How to setup SoftEther VPN Server in Azure/AWS/GCP
Deploy SoftEther VPN server into any of the cloud platforms. Perfect solution if you want to hide your ip address, allow external connections, site to site connections, NAT traversal and many many more features. Click on any of the links below to deploy into your cloud environment.
Setup SoftEther VPN on Azure
Deploy SoftEther VPN Server 2016 in Azure
Deploy SoftEther VPN Server 2019 in Azure
Setup SoftEther VPN on AWS
Deploy SoftEther VPN Server 2016 in AWS
Deploy Softether VPN Server 2019 in AWS
Setup SoftEther VPN on GCP
Deploy SoftEther VPN Server 2016 in GCP
Deploy SoftEther VPN Server 2019 in GCP
Getting Started
Once you have deployed Softether VPN on Windows server, the first step is to RDP into the new instance once it has fully booted up. The following links explain how to connect the VM once it has finished being deployed:
- How to RDP to AWS Windows Instance
- How to RDP to Google GCP Windows Instance
- How to RDP to Azure Windows Virtual Machine
Once logged in, you’re now ready to start setting up your new server as per the following sections.
SoftEther VPN Features
Deploying a Cloud VPN Server will give you the following options:
- Easy to establish both remote-access and site-to-site VPN.
- SSL-VPN Tunneling on HTTPS to pass through NATs and firewalls.
- Revolutionary VPN over ICMP and VPN over DNS features.
- Resistance to highly-restricted firewall.
- Ethernet-bridging (L2) and IP-routing (L3) over VPN.
- Embedded dynamic-DNS and NAT-traversal so that no static nor fixed IP address is required.
- AES 256-bit and RSA 4096-bit encryptions.
- Sufficient security features such as logging and firewall inner VPN tunnel.
- 1Gbps-class high-speed throughput performance with low memory and CPU usage.
- Windows, Linux, Mac, Android, iPhone, iPad and Windows Mobile are supported.
- SSL-VPN (HTTPS) and 6 major VPN protocols (OpenVPN, IPsec, L2TP, MS-SSTP, L2TPv3 and EtherIP) are all supported as VPN tunneling underlay protocols.
- The OpenVPN clone function supports legacy OpenVPN clients.
- IPv4 / IPv6 dual-stack.
- RADIUS / NT Active Directory Domain user authentication function
- RSA certificate authentication function
- Deep-inspect packet logging function
- Source IP address control list function
- syslog transfer function
Built-in NAT-traversal
Setup your own VPN server behind your firewall or NAT in your company network. You can reach that VPN server in the corporate private network from your home, remote office or mobile, without any modification of firewall settings. Any deep-packet inspection firewalls cannot detect SoftEther VPN’s transport packets as a VPN tunnel, because SoftEther VPN uses Ethernet over HTTPS for camouflage.
Remote-Access VPN and Site-to-Site VPN
Design and implement your VPN topology with SoftEther VPN. It virtualizes Ethernet by software-enumeration. SoftEther VPN Client implements Virtual Network Adapter, and SoftEther VPN Server implements Virtual Ethernet Switch. You can easily build both Remote-Access VPN and Site-to-Site VPN, as expansion of Ethernet-based L2 VPN. Of course, traditional IP-routing L3 based VPN can be built by SoftEther VPN.
You’ll also be able to connect AWS to Azure to GCP if you have multi cloud environments setup.
Setting up Softether VPN Server
For full documentation check out SoftEthers tutorials:
https://www.softether.org/4-docs/2-howto
Installation Support
If you have any problems with installing Softether VPN Server in any of the cloud environments please comment below or contact us and we will assist as much as we can
Firewall Ports
If you need to open any firewall ports on your VM, the following links explain how to create them:
Softether VPN uses the following ports
TCP 992
TCP 443
TCP 1194
TCP 5555
To setup AWS firewall rules refer to – AWS Security Groups
To setup Azure firewall rules refer to – Azure Network Security Groups
To setup Google GCP firewall rules refer to – Creating GCP Firewalls
Disclaimer: Softether VPN is a registered trademark of University of Tsukuba Japan & licenced under Apache License 2.0. No warrantee of any kind, express or implied, is included with this software. Use at your risk, responsibility for damages (if any) to anyone resulting from the use of this software rest entirely with the user. The author is not responsible for any damage that its use could cause.
