sessions         |0 Session
Allocated DHCP Clients   |0 Client
Kernel-mode NAT is Active|No
Raw IP mode NAT is Active|No
The command completed successfully.

PS M:\>

toke@xtracon.dk
Posts: 6
Joined: Tue Sep 27, 2022 1:45 pm

Re: Local Bridge - Client DHCP Request not working

Post by toke@xtracon.dk » Thu Sep 29, 2022 7:53 am

I posted it to visualize my problem.

As requested.

Code: Select all

PS M:\> netstat -r
===========================================================================
Interface List
 16...00 50 56 be db 4e ......vmxnet3 Ethernet Adapter
  1...........................Software Loopback Interface 1
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0     172.29.160.1    172.29.160.28    271
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    331
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    331
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    331
     172.29.160.0    255.255.255.0         On-link     172.29.160.28    271
    172.29.160.28  255.255.255.255         On-link     172.29.160.28    271
   172.29.160.255  255.255.255.255         On-link     172.29.160.28    271
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    331
        224.0.0.0        240.0.0.0         On-link     172.29.160.28    271
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    331
  255.255.255.255  255.255.255.255         On-link     172.29.160.28    271
===========================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
          0.0.0.0          0.0.0.0     172.29.160.1  Default
          0.0.0.0          0.0.0.0     172.29.160.1  Default
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    331 ::1/128                  On-link
 16    271 fe80::/64                On-link
 16    271 fe80::59c:232b:197a:2ccb/128
                                    On-link
  1    331 ff00::/8                 On-link
 16    271 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
PS M:\> ipconfig /all

Windows IP Configuration

   Host Name . . . . . . . . . . . . : bms-vpn-intern
   Primary Dns Suffix  . . . . . . . : removed for privacy
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : removed for privacy

Ethernet adapter BMS_LAN:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : vmxnet3 Ethernet Adapter
   Physical Address. . . . . . . . . : 00-50-56-BE-DB-4E
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::59c:232b:197a:2ccb%16(Preferred)
   IPv4 Address. . . . . . . . . . . : 172.29.160.28(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 172.29.160.1
   DHCPv6 IAID . . . . . . . . . . . : 385896534
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-2A-BA-7A-F0-00-50-56-BE-71-43
   DNS Servers . . . . . . . . . . . : 172.29.160.160
                                       172.29.160.47
   NetBIOS over Tcpip. . . . . . . . : Enabled
PS M:\>
PS M:\>
PS M:\> vpncmd localhost /server /password:password /cmd  BridgeList
vpncmd command - SoftEther VPN Command Line Management Utility
SoftEther VPN Command Line Management Utility (vpncmd command)
Version 4.38 Build 9760   (English)
Compiled 2022/02/18 09:01:10 by mp at xtradev
Copyright (c) SoftEther VPN Project. All Rights Reserved.

Connection has been established with VPN Server "localhost" (port 443).

You have administrator privileges for the entire VPN Server.

VPN Server>BridgeList
BridgeList command - Get List of Local Bridge Connection
Number|Virtual Hub Name|Network Adapter or Tap Device Name                       |Status
------+----------------+---------------------------------------------------------+---------
1     |bmsint          |VMware vmxnet3 virtual network device (2) (ID=0630863642)|Operating
The command completed successfully.

PS M:\>
PS M:\>
PS M:\> vpncmd localhost /server /password:password /adminhub:bmsint /cmd SecureNatStatusGet
vpncmd command - SoftEther VPN Command Line Management Utility
SoftEther VPN Command Line Management Utility (vpncmd command)
Version 4.38 Build 9760   (English)
Compiled 2022/02/18 09:01:10 by mp at xtradev
Copyright (c) SoftEther VPN Project. All Rights Reserved.

Connection has been established with VPN Server "localhost" (port 443).

You have administrator privileges for the entire VPN Server.

The Virtual Hub "bmsint" has been selected.
VPN Server/bmsint>SecureNatStatusGet
SecureNatStatusGet command - Get the Operating Status of the Virtual NAT and DHCP Server Function (SecureNat Function)
Item                     |Value
-------------------------+---------
Virtual Hub Name         |bmsint
NAT TCP/IP Sessions      |0 Session
NAT UDP/IP Sessions      |0 Session
NAT ICMP Sessions        |0 Session
NAT DNS Sessions         |0 Session
Allocated DHCP Clients   |0 Client
Kernel-mode NAT is Active|No
Raw IP mode NAT is Active|No
The command completed successfully.

PS M:\>

toke@xtracon.dk
Posts: 6
Joined: Tue Sep 27, 2022 1:45 pm

Re: Local Bridge - Client DHCP Request not working

Post by toke@xtracon.dk » Thu Sep 29, 2022 8:10 am

And the client info.

