วีดีโอ

Yes. You'll be considered the host.

Did you change the BIOS from Secure Boot or to Secure Boot?

Thank you so much!

😮​@@TheITGuyCJ

You may need to dig into the server configuration or ask over at their GitHub page to see if it's possible.

Where is your Ubuntu machine hosted? And could it be that your ISP is blocking SSH?

Thank you! Unfortunately, I don't believe it is possible.

Unless you have a large viewership on it then maybe look at embedding the sponsored content into the videos themselves

I can't say. It could be that your VPS/server is slowly creeping up to 100% CPU or network utilization then things start dropping. Are you using SecureNAT or dnsmasq? You may need to run some monitoring software to help pinpoint the problem.

@@TheITGuyCJ I'm using dnsmasq as your video and config and everything was good for several months and all things like VPS and ISP of the internet are the same as before. I just checked the VPS CPU graph and 30 days ago the max CPU use was 50% for a short period. How can I investigate the matter? How to monitor it? I just found when I have a connection problem with the VPS but my ping time from the VPS to my Private device IP address is good without any Time-out. Should I try SecureNAT instead of dnsmasq?

You shouldn't use SecureNAT at all. It's not worth it. You can use Zabbix or Prometheus with Grafana to monitor the server and have them send custom alerts when things happen.

Thank you!

Thank you! I believe it is however you'll need to use the developer edition of SoftEther (github.com/SoftEtherVPN/SoftEtherVPN) instead of the stable release.

Thanks for the answer. May I ask you is there anyway to manage user's traffic usage? To define like how much traffic they can use.@@TheITGuyCJ

Hey Carl. What ISP are you using?

Thank you!

Honestly, I'm not sure. It's best to spin up a separate Linode instance or local VM to test if there will be any compatibility issues.

@@TheITGuyCJ Thanks, i tried badly to install it as additional feature for me and friends but docker install is just stucked - default compose docker config just gives errors like port in use, so i changed it, postgres db as "root" not defined i found a solution but later it stops on redis container, i cant reinstall everything to start with new server so maybe i will go back to it when i change the server completely.

I didn't set up an L2TP password. I only used a IPSec PSK.

Thank you for the video compliment and the tip! I'll be sure to start using that.

​​​@@TheITGuyCJ I left this out, if you want to delete all lines in a file using nano do this: 1) move the cursor to the very beginning of the file and hit Ctrl + Shift + 6 2) move the cursor all the way to the end ( or to the end where your selection is). The text to be deleted should be highlighted now. 3) Ctrl + K will delete all of the selected text

Thank you!

@@TheITGuyCJ Seems like your server might be down.

What ISP are you using?

It PROBABLY could but that's not a lot of horsepower to do things like transcoding and handle multiple streaming users. github.com/mediacms-io/mediacms#hardware-dependencies

I'm glad you liked it!

Hmm... There could be restrictions on what DNS provider the government allows or they could be doing some ISP-level packet sniffing/re-routing. Could you try a different VPS provider or a different country?

Once your data comes in through that VPN connection, it'll need a way to route the traffic once it gets to the server (Linode in this case). It has to get the network settings from somewhere. It's similar to when you connect to a wireless access point at home or a coffee shop: your home router or the business's router gives your device a private IP address, subnet mask, and find a way out to the internet. That's what SecureNAT and dnsmasq do, just in software instead of a physical router.

nvm i think this problem is only on my pc, on my phone it works fine, thank you for the great tutorial

@@Zegur Thank you. I hope you get the issue resolved on your PC. Take care!

@@TheITGuyCJ so i setup multiple vpn servers, do u know how i can make a program where you can easily switch inbetween these? Or do u know a guide for making something like this?

@@Zegur Using the official SoftEther VPN client allows you to choose between multiple VPN servers. Else you'll have to set up multiple connections manually in the OS and select between them.

