I don’t quite understand this subreddit but I think this post is appropriate for here, especially since the SoftEther subreddit is empty and I need permission to post there. I don’t want to be long-winded but I felt it necessary to provide all context to what I want and what issues I’m experiencing. I’m using 2 laptops, where 1 can be the VPN server, and the other which connects through many different domain or public Wi-Fis; many of which use heavy networking restrictions. So I want a fool-proof solution that accounts for every case of their different restrictions; this way it will always connect if I have any internet access.
End Goal: VPN Client (Using Win10 Laptop connecting from Domain Wi-Fi) → SoftEther SSTP/SSL VPN server using HTTPS (Using Win11 Laptop hosting from Home Wi-Fi)
Restrictions on Server setup; no portforwarding possible on my router, I don’t own any HTTPS addresses to use, server *would* run from home pc over private home Wi-Fi *if I knew how to setup*.
Restrictions on Client setup; only routes traffic through IPv4 port 443/HTTPS, with direct IPs blocked, and popular networking HTTPS addresses blocked. Client runs from laptop on restricted domain Wi-Fi, Router isn’t connected to internet and must route through their local DNS first.
Issues: I’m trying to setup a VPN from my home’s pc and Wi-Fi, yet I know little about SoftEther or VPN hosting in general, and my client has many restrictions that I want to passthrough; so I’ll breakdown what I know. My current networking has many filters and restrictions for the client side: you can only use the default DNS IP or the connection will blackhole, and they block the majority of popular internet service providers on HTTPS such as NordVPN, or even Cloudflare’s and GoogleDNS’s “DoH” addresses through the Fortinet Web Filter.
Troubleshooting: On Android, most VPNs will shakily connect but eventually succeed using the client’s domain Wi-Fi, yet I have found none that even try to work on windows so far from the domain Wi-Fi. The connection also doesn’t allow “Direct IP connections” or “Unrated” which means any IP I connect to; must first be resolved through their DNS from a HTTPS address. Even if I type the same IP of google it will blackhole the connection, I must instead use request to the HTTPS/URL address to visit any IP. The only IP i can directly connect to is the local DNS address, everything else must be HTTPS. I was very confused at how this was done; but I figure it’s the DNS itself that opens the connection to the IP after it resolves from the HTTPS query, with everything being closed prior making direct IPs not go anywhere. I believe most of this was done to prevent DDoS yet VPNs not working became a side-effect.
More Troubleshooting: And for android connecting to VPNs, I haven’t quite discovered if it’s from some sort of DoH or SSTP that allows it to work different from windows, but either way it can only use HTTPS to connect meaning there’s gotta be a way for windows too… If it helps, they are using some form of Barracuda firewall; I also have reason to believe that they are now routing all traffic through their own VPN based off how Shodan tells me they have SSL certificates and how the individual IPs of their domain no longer appear on Shodan. (they own like a 1000 IPv4 addresses but only use one now) And the only difference in VPNs is the platform I use for it; for example, somehow Hotspot Shield VPN on android works fine but on windows it can’t even find the servers.
Conclusion: This means I can’t just connect to any IP which defeats most VPNs. I found that SoftEther does have HTTPS protocols like SSTP or SSL, but the VPN Gate free servers has been nothing but a hassle trying to use.
Request: Now here’s what I’m looking for, how to setup a VPN server on my home pc with a required login and password, but the IP must be resolved and connected to using HTTPS (such as vpn84xxxxx432.opengw.net); and it must be on port 443 (every other port is blocked on client’s connection). Preferably it hosts on my home IP as most default servers have too much latency where I live. Please Help! Bonus points if you show me how to make the VPN server include my Xbox from home LAN on port 9002; then I can remote play using the xbplay app on the client connection!
Who knows; maybe I’m overthinking it… But I still need help lmao. Answers or alternative suggestions greatly appreciated!