OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • English Forums »
  • Virtual private networks »
  • Zerotier, CARP clusters & multisite
« previous next »
  • Print
Pages: [1]

Author Topic: Zerotier, CARP clusters & multisite  (Read 1146 times)

random1104

  • Jr. Member
  • **
  • Posts: 79
  • Karma: 0
    • View Profile
Zerotier, CARP clusters & multisite
« on: March 09, 2023, 01:10:46 am »
Hello!

How are you doing?. I have an scenario and I wonder what's the most straightforward solution.

Having several sites to connect, I'm thinking about deploying OPNsense in a small box on remote site and a two node cluster at the main office with zerotier connecting everything.

Now regarding routing:

- should I use no routing on zerotier + BGP in OPNsense, or should I use the embedded routing of zerotier?
- static routing setup on ZT is centralized and simple, but won't cover CARP scenarios with a gateway failover.

Regarding filtering:
- should I allow everything between gateways and filter everything in OPNsense?
- should I allow everything in OPNsense and filter everything in Zerotier?
- so a mix?, Filtering different things in both?
Logged

random1104

  • Jr. Member
  • **
  • Posts: 79
  • Karma: 0
    • View Profile
Re: Zerotier, CARP clusters & multisite
« Reply #1 on: March 16, 2023, 01:23:29 pm »
Hello!,

I've been looking for alternatives and would also like to hear from other SDWAN solutions that would play nice with OPNsense:

Tailscale/Headscale
Nebula
Netbird
Netmaker
Logged
  • Print
Pages: [1]
« previous next »
  • OPNsense Forum »
  • English Forums »
  • Virtual private networks »
  • Zerotier, CARP clusters & multisite
 

OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2