Softpedia >Mac >Network/Admin >SoftEther VPN Server >  Changelog

SoftEther VPN Server Changelog

What's new in SoftEther VPN Server 4.21 Build 9613 Beta

Apr 25, 2016
  • Added SoftEther VPN Server Manager for Mac OS X:
  • Now you can manage your SoftEther VPN Server, running remotely, from your Mac in local.

New in SoftEther VPN Server 4.20 Build 9608 (Apr 18, 2016)

  • Fixed a minor English typo.

New in SoftEther VPN Server 4.19 Build 9599 Beta (Oct 19, 2015)

  • Fixed the problem that an unnecessary "Insert disk" dialog box appears when installing VPN Server or VPN Bridge on Windows 10.
  • Added the "/NOHUP" parameter in the "TrafficServer" command of vpncmd.
  • Added the "/REDIRECTURL" parameter in some access list commands of vpncmd.
  • Added the virtual address check routines in kernel-mode drivers to prevent blue screen or invalid memory access. Previous versions of kernel-mode drivers did not check the virtual addresses from the user-mode. (NOTE: All kernel-mode drivers are protected by ACL to avoid privilege escalation in all previous versions. Only users with Administrator privileges were able to cause blue screen or invalid memory access by passing invalid addresses from the user-mode. Therefore this was not a security flaw.) Appreciate Meysam Firozi's contribution to report the similar problem in the Win10Pcap driver.

New in SoftEther VPN Server 4.19 Build 9582 Beta (Oct 6, 2015)

  • Dramatically improvement of the performance of the Virtual NAT function of SecureNAT in Linux. In the previous versions of SoftEther VPN, the SecureNAT performance was very slow in the specific situation that the Linux Virtual Machine (VM) is running with virtual Ethernet interfaces which are prohibited to enable the promiscuous mode (this problem has been frequently appeared on cloud servers such like Amazon EC2/AWS or Windows Azure). In such a situation, SecureNAT must use the user-mode TCP/IP stack simulation and it was very slow and had high latency. This version of SoftEther VPN Server adds the new "RAW IP Mode" in the SecureNAT function. The RAW IP Mode is enabled by default, and is effective only if the VPN Server process is running in the root privileges. In the RAW IP Mode, the SecureNAT function realizes to transmit and receive TCP, UDP and ICMP packets which headers are modified. This behavior realizes drastically improved performance than legacy user-mode SecureNAT in the previous versions. In order to avoid the misunderstanding of receiving packets which are towards to the Virtual NAT function, some packet filter rules are automatically added to the iptables chain list. You can disable the RAW IP Mode by setting the "DisableIpRawModeSecureNAT" value to "1" on the Virtual Hub Extending Options.
  • Improved the performance of the Kernel-mode SecureNAT.
  • Improved the stability of the L2TP VPN sessions on the network with heavy packet-losses.
  • Added the compatibility with Cisco 800 series routers (e.g. Cisco 841M) on the L2TPv3 over IPsec protocol. These new Cisco routers have modified L2TPv3 header interpreter. Therefore SoftEther VPN Server needed to add new codes to support these new Cisco routers.
  • Added the support the compatibility to YAMAHA RTX series routers on the L2TPv3 over IPsec protocol.
  • Added the support for EAP and PEAP. SoftEther VPN Server can now speak RFC3579 (EAP) or Protected EAP (PEAP) to request user authentications to the RADIUS server with the MS-CHAPv2 mechanism. If this function is enabled, all requests from L2TP VPN clients which contain MS-CHAPv2 authentication data will be converted automatically to EAP or PEAP when it is transferred to the RADIUS server. You must enable this function manually for each of Virtual Hubs. To enable the function converting from MS-CHAPv2 to EAP, set the "RadiusConvertAllMsChapv2AuthRequestToEap" value to "true" in the vpn_server.config. To enable the functin converting from MS-CHAPv2 to PEAP, set both "RadiusConvertAllMsChapv2AuthRequestToEap" and "RadiusUsePeapInsteadOfEap" options to "true".

