ZeroTier port linux firewall

Hello, what are the optimal rules for a linux firewall in input with ZeroTier? Indeed, I authorize all the output traffic, moreover I have a conntrack for the replies but what do I have to authorize in input? Just the 9993 udp? Because when I do zerotier-cli peers many of my leafs have a path with a random port and not the 9993.

Thank you for your help

1 Like