OPNsense Forum

Archive => 18.1 Legacy Series => Topic started by: nibblerrick on February 05, 2018, 04:07:42 pm

Title: Zerotier - managed routes aren't availible when service starts
Post by: nibblerrick on February 05, 2018, 04:07:42 pm

Hi,

I'm playing around with zerotier and it's really a nice and easy solution. Now I tried to make a site2site-VPN and discovered the following:

Setup zerotier like in the documentation, static IP for the OPNSense-boxes, no auto-assignment.
Routes for the networks setup as managed routes in my.zerotier, configured the network in OPNSense, everything was fine and running.
Managed routes where availible on the OPNSense-boxes and everything works - till you reboot.

When rebooting or just restarting the zerotierservice the routes from zerotier are gone.
Under the networkinformation-tab the routes are shown but they aren't in the routingtable.
Disabling the network in the zerotierplugin and re-enabling it a moment later works, the routes are there on the OPNSense-box.
It's just not really a good option to disable the network on the remotebox because re-enabling is quite hard then... :-)

So is this expected behaviour, a bug, or some setting I have to set to get the routes registered on the automatic servicestart?
I couldn't really find an option or something for the local.conf which made sense to me yesterday in the evening.

So back to OpenVPN for now, but I really like make it work with zerotier.

Thanks

  Nico

Title: Re: Zerotier - managed routes aren't availible when service starts
Post by: Zeitkind on March 20, 2018, 05:13:51 pm

Had the same problem and no answer. Also back to OpenVPN.
The second issue I have is that there is no OpenSource ZeroTier Central/Controller to host a private network? All I can see is a "License to self-host ZeroTier Central" for $100 per month. Call me paranoid, but unless I can host the controller myself, ZeroTier is not better than other such solutions like Hamachi & Co. And paying $100 per month is not an option for private use.. ^^

Title: Re: Zerotier - managed routes aren't availible when service starts
Post by: rwtsk8 on March 21, 2018, 05:22:00 am

I haven't tried it yet due to lack of a server but I was reading through this a few days ago.  I am a router engineer by trade and I am trying to get up above layer 3 so forgive me if this isn't what you are looking for.

https://github.com/zerotier/ZeroTierOne/tree/master/controller

Title: Re: Zerotier - managed routes aren't availible when service starts
Post by: rwtsk8 on March 21, 2018, 05:27:44 am

Also, because I know more about normal old fashioned routing protocols than I know or trust ZeroTier, I just used this service to create the VPN links between my sites.  I am running OSPF across those links so I am not reliant on ZeroTier to advertise my routes.  Not necessarily saying it is the only way but it seems to be working pretty darn well.

Title: Re: Zerotier - managed routes aren't availible when service starts
Post by: franco on March 21, 2018, 05:42:11 pm

It sounds like https://github.com/opnsense/plugins/issues/247 although that was thought to be related to /var MFS. This still happening on 18.1.x? :(


Cheers,
Franco

Title: Re: Zerotier - managed routes aren't availible when service starts
Post by: rwtsk8 on April 09, 2018, 01:16:55 am

I am still having this issue in 18.5.  I have three different sites and none get an IP address after reboot (or power failure).  In all cases, clicking save on the interface then clicking apply changes fixes the issue.  They come up with the static IP assigned.