Obsolete Releases > SME 8.x Contribs
[SOLVED] SoftEther VPN Installed but ...
Jean-Philippe Pialasse:
I second for the migration to SME9
However I must note that softehrnet is a promising piece of software compared to other vpn we currently have. Why? Simply because it handle multiple protocols. Also it seems to work trhough a https SSL tunnel, which defy most of available firewall. Believe me I have been testing to connect to my server trought a numerous sites with firewall that will not let pass any ssh, openvpn, filter port, filter protocols.
THe only vpn I was able to use everytime was a simple cisco vpn using port 443.
the problem remaining here is that it prevents our server to be a normal https webserver. We have however some alternative that might be possible : http://www.vpntutorials.com/tutorials/openvpn-sharing-a-port-with-a-webserver-on-port-80-443/ maybe softethernet can offer similar solutions !
Did I Really Try That?:
OK. Diatribe at the "dedicated followers of fashion", otherwise known as the "Constant Upgrade" merchants. First of all it started as Microsoft FUD (Fear, Uncertainty and Doubt) to feed their profits, and it has been taken up by far too many as "the way things ought to be". Every iteration of the Constant Upgrade cycle requires both new software and new hardware. Everybody profits except the poor lag (lag is a slang term for a prisoner) on the end of the chain who has to fork out for it all. What benefit does SME9 bring to the end user over SME8? Apart from avoiding the poisonous FUD? As for the idea spouted earlier that SME9 has support for the next decade ... EOL of 20 Nov 2020 is not a decade away (not even half a decade away) unless IT professionals count dates differently from the rest of us. Given the changes required and the relatively short time before the same people will want to be chasing me off SME9, I am seriously thinking of skipping SME9 altogether and waiting for SME10 to go stable.
It will be quite clear that I haven't slavishly followed Microsoft to Win10, either. One of the reasons for opting for SoftetherVPN over OpenVPN is the wider range of Windows clients that are supported. I have not suffered, except where programmers have deliberately set out to make their programs inoperable on previous versions of Windows, largely by unthinkingly grabbing Microsoft's latest and greatest compiler which of course has those attributes deliberately built in. As with most private set-ups, my biggest risk is actually my router which hasn't seen a software upgrade since the thing was manufactured. Neither have any others. And that is the start of a rant about the absolute stupidity of the IoT (Internet of Things) which I will save for another day.
If there is plenty of good quality relatively new hardware around, I must live in a different part of the planet from that author. It has dried up, companies are not replacing stuff unless it is broken. Surprisingly, Microsoft didn't force the hardware market with their compulsory upgrade to Win10 so no one bought new to cope with it. Therefore whatever the market has round here at present is rubbish, and there isn't much of that either. The IT recyclers that I used to trade with regularly have all gone out of business. Those that remain try to survive on overpriced peripherals, not on main box computing grunt.
Sorry the anger overflowed a bit, but please ... when I ask for help on a problem, that is the problem that I want help with. However well meaning, the paternalistic advice to solve instead a whole series of different (and bigger) problems did not address my immediate difficulty.
My greatest thanks go to the suggestor of:
netstat -napt | grep 443
ReetP:
OK,
I suggest you temper your anger with a bit of a reality check.
People are trying to save you from yourself, not make a fool of you.
You said you were on v8.x - not us. We always try and remind people that v8 goes EOL on 31 March 2017 because the RHEL/CentOS 5 base does.
https://access.redhat.com/support/policy/updates/errata/
If you want to continue running a unsupported, and in time, potentially insecure OS then that is your prerogative, but don't expect help when you have an issue. It's not FUD, but fact. Yes v8 will run until the end of the universe. So will DOS, Windows 3.x, 95, 98, 2000, XP..... But is it secure ? If it is connected to the outside world with your company data on it, is that a wise idea? What happens if your hardware blows and you can't get a suitable replacement hardware to run it?
v9 was released 06/2014 some 4 years after RHEL/CentOS 6. That can hardly be called rushing. We are not 'dedicated followers of fashion' - that's the first time I have ever heard Koozali SME called that - most complain that we are too far behind the times. It has a 10 year support plan and goes EOL in 2020. Not our choice but RHEL. Also not our choice to have backup/restore instead of in place upgrade. Again, that is an upstream decision.
