Hello,
One of our supplier provided one server with a Zerotier client installed. We installed that server behind a firewall and now we need to grant them access to the server.
Between which ip`s we need to open a port for rdp or ssh access? I suppose between the IP from the server and the zerotier VPN, zerotier VPN has a fixed IP address,if yes where can be founded.
Thank you,
Cristian
Assuming the firewall is directly connected to the internet and you are using NAT to the internal server, the most reliable connection would be to map port 9993 (zerotier default) from the external IP to the internal IP and you’re done as far as zerotier is done.
After that the firewall doesn’t do anything other than permit the zerotier connection. You’ll need to look at the local firewall on the internal server to ensure that the remote access protocols are allowed on the zerotier interface.
Noting that this is not an absolute requirement as zerotier can “punch” through NAT connections, but if the port is mapped, the negotiation is significantly faster.
Port 9993 is the default for zerotier.
If needed NAT, make a port forward to the server on 9993 and nothing else.
Once the server can be reached, RDP or SSH can be done through ZT network.