Update vpn_softetherbridge.md : to briged interaface will assiged with physical interface's MAC address. #589
Conversation
In previous methods, the physical and bridged interfaces were both online, so a single device had two different IP addresses. Thus, it caused performance issues and sometimes (in my case, all the time) DNS errors that prevented the device from accessing the Internet. By setting the bridge interface with the physical interface's MAC address. We can take advantage of the bridged interface with a single IP address from the router and improve the performance of the VPN connection. Also, users do not need to search for a new IP address assigned to the bridge interface. Please let me know if you have any concerns or questions about these changes. Thank you!
Co-authored-by: Ted Thibodeau Jr <[email protected]>
Co-authored-by: Ted Thibodeau Jr <[email protected]>
|
from today's PlugFest call:
|
To reflect the changes that I made, I've updated the vpnbridge file.
As Toumura-san suggested, the method of getting a physical MAC address changed from 'ifconfig' to 'ip link.' Also, download links for the Softether VPN have been updated to comply with the guidelines. Still, the SoftEther VPN dev and stable release pages have been added as alternative options since the dev version(ver 5.x.x) is more active than the legacy version.
Thank you for all the suggestions!
|
@LinearAlpha @sebastiankb @egekorkan to |
|
Thank you for the PR. I've tested it out on my end as well. With Linux bridges, one of the NIC's MAC addresses is automatically assigned to the bridge itself, and the IP address is generally assigned only to the bridge. Is there a specific reason to explicitly copy the MAC address? For example, in a configuration like the one below, would it be necessary for graph TD;
vpnbridge(SoftEther VPN bridge)
dhclient(DHCP client and other processes)
other(other machines in the local WiFi network)
tap_svpn([tap_svpn<br>MAC: 01:23:45:67:89:ab])
br0([br0<br>MAC: same as tap_svpn or wlan0<br>IP: 192.168.30.2])
wlan0([wlan0<br>MAC: cd:ef:01:23:45:67])
subgraph VPN Bridge
tap_svpn --> vpnbridge;
br0 --> tap_svpn;
br0 --> wlan0;
dhclient --> br0;
end
subgraph local WiFi network
wlan0 --> other
end
On a separate note, by using Thank you again! |
|
Hello, sorry for the late reply,
In my experience, without copying the MAC address into the bridge interface, I had an issue with the DNS resolution, so the bridge or VPN server could not connect to the internet. Also, I've seen that copying the MAC address into the bridged interface shows better performance and stable connections. (I've tried to figure out why it is more stable, but I cannot figure out why)
The MAC address always matches the physical interface that connects to the ethernet (more likely, the interface that connects to the router). So, yes, in this case, it needs to match the MAC address Lastly, I used Thank you for your time! |
In previous methods, the physical and bridged interfaces were both online, so a single device had two different IP addresses. Thus, it caused performance issues and sometimes (in my case, all the time) DNS errors that prevented the device from accessing the Internet.
By setting the bridge interface with the physical interface's MAC address. We can take advantage of the bridged interface with a single IP address from the router and improve the performance of the VPN connection. Also, users do not need to search for a new IP address assigned to the bridge interface.
Please let me know if you have any concerns or questions about these changes. Thank you!