« Zerotier : Configuration sur Mikrotik » : différence entre les versions
De www.yakakliker.org
Aucun résumé des modifications |
Aucun résumé des modifications |
||
| (2 versions intermédiaires par le même utilisateur non affichées) | |||
| Ligne 1 : | Ligne 1 : | ||
== Configurer un Mikrotik en tant que Controleur == | == Configurer un Mikrotik en tant que Controleur == | ||
<syntaxhighlight lang="bash"> | <code>add name=ZT-private instance=zt1 ip-range=172.27.27.10-172.27.27.20 private=yes routes=172.27.27.0/24</code><syntaxhighlight lang="bash"> | ||
admin@Home] /zerotier> controller/add name=ZT-private instance=zt1 ip-range=172.27.27.10-172.27.27.20 private=yes routes=172.27.27.0/24 | admin@Home] /zerotier> controller/add name=ZT-private instance=zt1 ip-range=172.27.27.10-172.27.27.20 private=yes routes=172.27.27.0/24 | ||
[admin@Home] /zerotier> controller/print | [admin@Home] /zerotier> controller/print | ||
| Ligne 8 : | Ligne 8 : | ||
</syntaxhighlight> | </syntaxhighlight> | ||
Add our new network under the interface section:<syntaxhighlight lang="bash"> | Add our new network under the interface section: | ||
<code>add network=879c0b5265a99e4b name=myZeroTier instance=zt1</code><syntaxhighlight lang="bash"> | |||
[admin@Home] /zerotier> interface/add network=879c0b5265a99e4b name=myZeroTier instance=zt1 | [admin@Home] /zerotier> interface/add network=879c0b5265a99e4b name=myZeroTier instance=zt1 | ||
[admin@Home] /zerotier> interface/print interval=1 | [admin@Home] /zerotier> interface/print interval=1 | ||
| Ligne 36 : | Ligne 38 : | ||
DST-ADDRESS GATEWAY DISTANCE | DST-ADDRESS GATEWAY DISTANCE | ||
DAc 172.27.27.0/24 myZeroTier 0 | DAc 172.27.27.0/24 myZeroTier 0 | ||
</syntaxhighlight> | |||
== Joindre un réseau Zerotier == | |||
<code>add network=879c0b5265a99e4b instance=zt1 name=ZT-interface</code><syntaxhighlight lang="bash"> | |||
[admin@office] /zerotier> interface/add network=879c0b5265a99e4b instance=zt1 name=ZT-interface | |||
[admin@office] /zerotier> interface/print interval=1 | |||
Columns: NAME, MAC-ADDRESS, NETWORK, STATUS | |||
# NAME MAC-ADDRESS NETWORK STATUS | |||
0 ZT-interface 4A:40:1C:38:97:BA 879c0b5265a99e4b ACCESS_DENIED | |||
</syntaxhighlight> | |||
* Sur le contrôleur, authoriser la connexion | |||
<code>controller/member/set 3 authorized=yes</code><syntaxhighlight lang="bash"> | |||
[admin@Home] /zerotier> controller/member/print | |||
Flags: A - AUTHORIZED | |||
Columns: NETWORK, ZT-ADDRESS, IP-ADDRESS, LAST-SEEN | |||
# NETWORK ZT-ADDRESS IP-ADDRESS LAST-SEEN | |||
0 A ZT-private 879a0b5265 172.27.27.15 | |||
1 A ZT-private 554a914c7f 172.27.27.17 | |||
2 A ZT-private a83ac6032a 172.27.27.10 | |||
3 ZT-private deba5dc5b1 172.27.27.13 3s348ms | |||
[admin@Home] /zerotier> controller/member/set 3 authorized=yes | |||
[admin@Home] /zerotier> controller/member/print | |||
Flags: A - AUTHORIZED | |||
Columns: NETWORK, ZT-ADDRESS, IP-ADDRESS, LAST-SEEN | |||
# NETWORK ZT-ADDRESS IP-ADDRESS LAST-SEEN | |||
0 A ZT-private 879a0b5265 172.27.27.15 | |||
1 A ZT-private 554a914c7f 172.27.27.17 | |||
2 A ZT-private a83ac6032a 172.27.27.10 | |||
3 A ZT-private deba5dc5b1 172.27.27.13 4s55ms | |||
</syntaxhighlight> | </syntaxhighlight> | ||
== Liens == | == Liens == | ||
https://help.mikrotik.com/docs/spaces/ROS/pages/83755083/ZeroTier | https://help.mikrotik.com/docs/spaces/ROS/pages/83755083/ZeroTier | ||
