4 Secure Socket Tunneling Protocol (SSTP) [21] VPN CentOS Linux OpenVPN [26] Layer 3 (L3) VPN VPN OpenVPN Layer 2 (L2) Layer 2 Tunneling Protocol vers

3 SoftEther VPN Server: VPN SoftEther VPN Server VPN VPN 2 1 VPN VPN VPN VPN VPN SoftEther VPN Server L2 2 VPN 3 VPN L2 2 OS 2013 3 2014 9 242,000 VPN VPN VPN SoftEther VPN Server is an open-source cross-platform multi-protocol VPN server which has two advantages over existing VPN servers. First, it supports multiple VPN protocols in a single VPN server instance. This makes it easy for an administrator to configure and manage a VPN server which supports remote access and site-to-site connection from a variety of VPN client devices. To realize that, SoftEther VPN Server includes a module called an L2 adapter to exchange messages between layer-3 VPN protocols and layer-2 VPN protocols seamlessly via common virtual L2 switches. The second advantage is that it can virtualize user management and networking, which is an essential function in multi-tenant virtual hosting. SoftEther VPN Server is portable among several operating systems. SoftEther VPN Server gained a total of 242,000 installations around the world from March 2013 to September 2014. The experimental result indicates that SoftEther VPN Server is faster than combinations of native VPN servers when exchanging messages between different VPN protocols. 1 (PC) (VPN) SoftEther VPN Server: An Open-source Crossplatform Multi-protocol VPN Server. Daiyuu Nobori, Yasushi Shinjo and Akira Sato,, Department of Computer Science, University of Tsukuba., Vol.32, No.4 (2015), pp.3 30. [] 2014 10 29. LAN VPN VPN VPN VPN VPN VPN Layer 2 Tunneling Protocol (L2TP) [27] over IPsec Point-to-Point Tunneling Protocol (PPTP) [8] ios Mac OS X Android VPN VPN Windows

4 Secure Socket Tunneling Protocol (SSTP) [21] VPN CentOS Linux OpenVPN [26] Layer 3 (L3) VPN VPN OpenVPN Layer 2 (L2) Layer 2 Tunneling Protocol version 3 (L2TPv3) [18] EtherIP [9] Open- VPN L2 CentOS L2TPv3 Cisco IOS EtherIP NEC IX VPN VPN UDP L2TP over IPsec (UDP) UDP TCP SSTP over TCP LAN VPN VPN VPN VPN VPN VPN (ACL) VPN Web VPN Web VPN SoftEther VPN Server VPN SoftEther VPN Server VPN VPN L2TP over IPsec Ether IP over IPsec OpenVPN L3 L2 L2TPv3 over IPsec EtherIP over IPsec SSTP SoftEther VPN Protocol (SEVP: Ethernet over HTTPS ) VPN VPN (PC ) VPN () SoftEther VPN Server SoftEther VPN Server VPN VPN VPN IP SoftEther VPN Server VPN VPN VPN ( ) SoftEther VPN Server SoftEther VPN Server VPN IPv4 IPv6 Internetwork Packet Exchange (IPX) 3 MAC 2 2 3 IP 3 VPN L2 3 2 L2 Address Resolution Protocol (ARP) Dynamic Host Configuration Protocol (DHCP) 3

Vol. 32 No. 4 Nov. 2015 5 2 SoftEther VPN Server OS OS Windows Linux Mac OS X FreeBSD Solaris Soft- Ether VPN Server 2013 3 1 2014 1 GNU General Public License (GPL) Version 2 2 SoftEther VPN Server 2014 9 242,000 SoftEther VPN Server PacketiX VPN Server 3.0 PacketiX VPN Server 4.0 SoftEther VPN Server PacketiX VPN Server 5,500 2 VPN 3 Soft- Ether VPN Server 4 5 SoftEther VPN Server 6 SoftEther VPN Server PacketiX VPN Server SoftEther 1.0 7 8 2 VPN VPN VPN VPN VPN VPN VPN 1 http://www.softether.org/ 2 https://github.com/softethervpn/softethervpn/ 2. 1 VPN 1 VPN VPN 3 2 3 VPN IP 2 VPN (LAN) Ethernet 2 VPN 3 VPN PC 2 VPN VPN IP IP Microsoft NetBIOS Extended User Interface (NetBEUI) Novell Internetwork Packet Exchange (IPX) / Sequenced Packet Exchange (SPX) Apple Talk 3 VPN ARP IP 2 VPN Multicast DNS (mdns) [2] NetBIOS over TCP/IP Link-Local Multicast Name Resolution (LLMNR) 1 VPN IP 1 VPN SSTP OpenVPN (L3 L2) SEVP PC VPN HTTP SSTP SEVP SSL TCP PC

