Mikrotik as SSTP client to SoftEther

Post your questions about SoftEther VPN software here. Please answer questions if you can afford.
Post Reply
Diserted
Posts: 5
Joined: Thu Aug 17, 2023 2:35 pm

Mikrotik as SSTP client to SoftEther

Post by Diserted » Thu Aug 17, 2023 2:43 pm

Hello!
I have strange trouble:
created account, created local bridge, configured dnsmasq
when i use that account on windows -
route add 192.168.180.180 255.255.255.255 192.168.33.1(bridge ip) - everything great
from mikrotik
added route to 192.168.33.1 via sstp interface - ping to 192.168.33.1 ok
added route to 192.168.180.180 via sstp - no ping to 192.168.180.180
checked tcpdump -i tap_mikrotik - no packets to 192.168.180.180

Why? Tried all types of routes, another mikrotik - nothing helps.
Same account from Win11 and SoftEther client - everything is great.

routing table from server with SoftEther -

192.168.31.0/24 dev tap_otp proto kernel scope link src 192.168.31.1
192.168.32.0/24 dev tap_smart proto kernel scope link src 192.168.32.1
192.168.33.0/24 dev tap_mikrotik proto kernel scope link src 192.168.33.1
192.168.34.0/24 dev tap_adminotp proto kernel scope link src 192.168.34.1
192.168.35.0/24 dev tap_adminsmart proto kernel scope link src 192.168.35.1
192.168.180.0/24 dev ens224 proto kernel scope link src 192.168.180.1

What can be wrong?

Diserted
Posts: 5
Joined: Thu Aug 17, 2023 2:35 pm

Re: Mikrotik as SSTP client to SoftEther

Post by Diserted » Thu Aug 17, 2023 3:05 pm

So the scheme:

office1 network on second ethernet card(192.168.180.180 for example) ------ linux server with SoftEther(local bridge 192.168.33.1, eth 192.168.180.1) <------- mikrotik sstp-client with office2 network
I need to access office1<>office2 computers, without nat
is it possible? it was ok on pure openvpn
now i'm trying to reach 192.168.180.180 from mikrotik and can't

Diserted
Posts: 5
Joined: Thu Aug 17, 2023 2:35 pm

Re: Mikrotik as SSTP client to SoftEther

Post by Diserted » Thu Aug 17, 2023 4:12 pm

Is it possible that SoftEther filters packets, like it discovered there?
https://www.vpnusers.com/viewtopic.php?f=7&t=67633

solo
Posts: 1517
Joined: Sun Feb 14, 2021 10:31 am

Re: Mikrotik as SSTP client to SoftEther

Post by solo » Thu Aug 17, 2023 8:41 pm

Diserted wrote:
Thu Aug 17, 2023 2:43 pm
when i use that account on windows -
route add 192.168.180.180 255.255.255.255 192.168.33.1(bridge ip) - everything great
Did you connect with Windows SE or SSTP client?
If SE, then check it with SSTP.

Diserted
Posts: 5
Joined: Thu Aug 17, 2023 2:35 pm

Re: Mikrotik as SSTP client to SoftEther

Post by Diserted » Fri Aug 18, 2023 8:43 am

solo wrote:
Thu Aug 17, 2023 8:41 pm
If SE, then check it with SSTP.
Hello solo, thank you for fast answer!
Checked Win11 sstp client - fail, with default and static route - no luck. Can ping only server.
So no way to do it with softether?

solo
Posts: 1517
Joined: Sun Feb 14, 2021 10:31 am

Re: Mikrotik as SSTP client to SoftEther

Post by solo » Fri Aug 18, 2023 8:53 am

Probably not. As you can see in https://www.vpnusers.com/viewtopic.php?f=7&t=67633 the SSTP issue is still work in progress :-)
The TO-DO list:
- check it on Windows SE server (I tested SSTP only on Linux)
- if it works on Windows, try Linux with soft tap, not direct NIC bridging

Diserted
Posts: 5
Joined: Thu Aug 17, 2023 2:35 pm

Re: Mikrotik as SSTP client to SoftEther

Post by Diserted » Mon Aug 21, 2023 6:38 am

I tried linux with soft tap, securenat - nothing.
Decided to use virtual mikrotik for sstp server for mikrotiks - everything works great.
Thank you for help!

adroman
Posts: 4
Joined: Sat Dec 16, 2023 10:42 am

Re: Mikrotik as SSTP client to SoftEther

Post by adroman » Sat Dec 16, 2023 12:47 pm

Diserted wrote:
Thu Aug 17, 2023 2:43 pm
Hello!
I have strange trouble:
created account, created local bridge, configured dnsmasq
when i use that account on windows -
route add 192.168.180.180 255.255.255.255 192.168.33.1(bridge ip) - everything great
from mikrotik
added route to 192.168.33.1 via sstp interface - ping to 192.168.33.1 ok
added route to 192.168.180.180 via sstp - no ping to 192.168.180.180
checked tcpdump -i tap_mikrotik - no packets to 192.168.180.180

Why? Tried all types of routes, another mikrotik - nothing helps.
Same account from Win11 and SoftEther client - everything is great.

routing table from server with SoftEther -

192.168.31.0/24 dev tap_otp proto kernel scope link src 192.168.31.1
192.168.32.0/24 dev tap_smart proto kernel scope link src 192.168.32.1
192.168.33.0/24 dev tap_mikrotik proto kernel scope link src 192.168.33.1
192.168.34.0/24 dev tap_adminotp proto kernel scope link src 192.168.34.1
192.168.35.0/24 dev tap_adminsmart proto kernel scope link src 192.168.35.1
192.168.180.0/24 dev ens224 proto kernel scope link src 192.168.180.1

What can be wrong?
I have the same problem with wrong IP address?
Were you able to solve it?

Post Reply