adamierymenko
commented
4 years ago Also tag #1056 since this was likely motivated by this.
Open adamierymenko opened 4 years ago
adamierymenko
commented
4 years ago Also tag #1056 since this was likely motivated by this.
whulshof
commented
4 years ago Hi, I have two opensense (fork from pfsense, freebsd based) firewalls on which zerotier is running fine. Only if I connect them with L3 double route, one to lan-opnsense-1 and the other to lan-opnsense-2 via their resp. zerotier addresses, I'm getting 100% zerotier cpu-load and no connection between firewalls. It starts OK, but within minutes this happens on one of the two firewalls. It seems to be some kind of loop between the firewall lan-addresses, so it could be this issue? Pls advise?
whulshof
commented
4 years ago different subnets by the way
ZeroTier will (at least on Linux) add managed routes on routers. This is nominally the "correct" behavior but causes a route to be added on the router to itself for a local subnet, causing loops and IP TTL expiration at least in one direction.
This doesn't appear to happen in all cases, so needs investigation. May be a Linux managed routes bug. Witnessed on our new office VM server.