6 1 VPN IPsec 3(IP ) VPN 2(MAC ) VPN L2TP/ PPTP SSTP OpenVPN OpenVPN L2TPv3/ EtherIP/ SEVP IPsec L3 L2 IPsec IPsec IPsec IPsec MPPE SSL SSL SSL IPsec IPsec SSL ESP/UDP ESP/UDP GRE HTTPS /TCP TCP, UDP TCP, UDP ESP/UDP ESP/UDP HTTPS /TCP HTTP Windows Mac OS X ios Android Linux FreeBSD SEVP =SoftEther VPN ProtocolMPPE =Microsoft Point-to-Point EncryptionESP =Encapsulating Security PayloadGRE =Generic Routing EncapsulationHTTPS =HTTP over SSLVPN IP VPN SSL SSL OS OS VPN VPN 1 VPN Deep Packet Inspection (DPI) TCP SSL SSL SSL 1 VPN VPN OS VPN ios IPsec L2TP PPTP 3 VPN OS VPN SSTP Windows VPN LAN 1 VPN VPN ios VPN L2TP PC VPN mdns 2 OpenVPN L2 VPN VPN 2. 2 VPN VPN VPN VPN VPN L2TP PPTP SSTP Microsoft Windows Routing and Remote Access (RRAS)

Vol. 32 No. 4 Nov. 2015 7 VPN VPN VPN 2 VPN L2TP OpenVPN RRAS OpenVPN Server VPN 1. VPN IP VPN VPN Microsoft RRAS OpenVPN IP VPN 2. 2 VPN 2 L2TPv3 SSTP Cisco Windows PC 3. VPN 2 VPN 2 VPN 2 VPN VPN VPN VPN VPN 2. 3 Web Web Apache HTTP Postfix HTTP IP VPN VPN IP VPN 1 VPN VPN VPN VPN 1. VPN

8 2. VPN VPN 3. VPN (ACL) VPN VPN 3 4 2.2 VPN VPN 3 SoftEther VPN Server 2 VPN 2 VPN VPN SoftEther VPN Server 3.1 Soft- Ether VPN Server VPN 3.2 VPN 3.3 2 3 VPN 3.4 2 3 ARP DHCP 3.5 SoftEther VPN Server 3 PacketiX VPN 4 Cisco IOS Virtual Routing and Forwarding (VRF) VPN 1 Cisco 3. 1 VPN SoftEther VPN Server VPN VPN 1. PC (Windows, Mac OS X, Linux BSD) 2. (ios Android) 3. (Cisco, Extreme Networks, Brocade, F5 Networks, ) SoftEther VPN Server 1. 3 VPN L2TP/IPsec, SSTP OpenVPN L3 2. 2 VPN OpenVPN L2, L2TPv3/IPsec, EtherIP/IPsec SEVP SoftEther VPN Server PPTP PPTP 1 VPN 1 L2TP PPTP PPTP PPTP L2TP [22] IP IPsec 3. 2 SoftEther VPN Server SoftEther VPN Server VPN 1. VPN

Vol. 32 No. 4 Nov. 2015 9 2. Remote Authentication Dial In User Service (RA- DIUS) Microsoft Active Directory (PKI) 3. DHCP SoftEther VPN Server DHCP IP 2 3 IP 4. VPN LAN 2 3 5. 1 IP VPN (NAT) 6. 7. IP IP Quality of Service (QoS) SoftEther VPN Server VPN 1. 1 VPN 5 2. L3 VPN IPv4 IPv6 (ACL) 3. L3 ARP DHCP DHCP DHCP IP 4. 5 VPN SEVP 4 VPN PacketiX VPN Server 3.0 PacketiX VPN 3.0 VPN SEVP SoftEther VPN Server PacketiX VPN 3.0 VPN 3. 3 3 2 SoftEther VPN Server 3.1 VPN 2 3 VPN VPN 3 VPN L2TP 3 2 VPN OpenVPN L2 3 2 1 3 1. 2 ( 1 1) 3 2 2. 3 ()

10 3 2 2 3 3 3 3.2 1 2 2 3 2 3 2 2 VPN L2TPv3 EtherIP 2 VPN L2 2 1 3 2 2 VPN SoftEther VPN Server 1 3 2 1 3 2 3 ( 1 2) 2 3 3. ( 1 3) 2 2 3 3. 4 ARP DHCP 3. 4. 1 L2 3.3 SoftEther VPN Server 3 2 L2 1 1 L2 VPN L2 VPN 3 L2 2 2 2 VPN L2 2

