SoftEther VPN
-
מישהו יש לו ידע בזה? דהיינו אם עובד בנטפרי?
נראה לי שצריך לתאם קובץ ה-config לתעודת האבטחה של נטפרי, מישהו יודע איך?
זה תוכן קובץ ה-config
יעויין השורות המתחילות byte ServerKey, byte ServerCertdeclare root { uint ConfigRevision 12 bool IPsecMessageDisplayed true string Region $ bool VgsMessageDisplayed false declare DDnsClient { bool Disabled false byte Key HB/FHXRsETCI5bjF1L3Yt/Tzt5w= string LocalHostname DESKTOP-1SRGME7 string ProxyHostName $ uint ProxyPort 0 uint ProxyType 0 string ProxyUsername $ } declare IPsec { bool EtherIP_IPsec false string IPsec_Secret vpn string L2TP_DefaultHub VPN bool L2TP_IPsec true bool L2TP_Raw true declare EtherIP_IDSettingsList { } } declare ListenerList { declare Listener0 { bool DisableDos false bool Enabled true uint Port 443 } declare Listener1 { bool DisableDos false bool Enabled true uint Port 992 } declare Listener2 { bool DisableDos false bool Enabled true uint Port 1194 } declare Listener3 { bool DisableDos false bool Enabled true uint Port 5555 } } declare LocalBridgeList { bool EnableSoftEtherKernelModeDriver true bool ShowAllInterfaces false } declare ServerConfiguration { bool AcceptOnlyTls true uint64 AutoDeleteCheckDiskFreeSpaceMin 8589934592 uint AutoDeleteCheckIntervalSecs 300 uint AutoSaveConfigSpan 300 bool BackupConfigOnlyWhenModified true string CipherName AES256-SHA uint CurrentBuild 9799 bool DisableCoreDumpOnUnix false bool DisableDeadLockCheck false bool DisableDosProction false bool DisableGetHostNameWhenAcceptTcp false bool DisableIntelAesAcceleration false bool DisableIPsecAggressiveMode false bool DisableIPv6Listener false bool DisableJsonRpcWebApi false bool DisableNatTraversal false bool DisableOpenVPNServer false bool DisableSessionReconnect false bool DisableSSTPServer false bool DontBackupConfig false bool EnableVpnAzure true bool EnableVpnOverDns false bool EnableVpnOverIcmp false byte HashedPassword 5Qg8rtisOFegLYhYElkHLsrELAg= string KeepConnectHost keepalive.softether.org uint KeepConnectInterval 50 uint KeepConnectPort 80 uint KeepConnectProtocol 1 uint64 LoggerMaxLogSize 1073741823 uint MaxConcurrentDnsClientThreads 512 uint MaxConnectionsPerIP 256 uint MaxUnestablishedConnections 1000 bool NoDebugDump false bool NoHighPriorityProcess false bool NoSendSignature false string OpenVPNDefaultClientOption dev-type$20tun,link-mtu$201500,tun-mtu$201500,cipher$20AES-128-CBC,auth$20SHA1,keysize$20128,key-method$202,tls-client string OpenVPN_UdpPortList 1194 bool SaveDebugLog false byte ServerCert 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 byte ServerKey