Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
Virtual private networks
»
force Zerotier outgoing interface
« previous
next »
Print
Pages: [
1
]
Author
Topic: force Zerotier outgoing interface (Read 1573 times)
ja3far
Newbie
Posts: 5
Karma: 0
force Zerotier outgoing interface
«
on:
July 14, 2021, 10:43:53 am »
Hello
I have installed zerotier plugin and everything is working as expected. In my OPNsense setup I also have OpenVPN clients connected to the outside world and assigned to interfaces. On the zerotier management portal I noticed that OPNsense is connected using one of the OpenVPN client IPs.
Is there a way to force it to use the WAN interface only? my WAN interface is vtnet1. I tried the following zerotier configuration without success.
{
"settings": {
"defaultBondingPolicy": "aggressive-active-backup",
"policies": {
"aggressive-active-backup": {
"links": {
"vtnet1": {
"ipvPref": 4,
"mode": "primary"
}
}
}
}
}
}
Logged
Cerberus
Jr. Member
Posts: 63
Karma: 4
Re: force Zerotier outgoing interface
«
Reply #1 on:
July 20, 2021, 04:47:08 pm »
Hi,
you need to blacklist the openvpn network, you need this custom parameters in zerotier:
for example:
"physical": {
"192.168.0.0/24": {
"blacklist": true
Logged
ja3far
Newbie
Posts: 5
Karma: 0
Re: force Zerotier outgoing interface
«
Reply #2 on:
July 20, 2021, 09:49:23 pm »
Thanks Cerberus
I have reviewed the config manual, and found that I can do this
{
"settings": {
"interfacePrefixBlacklist": [ "ovpnc" ]
}
}
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
Virtual private networks
»
force Zerotier outgoing interface