Vol. 32 No. 4 Nov. 2015 11 L2 3 VPN L2 2 ARP DHCP 3. 4. 2 ARP ARP L2 PC OS IP (NIC) 2 Ethernet LAN SoftEther VPN Server ARP 2 (a) PC1 PC2 2 PC 2 PC IP ARP NIC PC IP MAC PC1 3 (IPv4 ) PC2 PC1 PC2 2 PC1 PC2 MAC PC1 PC2 MAC PC1 PC2 IP ARP Request MAC 2 ARP Request PC PC2 ARP Request ARP Reply PC1 ARP Reply PC2 MAC PC1 PC2 MAC ARP Reply PC1 3 PC2 MAC 2 PC1 2 2 PC2 2 (b) VPN L2 SoftEther VPN Server MAC Ethernet 2 IP ARP 2 IP IP ARP IP vnic NIC L2 1 ARP HUB NIC vnic ARP NIC: Network Interface Card vnic: Virtual Network Interface Card 2 2 PC HUB HUB HUB VPN PC PC1 3 VPN VPN 1 PC PC2 2 VPN VPN PC1 PC2 IP PC1 VPN 3 (IP ) PC2 VPN 2 (MAC ) PC1 TUN 3 PC2 TAP 2

12 2 NIC (vnic) PC2 vnic MAC PC1 MAC PC1 HUB L2 L2 MAC PC2 HUB L2 2 (b) PC1 3 (IPv4 ) PC2 PC1 VPN VPN PC1 L2 L3 (IPv4) PC2 MAC L2 PC2 MAC PC2 IP ARP Request MAC MAC PC1 L2 MAC HUB ARP Request PC L2 PC2 VPN ARP PC2 PC1 L2 MAC ARP Reply ARP Reply PC2 MAC ARP Reply HUB PC1 L2 L2 ARP Reply PC2 MAC 3 2 PC2 MAC HUB VPN PC2 L2 PC IP ARP ARP Reply IP MAC 3 ARP SoftEther VPN Server 3 VPN 2 VPN 2 2 VPN 3 VPN L2 ARP Request ARP Reply 3 VPN VPN L2 ARP 2 VPN L2 PC IP ARP ARP 3. 4. 3 DHCP ARP DHCP L2 VPN LAN IP IP LAN DHCP IP 2 VPN VPN 2 VPN IP DHCP DHCP Discovery DHCP Request DHCP DHCP Offer DHCP Acknowledgement vnic IP L2 3 VPN VPN 3 VPN L2 DHCP VPN PC DHCP Discovery DHCP Request DHCP DHCP Offer DHCP Ac-

Vol. 32 No. 4 Nov. 2015 13 knowledgement DHCP IP DHCP 3 VPN IP VPN 3 VPN IP L2TP over IPsec SSTP Internet Protocol Control Protocol (IPCP) OpenVPN L3 OpenVPN 3. 5 2.3 VPN SoftEther VPN Server 2 1 VPN HUB VPN HUB VPN (VPN ) VPN HUB HUB HUB HUB HUB VPN 2 VLAN IaaS VLAN [13] SoftEther VPN Server IaaS VLAN ID SoftEther VPN Server IaaS VPN 4 SoftEther VPN Server SoftEther VPN Server 4.1 4.2 VPN 4.3 4.4 4.5 4. 1 3 SoftEther VPN Server 1. VPN 7 VPN 2. VPN SSL HTTP Pointto-Point Protocol (PPP) IPsec 3. 3.3 3.4 L2 HUB 4 7 VPN 7 VPN HUB SoftEther VPN Server C 390,000 3.1 3.4 VPN 25,000 VPN 2

14 Protocol modules L2TP L2TPv3 Shared protocol modules UI modules SSTP OpenVPN L3/L2 EtherIP PPP IPsec L2 adapter HTTP SSL User interface System modules Platform abstraction 3 SEVP HTTP SSL SEVP listener Core VPN processing modules Logging Virtual switching hub User authentication SEVP Access control SoftEther VPN Server L2TP listener L2 adapter PPP Virtual switching hub OpenVPN L2TP SSTP listener listener listener L2TPv3 IPsec SoftEther VPN Server L2TPv3 listener EtherIP EtherIP listener 4 7 VPN HUB 4. 2 VPN 4. 2. 1 L2TP VPN L2TP over IPsec L2TPv3 over IPsec 1 L2TP VPN 1 L2TP L2TPv3 L2TP L2TP TCP 2 SoftEther VPN Server VPN () L2 IPsec IPC.c 2,100 IPsec IPsec.c, 10,700 IPsec.h, IPsec IKE.c, IPsec IKE.h, IPsec IkePacket.c, IPsec IkePacket.h L2TP IPsec L2TP.c, 2,700 IPsec L2TP.h PPP IPsec PPP.c, 2,800 IPsec PPP.h EtherIP IPsec EtherIP.c, 500 IPsec EtherIP.h SSTP Interop SSTP.c, 1,300 Interop SSTP.h OpenVPN Interop OpenVPN.c, Interop OpenVPN.h 3,100 Windows Vista / 7 / 8 IPsec Win7.c, IPsec Win7.h, IPsec Win7Inner.h, Wfp.c, Wfp.h 1,800 25,000 4. 2. 2 OpenVPN OpenVPN L2 L3 OpenVPN OpenVPN Technologies, Inc. UDP TCP 2 VPN 2 OpenVPN SSL OpenVPN UDP UDP SSL UDP TCP OpenVPN TCP OpenVPN TCP UDP UDP