MIIEogIBAAKCAQEAji9D1RMNmoKsWTP+k1PE6rzxD7CJ5DmVwAsi3xtTJURVlm4i3fcMCOTTkZSE/2n3qo6haESH1Ji3+2YnChxY37Hu7aly4nq5d+c+ZN+SGH7+RvOxelcR4bCRbJTVwnx5Py84w/knXeCuZJaqoMELr80huShZGwHGxmFcIGq5X+vYe6rbJvus9VuEEVDlAoRrAX8nifO7qpMaO7k4DvUsHctOn+5ZPncSudTVK8CXb5CPXYnnLljoPAiv/74VtpY/Lep27ae0xtsIBTOiWTijgbPz6c2qWMKBipc5YSeEqs2m3OvmgWqaGkAyystcVMRRHlUlwRGvRLNN/CLLLArQtwIDAQABAoIBAAuyoB+Mc5Q7MlJyddGJf6FvuFt57ZZSazDDbx6GQSccl01gM/Z+sprxYeX6dJ4ONKXvxHVvcfIP5c8anpVKiMClWHVteU9gbm2KymDX3fgC9rOVWAwrKVmf7Q75sxkkTtYKcglO2yoc5+whqIRqQtEMt5IOsOoJEYv/tZR7Lf4nVKENB6FGJZfvD4nTL35B9gKjGjRBAGyjBzMd6sAKTxGTnZKAFGRqqTR4rKXVLIIK6tAeYlN2Hm2CL4kZC79gI46eCxWf8tcZjcIfM0Uf6ae6J/hRCg6PYWsBgF67dEa2tvVoX9qP7ACAStQhQ9JI8Wu6+2PLqnsW7NMWpMaxUDkCgYEAwVcg1WyJ6bCFJjfoyI25MPlf8czbKo+7xonpN5ZYadOZJkZ2AmistLbMKtdPbPgC3idlzuf0vM2zv/mBA8qCz6IV29pZcBlH6nCNyXiPhLW3UbNVX1e6DCTcea2fl0nGBspRa7nAIAckgxIeirSM70cwis1T/kG2+7F6P5cult8CgYEAvEPmSB8YV4rq0tPfZT6bPn9+wOg0ihhXwg+gOm3xSl7lYnNc3qI9ypUmIOKWY6U7Ztt6Xf9jhKNsimO6qvOPLXuIThRzmrtXPDROe46+DaJlZypu+CXpWlLkWLUxc44iriT6V/L0MXV2k97gJWyeHAmoVqv3MQTx1SbQJjqjOSkCgYB/GVL5Wsfy+1scu8ZpCVoECvv6zkwJ18F+jCznoQtwTm0wj0OG498dUco4I6EQJp5kAoxYD36BG80d19zrbBbAfnJWPF1tZwEy6lkbaAkZGghwSi9GZTpmP1k9GFmAsDvhPOF3qv3VUDy9eYzgbD72Edukc8TSscqj/ZE6+pzjCwKBgDT/ZEcvQbn7KEm7TSsCKc+5MmR5ubiaS7Iclf18z60g86/4S898mqp5vCcLwkxAym0VIehuKYTAQKDgnD7dm5OxL9jTFwwa6t7O1r0fnM7XxXX6UwzWF0/O/+sc7tPZ0ld1n2e8xBNcPso3tp+yaPv5mAL2G/sXqkBX0cbBQQupAoGAJbV+4AQwVtB+6AX4fRunlikQGPJN3zzHi0dzQ1/ST2JWLBv5RXE5jI0G3ri00m8yqeM7CyjEQHUAHlSof7JzimjDLxnVM96qQj/vrRM2aKOarLgM2BFd+5Yp/5bHAnKBE3jveXfUurDKjUaXTfsLYdICjY4VeX8xhBho2aoHbtQ= uint ServerLogSwitchType 4 uint ServerType 0 bool StrictSyslogDatetimeFormat false bool Tls_Disable1_0 false bool Tls_Disable1_1 false bool Tls_Disable1_2 false bool Tls_Disable1_3 false bool UseKeepConnect true bool UseWebTimePage false bool UseWebUI false declare GlobalParams { uint FIFO_BUDGET 10240000 uint HUB_ARP_SEND_INTERVAL 5000 uint IP_TABLE_EXPIRE_TIME 60000 uint IP_TABLE_EXPIRE_TIME_DHCP 300000 uint MAC_TABLE_EXPIRE_TIME 600000 uint MAX_BUFFERING_PACKET_SIZE 2560000 uint MAX_HUB_LINKS 1024 uint MAX_IP_TABLES 65536 uint MAX_MAC_TABLES 65536 uint MAX_SEND_SOCKET_QUEUE_NUM 128 uint MAX_SEND_SOCKET_QUEUE_SIZE 2560000 uint MAX_STORED_QUEUE_NUM 1024 uint MEM_FIFO_REALLOC_MEM_SIZE 655360 uint MIN_SEND_SOCKET_QUEUE_SIZE 320000 uint QUEUE_BUDGET 2048 uint SELECT_TIME 256 uint SELECT_TIME_FOR_NAT 30 uint STORM_CHECK_SPAN 500 uint STORM_DISCARD_VALUE_END 1024 uint STORM_DISCARD_VALUE_START 3 } declare ServerTraffic { declare RecvTraffic { uint64 BroadcastBytes 0 uint64 BroadcastCount 0 uint64 UnicastBytes 0 uint64 UnicastCount 0 } declare SendTraffic { uint64 BroadcastBytes 0 uint64 BroadcastCount 0 uint64 UnicastBytes 0 uint64 UnicastCount 0 } } declare SyslogSettings { string HostName $ uint Port 514 uint SaveType 0 } } declare VirtualHUB { declare VPN { uint64 CreatedTime 1733920950811 byte HashedPassword +WzqGYrR3VYXrAhKPZLGEHcIwO8= uint64 LastCommTime 1733920950780 uint64 LastLoginTime 