SoftEther VPN User Forum

Is it possible?

What do you want to?

I don't want direct connection. However, the latency can be very high if using vpnazure, packets flowing between countries. I want to use CDN so that it can have better performance than vpnazure.

I think CDN is not designed for handling dynamic data.
Why don't you set up VPN server on a VPS.

But it is expensive to get a VPS.

I find that using cloudflare, connecting with port 8443 gets error.

You know what a VPN is?

It's a (virtuell) connection between two points. Call them A and B.
If you are connected to your server, you have a connection between A and B, like A <-----------> B.

What happens, if you use a CDN. You have a third-party-"device" in your connection, like
A<-----------> C <-------------> B.
How should this be faster than a direct connection? It's impossible.
C can't know thats B sending next, because it's "private" (and encrypted, and dynamicly). So, if you are sending a request from A to C, C will always ask B. And this will increase the latency.

A VPN can't bypass physical laws and also can not clairvoyance.

qupfer wrote:
> You know what a VPN is?
>
> It's a (virtuell) connection between two points. Call them A and B.
> If you are connected to your server, you have a connection between A and B, like A
> <-----------> B.
>
> What happens, if you use a CDN. You have a third-party-"device" in your
> connection, like
> A<-----------> C <-------------> B.
> How should this be faster than a direct connection? It's impossible.
> C can't know thats B sending next, because it's "private" (and encrypted,
> and dynamicly). So, if you are sending a request from A to C, C will always ask B.
> And this will increase the latency.
>
> A VPN can't bypass physical laws and also can not clairvoyance.

Faster than vpnazure, not direct connection.

Hi Everyone,

There is a possibility for V2RAY VPN servers to put them behind a CDN network and hide their real IP address. At the same time, in some countries like Iran, service providers are limiting the per-connection bandwidth, and that is affecting the VPN tunnels; by using CDN in between, (like people do in V2RAY), the client will initiate many connections to CDN servers, and bypass the per connection bandwidth limit.

If you know any way to use CDN for SSTP (or any other type of connection), please help us fight censorship in countries like Iran and China.


Best regards,

Mehdi

kh_tsang wrote: ↑

Sun Jan 18, 2015 9:44 am

Is it possible?

CDN providers e.g CloudFlare they proxy HTTP/HTTPS protocols not VPN ones, except WebSocket which is possible for example put a V2RAY VPN behind a CDN at the expense of decreasing client's speed.

mehdi wrote: ↑

Mon Dec 26, 2022 9:35 pm

Hi Everyone,

There is a possibility for V2RAY VPN servers to put them behind a CDN network and hide their real IP address. At the same time, in some countries like Iran, service providers are limiting the per-connection bandwidth, and that is affecting the VPN tunnels; by using CDN in between, (like people do in V2RAY), the client will initiate many connections to CDN servers, and bypass the per connection bandwidth limit.

If you know any way to use CDN for SSTP (or any other type of connection), please help us fight censorship in countries like Iran and China.


Best regards,

Mehdi

I have tested this scenario with
- SE server
- OpenConnect server
and trying to hide their IP address behind A CDN e.g CloudFalre, unfortunately I could not make it work.

Also have tried with Nginx as reverse proxy, and did not work either.
And it makes sense since VPN protocols are different than HTTP/S

Testing with HaProxy, it was possible to forward to OC or SE but HaProxy does not hide the IP of the endpiont :(.