Vol. 32 No. 4 Nov. 2015 15 OpenVPN OpenVPN L3 OpenVPN L3 IP ( LAN DNS IP ) IP HUB DHCP LAN DHCP IP IP OpenVPN L3 OpenVPN L3 L2 DHCP Discovery DHCP Request HUB OpenVPN OpenVPN (Windows) PPP PPP IP 4 4 +1 OpenVPN L3 OpenVPN IPv4 SoftEther VPN Server VPN IP ( DHCP ) DHCP 4 4 +1 IP DHCP 4 4 +1 IP IP IP IP 4. 2. 3 IPsec IPsec IPsec L2TP L2TPv3 EtherIP IPsec v2 Internet Key Exchange (IKE) v1 IPsec v3 IKE v2 VPN VPN IPsec v2 IKE v1 Negotiation of NAT Traversal in the IKE from RFC 3947 [17] draft-ietfipsec-nat-t-ike-08 [16] a Traffic-Based Method of Detecting Dead IKE from RFC 3706 [11] Encapsulating Security Payload (ESP) ESP over UDP [5] [12] [15] 4. 2. 4 PPP PPP PPP L2TP SSTP PPP 2 Password Authentication Protocol (PAP) Microsoft Challenge Handshake Authentication Protocol version 2 (MS- CHAPv2) Soft- Ether VPN Server RADIUS Microsoft Active Directory VPN PAP VPN VPN IPsec VPN MS-CHAPv2 Microsoft CHAP Microsoft OS Mac OS X ios Android MS-CHAPv2 SoftEther VPN Server Microsoft Active Directory

16 MS-CHAPv2 Windows 2000 Server RRAS LsaLogonUser API MS-CHAPv2 PPP IP VPN OpenVPN L3 PPP L2 DHCP IP IP PPP IPCP LAN DNS IP 4. 2. 5 Windows IPsec Windows Vista Windows Windows IPsec bind IPsec IPsec Windows Windows Filtering Platform Windows IPsec IPsec Windows IPsec 4. 3 VPN 5 SoftEther VPN Server OS OS BSD mbuf Linux skbuf Windows NET BUFFER LIST NET BUFFER SoftEther VPN Server ( 5)

Vol. 32 No. 4 Nov. 2015 17 OS SoftEther VPN Server 2 1 2 VPN OS 4. 4 2.2 VPN VPN SoftEther VPN Server VPN VPN SoftEther VPN Server 3 4. 4. 1 GUI VPN Server Manager (GUI) Windows WINE Linux 6 7 GUI 4. 4. 2 CUI vpncmd (CUI) SoftEther VPN Server OS 4. 4. 3 RPC SoftEther VPN Server Remote Procedure Call (RPC) SoftEther VPN Server RPC 6 SoftEther VPN Server HUB 7 SoftEther VPN Server HUB SoftEther VPN Server RPC GUI CUI VPN GUI CUI RPC 4. 5 SoftEther VPN Server VPN VPN 1 OS OS Windows Linux Mac OS X FreeBSD Solaris

18 Windows UNIX OS UNIX OS 4. 5. 1 malloc realloc free OS API Windows malloc HeapAlloc API 4. 5. 2 Windows Win32 UNIX OS pthread cond ( )mutex futex ( ) 4. 5. 3 TCP UDP API OS Windows IO IO (I/O completion ports) UNIX OS select poll epoll UNIX ioctl connect() accept() 4. 5. 4 wchar t sprintf Windows Native Language Support (NLS) API UNIX iconv 4. 5. 5 OS VPN TCP/IP SoftEther VPN Server 10ms Windows timegettime() API UNIX OS clock gettime() OS 10ms 4. 5. 6 5 SoftEther VPN Server VPN SoftEther VPN Server SoftEther VPN Server 2

