ZeroTier: is this a good time to use...
-
Let's say we have 3 types of users connection to an application via RDP (2012R2 RDS)
Type 1: Users are on the LAN (I know, I know @scottalanmiller some of us are a 'lil behind with implementing a LANless design)
Type 2: Users connect via VPN (from home/remote office)
Type 3: Users (are contractors), they connect via VPN from overseasThis seems like a good use case for ZeroTier
Pls advise!
-
Yes you could use it like that no problem.
-
Based on what I have tried out with ZT, this would work but I am not sure how well DNS works with ZT. If someone has more experience with that aspect I would love to know.
-
@Breffni-Potter said:
Yes you could use it like that no problem.
Could you elaborate?
I'd like to eliminate the VPN & in an ideal world have the overseas connection "on" at specific times
-
How many devices do you want to run on ZT?
-
Yup, sounds like a good case for ZT.
-
@wrx7m said:
Based on what I have tried out with ZT, this would work but I am not sure how well DNS works with ZT. If someone has more experience with that aspect I would love to know.
DNS on its own works just fine. Do you have a specific use case in mind that you are wondering about?
-
@wrx7m said:
How many devices do you want to run on ZT?
50/100, as many as possible. If it works as good as it sounds.
-
@scottalanmiller - I am a Pertino customer so I am just playing with ZT for home lab use.
-
@FATeknollogee Will you host your own network connector or have ZT host it?
-
It's built to handle thousands of devices, no problem at all.
Zero Tier is engineered very differently to Pertino, so although you can use them for the same end, there are some core differences.
You just need tosetup a Zero Tier network, either hosted by them or by you, install the endpoints on a test machine and your TS, and you should be able to RDP onto it.
It's very easy to do.
-
@wrx7m said:
@FATeknollogee Will you host your own network connector or have ZT host it?
The ZT price seems very reasonable, so I would go the ZT hosted route.
-
@FATeknollogee said:
I'd like to eliminate the VPN & in an ideal world have the overseas connection "on" at specific times
Right, off the top of my head I don't know if this is possible through Zero Tier.
Can you control this via the terminal server itself? Group policy for different user accounts allowed to log on or off depending on time of day?
-
@Breffni-Potter said:
@FATeknollogee said:
I'd like to eliminate the VPN & in an ideal world have the overseas connection "on" at specific times
Right, off the top of my head I don't know if this is possible through Zero Tier.
Can you control this via the terminal server itself? Group policy for different user accounts allowed to log on or off depending on time of day?
Do I smell a ZeroTier feature request for @adam-ierymenko ?
-
@FATeknollogee said:
@wrx7m said:
@FATeknollogee Will you host your own network connector or have ZT host it?
The ZT price seems very reasonable, so I would go the ZT hosted route.
Yes, at $4 you can't afford not to
-
Would love to know if they have already started on a gateway.
-
@Breffni-Potter said:
@FATeknollogee said:
I'd like to eliminate the VPN & in an ideal world have the overseas connection "on" at specific times
Right, off the top of my head I don't know if this is possible through Zero Tier.
Can you control this via the terminal server itself? Group policy for different user accounts allowed to log on or off depending on time of day?
I'm sure it could be done via GP, I was kinda looking for a "cooler" way of doing it.
-
@FATeknollogee said:
@Breffni-Potter said:
@FATeknollogee said:
I'd like to eliminate the VPN & in an ideal world have the overseas connection "on" at specific times
Right, off the top of my head I don't know if this is possible through Zero Tier.
Can you control this via the terminal server itself? Group policy for different user accounts allowed to log on or off depending on time of day?
Do I smell a ZeroTier feature request for @adam-ierymenko ?
Not likely, they specifically do not want to laden ZT up with features. If you want to turn ZT on and off at specific times, it already supports that through simple scripting. ZT itself need not handle that.
User accounts could not be used here, remember this is a networking service, so if you turned it off, the entire terminal server would be offline.
-
Why would you want a terminal server intentionally dropping off of the network?
-
@scottalanmiller said:
Why would you want a terminal server intentionally dropping off of the network?
They want to stop access for over-seas consultants at certain times.