https://forum.mikrotik.com/viewtopic.php?t=208056 | |||
| Ligne 57 : | Ligne 93 : | ||
</script> | </script> | ||
</html> | </html> | ||
[[Catégorie:Zerotier]] | |||
[[Catégorie:Mikrotik]] | |||
Dernière version du 23 avril 2025 à 14:38
Configurer un Mikrotik en tant que Controleur
add name=ZT-private instance=zt1 ip-range=172.27.27.10-172.27.27.20 private=yes routes=172.27.27.0/24
admin@Home] /zerotier> controller/add name=ZT-private instance=zt1 ip-range=172.27.27.10-172.27.27.20 private=yes routes=172.27.27.0/24
[admin@Home] /zerotier> controller/print
Columns: INSTANCE, NAME, NETWORK, PRIVATE
# INSTANCE NAME NETWORK PRIVATE
0 zt1 ZT-private 879c0b5265a99e4b yes
Add our new network under the interface section:
add network=879c0b5265a99e4b name=myZeroTier instance=zt1
[admin@Home] /zerotier> interface/add network=879c0b5265a99e4b name=myZeroTier instance=zt1
[admin@Home] /zerotier> interface/print interval=1
Columns: NAME, MAC-ADDRESS, NETWORK, STATUS
# NAME MAC-ADDRESS NETWORK STATUS
0 myZeroTier 4A:19:35:6E:00:6E 879c0b5265a99e4b ACCESS_DENIED
Each new peer asks for a controller to join the network, in this situation, we have ACCESS_DENIED status and we have to authorize a new peer, that is because we used the private=yes option.
After authorization, each member in the network receives information from the controller about new peers and approval they can exchange packets with them:
[admin@Home] /zerotier> controller/member/print
Columns: NETWORK, ZT-ADDRESS
# NETWORK ZT-ADDRESS
0 ZT-private 879a0b5265
[admin@Home] /zerotier> controller/member/set 0 authorized=yes
Verify newly configured IP address and route:
[admin@Home] /zerotier> /ip/address/print where interface~"Zero"
Flags: D - DYNAMIC
Columns: ADDRESS, NETWORK, INTERFACE
# ADDRESS NETWORK INTERFACE
4 D 172.27.27.15/24 172.27.27.0 myZeroTier
[admin@Home] /zerotier> /ip/route/pr where gateway~"Zero"
Flags: D - DYNAMIC; A - ACTIVE; c, y - COPY
Columns: DST-ADDRESS, GATEWAY, DISTANCE
DST-ADDRESS GATEWAY DISTANCE
DAc 172.27.27.0/24 myZeroTier 0
Joindre un réseau Zerotier
add network=879c0b5265a99e4b instance=zt1 name=ZT-interface
[admin@office] /zerotier> interface/add network=879c0b5265a99e4b instance=zt1 name=ZT-interface
[admin@office] /zerotier> interface/print interval=1
Columns: NAME, MAC-ADDRESS, NETWORK, STATUS
# NAME MAC-ADDRESS NETWORK STATUS
0 ZT-interface 4A:40:1C:38:97:BA 879c0b5265a99e4b ACCESS_DENIED
- Sur le contrôleur, authoriser la connexion
controller/member/set 3 authorized=yes
[admin@Home] /zerotier> controller/member/print
Flags: A - AUTHORIZED
Columns: NETWORK, ZT-ADDRESS, IP-ADDRESS, LAST-SEEN
# NETWORK ZT-ADDRESS IP-ADDRESS LAST-SEEN
0 A ZT-private 879a0b5265 172.27.27.15
1 A ZT-private 554a914c7f 172.27.27.17
2 A ZT-private a83ac6032a 172.27.27.10
3 ZT-private deba5dc5b1 172.27.27.13 3s348ms
[admin@Home] /zerotier> controller/member/set 3 authorized=yes
[admin@Home] /zerotier> controller/member/print
Flags: A - AUTHORIZED
Columns: NETWORK, ZT-ADDRESS, IP-ADDRESS, LAST-SEEN
# NETWORK ZT-ADDRESS IP-ADDRESS LAST-SEEN
0 A ZT-private 879a0b5265 172.27.27.15
1 A ZT-private 554a914c7f 172.27.27.17
2 A ZT-private a83ac6032a 172.27.27.10
3 A ZT-private deba5dc5b1 172.27.27.13 4s55ms
Liens
https://help.mikrotik.com/docs/spaces/ROS/pages/83755083/ZeroTier
https://forum.mikrotik.com/viewtopic.php?t=208056
