====== softethervpn ======
[[softether]]

===== ubuntuにインストール =====
2020/05/25現在
  ##download
  wget http://jp.softether-download.com/files/softether/..........tar.gz
  ##展開(vpnclient)
  tar -zxvf soft.............tar.gz
  ##移動
  sudo vpnclient /usr/local/
  ##インストール
  cd /usr/local/vpnclient/
  sudo make
  ##起動
  sudo ./vpnclient start


===== vpn設定 =====
  sudo /usr/local/vpnclient/vpnclient start
  sudo /usr/local/vpnclient/vpncmd 
  
  niccreate           #エラーになるなら、プロセスを終わらせてからvpnclientを起動し直し
  accountcreate
  accountpasswordset
  accountstartupset
  accountconnect
  accountstatusget


  #HUBを指定する前に指定する
  ipsecenable
    enable l2tp over ipsec = yes
    enable raw l2tp = no
    ebable l2tpv3 over ipsec = no
  #HUBを指定後
  securenatenable
  securenathostset
  dhcpset
  dhcpenable
  
===== port =====
l2tp
  500/udp
  4500/udp
  1194/udp

[[softetherとapacheでport443を共用]]



===== ネットワークインターフェース追加 =====
sudo vi /etc/network/interfases
  iface vpn_nic inet dhcp
ネットワークリスタート
  /etc/init.d/networking restart 
  もしくは
  sudo ifdown vpn_nic
  sudo ifup vpn_nic

==== 起動シェル ====
  #!/bin/bash
  cd /usr/local/vpnclient/
  sudo ./vpnclient start
  sudo ifdown vpn_nic1
  sudo ifup vpn_nic1
  sudo route delete default vpn_nic1
  
==== 停止シェル ====
  #!/bin/bash
  cd /usr/local/vpnclient/
  sudo ifdown vpn_nic1
  sudo ./vpnclient stop


==== systemd サービス登録 ====
サーバ　
/etc/systemd/system/vpnserver.service
  [Unit]
  Description=SoftEther VPN Server
  After=network.target network-online.target
  
  [Service]
  ExecStart=/usr/local/vpnserver/vpnserver start
  ExecStop=/usr/local/vpnserver/vpnserver stop
  Type=forking
  RestartSec=3s
  
  [Install]
  WantedBy=multi-user.target
作成後は　sudo systemctl daemon-reload　を行い、サービス起動する
  sudo systemctl start vpnserver.service
  sudo systemctl status vpnserver.service
自動起動設定
  sudo systemctl enable vpnserver.service 

クライアント
  [Unit]
  Description=SoftEther VPN Client
  After=network.target network-online.target
  
  [Service]
  ExecStart=/usr/local/vpnclient/vpnclient start
  ExecStop=/usr/local/vpnclient/vpnclient stop
  Type=forking
  RestartSec=3s
  
  [Install]
  WantedBy=multi-user.target
===== docker =====
  docker pull frosquin/softether 

参考

  * https://hub.docker.com/r/siomiz/softethervpn/
  * https://eidera.com/blog/2017/08/31/construction_vpn_server_in_one_minute/
  * http://blog.mikalab.info/archives/22100271.html
  * http://infosec2018kumw.blogspot.com/2018/12/vpn.html
  * https://github.com/crocandr/docker-softether
  * https://www.ionos.com/community/server-cloud-infrastructure/docker/run-a-vpn-in-a-docker-container-using-softether/
  * 
  docker pull frosquin/softether