« Zerotier : Configuration sur Mikrotik » : différence entre les versions
De www.yakakliker.org
Aucun résumé des modifications |
Aucun résumé des modifications |
||
| Ligne 1 : | Ligne 1 : | ||
== Configurer un Mikrotik en tant que Controleur == | == Configurer un Mikrotik en tant que Controleur == | ||
<syntaxhighlight lang="bash"> | <syntaxhighlight lang="bash"> | ||
admin@Home] /zerotier> controller/add name=ZT-private instance=zt1 ip-range=172.27.27.10-172.27.27.20 private=yes routes=172.27.27.0/24 | |||
[admin@Home] /zerotier> controller/print | |||
Columns: INSTANCE, NAME, NETWORK, PRIVATE | |||
# INSTANCE NAME NETWORK PRIVATE | |||
0 zt1 ZT-private 879c0b5265a99e4b yes | |||
</syntaxhighlight> | </syntaxhighlight> | ||
Add our new network under the interface section:<syntaxhighlight lang="bash"> | |||
[admin@Home] /zerotier> interface/add network=879c0b5265a99e4b name=myZeroTier instance=zt1 | |||
[admin@Home] /zerotier> interface/print interval=1 | |||
Columns: NAME, MAC-ADDRESS, NETWORK, STATUS | |||
# NAME MAC-ADDRESS NETWORK STATUS | |||
0 myZeroTier 4A:19:35:6E:00:6E 879c0b5265a99e4b ACCESS_DENIED | |||
</syntaxhighlight> | |||
Each new peer asks for a controller to join the network, in this situation, we have ''ACCESS_DENIED'' status and we have to authorize a new peer, that is because we used the '''private=yes''' option. | |||
After authorization, each member in the network receives information from the controller about new peers and approval they can exchange packets with them:<syntaxhighlight lang="bash"> | |||
[admin@Home] /zerotier> controller/member/print | |||
Columns: NETWORK, ZT-ADDRESS | |||
# NETWORK ZT-ADDRESS | |||
0 ZT-private 879a0b5265 | |||
[admin@Home] /zerotier> controller/member/set 0 authorized=yes | |||
</syntaxhighlight> | |||
Verify newly configured IP address and route:<syntaxhighlight lang="bash"> | |||
[admin@Home] /zerotier> /ip/address/print where interface~"Zero" | |||
Flags: D - DYNAMIC | |||
Columns: ADDRESS, NETWORK, INTERFACE | |||
# ADDRESS NETWORK INTERFACE | |||
4 D 172.27.27.15/24 172.27.27.0 myZeroTier | |||
[admin@Home] /zerotier> /ip/route/pr where gateway~"Zero" | |||
Flags: D - DYNAMIC; A - ACTIVE; c, y - COPY | |||
Columns: DST-ADDRESS, GATEWAY, DISTANCE | |||
DST-ADDRESS GATEWAY DISTANCE | |||
DAc 172.27.27.0/24 myZeroTier 0 | |||
</syntaxhighlight> | |||
== Liens == | == Liens == | ||
https://help.mikrotik.com/docs/spaces/ROS/pages/83755083/ZeroTier | https://help.mikrotik.com/docs/spaces/ROS/pages/83755083/ZeroTier | ||
Version du 23 avril 2025 à 11:10
Configurer un Mikrotik en tant que Controleur
admin@Home] /zerotier> controller/add name=ZT-private instance=zt1 ip-range=172.27.27.10-172.27.27.20 private=yes routes=172.27.27.0/24
[admin@Home] /zerotier> controller/print
Columns: INSTANCE, NAME, NETWORK, PRIVATE
# INSTANCE NAME NETWORK PRIVATE
0 zt1 ZT-private 879c0b5265a99e4b yes
Add our new network under the interface section:
[admin@Home] /zerotier> interface/add network=879c0b5265a99e4b name=myZeroTier instance=zt1
[admin@Home] /zerotier> interface/print interval=1
Columns: NAME, MAC-ADDRESS, NETWORK, STATUS
# NAME MAC-ADDRESS NETWORK STATUS
0 myZeroTier 4A:19:35:6E:00:6E 879c0b5265a99e4b ACCESS_DENIED
Each new peer asks for a controller to join the network, in this situation, we have ACCESS_DENIED status and we have to authorize a new peer, that is because we used the private=yes option.
After authorization, each member in the network receives information from the controller about new peers and approval they can exchange packets with them:
[admin@Home] /zerotier> controller/member/print
Columns: NETWORK, ZT-ADDRESS
# NETWORK ZT-ADDRESS
0 ZT-private 879a0b5265
[admin@Home] /zerotier> controller/member/set 0 authorized=yes
Verify newly configured IP address and route:
[admin@Home] /zerotier> /ip/address/print where interface~"Zero"
Flags: D - DYNAMIC
Columns: ADDRESS, NETWORK, INTERFACE
# ADDRESS NETWORK INTERFACE
4 D 172.27.27.15/24 172.27.27.0 myZeroTier
[admin@Home] /zerotier> /ip/route/pr where gateway~"Zero"
Flags: D - DYNAMIC; A - ACTIVE; c, y - COPY
Columns: DST-ADDRESS, GATEWAY, DISTANCE
DST-ADDRESS GATEWAY DISTANCE
DAc 172.27.27.0/24 myZeroTier 0
Liens
https://help.mikrotik.com/docs/spaces/ROS/pages/83755083/ZeroTier
