yes, it is just another machine. So like my Android and Windows devices, I simply want to have full access to LAN and internet through my server at home.
I installed with
#!/bin/bash
echo "Install zerotier (y/n)?"
read user_input
if [ "$user_input" = "y" ]; then
curl -s https://install.zerotier.com | sudo bash
sudo zerotier-cli join MYNETWORK
sleep 2
sudo zerotier-cli listnetworks
fi
And then rebooted.
I cannot ping or reach anything on my home network. Cannot even ping the server IP.
Setup the server as mentioned above. So maybe I need one of the allow* set to true (or false)?
So it appears your network is joined. I see it in the control panel. Itâs contacting the controller.
Everything appears configured correctly. Ensure youâre attempting to ping the correct addresses, and the machines youâre trying to ping arenât configured to block ping requests
Itâs the GUI from tralph3.
The IP is correct and I have been able to ping it before. I also tried reaching my NAS via browser (working from Android phone but not the RPi).
Do I need to enable IP4 forwarding? Or do I need to disable IPv6? Only IPv4 should be used. But since I am pinging an IPv4, it should work without disabling v6, correct?
Any information I can supply from server side? Except that I installed using the bridge instruction I posted earlier?
I found out that I have to setup a bridge to be able to access my home network. BUT I cannot access the internet through it. So only the LAN behind the server but not the internet.
What am I missing?
Am I configuring that one IP incorrectly (see comment)?
cat << EOF | sudo tee /etc/systemd/network/25-bridge-br0.network
[Match]
Name=br0
[Network]
Address=192.168.0.2/24 #must this be the IP of my client or my server? Or should it be the home router?
Gateway=192.168.0.1
DNS=192.168.0.1
EOF
cat << EOF | sudo tee /etc/systemd/network/br0.netdev
[NetDev]
Name=br0
Kind=bridge
EOF
cat << EOF | sudo tee /etc/systemd/network/25-bridge-br0-zt.network
[Match]
Name=ztwBLABLA
[Network]
Bridge=br0
EOF
cat << EOF | sudo tee /etc/systemd/network/25-bridge-br0-wlan0.network
[Match]
Name=wlan0
[Network]
Bridge=br0
EOF
sudo systemctl enable systemd-networkd;
sudo systemctl enable systemd-resolved;
sudo systemctl enable systemd-timesyncd;
So your bridge is already configured, and you can access the machines behind it?
Now, from your remote device, you also want to override the default route so that all traffic goes through the node on your home network? I see you have a 0.0.0.0 default route on your home network, so Iâm assuming thatâs what youâre asking.
First, you need to enable Allow Default route, and Allow Global IPs on the client machine(s).
Second, since you said the remote machine in question is a linux machine, you may need to do Step 3a from this knowledge base article.
Thank you for the suggestion Grant,
I set the filters=2 but I still cannot access the internet. Or more correctly, it seems DNS is not working.
I tried pinging 8.8.8.8 and was successful. So it neems DNS is not working properly and I see
DNS_PROBE_FINISHED_BAD_CONFIG
I tried allowDNS=1, but that did not help. Can you think of a setting that needs to be changed for this last step to work?
Just to be sure, the bridge IP address is the IP address that I have assigned to my client, correct?
So in zerotier I set my client to 192.168.0.3. The IP of the server at home is 192.168.0.2.
Iâm guessing this is then correct, since all except internet is working, but just to be sure
Iâm afraid youâre on your own for that one. The allowDNS setting is not for completely overriding all DNS on a machine. Itâs only for setting DNS for a specific domain/subdomain with a DNS server that you run/control.
Networking is hard, my dude. Youâve gotten past the ZeroTier config issues at least. Just be glad you didnât have to configure tunnels with ipsec like the bad old days before ZeroTier existed
There is a reason why Linux never made it into the consumer market and will never be usefull for anything but IoT, SBC and computer nerds (ânerdsâ in a loving way).
I bet that if RPi had any fully working non-Linux system available, Raspberry OS would become distant second within a year.
I will give up for now and will take another stab at it sometime in the future. Next will be a working AP mode which does not break zerotier. Once that works, I might try internet access again.
Thank you very, very much for all your support! It is greatly appreciated!
@zt-grant
One very last thing I would like to check.
The IP address of my RPi (on the zerotier network) is 192.168.0.3. But the broadcast is 192.168.1.x (sorry, forgot the last digit and am currently restoring a backup for my Pi).
So instead of being x.x.0.x the broadcast is x.x.1.x
Where is the zerotier interface getting this broadcast information from? All my zt network is x.x.0.x
RaspAP does not touch /etc/hosts. Nor does the default install manipulate iptables beyond what OP has mentioned (all clearly documented and searchable, unlike Zerotierâs docs ). In terms of Linux AP configurations, itâs plain vanilla. Nice thing is, itâs also fully transparent and quite simple to manipulate. We even provide step-by-step manual instructions, which are recommended for integrations like these (RaspAP has been integrated with many popular open source Linux projects).
Frankly, Iâd never heard of âZerotierâ before OP brought it to our attention, but it appears the two projects are incompatible. Happy to be proven otherwise.
@billz Weâd never heard of RaspAP before the user in question. All we know is that Zerotier works fine for him until he installs RaspAP
Unfortunately I donât have any spare hardware laying around to test this with. The symptom he described was the command line interface no longer being able to connect to the backend service once RaspAP is installed. It talks via a TCP socket over localhost port 9993.