Simple VPN vs ZeroTier for LAN Extension
-
@jaredbusch said in How business ready is ZeroTier?:
You can use ZeroTier this way. It will work just fine, but a simple VPN to extend the LAN is probably better for this.
@scottalanmiller can you fork this so we can discuss why for my own knowledge
-
@wirestyle22 said in Simple VPN vs ZeroTier for LAN Extension:
@jaredbusch said in How business ready is ZeroTier?:
You can use ZeroTier this way. It will work just fine, but a simple VPN to extend the LAN is probably better for this.
@scottalanmiller can you fork this so we can discuss why for my own knowledge
ZT is decent if you have one to one connection scenarios, or many to one, e.g. clients to file server/NextCloud. When you have many to many or one to many then ZT increases complexity because of maintaining the connections without much improvement of security.
-
ZT Can bet setup as a site-to-site VPN, but it takes more work and makes things more complex than they need to be.
-
ZT is an SD-WAN, a specific type of highly complex VPN. Basically it is a hub and spoke VPN, but with advanced detection to allow full mesh ad hoc between nodes when appropriate. But at the end of the day, each link is a standard VPN connection. It's just how it is hosted (central controller) that is outside of the network of connected gear; and the hub and spoke vs full mesh auto detection that makes it so unique.
A nearly identical system is Cradlepoint, but it does not allow the mesh option, only the appearance of it, so that centralized traffic control on the controller is available.