1733920950780 uint NumLogin 0 bool Online true bool RadiusConvertAllMsChapv2AuthRequestToEap false string RadiusRealm $ uint RadiusRetryInterval 0 uint RadiusServerPort 1812 string RadiusSuffixFilter $ bool RadiusUsePeapInsteadOfEap false byte SecurePassword bpw3X/O5E8a6G6ccnl4uXmDtkwI= uint Type 0 declare AccessList { } declare AdminOption { uint allow_hub_admin_change_option 0 uint deny_bridge 0 uint deny_change_user_password 0 uint deny_empty_password 0 uint deny_hub_admin_change_ext_option 0 uint deny_qos 0 uint deny_routing 0 uint max_accesslists 0 uint max_bitrates_download 0 uint max_bitrates_upload 0 uint max_groups 0 uint max_multilogins_per_user 0 uint max_sessions 0 uint max_sessions_bridge 0 uint max_sessions_client 0 uint max_sessions_client_bridge_apply 0 uint max_users 0 uint no_access_list_include_file 0 uint no_cascade 0 uint no_change_access_control_list 0 uint no_change_access_list 0 uint no_change_admin_password 0 uint no_change_cert_list 0 uint no_change_crl_list 0 uint no_change_groups 0 uint no_change_log_config 0 uint no_change_log_switch_type 0 uint no_change_msg 0 uint no_change_users 0 uint no_delay_jitter_packet_loss 0 uint no_delete_iptable 0 uint no_delete_mactable 0 uint no_disconnect_session 0 uint no_enum_session 0 uint no_offline 0 uint no_online 0 uint no_query_session 0 uint no_read_log_file 0 uint no_securenat 0 uint no_securenat_enabledhcp 0 uint no_securenat_enablenat 0 } declare CascadeList { } declare LogSetting { uint PacketLogSwitchType 4 uint PACKET_LOG_ARP 0 uint PACKET_LOG_DHCP 1 uint PACKET_LOG_ETHERNET 0 uint PACKET_LOG_ICMP 0 uint PACKET_LOG_IP 0 uint PACKET_LOG_TCP 0 uint PACKET_LOG_TCP_CONN 1 uint PACKET_LOG_UDP 0 bool SavePacketLog true bool SaveSecurityLog true uint SecurityLogSwitchType 4 } declare Message { } declare Option { uint AccessListIncludeFileCacheLifetime 30 uint AdjustTcpMssValue 0 bool ApplyIPv4AccessListOnArpPacket false bool AssignVLanIdByRadiusAttribute false bool BroadcastLimiterStrictMode false uint BroadcastStormDetectionThreshold 0 uint ClientMinimumRequiredBuild 0 bool DenyAllRadiusLoginWithNoVlanAssign false uint DetectDormantSessionInterval 0 bool DisableAdjustTcpMss false bool DisableCheckMacOnLocalBridge false bool DisableCorrectIpOffloadChecksum false bool DisableHttpParsing false bool DisableIPParsing false bool DisableIpRawModeSecureNAT false bool DisableKernelModeSecureNAT false bool DisableUdpAcceleration false bool DisableUdpFilterForLocalBridgeNic false bool DisableUserModeSecureNAT false bool DoNotSaveHeavySecurityLogs false bool DropArpInPrivacyFilterMode true bool DropBroadcastsInPrivacyFilterMode true bool FilterBPDU false bool FilterIPv4 false bool FilterIPv6 false bool FilterNonIP false bool FilterOSPF false bool FilterPPPoE false uint FloodingSendQueueBufferQuota 