Hi Dyan, I was in the same scenario as yours.
I followed the provided instructions here by ZT https://zerotier.atlassian.net/wiki/spaces/SD/pages/224395274/Route+between+ZeroTier+and+Physical+Networks and was unable to reach my LAN behind my raspberry.
I solved the problem just rebooting my raspberry and everything is working now. I didn’t do after setting iptables.
my scenario is the following:
PC LAN (192.168.15.20) --> ZT (172.26.0.0/16) --> RPi LAN (192.168.1.158)
PC ZT (172.26.82.83) --> ZT (172.26.0.0/16) --> RPi ZT (172.26.241.161)
I did the managed route config in ZT as following
192.168.0.0/23 via 172.26.241.161
iptables confis as is:
# Generated by xtables-save v1.8.2 on Wed Feb 2 12:05:22 2022
*nat
:PREROUTING ACCEPT [0:0]
:INPUT ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
-A POSTROUTING -o eth0 -j MASQUERADE
COMMIT
# Completed on Wed Feb 2 12:05:22 2022
# Generated by xtables-save v1.8.2 on Wed Feb 2 12:05:22 2022
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
-A FORWARD -i eth0 -o ztuga5p3zg -m state --state RELATED,ESTABLISHED -j ACCEPT
-A FORWARD -i ztuga5p3zg -o eth0 -j ACCEPT
COMMIT
# Completed on Wed Feb 2 12:05:22 2022