Great to hear! I honestly wish for the exact same thing from MikroTik.

Alternative solution for the mips. Raspberry Pi Zero W is possible with USB LTE connection. Both ARM-based Container installation and the opportunity to connect to all devices on the Mikrotic network via Zerotier.

Thanks for the comment, I think I might make an updated ZT video even though nothing new has really changed since then but still something awesome that not enough people are using.

Dankie vir boodskap en ondersteuning Andre, waardeer dit ook werklik baie!

you need to have a routing entry for those network behind ZT on the MK routing config. Add those dest zt subnets, gw=the next hop ip address.

@@ismashkhy I'm in the same boat...can ping the MK router, but not other devices behind the MK router. Would you be able to elaborate a bit on what is needed?

@@happyhome64 I dont know if theres a way with ZT to add a remote subnet and point for a gateway, if there is, you can add those lan subnet behind the MK, then add the gateway ip (you said you can ping), then with MKtik do the other way around.

same here! Please post a solution if you find it.

agreed. but unfortunately mikrotik doesn't support tailscale yet. which is a bit awkward because it does support wireguard (which tailscale is built on).. Hopefully we'll be able to choose between zerotier or tailscale

Very awesome indeed!

That's a pretty good comparison, though unlike EoIP which is MikroTik proprietary this is more available and I find it amazing that you can connect stuff like server infrastructure and your MikroTiks together via ZT.

On the GUI sort of, once version 7 actually releases then it should show the ZeroTier interface that you created, but the GUI has no idea where this interface is so it just shows an "unknown" interface.

@@TheNetworkBerg It is showing up for a second as "zerotier1" and disappearing. I hope they will fix it ASAP

I don't see why not, I configured NordVPN using IKEv2. Though I do not currently have a video regarding this, the concept should be fairly similar to the NordVPN setup it's all about selecting the correct P1 & P2 configurations.

I don't think that router has an ARM chip, and ARM is a requirement.

Thanks for the sub!

Hi Steve at the moment yes, unfortunately only ARM & ARM64 architecture supports ZeroTier. Though I can almost assure you it will become available for all other models once MikroTik releases updates to v7 which officially released last week. So hopefully you can add ZeroTier to all your devices in the next update.

Alternative solution for the mips. Raspberry Pi Zero W is possible with USB LTE connection. Both ARM-based Container installation and the opportunity to connect to all devices on the Mikrotic network via Zerotier.

​@@TheNetworkBergDarn it I was excited until I realized it's not working... when I upload the file to the v7.1.1.2 I reboot but it doesn't show in the package list... any ideas what's the cheapest mikrotik with ARM technology?? I assume mine just don't cut it.....??? I'm running V7.11.2 on HAPPY ax^2 (ARM64) but no madder how many times I try it don't show in package list :(

@@cctech298 nebula from slack look like a better alternative since it's less centralized ! but development seem kinda slow !

@@cctech298 the same situations. Cisco was my first vendor that I learned thoroughly. But now I've got already the second MikroTik certificate. It's really impressed vendor.

I think all services have their place and that ZeroTier serves a specific niche and is awesome. One thing I would like to do is add a few devices running ZeroTier to connect via LTE into ZeroTier so that I can setup a type of OOB network should I lose access to my core devices. It saves me a trip to the DC if there is some configuration issue. I've also worked on most of the major vendors equipment, Cisco, Juniper, Huawei etc, MikroTik is by far the only device I have been able to tune to do exactly what I want at times. It is an amazing "Swiss Army Knife"

I love this video. Great job explaining what ZeroTier does and how to configure it. Looking forward to more MikroTik videos!

I can't see why not, although I would have to lab this on two different ARM/ARM64 routers as ZT is currently only available on that hardware and I only have access to one router that works with ZT :(

@@TheNetworkBerg Actually I have done some testing on one of my devices. So the HQ router is ARM so I have installed ZT on it. I have OSPF setup with my other branch office routers and by joining the ZTNA network in the OSPF backbone I was able to reach all of my subnets even from other networks. Now I am not 100% sure on my testing as I do not have a machine outside of my network.