New in SoftEther VPN Server 4.19 Build 9578 Beta (Sep 16, 2015)

  • Solved the problem that kernel mode drivers do not pass the general tests of "Driver Verifier Manager" in Windows 10.

New in SoftEther VPN Server 4.18 Build 9570 (Aug 21, 2015)

  • Solved the problem that the customized language setting on the "lang.config" file.
  • config sometimes corrupts in the rare condition.

New in SoftEther VPN Server 4.13 Build 9522 Beta (Jan 30, 2015)

  • Modified the behavior of the Local Bridge function in the VPN Server on Linux. In the previous versions, if several Local Bridge creation operations will be made, then the operations to disable the offloading function on the target Ethernet devices will be conducted as many as same. After this version, the operation to disabling the offloading function will be called only once if several Local Bridge creation operations will be made on the same Ethernet device.
  • Added the "SecureNAT_RandomizeAssignIp" Virtual Hub Extending Option. If you set this option to non-zero value, then the Virtual DHCP Server of the SecureNAT function will choose an unused IP address randomly from the DHCP pool while the default behavior is to choose the first unused IP address.
  • Added the "DetectDormantSessionInterval" Virtual Hub Extending Option. If you set this option to non-zero value, then the Virtual Hub will treat the VPN sessions, which have transmitted no packets for the last specified intervals (in seconds), as Dormant Sessions. The Virtual Hub will not flood packets, which should be flood, to any Dormant Sessions.
  • Added the implementation of the SHA () function in the source code. This made the building process easier on the low-memory embedded hardware which has its OpenSSL implementation without the SHA () function.

New in SoftEther VPN Server 4.12 Build 9514 Beta (Jan 22, 2015)

  • Added the VLAN ID dynamic assignment function by RADIUS. It is very useful when the layer-2 Ethernet segment with aggregated IEEE802.1Q tagged VLANs is bridged to your Virtual Hub. Each VPN session will be assigned its own VLAN ID by the RADIUS attribute value when the user is authenticated by the external RADIUS server unless the user object has a VLAN ID security policy. The RADIUS attribute with the name "Tunnel-Pvt-Group-ID" (ID = 81) will be used as the VLAN ID. The data type must be STRING. This function is disabled by default. You have to set the "AssignVLanIdByRadiusAttribute" value to "1" in the Virtual Hub Extended Options in advance.
  • Added the OpenVPNDefaultClientOption option in the vpn_server.config. The specified option string will be used alternatively when the connecting OpenVPN Client does not provide the connection string. Some incomplete OpenVPN Clients with the --enable-small compiling option always forget to specify this connection string. This option can make VPN Server allow such OpenVPN Clients.
  • Improved the DHCP option parser to allow the external DHCP server pushes the classless routing table which exceeds 255 bytes.
  • Added the support for "hair-pin connection" on the NAT Traversal function.
  • Fixed the performance problem when the server computer has the wrong resolv.conf setting file on Linux.
  • Fixed the VPN Client configuration backup folder name which the setup wizard automatically creates.
  • Fixed the UDP checksum value of the beacon packets which are sent by the Virtual Layer 3 Switch function.

New in SoftEther VPN Server 4.06 Build 9435 Beta (Mar 28, 2014)

  • Previous versions of VPN Client have a port-confliction problem of the TCP port (TCP 9930) for RPC (Remote Procedure Call) on the VPN Client service for Windows, if the same port is occupied by another service. This version has solved the confliction problem.

New in SoftEther VPN Server 4.05 Build 9423 Beta (Mar 7, 2014)

  • Set the "VPN over DNS" and "VPN over ICMP" functions disabled by default on VPN Server / VPN Bridge.

New in SoftEther VPN Server 4.04 Build 9412 (Mar 7, 2014)

  • Whole English UI texts are checked and corrected by a native speaker of English. Fixed typos.

New in SoftEther VPN Server 2.00 Build 9387 (Oct 26, 2013)

  • This build realizes the compatibility with Microsoft Windows 8.1 and Windows Server 2012 R2 (RTM). This build supports Windows 8.1 and Windows Server 2012 R2 officially. This build fixes the former problem when the user upgrades from Windows 8 to Windows 8.1 by upgrade installation.
  • The major version number of SoftEther VPN was incremented on this build.

