Dropping invalid packets prevents zerotier working

mark4 · February 22, 2024, 8:58am

My main router in our office is a Mikrotik. In an attempt to secure the network and router, we have a filter rule to drop forwarded packets if the packet is in an invalid state. This rule is one that Mikrotik recommends, and I have used it on numerous installations.

But if I enable this rule here, it kills the traffic to and from the Zerotier network.

Does anyone know why Zerotier is generating packets that Mikrotik considers to be invalid?

nuimk · February 24, 2024, 8:11am

It works fine for me with dropping invalid packages enabled (input and forward chain)

Which firmware are you on? I’m on 7.13.5 which work as expected

system · March 25, 2024, 8:12am

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.