Vol. 32 No. 4 Nov. 2015 19 SoftEther VPN Server SoftEther VPN Server VPN 5. 1 3 SoftEther VPN Server VPN VPN SoftEther VPN Server 4 VPN VPN VPN SoftEther VPN Server PPTP IPsec VPN SoftEther VPN 2 VPN 3.1 VPN 2.2 VPN VPN 1. VPN 2. 3 SoftEther VPN Server VPN VPN VPN L2TP/IPsec iphone (ios 4, 5, 6, 7, 8) ipad (ios 4, 5, 6, 7, 8) Android (2, 3, 4) Windows Vista, 7, 8, 8.1, RT Mac OS X ( 10.6, 10.7, 10.8, 10.9) SSTP Windows Vista, 7, 8, 8.1, RT OpenVPN L3 OpenVPN Client 2.2 for Linux OpenVPN Client 2.2 for Windows OpenVPN Connect for ios OpenVPN Connect for Android OpenVPN L2 OpenVPN Client 2.2 for Linux OpenVPN Client 2.2 for Windows OpenVPN Connect for ios OpenVPN Connect for Android L2TPv3/IPsec Cisco 892J, Cisco 1812J, IIJ SEIL x86 EtherIP NEC IX2015 SEVP SoftEther VPN Client for Windows SoftEther VPN Client for Linux 5. 3 SoftEther VPN Server SoftEther VPN Server 2013 3 2014 9 242,000 SoftEther VPN Server DNS (DDNS) DDNS 8 9 SoftEther VPN Server IP 1 (26 %) 74 % () 5. 2 2.3 VPN 3.5 SoftEther VPN Server VPN HUB VLAN VPN SoftEther VPN Server 5. 4 SoftEther VPN Server SoftEther VPN Server VPN VPN 5. 4. 1 3 PC PC Intel Xeon E3-1230 3.2GHz CPU 16GB 1 10 Gigabit Ethernet NIC (Intel 10 Gigabit CX4 Dual Port Server Adapter 2 CX4 ) PC OS

20 4 VPN VPN VPN 3(IP ) VPN VPN IPsec L2TP / PPTP SSTP OpenVPN IPsec L3 2(MAC ) VPN OpenVPN L2TPv3 / EtherIP / SEVP L2 IPsec IPsec Microsoft RRAS Mac OX X Server OpenVPN PacketiX VPN 3.0 SoftEther VPN Server Cisco Extreme Networks Brocade F5 Networks ( ) 300,000 250,000 200,000 150,000 100,000 50,000 NIC1 NIC2 NIC1 NIC2 0 12/08 12/10 12/12 13/02 13/04 13/06 13/08 13/10 13/12 14/02 14/04 14/06 14/08 NIC1 NIC2 8 SoftEther VPN Server NIC: Network Interface Card (Intel 10GbE CX4 Dual Port Server Adapter) 10 3 PC Hong Kong, 4,472 Canada, 5,126 France, 5,218 India, 5,804 Korea, 5,905 Russia, 6,542 Germany, 7,184 Other 187 regions, 61,926 Taiwan, 8,546 China, 24,337 Japan, 63,635 United States, 36,060 United Kingdom, 8,866 9 SoftEther VPN Server Windows Server 2008 R2 x64 Linux (OpenVPN ) Linux Kernel 2.6.32 (x64) Windows Linux TrafficServer / TrafficClient iperf [7] iperf 32 TCP 16 16 SoftEther VPN Server 10 3 PC VPN PC1 PC2 PC3 9.95Gbps PC1 CPU 10Gbps CPU

Vol. 32 No. 4 Nov. 2015 21 5 VPN VPN VPN VPN VPN VPN L2TP IPsec (AES128-CBC) Microsoft RRAS (Windows Server 2008 R2 ) Windows Server 2008 R2 L2TP IPsec (AES128-CBC) xl2tpd 1.3.6 (Linux 2.6.32 ) xl2tpd 1.3.6 (Linux 2.6.32 ) SSTP RC4 Microsoft RRAS (Windows Server 2008 R2 ) Windows Server 2008 R2 OpenVPN AES128-CBC OpenVPN 2.2.2 (Linux 2.6.32 ) OpenVPN 2.2.2 SEVP RC4 SoftEther VPN Server SoftEther VPN Server 5. 4. 2 VPN 5 VPN SoftEther VPN Server VPN SoftEther VPN Server 4 VPN VPN Windows Linux 5 OpenVPN OpenVPN L3 Windows OpenVPN Technologies, Inc. OpenVPN Windows UDP 100Mbps Linux L2TP OpenVPN xl2tpd 1.3.6 (Linux 2.6.32 ) Windows Server 2008 R2 5. 4. 3 11 2 1. A. 1 VPN LAN 1 PC VPN ( 11 (a)) PC1 VPN PC2 VPN PC3 VPN PC1 PC1 VPN PC2 VPN VPN client VPN server VPN client VPN client VPN server 11 LAN 2. B. 2 VPN ( 11 (b)) PC1 VPN PC2 PC3 VPN 2 VPN

