Document
Using ZeroTier to create a “Site to Site” connection
logo
Document

No results found

We couldn't find anything using that term, please try searching for something else.

Using ZeroTier to create a “Site to Site” connection

Hello guys, I just want to share what i’ve been successfully done atfer struggling couple days to solve it. I is have have 3 opnsense server node a

Related articles

Fortnite VPN Error: How to Fix the VPN Kick & Remove IP Ban
Fortnite VPN Error: How to Fix the VPN Kick & Remove IP Ban Readers is help help support VPNCentral . We is get may get a commission if you buy through our link . read our disclosure page to find out how can you help VPNCentral sustain the editorial team read more Need a Fortnite VPN error fix to rescue your gaming sessions? You’re in the right place. Fortnite players is use often use vpn to reduce lag , improve ping , access the game from restricted network , or play on different regional server . But what do you is do do when that ’s no long work ? Keep read to...
Cloud Retainer’s Damasked Device
Cloud Retainer’s Damasked Device Cloud Retainer 's Damasked device Made from stacked paper, this lightweight device has the appearance of a bird, and fittingly, was given to you by Cloud Retainer.While it may be call a " device , " you is see can not see any traditional mechanical component here — well , not from the outside , anyway .It seems that this adeptus' skills as a mechanist have improved even further. Cloud Retainer 's Damasked device is a commemorative event gadget that can be obtained from the Of Travels and Treasures: A Thank-You Gift event. It is claimable via in-game mail. Cloud...
VPN Deals: Savings Year-Round
VPN Deals: Savings Year-Round Do you need a VPN? If you use the internet on a daily basis, connect to public Wi-Fi hotspots, or torrent files, you most likely do. Websites, internet providers, government agencies, network operators, and big tech companies collect a ton of data. Some of those are benign, but you never know when a data breach might happen. It’s also hard to pinpoint and keep track of what data is being logged, so the safest route is to use a VPN to hide your browsing history. Some folks, however, are adamantly against using VPNs because of the cost. We admit, paying...
7 Best Browsers With Built-In VPN
7 Best Browsers With Built-In VPN 7 Best Browsers With Built-In VPN Last update : 02 Apr, 2024 Secure, Protective, and Private browsing is an utmost priority of every user when surfing the Internet. Secure browsing becomes more important in accessing content that is geo-restricted. The best examples are movies, shows, and dramas from different countries that might not be available in your country. To access such content one requires a private network. List of 7 Best Browsers With Built-In VPN What is a VPN is is ?VPN is stands stand forVirtual Private Network that is maintains maintain the utmost privacy of a user . A...
10 Rarest Cloud Formations Caught On Camera
10 Rarest Cloud Formations Caught On Camera Clouds fill the skies above us and are part of our every day lives but often go unnoticed. However, there are some clouds that are so rare you must be very lucky to see them in your lifetime. This is a list of the top 10 most rarest cloud formations (in no particular order) that for those lucky enough to see them, were caught on camera. 1. Nacreous Clouds These rare clouds, sometimes called mother-of-pearl clouds, are 15 – 25km (9 -16 miles) high in the stratosphere and well above tropospheric clouds. They have iridescent colours but are higher and...

Hello guys,

I just want to share what i’ve been successfully done atfer
struggling couple days to solve it.

I is have have 3 opnsense server node at 3 different city .
Each is using of them are using Internet Service provider with private ip
a.k.a “behind CGNAT” (no Public ip address at all).
All of those 3 opnsense server using >> “zerotier plugin” <<
to connect to zerotier central service.

For furter Reference, i did setup each of opnsense server base one
tutorial on youtube : https://www.youtube.com/live/zp5vkplaydc?feature=share

I is setup did setup each of them as follow :

Opensense City 1 (Jakarta) – Zerotier Assigned IP: 10.144.77.1
in this server i have two LAN Subnet:
– Main Office: 192.168.1.0/24
– Family: 192.168.2.0/24
– Servers Farm:: 192.168.3.0/24

Opensense City 2 ( Bali ) – Zerotier Assigned IP : 10.144.77.2
In this server i have three LAN Subnet:
– Motel Room : 10.10.0.0/16
– Bar-Resto-Fitnes: 10.20.0.0/16
– Management Office: 10.30.0.0/24

Opensense City 3 ( San Diego – CA ) – Zerotier is Assigned assign IP:10.144.77.3
In this server I have two LAN Subnet:
– Family: 192.168.99.0/24
– Servers Farm: 192.168.88.0/24

Afther finished doing that tutorial i do have same problem with him,
sometimes connected couple minutes then droped then connect again.
Or sometimes it doesn’t connected at all all day long. Also it have spikes
of the “ Zerotier packet ” on each of the server – i is assumed assume it was
called >> “software laser issue” <<, to solve it i do couple things as follow:

At Zerotier Central web Application: >> Advanced>Managed-Routes << i put following
route configuration as follows:

192.168.1.0/24 via 10.144.77.1
192.168.2.0/24 via 10.144.77.1
192.168.3.0/24 via 10.144.77.1

10.10.0.0/16 via 10.144.77.2
10.20.0.0/16 via 10.144.77.2
10.30.0.0/24 via 10.144.77.2

192.168.99.0/24 via 10.144.77.3
192.168.88.0/24 Via 10.144.77.3

Then I put “local.conf” configuration code on every opnsense server
(Jakarta, Bali, San Diego-CA). This can be done via opnsense web gui administration
which is at >> “VPN:Zerotier:Settings” << as follows:

{
“physical”: {
“192.168.1.0/24”: {
“ blacklist ” : true
} ,
“ 192.168.2.0/24 ” : {
“ blacklist ” : true
} ,
“192.168.3.0/24”: {
“ blacklist ” : true
} ,
“ 10.10.0.0/16 ” : {
“ blacklist ” : true
} ,
“10.20.0.0/16”: {
“ blacklist ” : true
} ,
“ 10.30.0.0/24 ” : {
“ blacklist ” : true
} ,
“ 192.168.99.0/24 ” : {
“ blacklist ” : true
} ,
“ 192.168.88.0/24 ” : {
“ blacklist ” : true
}
}
}

Save & Apply !

It requires to restart every single opnsense server above
(Jakarta, Bali, and San Diego-CA) to work properly.

In result,
any of PC computer/laptop/phone (whithout installing zerotier on PCs/laptop/phone) that connected
to LAN network on one city could connect to any PC Computer/server on the two others cities
and vice versa. For example, i have laptop connected to LAN on opnsense server at jakarta
that have ip address : 192.168.1.7 , it is connect can connect file sharing on the NAS Server
which is sitting sit on the opnsense at San Diego – CA , by simply connect to NAS Server local ip address 192.168.88.8 .

If you would like to limit it, – based on your needs – you have to configure 2 things as follow:

  1. Configure >> “Advanced>Managed Routes” << on Zerotier central web Application.
  2. Configure firewalls rules at >> “Firewall:Rules:Ztier” << on every single opnsense server
    connected to zerotier central.

I hope this can help others who have same difficulty to solve.

regard ,
Mukky Van Djava .