前回、VPNサーバまで設定したので、それに接続するVPNブリッジを作っていきます。

インストールしてサービス起動までは前回と同じなので、省略です。

# ./vpncmd
vpncmd command - SoftEther VPN Command Line Management Utility
SoftEther VPN Command Line Management Utility (vpncmd command)
Version 4.38 Build 9760   (English)
Compiled 2021/08/17 22:32:49 by buildsan at crosswin
Copyright (c) SoftEther VPN Project. All Rights Reserved.
By using vpncmd program, the following can be achieved.
1. Management of VPN Server or VPN Bridge
2. Management of VPN Client
3. Use of VPN Tools (certificate creation and Network Traffic Speed Test Tool)
Select 1, 2 or 3: 1 ←サーバの設定なので1を入力
Specify the host name or IP address of the computer that the destination VPN Server or VPN Bridge is operating on.
By specifying according to the format 'host name:port number', you can also specify the port number.
(When the port number is unspecified, 443 is used.)
If nothing is input and the Enter key is pressed, the connection will be made to the port number 8888 of localhost (this computer).
Hostname of IP Address of Destination:localhost ← localhostを入力
If connecting to the server by Virtual Hub Admin Mode, please input the Virtual Hub name.
If connecting by server admin mode, please press Enter without inputting anything.
Specify Virtual Hub Name: ←何も入力しない
Connection has been established with VPN Server "localhost" (port 443).
You have administrator privileges for the entire VPN Server.
VPN Server>

ここまでは、前回と同じです。こっからブリッジの設定をやっていきます。

#パスワードを設定
VPN Server> ServerPasswordSet
#ブリッジの作成
VPN Server> BridgeCreate
Virtual Hub Name to Create Bridge: DEFAULT ← DEFAULTを入力
Bridge Destination Device Name: enp3s0 ← enp3s0を入力
# 仮想ハブの設定
VPN Server> Hub DEFAULT
Hub command - Select Virtual Hub to Manage
The Virtual Hub "DEFAULT" has been selected.
The command completed successfully.

# 仮想ハブのカスケード設定
VPN Server/DEFAULT> CascadeCreate homelab /SERVER:192.168.1.250:5555 /HUB:DEFAULT /USERNAME:username
CascadeCreate command - Create New Cascade Connection
The command completed successfully.

# パスワード設定
VPN Server/DEFAULT> CascadePasswordSet homelab /PASSWORD:password /TYPE:standard
CascadePasswordSet command - Set User Authentication Type of Cascade Connection to Password Authentication
The command completed successfully.

# カスケード接続をオンライン
VPN Server/DEFAULT>CascadeOnline homelab
CascadeOnline command - Switch Cascade Connection to Online Status
The command completed successfully.

これでVPN経由でサーバのセグメントで作業ができるようになりました。