22 B1 B2 VPN VPN VPN OpenVPN Linux L2TP/IPsec SEVP Linux SSTP SoftEther VPN Server SSTP OpenVPN 5. 4. 4 12 A VPN VPN LAN PC VPN L2TP SoftEther VPN Server Windows RRAS SSTP Windows RRAS SoftEther VPN Server RRAS VPN Windows SoftEther VPN Server SSTP SEVP L2TP SSL RC4 OpenVPN SoftEther VPN Server OpenVPN 12% OpenVPN OS (tun ) OpenVPN 3 SoftEther VPN Server 3.3 3 2 12% 13 B1 VPN 2 VPN VPN L2TP SSTP SEVP A OpenVPN SoftEther VPN Server (Mbps) 1200 1000 800 600 400 200 0 A. VPN LAN PC ( VPN ) L2TP SSTP OpenVPN SEVP VPN VPN So Ether VPN Server 12 1 VPN LAN 1 PC VPN (Mbps) 1200 1000 800 600 400 200 0 B1. VPN VPN ( VPN ) L2TP SSTP OpenVPN SEVP VPN VPN So Ether VPN Server 13 VPN 2 VPN VPN (Mbps) 800 700 600 500 400 300 200 100 0 B2. VPN VPN ( VPN ) L2TP-SSTP L2TP-SEVP SSTP-SEVP OpenVPN-L2TP OpenVPN-SEVP VPN VPN So Ether VPN Server 14 VPN 2 VPN VPN 15 OS SoftEther VPNServer VPN

Vol. 32 No. 4 Nov. 2015 23 B1 VPN 2 VPN AES OpenVPN VPN AES SoftEther VPN VPN 2 AES 14 B2 VPN 2 VPN VPN B1 SoftEther VPN Server 2 VPN L2TP SSTP SoftEther VPN Server RRAS 7% 2 VPN SoftEther VPN Server SoftEther VPN Server Windows Linux Mac OS X FreeBSD Solaris 15 Windows Server 2003 R2 x64 Windows Server 2008 R2 x64 Linux 2.6.32 CentOS 6 VPN A SEVP Windows Server Linux Windows 6% 5. 5 SoftEther VPN Server 5. 5. 1 VPN Gate Server SoftEther VPN Server VPN Gate [25] VPN Gate Great Firewall of China VPN Gate Tor VPN Tor [4] VPN Gate TCP/UDP VPN Gate Windows PC VPN Gate Server VPN Gate Server SoftEther VPN Server VPN Gate Server L2TP SSTP OpenVPN L3 SEVP VPN Gate 2013 3 2014 9 8,000 32 2013 3 2014 9 7.8 VPN 12.7 32 4,469 VPN 2.5 32 VPN Gate Server 1 SoftEther VPN Server VPN Gate Server VPN Gate Server 5. 5. 2 HUB SoftEther VPN Server 8 Soft- Ether VPN Server Web HUB

24 HUB 2006 10 SoftEther VPN Server PacketiX VPN Server 2014 9 HUB 141,270 4 HUB 2 1 4.4.3 RPC 8 3.2 1 2014 9 2,300 HUB 3,000 VPN 6 7 1 375 VPN HUB 2006 10 1 VPN SSL CPU VPN 1 SSL SSL 5. 5. 3 SoftEther VPN Server PacketiX VPN Server Version 2.0 2005 12 IPv6 Version 3.0 2010 3 SoftEther VPN Server VPN Version 4.0 2013 7 8 2014 9 5,500 PacketiX VPN Server 5.3 SoftEther VPN Server 5. 5. 4 PacketiX VPN Server 4.0 VPN 9 CPU Linux PacketiX VPN Server 6 5 HUB VPN 1 HUB VPN 1 2 HUB VPN 2 1 HUB VPN 3 1 HUB VPN 4 50 7 VPN 1 HUB 1 VPN VPN VPN HUB VPN 2 5. 6 ISP PacketiX VPN Server Internet Service Provider (ISP) VPN VPN 10 VPN 8 http://www.softether.jp/1-product/11-vpn/ 9 http://openblocks.plathome.co.jp/productsebpacke tix, http://www.bias.jp/product/packetix\ on\ bias/ 10 http://www.interlink.or.jp/service/myip/, http://vpn.kozukata.co.jp/

