SoftEther VPN daemon for Opnsense

Started by samnet, January 19, 2016, 08:24:13 PM

Previous topic - Next topic
I would like raise the question of bringing softether to OpnSense to me SoftEther seems to have some powerful VPN options and I cant see other distros including it, I think it will be great for OpnSense project to make this available, I want to ask what does it take for this to be included as I can see a FreeBSD downloadable pack exist on http://www.softether-download.com/en.aspx?product=softether
If there is a guide on making FreeBSD packs included in the OpnSense Pls share here so that We can consider helping
Thanks

----------------------------
Breeding Open Source
M0n0wall -> PfSense -> OpnSense -> Make lots of sense

January 19, 2016, 08:27:35 PM #1 Last Edit: January 19, 2016, 08:46:55 PM by phoenix
You'll find several threads that have covered this topic, put the word 'softether' (no quotes) in the search box and take a look at those threads.
Regards


Bill

Quote from: phoenix on January 19, 2016, 08:27:35 PM
You'll find several threads that have covered this topic, put the word 'softethervpn' (no quotes) in the search box and take a look at those threads.
Thanks, could you pls highlight any guide on making BSD ports available in OpnSense?
----------------------------
Breeding Open Source
M0n0wall -> PfSense -> OpnSense -> Make lots of sense

I tried softether myself a couple of days ago and don't know if it is simply a great thing or if there is something bad about it. It seems to be very versatile. Openvpn and IPsec are already in OPNSense but I couldn't really find a SSTP Server (only).
For the installation in OPNSense I couldn't help at the moment as I tried it on a windows machine because of testing the AD authentication (but I think I would like it with radius a little better in the future, because of more control)

Don't forget to read the reviews. A recent one mentioned that the software phones home...

Relevant forum topics:

https://forum.opnsense.org/index.php?topic=957
https://forum.opnsense.org/index.php?topic=1367 (German with link to a thorough review)

You can install from the command line:

# pkg install softether

Work on a plugin is thus possible. Currently, we don't have this on our roadmap since the VPN solutions we have incorporated work and are probably safer.

Problem with Softether is that experts aren't really looking at it and updates are sparse (at least within FreeBSD). Security-wise, one is better off using a targeted project of a single VPN solution.

The phoning home is AFAIK only the dyndns-thing, if you disable this the software isn't connecting so somewhere not configured.
The updates on it is a thing that makes me more feel bad about it. But for Windowsclients is there an alternative SSTP Server availible?