Zerotier One as a package - $100USD
-
@dch said in Zerotier One as a package - $100USD:
hey folks
I'm the upstream port maintainer (i.e. I maintain the FreeBSD version of net/zerotier). You can see I'm pretty active in the ZT software issues & pull requests on github as well.
I'm new to the forum, so right now I don't know the rules wrt bounties for netgate, so apologies if there's already something underway and I've simply missed it.
If there's still interest in doing this, I'll organise a bounty page somewhere, and take it from there - I'm in the middle of updating the upstream port to 1.4.6 already. If it gets to a reasonable level I am happy to offer support/help to get people up & running too but right now it has to compete with more prosaic work.
You can contact me via email at FreeBSD.org or skunkwerks.at for any questions.
There was some work done on this a couple of years ago by I think @Chancem and @zevlag but from what I can see by the earlier posts in this thread, it never reached completion. I think they posted their progress here:
https://github.com/zevlag/pfsense-ports
https://github.com/ChanceM/pfSense-pkg-zerotierI am not a programmer but perhaps that could be used as a foundation..... although I also don't know about any rules for bounties. I think it's fair to say (anyone correct me if I am wrong) that there has been no recent active work on this for quite a while until your post.... which is very welcome!
-
@dch I'm still in for $50. And thanks for maintaining the port!
-
@dch I think a formal bounty page somewhere would be great. Would really love to see a proper GUI added to pfSense for Zerotier config.
-
https://redmine.pfsense.org/issues/9238
Just hoping someone on the Netgate team sees this forum thread.
I have recently purchased 4 7100s and 6 5100s to link our branch networks together using OpenVPN. While this works, it seems a bit messy, especially with multiple WANs at each location.
It seems like ZeroTier with its multipath feature would be a much cleaner solution as I could simply create a ZT interface on each router connected to the same ZT network. Add a few static routes and traffic could flow directly between sites in a mesh fashion vs the hub and spoke setup I have with OpenVPN.
I would even be okay with a package that is only available with Netgate appliances.
-
I would even be okay with a package that is only available with Netgate appliances.
That's a cool idea - it would be a great value-add and another good incentive for people to buy Netgate appliances vs some cheap crap from Alibaba.
-
Would also be a way to add "SD-WAN" functionality.
Not that SD-WAN has any real technical definition, but in the router market, it seems to often refer to creating multiple secured links between different routers with the ability to use QOS rules to prioritize traffic within those links. ZT has the potential to check both of those boxes.
https://www.zerotier.com/manual.shtml#2_1_5
https://www.zerotier.com/manual.shtml#2_2_7
-
It looks like some progress is being made.
https://github.com/ChanceM/pfSense-pkg-zerotier
-
Team,
I'm quite happy to roll up another $250 to get this done. There is no question of the value of this integration. I've been using OPNsense just because the integration is already there but would much prefer the reliability of PFSense.
-
I would love to see this also.
Unfortunately, unless Netgate gets behind it, I don't see it ever happening. At the moment, it does not appear that Netgate has any interest.
-
@ Reboot IT we are doing some R&D for this to work on the latest 2.4.5 p1 version.
Trying to make a package using a full version of BSD. Looking for a tool that will simplify this process.
Wanted to add, we are not asking for any donations as we are trying to learn and use it to its max potential.
Suggestions are welcomed. -
This post is deleted! -
Just checking in in case anyone is aware of any updates on this? I live in hope....
-
I’m pining for this as well. Would be much better than my current OpenVPN setup. Would be nice if Netgate took a break from Wiregard while the dust settles on that situation and adopted ZT as a first class citizen of pfS.
-
https://forum.netgate.com/topic/162286/zerotier-support
-
@coreybrett this really isn’t a good way to make me feel positive.
-
How is Zerotier security??
Do Zerotier have access to all the networks creater and can they monitor each one??
-
@jwt My apologies, I’m not attempting to upset anyone.
A lot of us would really like to see support for ZT.
It could bring a lot to the table for pfS. -
Mikrotik routers now have support for ZeroTier...
https://www.zerotier.com/2021/08/31/zerotier-on-mikrotik/
I live in hope... -
Where are we at with this?
Im currently using OpenVPN but looking for another cloud connector based VPN and ZeroTier was looking really good until i saw it was not supported.
Any other suggestions? Im behind CGNAT so net a cloud connector type scenario.
Thanks
-
@deanfourie said in Zerotier One as a package - $100USD:
Where are we at with this?
To run on pfSense to provide LAN-wide addressing? Pretty much nowhere I'm afraid. If you need it to run on the router it's supported by Mikrotik and OPNSense, but not pfSense.
Of course you can still run it on individual devices behind a pfSense router and it works like a dream.....