Vol. 32 No. 4 Nov. 2015 25 IP PacketiX VPN Server 4.4.3 RPC ISP ISP ISP PacketiX VPN Server 1 N IP HUB N 2 HUB 1,000 N PacketiX VPN Server 6 6. 1 SoftEther 1.0 SoftEther 1.0 2003 2013 12 VPN SoftEther 1.0 VPN L2TP/IPsec PPTP HTTPS (HTTP over SSL) LAN HTTP HTTPS PC Windows Remote Desktop Protocol (RDP) P2P HTTP HTTPS VPN SoftEther 1.0 (IPA) 2013 12 1 SoftEther IPA IPA IPA 12 24 SoftEther 12 27 2004 SoftEther 1.0 SoftEther 1.0 11 SoftEther 1.0 VPN HTTPS Linux SoftEther 1.0 SoftEther Alert 12 SoftEther 1.0 SoftEther Block 13 SoftEther 1.0 HTTPS HTTPS 14 6. 2 PacketiX VPN 2.0 SoftEther 1.0 VPN 2004 11!!, PC Explorer 2004 3 p. 40 12 http://www2.softether.jp/jp/vpn2/old/alert/ 13 http://www2.softether.jp/jp/vpn2/old/block/ 14 TCP TCP 100%.

26 SoftEther SoftEther 1.0 VPN PacketiX VPN 2.0 2005 12 SoftEther 1.0 VPN PacketiX VPN 2.0 6. 3 PacketiX VPN 3.0 2006 2008 4 PacketiX VPN 2.0 VPN VPN ISP 10ms 20ms ISP NTT FTTH B 3ms IPv6 IPv4 VPN PacketiX VPN 2.0 IPv6 PacketiX VPN 3.0 2009 1ms Ethernet 2006 Ethernet VPN B PacketiX VPN 3.0 IPv6 6. 4 VPN Gate PacketiX VPN 3.0 University of Tsukuba VPN (UT-VPN) 2010 5 15 UT-VPN Great Firewall 2012 7 UT-VPN Web Great Firewall VPN VPN Gate VPN Gate PC VPN Gate SEVP L2TP OpenVPN SSTP VPN VPN Gate 1 VPN UT-VPN Web VPN SoftEther VPN Server VPN 15 http://utvpn.tsukuba.ac.jp/

Vol. 32 No. 4 Nov. 2015 27 VPN Gate 2014 9 40 VPN Gate SoftEther VPN Client VPN Gate Client VPN Gate VPN VPN VPN VPN Gate Client SoftEther VPN SoftEther VPN Server SoftEther VPN Server 5.3 6. 5 SoftEther 1.0 VPN Gate VPN Gate VPN VPN Gate SoftEther VPN Server SoftEther VPN Server SoftEther VPN Server 7 Click [23] Click C++ element Click [1] [19] [20]VPN Click VPN [10] [14] OpenVPN VPN [6] [25] OpenVPN OpenVPN L3 L2 VPN SoftEther VPN Server OpenVPN VPN Soft- Ether VPN Server OpenVPN L3 L2 L2TP SSTP L2TPv3 EtherIP SEVPN VPN SoftEther VPN Server SoftEther VPN Server SoftEther VPN Server VPN SEVP SEVP HTTP/SSL MAC SEVP 2003 SoftEther 1.0 [24] Microsoft SSTP HTTP/SSL 2006 SEVP P2P VPN

28 [3] [28] SoftEther VPN Server VPN P2P VPN SoftEther VPN Server 3.2 8 VPN 2 SoftEther VPN Server 1 SoftEther VPN Server VPN VPN VPN L2TP over IPsec SSTP OpenVPN L3 L2 EtherIP over IPsec L2TPv3 over IPsec SoftEther VPN Protocol (SEVP) PC VPN VPN VPN VPN VPN 2 VPN HUB 1 VPN HUB SoftEther VPN Server 2 3 VPN 2 VPN 3 L2 3 2 L2 OS PC OS ARP NIC MAC VPN VPN SoftEther VPN Server Microsoft Windows RRAS 2 VPN VPN SoftEther VPN Server VPN SoftEther VPN Server 2013 3 2014 1 GNU General Public License (GPL) Version 2 SoftEther VPN Server 2014 9 242,000 SoftEther VPN Server PacketiX VPN Server 3.0 PacketiX VPN Server 4.0 SoftEther VPN Server PacketiX VPN Server 5,500 SoftEther VPN Server SoftEther VPN Server SEVP VPN SoftEther VPN Client ios Android SoftEther VPN Server Multiple Protocol Label Switching (MPLS) Virtual Private LAN Service (VPLS) Ethernet over IP SoftEther VPN Server