33554432 bool ManageOnlyLocalUnicastIPv6 true bool ManageOnlyPrivateIP true uint MaxLoggedPacketsPerMinute 0 uint MaxSession 0 bool NoArpPolling false bool NoDhcpPacketLogOutsideHub true bool NoEnum false bool NoIpTable false bool NoIPv4PacketLog false bool NoIPv6AddrPolling false bool NoIPv6DefaultRouterInRAWhenIPv6 true bool NoIPv6PacketLog false bool NoLookBPDUBridgeId false bool NoMacAddressLog true bool NoManageVlanId false bool NoPhysicalIPOnPacketLog false bool NoSpinLockForPacketDelay false bool RemoveDefGwOnDhcpForLocalhost true uint RequiredClientId 0 uint SecureNAT_MaxDnsSessionsPerIp 0 uint SecureNAT_MaxIcmpSessionsPerIp 0 uint SecureNAT_MaxTcpSessionsPerIp 0 uint SecureNAT_MaxTcpSynSentPerIp 0 uint SecureNAT_MaxUdpSessionsPerIp 0 bool SecureNAT_RandomizeAssignIp false bool SuppressClientUpdateNotification false bool UseHubNameAsDhcpUserClassOption false bool UseHubNameAsRadiusNasId false string VlanTypeId 0x8100 bool YieldAfterStorePacket false } declare SecureNAT { bool Disabled true bool SaveLog true declare VirtualDhcpServer { string DhcpDnsServerAddress 192.168.30.1 string DhcpDnsServerAddress2 0.0.0.0 string DhcpDomainName fritz.box bool DhcpEnabled true uint DhcpExpireTimeSpan 7200 string DhcpGatewayAddress 192.168.30.1 string DhcpLeaseIPEnd 192.168.30.200 string DhcpLeaseIPStart 192.168.30.10 string DhcpPushRoutes $ string DhcpSubnetMask 255.255.255.0 } declare VirtualHost { string VirtualHostIp 192.168.30.1 string VirtualHostIpSubnetMask 255.255.255.0 string VirtualHostMacAddress 5E-DE-28-5E-F2-24 } declare VirtualRouter { bool NatEnabled true uint NatMtu 1500 uint NatTcpTimeout 1800 uint NatUdpTimeout 60 } } declare SecurityAccountDatabase { declare CertList { } declare CrlList { } declare GroupList { } declare IPAccessControlList { } declare UserList { declare mdd { byte AuthNtLmSecureHash RAnVO49bbr0lffmhrT9bkw== byte AuthPassword dcYa9gCQzkBX7PJQ7ZNNffpd9ME= uint AuthType 1 uint64 CreatedTime 1733920989203 uint64 ExpireTime 0 uint64 LastLoginTime 0 string Note $ uint NumLogin 0 string RealName $ uint64 UpdatedTime 1733920989203 declare Traffic { declare RecvTraffic { uint64 BroadcastBytes 0 uint64 BroadcastCount 0 uint64 UnicastBytes 0 uint64 UnicastCount 0 } declare SendTraffic { uint64 BroadcastBytes 0 uint64 BroadcastCount 0 uint64 UnicastBytes 0 uint64 UnicastCount 0 } } } } } declare Traffic { declare RecvTraffic { uint64 BroadcastBytes 0 uint64 BroadcastCount 0 uint64 UnicastBytes 0 uint64 UnicastCount 0 } declare SendTraffic { uint64 BroadcastBytes 0 uint64 BroadcastCount 0 uint64 UnicastBytes 0 uint64 UnicastCount 0 } } } } declare VirtualLayer3SwitchList { } declare VPNGate { string Abuse $ bool IsEnabled false bool LogPermanent false string Message $ bool NoLog false string Owner DESKTOP-1SRGME7's$20owner } }
