SoftEther VPN Server - Enterprise VPN Solution
SoftEther VPN Server delivers a powerful, open-source enterprise VPN solution developed by University of Tsukuba, Japan.
This is the only VPN server that simultaneously supports six protocols (SSL-VPN, OpenVPN, L2TP/IPsec, MS-SSTP, L2TPv3/IPsec, EtherIP/IPsec), providing unprecedented deployment flexibility while delivering 4-13x superior performance compared to commercial solutions.
The perfect choice for businesses that demand data localization compliance, enterprise-grade security, and effortless scalability to 4,096 concurrent sessions — all with zero licensing limits.
Key Features
- Multi-protocol architecture: Simultaneous support for SSL-VPN, OpenVPN, L2TP/IPsec, MS-SSTP, L2TPv3/IPsec, and EtherIP/IPsec protocols on a single server
- High-performance throughput: Up to 980 Mbps bandwidth with TCP optimization and parallel data transmission capabilities
- Advanced firewall penetration: Unique tunneling capabilities through HTTPS (port 443), DNS, and ICMP packets to bypass restrictive network limitations
- Enterprise scalability: Support for up to 4,096 virtual hubs, 10,000 users per hub, clustering up to 64 servers with automatic load balancing
- Comprehensive management: GUI interface, HTML5 web console, JSON-RPC API for automation and integration with enterprise systems
- Active Directory integration: Built-in support for AD, RADIUS, LDAP for centralized corporate user authentication
- Enterprise-grade encryption: AES-256, ChaCha20-Poly1305, RSA up to 4096-bit, TLS 1.3 with Russian cryptographic standards compatibility
Important Compliance Information
Russian Federation Compliance: This solution is intended exclusively for corporate use. All Russian employees using corporate VPN must be documented according to Russian Federation legislation from March 2024. Organizations must have written IT policies prohibiting personal VPN use on corporate systems.
Warning
Important! This build is specifically optimized for Yandex Cloud, taking into account the specifics of virtual machines as well as the requirements of Russian legislation and federal laws. Its functionality and behavior differ from the standard version.
Warning
Make sure your security group allows traffic on UDP/TCP ports 443, 992, 1194, 5555, 1701,500, and 4500.
Warning
Warning! After the virtual machine is created, the product settings generation process will start automatically. This usually takes about 5 minutes, depending on the virtual machine settings. During this time, SSH access will be unavailable. This step is necessary to ensure complete and secure setup. Once completed, the virtual machine will reboot automatically.
- Obtain a pair of SSH keys to connect to the virtual machine (VM).
- Create a virtual machine from a public image. In the Select boot image/disk section, go to the Cloud Marketplace tab and select ** softether**. In the Access section:
- Enter your username in the Login field.
- Paste the contents of your public SSH key in the SSH Key field.
Warning
You can monitor the installation process via “Serial Port”.
- Connect to the virtual machine via SSH.
- Elevate privileges to
root:
sudo su
- Obtain the auto-generated configuration from the file
credentials.txt:
cat /opt/softether/credentials.txt
- Remote employee access: Secure connectivity for remote workers and mobile personnel to corporate network
- Branch office connectivity: Site-to-site VPN for connecting geographically distributed offices and subsidiaries
- Hybrid cloud architecture: Integration of on-premises infrastructure with Yandex Cloud resources
- Security compliance: Secure communication channels to meet industry regulatory requirements
OpenNix provides technical support to SoftEther VPN users in Yandex Cloud. You can contact their technical support by email at support@opennix.ru. Support engineers are available on business days from 9 am to 6 pm GMT+3.