Dropping invalid packets prevents zerotier working

My main router in our office is a Mikrotik. In an attempt to secure the network and router, we have a filter rule to drop forwarded packets if the packet is in an invalid state. This rule is one that Mikrotik recommends, and I have used it on numerous installations.

But if I enable this rule here, it kills the traffic to and from the Zerotier network.

Does anyone know why Zerotier is generating packets that Mikrotik considers to be invalid?

It works fine for me with dropping invalid packages enabled (input and forward chain)

Which firmware are you on? I’m on 7.13.5 which work as expected

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.