Code: Select all


C:\Users\User>netstat -r
===========================================================================
Interface List
 13...00 15 5d 01 48 3e ......Microsoft Hyper-V Network Adapter
 28...........................vpnint.bms.dk
 24...5e e7 4c 90 9f 54 ......VPN Client Adapter - VPN
  1...........................Software Loopback Interface 1
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0    10.200.201.81    10.200.201.83   4496
          0.0.0.0          0.0.0.0         On-link      172.26.10.32     21
         10.1.1.0    255.255.255.0         On-link      172.26.10.32     21
       10.1.1.255  255.255.255.255         On-link      172.26.10.32    276
    10.200.201.80  255.255.255.248         On-link     10.200.201.83   4496
    10.200.201.83  255.255.255.255         On-link     10.200.201.83   4496
    10.200.201.87  255.255.255.255         On-link     10.200.201.83   4496
        127.0.0.0        255.0.0.0         On-link         127.0.0.1   4556
        127.0.0.1  255.255.255.255         On-link         127.0.0.1   4556
  127.255.255.255  255.255.255.255         On-link         127.0.0.1   4556
      172.26.10.0    255.255.255.0         On-link      172.26.10.32     21
     172.26.10.32  255.255.255.255         On-link      172.26.10.32    276
    172.26.10.255  255.255.255.255         On-link      172.26.10.32    276
     172.29.160.0    255.255.255.0         On-link      172.26.10.32     21
   172.29.160.255  255.255.255.255         On-link      172.26.10.32    276
     212.98.75.41  255.255.255.255    10.200.201.81    10.200.201.83   4241
        224.0.0.0        240.0.0.0         On-link         127.0.0.1   4556
        224.0.0.0        240.0.0.0         On-link     10.200.201.83   4496
        224.0.0.0        240.0.0.0         On-link      172.26.10.32     21
  255.255.255.255  255.255.255.255         On-link         127.0.0.1   4556
  255.255.255.255  255.255.255.255         On-link     10.200.201.83   4496
  255.255.255.255  255.255.255.255         On-link      172.26.10.32    276
===========================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
          0.0.0.0          0.0.0.0    10.200.201.81  Default
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    331 ::1/128                  On-link
 13    271 fe80::/64                On-link
 13    271 fe80::30c2:99de:6cb9:5679/128
                                    On-link
  1    331 ff00::/8                 On-link
 13    271 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None

C:\Users\User>ipconfig /all

Windows IP Configuration

   Host Name . . . . . . . . . . . . : DESKTOP-T1GHP72
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : bms.dk

Ethernet adapter Ethernet:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Hyper-V Network Adapter
   Physical Address. . . . . . . . . : 00-15-5D-01-48-3E
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::30c2:99de:6cb9:5679%13(Preferred)
   IPv4 Address. . . . . . . . . . . : 10.200.201.83(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.248
   Default Gateway . . . . . . . . . : 10.200.201.81
   DHCPv6 IAID . . . . . . . . . . . : 218109277
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-2A-AA-41-C2-00-15-5D-01-48-3E
   DNS Servers . . . . . . . . . . . : 8.8.8.8
   NetBIOS over Tcpip. . . . . . . . : Enabled

PPP adapter vpnint.redacted for privacy:

   Connection-specific DNS Suffix  . : redacted for privacy
   Description . . . . . . . . . . . : redacted for privacy
   Physical Address. . . . . . . . . :
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv4 Address. . . . . . . . . . . : 172.26.10.32(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.255
   Default Gateway . . . . . . . . . : 0.0.0.0
   DNS Servers . . . . . . . . . . . : 172.29.160.160
                                       172.29.160.47
   NetBIOS over Tcpip. . . . . . . . : Enabled

Unknown adapter VPN - VPN Client:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : VPN Client Adapter - VPN
   Physical Address. . . . . . . . . : 5E-E7-4C-90-9F-54
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

C:\Users\User>

solo
Posts: 1228
Joined: Sun Feb 14, 2021 10:31 am

Re: Local Bridge - Client DHCP Request not working

Post by solo » Thu Sep 29, 2022 8:49 am

toke@xtracon.dk wrote:
Thu Sep 29, 2022 8:10 am

Code: Select all

Unknown adapter VPN - VPN Client:
   Media State . . . . . . . . . . . : Media disconnected
C'mon, I said "...after a connection...", OK?

But before you redo the client, set the following on the server's VM:

Code: Select all

promiscuous mode: enabled
mac address changes: enabled
forged transmits: enabled
Let's see what you get now.

toke@xtracon.dk
Posts: 6
Joined: Tue Sep 27, 2022 1:45 pm

Re: Local Bridge - Client DHCP Request not working

Post by toke@xtracon.dk » Thu Sep 29, 2022 9:02 am

The Unknown adapter VPN - VPN Client: is used for the Softether VPN client software.
I am not using that.
As i told in the original post, i am using the in-build Windows RAS VPN.

Those are already set on the VM.

solo
Posts: 1228
Joined: Sun Feb 14, 2021 10:31 am

Re: Local Bridge - Client DHCP Request not working

Post by solo » Thu Sep 29, 2022 9:15 am

Look mate, are you trolling us, ffs? Here is your other adapter...
PPP adapter vpnint.redacted for privacy:
Connection-specific DNS Suffix . : redacted for privacy
Description . . . . . . . . . . . : redacted for privacy
Physical Address. . . . . . . . . :
DHCP Enabled. . . . . . . . . . . : No
With DHCP disabled what did you expect? Think twice before replying.

eddiewu
Posts: 286
Joined: Wed Nov 25, 2020 9:10 am

Re: Local Bridge - Client DHCP Request not working

Post by eddiewu » Thu Sep 29, 2022 4:36 pm

The Windows built-in vpn is PPP-based. That means DHCP is not applicable here. That’s by design.

solo
Posts: 1228
Joined: Sun Feb 14, 2021 10:31 am

Re: Local Bridge - Client DHCP Request not working

Post by solo » Thu Sep 29, 2022 6:01 pm

toke@xtracon.dk wrote:
Thu Sep 29, 2022 9:02 am
As i told in the original post, i am using the in-build Windows RAS VPN.
Re-read your original post. You never said that, hence the confusion. Now, ignore the ipconfig, do a ping, your VPN should work just fine.

Post Reply