Vol. 32 No. 4 Nov. 2015 29 () ( ) () SoftEther VPN Server [ 1 ] Chen, B. and Morris, R.: Flexible Control of Parallelism in a Multiprocessor PC Router, in USENIX Annual Technical Conference, 2001, pp. 333 346. [ 2 ] Cheshire, S. and Krochmal, M.: Multicast DNS, RFC 6762, 2013. [ 3 ] Deri, L. and Andrews, R.: N2N: A Layer Two Peer-to-Peer VPN, Resilient Networks and Services, Springer Lecture Notes in Computer Science 5127, pp. 53 64, 2008. [ 4 ] Dingledine, R. Mathewson, N. and Syverson, P.: Tor: the Second-Generation Onion Router, in the 13th conference on USENIX Security Symposium, 2004, pp. 303 320. [ 5 ] Eastlake, 3rd D. E.: Cryptographic Algorithm Implementation Requirements for Encapsulating Security Payload (ESP) and Authentication Header (AH), RFC 4305, 2005. [ 6 ] Feilner, M.: OpenVPN: Building and Integrating Virtual Private Networks, Packt Publishing, 2006. [ 7 ] Gates, M. Warshavsky, A., Dugan, J. et al.: iperf - Perform Network Throughput Tests, http: //iperf.sourceforge.net/, 2010. [ 8 ] Hamzeh, K., Pall, G., Verthein, W., Taarud, J., Little, W. and Zorn, G. : Point-to-Point Tunneling Protocol (PPTP), RFC 2637, 1999. [ 9 ] Housley, R. and Hollenbeck, S.: EtherIP: Tunneling Ethernet Frames in IP Datagrams, RFC 3378, 2002. [10] Howarth, P., Cameron, J. and Gillham, M.: Poptop - An Open Source Implementation of a PPTP Server, http://sourceforge.net/projects/ poptop/. [11] Huang, G., Beaulieu, S. and Rochefort, D.: A Traffic-Based Method of Detecting Dead Internet Key Exchange (IKE) Peers, RFC 3706, 2004. [12] Huttunen, A., Swander, B., Volpe, V., DiBurro, L. and Stenberg, M. : UDP Encapsulation of IPsec ESP Packets, RFC 3948, 2005. [13] IEEE 802.1Q: IEEE Standards for Local and Metropolitan Area Networks: Virtual Bridged Local Area Networks, 2003. [14] Katalix Systems Ltd: The manual page of openl2tpd. [15] Kent, S. : IP Encapsulating Security Payload (ESP), RFC 4303, 2005. [16] Kivinen, T., Huttunen, A., Swander, B. and Volpe, V.: Negotiation of NAT-Traversal in the IKE, in Internet Drafts draft-ietf-ipsec-natt-ike-08, 2004. [17] Kivinen, T., Huttunen, A., Swander, B. and Volpe, V.: Negotiation of NAT-Traversal in the IKE, RFC 3947, 2005. [18] Lau, J., Townsley, M. and Goyret, I. (eds.): Layer Two Tunneling Protocol - Version 3 (L2TPv3), RFC 3931, 2005. [19] Louati, W., Jouaber, B. and Zeghlache, D.: Configurable Softwarebased Edge Router Architecture, Computer Communications,Vol. 28, No. 14(2005), pp. 1692 1699. [20] Mandke, K., Choi, S.-H., Kim, G., Grant, R., Daniels, R.C., Kim, W., Heath, R.W. Jr. and Nettles, M.S.: Early results on Hydra: A Flexible MAC/PHY Multihop Testbed, in Vehicular Technology Conference, 2007, pp. 1896 1900. [21] Microsoft: Secure Socket Tunneling Protocol (SSTP), http://msdn.microsoft.com/en-us/ library/cc247338.aspx, 2013. [22] Microsoft: Unencapsulated MS-CHAP v2 Authentication Could Allow Information Disclosure, https://technet.microsoft.com/library/security/ 2743314.aspx, 2012. [23] Morris, R., Kohler, E., Jannotti, J. and Kaashoek, F.: The Click Modular Router, in the seventeenth ACM symposium on Operating systems principles, 1999, pp. 217 231. [24] : SoftEther,, Vol. 45, No. 10(2004), pp. 1057 1062. [25] Nobori D. and Shinjo, Y.: VPN Gate: A Volunteer-Organized Public VPN Relay System with Blocking Resistance for Bypassing Government Censorship Firewalls, in 11th USENIX NSDI, 2014, pp. 229 241. [26] OpenVPN Community: OpenVPN Community Software. http://openvpn.net/index.php/opensource/overview.html. [27] Townsley, W., Valencia, A., Rubens, A., Pall, G., Zorn, G. and Palter, B.: Layer Two Tunneling Protocol L2TP, RFC 2661, 1999. [28] Wolinsky, D. I., Lee, K., Boykin, P. O. and Figueiredo, R.: On the Design of Autonomic, Decentralized VPNs, in 6th Intrenational Conference on Collabrative Computing: Networking, Applications and Worksharing (CollaborateCom), pp. 1 10, 2010. 2007 2013 2004

30 () 1988 1993 1995 2003 2004 2007 () ACM IEEE 1996 2001 2013 () ACM-SIGMOD-JAPN