Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
Tutorials and FAQs
»
Need help changing startup behavior of a plugin
« previous
next »
Print
Pages: [
1
]
Author
Topic: Need help changing startup behavior of a plugin (Read 6604 times)
insomniac2k2
Newbie
Posts: 4
Karma: 1
Need help changing startup behavior of a plugin
«
on:
January 31, 2020, 06:35:14 pm »
Hello,
New to the forums and I hope that I am posting in the correct place. Below is the rundown of my present configuration and dilema:
I have been using zerotier successfully for 3-4 months now on a single router multi-WAN configuration. My final step is to run a HA router configuration w/ zerotier. As of present, i have HA working perfectly, but i cannot figure out how to get zerotier to work with it.
Here is what works:
Both HA nodes can connect to the zerotier network. If I IP them differently, I can simply change routes in my.zerotier to manualy select which router i want to route traffic to. Though this is not sufficient for HA standards. It must be able to recover on its own.
In order to do this seamlessly, I have created a CARP address and associated it to the zerotier interface. This works! BUT, it only works if I go into zerotier and restart the plugin (or disconnect and reconnect) after a fresh boot. This tells me that I need to have the zerotier plugin start VERY last after boot. Long after the CARP VIP comes up. OR, at least have something that restarts the zerotier plugin sometime after a fresh boot.
If I am going about this all wrong, please feel free to pitch another direction. This is the best approach that I have come up with over that last few weeks of troubleshooting.
thanks!
Logged
franco
Administrator
Hero Member
Posts: 17660
Karma: 1611
Re: Need help changing startup behavior of a plugin
«
Reply #1 on:
February 01, 2020, 07:36:08 am »
Hi,
Long story short: zerotier needs to be adjusted to act correctly under CARP situations. OpenVPN has a patch for this when you have it listen on a CARP address. We also built something similar for FRR plugin. So there is no easy way to resolve this.
AFAIK, the zerotier plugin author is MIA.
Cheers,
Franco
Logged
insomniac2k2
Newbie
Posts: 4
Karma: 1
Re: Need help changing startup behavior of a plugin
«
Reply #2 on:
February 03, 2020, 05:10:43 pm »
Thank you for this information. Although it is not what i wanted to hear
I expected that this was the case. It's too bad really, because i feel that zerotier is a great product and works phenomenal as a SDWAN once configured correctly. Presently, this will not sway me from rolling with a single router/multi-wan configuration. It would just be nice to run HA OPNSense routers as well.
I guess my only real concern is whether or not we will have a zerotier plugin in the future (If the author is no longer participating).
Logged
franco
Administrator
Hero Member
Posts: 17660
Karma: 1611
Re: Need help changing startup behavior of a plugin
«
Reply #3 on:
February 03, 2020, 09:03:41 pm »
Isn't Zerotier kind of declining as well? I don't use it, but I can tell that interest is slowly but steadily declining in the community for one reason or another.
Cheers,
Franco
Logged
insomniac2k2
Newbie
Posts: 4
Karma: 1
Re: Need help changing startup behavior of a plugin
«
Reply #4 on:
February 05, 2020, 04:13:28 pm »
It may be an unfortunate truth, but I can say that from personal experience, it seems that there may be a decline because people don't understand enough to make it work in a routed environment. I can tell you that after trial and error, it works very well as a SDWAN solution, and its pretty much plug and play once its sorted. Personally, i feel that if there was better understanding of zerotier, it would become very popular, very fast.
On that note, when and if i get some spare time, I may do a brain dump of everything I have learned and implemented. As it may be a good preservation piece to drive a bit more adoption and awareness
Logged
mimugmail
Hero Member
Posts: 6766
Karma: 494
Re: Need help changing startup behavior of a plugin
«
Reply #5 on:
February 05, 2020, 04:43:50 pm »
It's declining because of this:
https://www.zerotier.com/pricing/
ZeroTier’s software is open source and free to use for most purposes including personal use, internal use within a business or academic institution, and evaluation for uses that require commercial licensing.
This means it's not free if you partner with other companies.
Doesn't scale really well
Logged
WWW:
www.routerperformance.net
Support plans:
https://www.max-it.de/en/it-services/opnsense/
Commercial Plugins (German):
https://opnsense.max-it.de/
insomniac2k2
Newbie
Posts: 4
Karma: 1
Re: Need help changing startup behavior of a plugin
«
Reply #6 on:
February 05, 2020, 07:55:28 pm »
I don't mean to sound insulting or anything, but I disagree. Most companies (In my experience), would never open up their infrastructure (SDWAN,DMVPN, etc) to other companies. Partner or not. It would be a controlled portal of sorts. There is just too much liability there.
Unless I just do not understand their licensing as well as i think I do, it would be a perfectly viable solution for any company that would like to have a very easy multi-wan, SDWAN solution. This would scale for free up to 100 routers, and then shift to a paid solution. Which in my opinion, is still very reasonable.
Am I not understanding your point, or the present licensing model?
Logged
chrisarzu
Newbie
Posts: 1
Karma: 0
Re: Need help changing startup behavior of a plugin
«
Reply #7 on:
April 12, 2021, 12:44:58 am »
@insomniac2k2 I'm precisely trying to do the same thing. I'm running 2 opnsense VMs in HA in my home network, each one of them running in a separate host of my xcp-ng cluster.
I'm able to get to each one of the zerotier interfaces on each firewall, but if would be ideal if I can get to the VIP instead. What did you end up doing?
Under the zerotier plugin details, the maintainer shows as dharrigan@gmail.com, is that the person that would be able to assist with this (do you happen to know Franco?)
I love opnsense by the way, and decided to go with it instead of the other one out there specifically because opnsense had this zerotier plugin, the other solution doesn't.
Logged
mgiammarco
Jr. Member
Posts: 56
Karma: 3
Re: Need help changing startup behavior of a plugin
«
Reply #8 on:
March 31, 2022, 10:50:21 am »
Hi,
I resurrect this old thread because I am doing research and development on this topic too.
First I ask a question: it seems to me zerotier package is supported in OPNsense because it gets regular updates.
Then have you tried "prevent interface removal" option in zerotier interface?
After that I need zerotier in HA too.
I reached the point to put:
- one zerotier client in master, one in slave
- ospf routing that promotes routes to current master.
I see that you want to put a virtual ip... what is your use case?
Thanks,
Mario
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
Tutorials and FAQs
»
Need help changing startup behavior of a plugin