I don't believe so. So I created my hosted zone, then went to ACM and my domain was listed there with a certificate that was automatically generated. That cert can be used with CloudFront, Elastic Load Balancing, API Gateway, and others.

Have you speed tested that network interface and verified it? It could be that the interface is reporting 10/100 but in reality, it's much faster as it's just in software. Also, what Linux version are you running?

I don't believe so. I think the max is 1080p.

The video I grabbed from TH-cam is indeed 2160p using ffmpeg (the size is correct, but it may not be clear enough). But I can't play it when I put it in mediacms (because it cannot be transcoded). Can I mimic TH-cam's transcoding and playback settings?

@@cdorsat It may not be able to transcode (downsample) a 2160p video since it can't display 2160p. I personally haven't tried it.

@@TheITGuyCJ Thank you, are you the developer of the mediacms project? If I give you the admin rights of mediacms, can you help me to check and set it up correctly?

@@cdorsat Unfortunately, I am not. I happened to run across it and thought it was a really cool project. It looks like it MAY support transcoding 4k down to 1080p according to this GitHub conversation: github.com/mediacms-io/mediacms/pull/219

I don't believe it is possible to add ads.

Hi and thank you for checking me out. I'm not exactly sure what you are asking. Can you explain it a different way?

I'm not sure what's happening but I'm not seeing it. I don't delete any comments.

That extra network device is a virtual bridge that handles DHCP/DNS that dnsmasq uses instead of SecureNAT.

Thank you for the responses! I appreciate constructive criticism. It was my 1st video so things were just kinda jumbled. I'm numbering my responses to help me keep up with what I say. Lol. 1. Was your Windows environment at home or somewhere that there was a separate router/DHCP server? Or did your Windows machine itself house the DNS/DHCP service? If so, that may be what was giving you DNS/DCHP. 2. Since we want dnsmasq to handle DNS queries, we edit DNSStubListener in systemd-resolved to stop. 3. The 12h is how long the DHCP lease lasts (12 hours). 4. TAP is a type of interface in Linux and must be specified in the config. en.wikipedia.org/wiki/TUN/TAP 5. The "3" is a designation that it's the default route. You can run "dnsmasq --help dhcp" to see all IPv4 options. www.rfc-editor.org/rfc/rfc2132#section-3.5 You are correct about the 192.168.7.1 address assumptions. 6. The new configuration mostly just adds the TAP interface settings to the softether service. Hopefully I answered your questions sufficiently and thanks again!

Thank you! Yes, that option is correct.

@@TheITGuyCJ Thanks for the response. Any change to see my other questions as well?

I see for some reason they were marked for review so I'm looking at them now. Thanks!

I'm not sure. I actually haven't tried the Docker version of the MediaCMS.

You can try either either re-running the command with the new IP address or use this Digital Ocean link to help with removing the config in iptables. www.digitalocean.com/community/tutorials/how-to-list-and-delete-iptables-firewall-rules. I hope this helps.

Thank you for the compliment! If you set up your VPN exactly like the tutorial, then you'd only have 11 IP addresses. At the 17:29 mark, I edited how many IPs you have to use. Adjust your DCHP range to add more concurrent connections.

@@TheITGuyCJ Is it correct to change it like this? interface=tap_soft dhcp-range=tap_soft,192.168.7.2,192.168.7.254,12h dhcp-option=tap_soft,3,192.168.7.1 server=1.1.1.1 And just enter this code like this and it doesn't need to be changed? iptables -t nat -A POSTROUTING -s 192.168.7.0/24 -j SNAT --to-source [YOUR VPS IP ADDRESS] Is everything correct with these changes and there is no need for another change? How many users can connect with these settings? ================================================================================== Excuse me, I have a second question Where should I increase the MTU value in the softether config? The reason for the increased MTU is because my server port speed is 10GB/s and I want to increase the MTU from 1500 to 4800

That configuration should work and give you 254 available IP addresses. I'm not 100% sure if the MTU increase is needed. It wouldn't hurt to give it a try though as it's easy to revert back.

