No Zerotier interface inside jail

[Fred974]

Hi,

I created a jail and installed zerotier package. I can successfully join the network but the zerotier interface is not been created and I cannot ping devices on the ZT network.
Could anyone please tell me if there is any think I need to do to the jail setting in order to get it to create the ZT interface?

Thank you

 

[sretalla]

There's probably something needed to create interfaces on the host to allow the connection to leave the jail. Maybe that's something that a fully permissive devfs ruleset could allow.

I'm not sure if there's a message in the fact that zerotier was (maybe still is) included in the host and not as a plugin. There was an issue where the ID would change on every reboot though, do that made it not very practical to use. It was downplayed in favor of WireGuard, so maybe that's something to investigate instead. (I know that Tailscale is an implementation of WireGuard that essentially does the same thing as ZeroTier, so that may have some benefit to investigate)

 

[Fred974]

@sretalla thank you for the reply. I started to hear a lot about wireguard likely but I have no idea how install it or use it. I need to research it.

 

[Fred974]

@sretalla Do you have any experience setting wireguard in TrueNAS?
I have this post open if you can assist.

Thank you

 

[sretalla]

Actually there's a great writeup from Brian Moses on that (wireguard using Tailscale):

Using Tailscale and FreeNAS (or TrueNAS CORE) Together

Tailscale has been a recent fascination of mine and Pat’s recently. Tailscale is a secure, zero-configuration mesh network that just works. I’ve gushed enough about Tailscale in previous blogs that I’m going to work to avoid it here in this blog, but if you’d like–here are a few links where you...

butterwhat.com