The benefit of v9 over v8 is that it is supported with updates. Simples.
By all means wait for v10, but be aware there is absolutely no timescale for release. Obviously it will happen faster if people like yourself got involved in testing etc...... but don't just sit there and wait for everyone else to do something. We are all volunteers, and all have day jobs.
Hardware. You mentioned the hardware you were running, not us. I merely passed comment. You live in exactly the same country that I used to from the looks of things, and where our company is still based.
You don't even need 'relatively new' if you are trying to replace a Celeron 733Mhz with 512mb RAM. Exactly how old is that ?
I have 2 x 32U racks, one in my UK office and one where I live abroad, both full of 2nd hand kit. The only things I have bought new are a PoE switch and a few routers. I have built this up slowly from a couple of simple desktop PCs come servers that I started with. All the rest I have bought off ebay or recyclers. It has cost 2/5ths of nothing in reality.
You can buy a DL380 G5 for around £100 on ebay. Fill it with some drives and you are away. You don't have to do that overnight, but start somewhere. ML310 G3/G4/G5 ? I have a ML350G2 someone GAVE me that I use as a backup box with a 6 drive RAID array - I bought a pile of 2/h 320GB SCSI drives for pennies so I have a hot spare, plus several cold ones on the shelf. I could easily use it as our main server...... But the point is it cost me less than buying a new desktop machine. Battery backed cache for a RAID card ? I bought new batteries off Farnell for about £1.50 each, split the case and soldered them in. A damn sight cheaper than buying a new battery pack and works perfectly. There is stuff out there. You might just have to hunt a bit to get a good deal. Ultimately your business depends on this stuff. It might cost time and money to upgrade stuff, but it's a long term benefit to the business.
No, this is not about your immediate issues, but from the things that you mentioned we realise that you are potentially going to have some in the near future.
So, in essence we are commenting on things that you have said and have tried to give you the benefit of our knowledge and experience, not take you to pieces or make a fool of you. Please take it in the spirit it was offered.
Rgds
John
Stefano:
--- Quote from: Did I Really Try That? on March 02, 2017, 11:05:48 AM ---OK. Diatribe at the "dedicated followers of fashion", otherwise known as the "Constant Upgrade" merchants.
]zac[
--- End quote ---
no diatribe, no FUD
your O.S. is going EOL, that means that it will likely become unsure..
we suggest to you to keep it updated and secure.. it's a good thing for you, isn't it? :-)
--- Quote ---My greatest thanks go to the suggestor of:
netstat -napt | grep 443
--- End quote ---
thank you.. you're more than welcome..
feel free to participate in SME's development.. we need man power
Did I Really Try That?:
--- Quote from: ReetP on March 02, 2017, 01:16:19 PM ---I suggest you temper your anger with a bit of a reality check.
--- End quote ---
And I suggest you answer the questions that I actually asked, instead of the questions you wanted to answer.
<snip>...</snip>
--- Quote from: ReetP on March 02, 2017, 01:16:19 PM ---No, this is not about your immediate issues,
--- End quote ---
which is what I asked about
--- Quote from: ReetP on March 02, 2017, 01:16:19 PM ---but from the things that you mentioned we realise that you are potentially going to have some in the near future.
--- End quote ---
and you couldn't hold back from lecturing me.
I don't think I will be volunteering. Your philosophy and mine are clearly incompatible. I won't be asking for any more help here either, whatever version I may or may not be using in the future.
Navigation
[0] Message Index
[#] Next page
[*] Previous page
Go to full version