​@@TheITGuyCJ If I have 4 virtual hubs and have different IP ranges for each one Should I create (soft 1 for virtual hubs 1 ) , (soft 2 for virtual hubs 2) , (soft 3 for virtual hubs 3) , (soft 4 for virtual hubs 4) and repeat all commands for each one separately? What changes should I make in file >> nano /etc/dnsmasq.conf << ??? and What changes should I make in file >> nano /etc/init.d/vpnserver << ???

@@amlakhamed9545 I'm not 100% sure but I believe a start would be when you type "nano /etc/dnsmasq.conf", you'll have to put each tap device's setting in there. When you type "nano /etc/init.d/vpnserver", you should be able to just add the additional interface names and addresses that you need to that configuration. Lastly would be running the iptables command for each subnet. Let me know how it works.

Thank you! That script does Lets Encrypt automatically.

At that point in the video there's only the ability for already created users to sign in. I showed how to disable the "sign up" function starting at 19:31. At 15:35, I show the admin console where the administrator can add user accounts manually.

@@TheITGuyCJ So evidently if they click the 'sign up' link at that point it will just error out? Though the function is disabled... it would be nice to have that 'sign up' also removed. Thanks for a very helpful video too!

Hi Hoang, can you give me more details about your setup? VPS provider? What are you trying to connect using?

@@TheITGuyCJ or you go to connect my computer by teamview.

@@TheITGuyCJ my VPS is Cloud google

@@TheITGuyCJ i am setup step like you. But i cannot use vpn for internet f. When i enable secure nat, i can go to internet by computer

@@hoanghuytien I'm unfamiliar with working in GCP but if you're running a compute instance, it should work.

Yeah, unfortunately, it only works for Ubuntu 18, Ubuntu 20, or Debian 10.

I also check the "Disable NAT-T" checkbox on the VPN Client connection setting screen. but then i recived Error (Error Code 2): Protocol error occurred. Error was returned from the destination server.

Thank you @BricksMortar! If NAT-T for whatever reason will not work for you or other users, you can also enable the VPN Azure functionality when you are setting up SoftEther Server Configuration using Windows. www.softether.org/4-docs/2-howto/6.VPN_Server_Behind_NAT_or_Firewall/2.VPN_Azure

You're welcome!

Thank you for the compliment!

You are most welcome.

@@TheITGuyCJ SIR CAN YOU MAKE VIDEO FOR SOFTETHER+openvpn and how to use softether on the phone too??

@@hamidalipour7897 I'll see what I can do about that.

I'm no AWS expert but I am currently studying for my AWS SSA-C03 certification so I have experience with it. It's hard to say exactly what's going on without looking at configs but I'll mention a couple of possible stumbling blocks: 1. In your "/etc/dnsmasq.conf" file, make sure to specify a server address (17:28). If not, it's not using a DNS server to resolve domain names to IPs. I use 1.1.1.1 in my example in my blog post linked in the description. 2. If you're using an EC2 instance, when you power down the instance then start it back up, you will have a new public IP address each time. You'll have assign the instance an elastic IP address for it to "stick" permanently. That'll be important when editing your firewall rules using iptables (21:37). Let me know if the advice helps! It'll help me know I'm on the right track. Lol

You may have to check if your ISP is blocking access to the needed ports.

You will if it's behind a NAT firewall. Where are you installing it and does it have a public static IP address?

@@TheITGuyCJ want to open the port from the server side But I don't know how it works in Linux

@@rezamolavi9239 You shouldn't have to open ports on the server unless you've previously closed the server's port connections manually. Can you describe your setup in detail?

Thank you! I tried to create a great reference for anyone to be able to follow along with.

It's possible that your ISP has blocked one or more of those ports for connections. Or a blocked IP address if you're being geo-restricted on IP addresses you can access.

Thank you.

I haven't used the Linux client but I can definitely try to help. Where does the problem seem to be?