New in SoftEther VPN Server 1.01 Build 9379 RTM (Aug 20, 2013)

  • This security update is to strengthen the security of SoftEther VPN 1.0 (Server and Bridge):
  • There is a remote administration function on SoftEther VPN 1.0. The function is to allow administrators to connect to the VPN server remotely to manage the server. In older versions, a third person can login to the VPN Server in the Virtual Hub Administration Mode if the administrator has forgot to set the administrator's password on a Virtual Hub. Older versions are also safe if any strong password is set on the Virtual Hub. However we suppose that there are some administrators who have forgot to set passwords for Virtual Hubs. In order to protect such potential vulnerable servers, this security update strengthens the VPN server program to deny all empty (not set) passwords on the Virtual Hub Administration Mode. Your VPN server has been safe also in older versions if you set any passwords for Virtual Hubs. However, we strongly recommend to apply this update program to all VPN server administrators who might have potential empty passwords on Virtual Hubs.

New in SoftEther VPN Server 1.00 Build 9377 RTM (Aug 5, 2013)

  • Improvement Stability of NAT Traversal.
  • Add HTTP User-Agent Indication Behavior when using VPN Gate Client.

New in SoftEther VPN Server 1.00 Build 9371 RTM (Jul 25, 2013)

  • This is the RTM version of SoftEther VPN 1.0. It is not a BETA version.
  • We have fixed a lot of bugs in former builds. This RTM build is a stable build for everyone.

New in SoftEther VPN Server 1.00 Build 9367 RC 4 (Jul 22, 2013)

  • This should be the final beta release before the RTM version of SoftEther VPN 1.0.

New in SoftEther VPN Server 1.00 Build 9091 RC 2 (May 20, 2013)

  • Fixed a crush bug which might occurred during the shutdown of vpnserver process with using L2TPv3 or EtherIP over IPsec.
  • The statistics of cumulative transferred-bytes and packets-counter are appended on the list of Visual Hubs and on the list of User Objects on each Virtual Hub, on VPN Server Manager and vpncmd.
  • On the list of User Objects enumeration in both VPN Server Manager and vpncmd, the expire-date of each User Object are appended on the displayed list.
  • Improvements of stability of Dynamic DNS Function and NAT-Traversal Function.

New in SoftEther VPN Server 1.00 Build 9079 RC 2 (May 7, 2013)

  • Fixed a typo. Fixed a wrong bitmap image on the installer.

New in SoftEther VPN Server 1.00 Build 9074 RC 2 (Apr 24, 2013)

  • Minor improvement around the Dynamic DNS Client function.

New in SoftEther VPN Server 1.00 Build 9070 RC 2 (Apr 19, 2013)

  • Enabled advanced security check routines for butter overflow (Win32 binaries only.)
  • File sizes have been increased a little, but the performance wasn't affected.

New in SoftEther VPN Server 1.00 Build 9069 RC 2 (Apr 17, 2013)

  • Fixed a minor bug on SSL packet processing.
  • Fixed a miror bug on TCP listener. (very rare crash)

New in SoftEther VPN Server 1.00 Build 9035 RC 2 (Mar 25, 2013)

  • Fixed a crash bug: While you are changing the X.509 server certificate, if a new SSL-VPN connection is being made, the new connection attempt will cause the crash because lack of critical section locking. However this bug was very rare. We found it in the heavy stress test.

New in SoftEther VPN Server 1.00 Build 9029 RC 2 (Mar 18, 2013)

  • Fixed a minor bug and typo.

New in SoftEther VPN Server 1.00 Build 9027 RC 2 (Mar 12, 2013)

  • Fixed a minor bug.

New in SoftEther VPN Server 1.00 Build 9026 RC 2 (Mar 11, 2013)

  • Fixed a bug: the timeout to the DDNS server was too small.

New in SoftEther VPN Server 1.00 Build 9023 RC 2 (Mar 11, 2013)

  • Fixed a minor bug.