ZeroTier Question
-
@WLS-ITGuy said in ZeroTier Question:
@scottalanmiller The drives are mapped via logon script but have a red x when off campus. When you click on them it says it could not reconnect.
Then you have DNS resolution issues, a routing issue, or a firewall issue.
Most likely it is DNS.
-
My machines off the network can still ping the server by netbios name. It comes up with the ZT address.
So the shared drive (mapped by GPO) still works.
I have changed no DNS settings or anything at all.
-
@scottalanmiller If I ping the server name, whether it is FQDN or just the name, it shows the 198.105.254.130 address from a WIndows 10 laptop.
I am on campus now so I cannot test on my laptop. However, when I did test last night, I got a similar address like the one above. But I could see the Server name in my Finder on my mac.
-
Just to add some info I can ping the ZT NIC IP of the DC on the remote machine. I can also connect to mapped drives using \SERVER-IP\SHARE
-
@WLS-ITGuy said in ZeroTier Question:
@scottalanmiller If I ping the server name, whether it is FQDN or just the name, it shows the 198.105.254.130 address from a WIndows 10 laptop.
I am on campus now so I cannot test on my laptop. However, when I did test last night, I got a similar address like the one above. But I could see the Server name in my Finder on my mac.
Is that your ZT range?
Do an nslookup to see where it gets its address from.
-
@WLS-ITGuy said in ZeroTier Question:
Just to add some info I can ping the ZT NIC IP of the DC on the remote machine. I can also connect to mapped drives using \SERVER-IP\SHARE
Oh, you are using the ZT IP directly in the mapped drive settings?
-
@scottalanmiller I just did as a test to see if it would resolve via IP and it does.
-
@scottalanmiller ZT Range is 192.168.191.x/24
-
@WLS-ITGuy said in ZeroTier Question:
@scottalanmiller ZT Range is 192.168.191.x/24
So you have a mismatch. What you showed above is not in this range.
-
@scottalanmiller I don't see where though...Or how for that matter.
-
@dafyre said in ZeroTier Question:
This will also mean that you need to put the ZT IP address of your DNS server on the ZT NICs on Laptops that leave the physical network.
Edit: The caveat here will be if your DNS server responds with a LAN IP address instead of a ZT IP address for a device that is not located on physical LAN.
This is the continuing problem. your office DNS will have two or more IP's for laptops that live in the office at least part time. for example - if your laptop is at the office, and using DHCP from Windows, with DNS auto register enabled, all laptops will have two IPs in DNS. That LAN IP will not be automatically removed just because you go to StarBucks. So now, when the server goes looking for your laptop, it will find two IPs.. one of which will not work because it's not on the local network at the moment.
The same goes for Servers in a situation where you have a non ZT device on the local network. Local devices that don't have ZT installed are known to get a DNS response for a ZT IP address, and this of course causes problems.
-
@Dashrender All devices on LAN or off LAN have ZT installed.
-
@WLS-ITGuy said in ZeroTier Question:
@scottalanmiller I don't see where though...Or how for that matter.
That's where I am confused. Can you post the results from an nslookup of the server name from the machines that do not work?
-
Sure - any specific commands?
If not, I get:
Default Server: Unkown
Address: 2602:306:8b7e:f60::1 -
Let me ask this question...
We are a subdomain of the main branch organization. They have rmoved to Office 365 but we cannot be a part of that move. Don't get me started on that part.
Could this be part of the issue?
I don't see how but at this point I am looking at everything.
-
@WLS-ITGuy said in ZeroTier Question:
Sure - any specific commands?
If not, I get:
Default Server: Unkown
Address: 2602:306:8b7e:f60::1nslookup servername
If that returns nothing, check your DNS settings. What server is it trying to reach?
-
@WLS-ITGuy said in ZeroTier Question:
Let me ask this question...
We are a subdomain of the main branch organization. They have rmoved to Office 365 but we cannot be a part of that move. Don't get me started on that part.
Could this be part of the issue?
I don't see how but at this point I am looking at everything.
O365 doesn't have any components that would be involved here.
-
@WLS-ITGuy said in ZeroTier Question:
Default Server: Unkown
This implies that there is no default DNS server listed on that host. Is that right?
-
@Dashrender said in ZeroTier Question:
@WLS-ITGuy said in ZeroTier Question:
Default Server: Unkown
This implies that there is no default DNS server listed on that host. Is that right?
Looks like that to me.
-
@scottalanmiller said in ZeroTier Question:
@WLS-ITGuy said in ZeroTier Question:
Let me ask this question...
We are a subdomain of the main branch organization. They have rmoved to Office 365 but we cannot be a part of that move. Don't get me started on that part.
Could this be part of the issue?
I don't see how but at this point I am looking at everything.
O365 doesn't have any components that would be involved here.
Let me explain a bit.
www.wels.net is the main org
www.wls.wels.net is us.
The main org went Azure and Office 365 but due to costs we weren't going to move to office 365.
Could it have something to do with their DNS of www.wels.net being pointed to Office 365?
