Hello everyone! Let’s say I have a network with a subnet of 10.32.64.0/24. I want all hosts in my network to be able to connect only to 10.32.64.1, but I want 10.32.64.1 to be able to communicate to all other hosts. I tried setting up a static route in the ZeroTier config 10.32.64.1/32, but then ZeroTier doesn’t give out an IP address to anyone. Is there a way to achieve this?
and probably a few other mentions in the forum
Thanks! That’s what I was looking for. Question number two: is there a way to ‘bypass’ flow rules on client side, without having access to network settings? 
Let’s say some unkind client wants to ignore “drop” rules
I don’t think that will be possible as technically speaking the rules apply on the destination side.