Should be possible with some smart mangle rules. I would suggest either looking at ZT's documentation or running a packet capture on the Tik to see which protocols/ports are being used and based off of that you can setup mangle rules to push that traffic over Wan2.

zerotier weakness is single threaded.what device you use?

Hey Mirek, I think someone already explained to you how ZT works with encryption. But in essence traffic is not plaintext.

@@TheNetworkBerg Indeed. Thanks for confirmation and thanks for all the knowledge-rich content you create!

Unfortunately not, need at least ARM or ARM64 architecture, Hap lite is SMIPS

Have you tried testing with anything besides SMB? I've ran Iperf3 tests between two hosts connected through the ZeroTier tunnel and I am getting the expected speeds. I was getting around 43Mbps to a remote fibre link that is connected to a 50Mbps Fibre and is also doing other traffic besides my Iperf3 test. So this looks good to me.

@@TheNetworkBerg I've only done tests with SMB but it has been strange to me that the transfer of files from one device to another that is behind a Mikrotik is much slower than other devices that are directly connected in Zerotier. I did this with a 600/600 fiber line. But the difference is enormous. From 3-4MB/s to about 50-60MB/s PC -> ZT -> PC: 50-60MB/s PC -> Mikrotik hAPac2 -> ZT -> PC: 3-4MB/s I also set up Zerotier on a Ubiquiti EdgerouterX but the result was the same. So I suppose that perform slows down when we connect some router or firewall between the host and ZeroTier Network.

@@unaibas4676 Yeah that is very strange, I can think of many possibilities. But I honestly couldn't tell you why you see those results, if you say you get the same results from other vendor's equipment like Ubiquiti then I imagine you could ask the question to the ZeroTier people directly as well.

@@TheNetworkBerg thanks anyway!!!

@@unaibas4676 uh 3MB/s = 24Mbps.......

No, ZT works behind natted connections which makes it very useful.

Unfortunately not. These are the architectures that are currently supported: ARM64 nRAY, CCR2004, LHGGR ARM cAP ac, CRS305-1G-4S+, CRS309-1G-8S+, CRS317-1G-16S+, CRS318, CRS326-24G-2S+, CRS328-24P-4S+, CRS328-4C-20S-4S+, Cube 60G ac, DISC AC, hAP ac², hAP ac³, LDF ac, LHG ac, mANTBox 52, NetMetal ac², RB4011, SXTsq (ac series), wAP 60G series, Chateau, RB3011, RB1100AHx4, Audience, RB450Gx4, wAP ac

I can definitely look at doing some Juniper videos, are there anything specifically you would like to learn?

Well for starters it works seamlessly on devices behind a NATed connection and this operates at Layer 2 as well so you can actually do things like mac-telnet to a router on its virtual mac-address this is like connecting to a massive bridge in the cloud.

@@TheNetworkBerg Isn't that what L2TP already does? Or its layer 2 function only in the layer 2 of underlay for encapsulation? Also, there's Ethernet over IP. It sends layer 2 signals over an IP adress. What about that? Is Zerotier to get around dynamic IP? Is it cheaper than fixed IP-Addresses on both ends? What is this service good for beyond testing and experiments?

Sort of but not completely, it's more similar to VXLAN which allows us to extend broadcast domains across L3 connections. Being able to connect from a dynamic IP is one benefit yes but definitely not the only reason why you should be looking at ZeroTier, you can build awesome management networks, VPN tunnels or even extend the routing between two or more locations via the ZeroTier connection.

Yeah unfortunately :(

Good point and understandable point of view, many people trust and use ZeroTier, though I am inclined to agree that if you are using the product freely then you are probably part of the product. Though it seems as if ZeroTier makes use of a freemium business model to try and lure bigger customers for a paid for solution seeing as how it's only free up to a certain point you are also offered priority support being a paid for customer. Where being a free one is more like "We'll get to it when we can "