Part 2: Build the router VM(s)

To bring us into part 2, the next thing is to create the routing VMs.

I simply did a simple CentOS 7 minimal install with one network interface configured.  At the router, I created network on the same LAN segment.  During setup of the VM, I configured the VM to be with a gateway of  I also did the same with IPv6, fd00:10:10:9::2/64 and fd00:10:10:9::1/64 respectively.  Now when I get to other sites to deploy, the network will change to be &  The reason I chose to go with a /29 here is simply due to I plan to layer in a “services” into these subnets.  This particular set of VMs I plan to layer on a Pi-Hole and Chrony NTP server.

If you have trouble installing CentOS 7 at a minimal install, then this series is not for you.

Once you have the VM created, the first thing to do is install ZeroTier.  Thankfully they make this dead simple.

If you want to verify things:
curl -s '' | gpg --import && if z=$(curl -s '' | gpg); then echo "$z" | sudo bash; fi

If you like to live risky:
curl -s | sudo bash

Run either as root and it is installed.

Other small things I have found that are needed after install,
In /etc/sysconfig/network-scripts/ifcfg-eth0, add the following: NM_CONTROLLED=”no”
In /etc/sysconfig/network, add the following: NETWORKING=yes
In /etc/selinux/config, change SELINUX to be permissive, SELINUX=permissive
Reboot a couple of times, make sure that default gateway and DNS servers show up in their respective places.

At this point, the next thing to do is create the ZeroTier network.  Simply log in and go the networks page and create a new network.  Once that is done, the next thing is to join the network.

zerotier-cli join abcd1234abcd1234

Finally, go authorize the new clients and label them in the “My Networks”.

Part 1: ZeroTier and making a multi-site LAN (MAN?)

Recently I have come across an interesting little software tech that lets me do some fun things that normally one would only see in the data center or large companies.  That software is called ZeroTier.

When I first started playing with this I was doing some really bad things abusing networks to get a nice simple method to access all my remote servers and devices without hassle.  Let’s just say all of what I did was horrible and was burned to the ground in favor of this. My goal was to set up a small network that would span 3 LANs and allow me to connect them together either in a routed or one big bridge.  I do not recommend the bridge but it can be done.

So the first step I took was to draw out what the network should look like. Then I took a little time and thought about it and had to modify it a little more.

Rough hand drawn what I wanted it to look like.

After a little thinking.

In the picture on the left, I identified I would need to use 4 subnets, 3 for the LANs and one for the inter LAN routing.  I then saw a flaw with this initial diagram, how do I route to ZeroTier?  My routers of choice are MikroTik, there is no built-in ZeroTier package for them.  It is then I thought of doing a router on a stick at each site to handle doing the handoff to ZeroTier.  Granted I drew a device with traffic routing through it; not to and from it on the same interface.  This will take you to I need more subnets.  So finally I had what needed to complete this task. 3 LAN subnets, 3 point to point subnets, and 1 ZeroTier subnet.

Now, why did I want to go this way?  Sure one could set up an IPsec tunnel or any various other VPN tunnels and send traffic over them.  This software offered the opportunity to let me make a MAN like network across the internet that is very little configuration and almost zero NAT hole punching.  At work, I have seen what happens when VPNs suddenly die and it is due to someone/something doing something bad.

Continue reading

Reference URL:
Reference URL:
Reference URL:

Series about ZeroTier

Currently, I am writing a little series involving a product I recently discovered, ZeroTier.  Many people seem interested in how I am using it for personal use.  So spending a few nights writing up my thoughts, the how to’s, and grabbing some screenshots along the way.

Below is a bulleted list of post titles for the series.

I hope this is a nice little list of topics/points that will cover the subject well.  Once I have all the core parts written I will post them all back to back (minutes apart) and link them here as well.

(edit 2018-12-07, Updated Part 4 & 5 to have links, Added Part 6 text.)

Xbox One Audio Issue

So the girlfriend and I just tried to watch an episode of Stargate SG-1 on DVD on the Xbox One. During playback we have an interesting audio issue. We heard more background sounds than speech. A short Google search later and the problem was resolved.

To solve this we simply had to open settings, go to display and sound. From there edit the audio output from 7.1 surround to stereo. I think this is the simplest to date of problems that I have run into.

Fix for Java 8+ & iDRAC 6 Connection Failed

For work I recently had to stand up a temporary system that has the old iDRAC 6 in it. Many will know that Java 8+ (from my testing) seems to have a disliking for that version of iDRAC. I spent a day grumbling at the error while standing next to the offending system in the data center watching the OS hang on install. After doing some digging this morning I found the key that kills the connection. SSLv3.

So thanks to MathieuW on the dell community forums for posting this info!

Go to Java installation folder.
Open {JRE_HOME}\lib\security\ -file in text editor.
Delete or comment out the following line “jdk.tls.disabledAlgorithms=SSLv3”.

My notes, open the file in notepad++ as admin, just comment out the whole line. Save. Re-Launch your virtual console.

Reference URL: