with this works every things work fine : my clients can access the wifi and i can use normal internet
softether client also connected but i cant forward the wifi client traffic over the softether vpn .
This vpn client is not behaving as expected and there's a chance you won't be able to use it the way you want (as the guide says).
Try the following workaround:
Disable the “Use default gateway” option again.
Set a metric for the wan (modem) interface.
Make that static route permanent using uci or luci.
Try to connect to the vpn server. If you succeed run the following:
ip route add default via 192.168.30.1 dev vpn_filter
Run ip route show default. You should see two default gateways:
default via 192.168.30.1 dev vpn_filter
default via 192.168.1.1 dev eth0 proto static src 192.168.1.4 metric 10
If it starts working, it should be possible to add/delete the higher priority default route automatically using a hotplug script (when the vpn interface goes up/down).
@pavelgl Thanks for reply
i make single ip route to softether server permanent . ( i have ping to server)
when i add new default route ( ip route add default via 192.168.30.1 dev vpn_filter ) softether client disconnected and then table route going to reset as default and this new default route disappear .
actually i run this before on raspbian os ( use raspbian as access point with softether client) and it worked fine but raspbian has packet loss . In rasbian when i add new default route network manager clear this new route .
I totally sure we need some firewall rules to make it right . This is the iptable command i used on raspbian os to make this thing work according to this tutorial :
sudo iptables -t nat -A POSTROUTING -o tun0 -j MASQUERADE
sudo iptables -A FORWARD -i tun0 -o wlan0 -m state --state RELATED,ESTABLISHED -j ACCEPT
sudo iptables -A FORWARD -i wlan0 -o tun0 -j ACCEPT
But i'm not expert in network things and i don't know how to make this rules in Luci