ZeroTier: is this a good time to use...
-
Yup, sounds like a good case for ZT.
-
@wrx7m said:
Based on what I have tried out with ZT, this would work but I am not sure how well DNS works with ZT. If someone has more experience with that aspect I would love to know.
DNS on its own works just fine. Do you have a specific use case in mind that you are wondering about?
-
@wrx7m said:
How many devices do you want to run on ZT?
50/100, as many as possible. If it works as good as it sounds.
-
@scottalanmiller - I am a Pertino customer so I am just playing with ZT for home lab use.
-
@FATeknollogee Will you host your own network connector or have ZT host it?
-
It's built to handle thousands of devices, no problem at all.
Zero Tier is engineered very differently to Pertino, so although you can use them for the same end, there are some core differences.
You just need tosetup a Zero Tier network, either hosted by them or by you, install the endpoints on a test machine and your TS, and you should be able to RDP onto it.
It's very easy to do.
-
@wrx7m said:
@FATeknollogee Will you host your own network connector or have ZT host it?
The ZT price seems very reasonable, so I would go the ZT hosted route.
-
@FATeknollogee said:
I'd like to eliminate the VPN & in an ideal world have the overseas connection "on" at specific times
Right, off the top of my head I don't know if this is possible through Zero Tier.
Can you control this via the terminal server itself? Group policy for different user accounts allowed to log on or off depending on time of day?
-
@Breffni-Potter said:
@FATeknollogee said:
I'd like to eliminate the VPN & in an ideal world have the overseas connection "on" at specific times
Right, off the top of my head I don't know if this is possible through Zero Tier.
Can you control this via the terminal server itself? Group policy for different user accounts allowed to log on or off depending on time of day?
Do I smell a ZeroTier feature request for @adam-ierymenko ?
-
@FATeknollogee said:
@wrx7m said:
@FATeknollogee Will you host your own network connector or have ZT host it?
The ZT price seems very reasonable, so I would go the ZT hosted route.
Yes, at $4 you can't afford not to
-
Would love to know if they have already started on a gateway.
-
@Breffni-Potter said:
@FATeknollogee said:
I'd like to eliminate the VPN & in an ideal world have the overseas connection "on" at specific times
Right, off the top of my head I don't know if this is possible through Zero Tier.
Can you control this via the terminal server itself? Group policy for different user accounts allowed to log on or off depending on time of day?
I'm sure it could be done via GP, I was kinda looking for a "cooler" way of doing it.
-
@FATeknollogee said:
@Breffni-Potter said:
@FATeknollogee said:
I'd like to eliminate the VPN & in an ideal world have the overseas connection "on" at specific times
Right, off the top of my head I don't know if this is possible through Zero Tier.
Can you control this via the terminal server itself? Group policy for different user accounts allowed to log on or off depending on time of day?
Do I smell a ZeroTier feature request for @adam-ierymenko ?
Not likely, they specifically do not want to laden ZT up with features. If you want to turn ZT on and off at specific times, it already supports that through simple scripting. ZT itself need not handle that.
User accounts could not be used here, remember this is a networking service, so if you turned it off, the entire terminal server would be offline.
-
Why would you want a terminal server intentionally dropping off of the network?
-
@scottalanmiller said:
Why would you want a terminal server intentionally dropping off of the network?
They want to stop access for over-seas consultants at certain times.
-
@wrx7m said:
Would love to know if they have already started on a gateway.
We already have people in the community using gateways.
-
@Breffni-Potter said:
@scottalanmiller said:
Why would you want a terminal server intentionally dropping off of the network?
They want to stop access for over-seas consultants at certain times.
Killing VPN access to the network is not a good way to go about that. Using AD to stop logins would be far better.
-
@Breffni-Potter said:
@scottalanmiller said:
Why would you want a terminal server intentionally dropping off of the network?
They want to stop access for over-seas consultants at certain times.
What he said
-
Interesting that their site, at least a couple weeks ago said something to the effect of it being considered.
-
@scottalanmiller said:
@Breffni-Potter said:
@scottalanmiller said:
Why would you want a terminal server intentionally dropping off of the network?
They want to stop access for over-seas consultants at certain times.
Killing VPN access to the network is not a good way to go about that. Using AD to stop logins would be far better.
I thought we are getting rid of the VPN?