I love your content… all signal and no noise. You give complete end-to-end examples. The information flows fast, and I often have to rewind or rewatch, but that’s not a problem. It gives me the information I need to then branch off into my own investigations.
In my future videos (once I'm back from vacation) I'd like to demonstrate few more ways to build a L2 tunnels so stay tuned! It's great to know that it's been rock solid for you. Always good to learn from real-world experiences. Cheers!
Unfortuantly ZeroTier is blocked in my country, so I use NetBird instead. Moonlight + GameStream works almost flawlessly. PC connected to 100/10mbts ethernet and Android connected to 4G.
Hi! Thank you for this very useful content. This brings hope to me because I am really disappointed with ZT because the most part of the time I am under relay state (ping >500ms) because I am using mobile cellular network in my two sites. I hope self hosting helps
@@LinuxCloudHacks Thanks! I have tried Tailscale and definitely runs faster, I have pings around 150-200ms but it is behind relays too. My transfers are now around 18Mbps compared to ZT that were 1Mbps. But well, this is better for Remote Desktop applications
Great video! If all this (moons, controllers, etc.) are inside my home network, I will still depend on ZeroTier services if I want to connect from outside my home network, right? So I am not sure if this counts as self hosting then... Do I understand correctly that there would need to be a moon that is publicly hosted in the internet (a gateway so to say) to establish a connection to my overlay network.
Hi and thanks! The demo shows air-gapped installation - we are self-hosting all the infrastructure - moon and controller. It's not dependent on ZeroTier external servers. If you'd want to access your network from the Internet you need to expose the moon to the Internet. Upon creation of the moon in the "stableEndpoints" you need to add public IP(s) that your moon will be available on (forward ports on firewall etc.). Once you copy the moon definition to the client it will know how to get to that moon (via public Internet) as the public IP of the moon is hardcoded. So it's possible to not depend on ZeroTier servers to access your home network from the Internet. Let me know if that makes sense!
Hi! It's not about the terminal emulator but the post-processing. It can be any terminal emulator as long as it has black background. I'm using Alacritty. In Davinci Resolve video editor you put your face as the first layer and on top of that you put the the terminal as the second video layer. Then you set the composite mode of the terminal video track to "Add". This will cause those two video tracks to merge into one. Black color (terminal background) will disappear. Of course I'm adding some blur and darken the first layer etc. Cheers!
Hello! Is there any alternative to zerotier? As I understand, the main mechanism behind it is udp hole punching. And this is very useful. I bet there are. I am not sure I can trust zerotier binaries
Hi! ZeroTier client software (ZeroTier ONE) is open source (you can find it on github). There are some good alternatives like Tailscale (with headscale controller) or Nebula. Both implement mesh type VPN. I'll try to make videos on both. I've seen few other solutions (NetBird, NetMaker, FireZone) but have not tried them (yet). It all depends on your use case (is it a site to site type of connection or more like a road warrior setup; how many clients do you have; do you have a central location for a VPN hub or controller). In general, if you have a static IP and access to the firewall you can stick to WireGuard or IKE2 (hub and spoke topology). There are some good management tools like "wg easy". If however you have multiple clients and you require them connecting directly in a dynamic manner then you can go a mesh VPN route (peer to peer, self discovery, etc.). Not sure if it answers your question :) Cheers!
@@LinuxCloudHacks Thank you! Yeah I see that there are alternatives. I didn't know it is opensource (simply tried search debian repos for it but couldn't find package). Then it's ok.
I love your content… all signal and no noise. You give complete end-to-end examples. The information flows fast, and I often have to rewind or rewatch, but that’s not a problem. It gives me the information I need to then branch off into my own investigations.
Thanks! Trying to pack as much information in 15min as possible :)
I've been using ZeroTier as a free MPLS circuit from LA to Vegas for 2 years. It's been rock solid. Layer 2 adjacency for free.
In my future videos (once I'm back from vacation) I'd like to demonstrate few more ways to build a L2 tunnels so stay tuned!
It's great to know that it's been rock solid for you. Always good to learn from real-world experiences. Cheers!
Unfortuantly ZeroTier is blocked in my country, so I use NetBird instead. Moonlight + GameStream works almost flawlessly. PC connected to 100/10mbts ethernet and Android connected to 4G.
Hi! Thank you for this very useful content. This brings hope to me because I am really disappointed with ZT because the most part of the time I am under relay state (ping >500ms) because I am using mobile cellular network in my two sites. I hope self hosting helps
Hi! Unless you need Layer2 connectivity you can also try other solutions like tailscale (that's using wireguard under the hood).
@@LinuxCloudHacks Thanks! I have tried Tailscale and definitely runs faster, I have pings around 150-200ms but it is behind relays too. My transfers are now around 18Mbps compared to ZT that were 1Mbps. But well, this is better for Remote Desktop applications
+1 THanks!
Welcome!
Perfect! Thank you!
I'm glad you found it helpful! If you have any questions or need more tips, feel free to ask!
Great video! If all this (moons, controllers, etc.) are inside my home network, I will still depend on ZeroTier services if I want to connect from outside my home network, right? So I am not sure if this counts as self hosting then... Do I understand correctly that there would need to be a moon that is publicly hosted in the internet (a gateway so to say) to establish a connection to my overlay network.
Hi and thanks!
The demo shows air-gapped installation - we are self-hosting all the infrastructure - moon and controller. It's not dependent on ZeroTier external servers. If you'd want to access your network from the Internet you need to expose the moon to the Internet. Upon creation of the moon in the "stableEndpoints" you need to add public IP(s) that your moon will be available on (forward ports on firewall etc.). Once you copy the moon definition to the client it will know how to get to that moon (via public Internet) as the public IP of the moon is hardcoded. So it's possible to not depend on ZeroTier servers to access your home network from the Internet.
Let me know if that makes sense!
would you be kind enough to tell me what terminal emulator you use to have your web cam in the back like that. It's really cool.
Hi! It's not about the terminal emulator but the post-processing.
It can be any terminal emulator as long as it has black background. I'm using Alacritty. In Davinci Resolve video editor you put your face as the first layer and on top of that you put the the terminal as the second video layer. Then you set the composite mode of the terminal video track to "Add". This will cause those two video tracks to merge into one. Black color (terminal background) will disappear. Of course I'm adding some blur and darken the first layer etc.
Cheers!
Hello! Is there any alternative to zerotier? As I understand, the main mechanism behind it is udp hole punching. And this is very useful. I bet there are. I am not sure I can trust zerotier binaries
Hi! ZeroTier client software (ZeroTier ONE) is open source (you can find it on github). There are some good alternatives like Tailscale (with headscale controller) or Nebula. Both implement mesh type VPN. I'll try to make videos on both. I've seen few other solutions (NetBird, NetMaker, FireZone) but have not tried them (yet).
It all depends on your use case (is it a site to site type of connection or more like a road warrior setup; how many clients do you have; do you have a central location for a VPN hub or controller). In general, if you have a static IP and access to the firewall you can stick to WireGuard or IKE2 (hub and spoke topology). There are some good management tools like "wg easy". If however you have multiple clients and you require them connecting directly in a dynamic manner then you can go a mesh VPN route (peer to peer, self discovery, etc.).
Not sure if it answers your question :) Cheers!
@@LinuxCloudHacks Thank you! Yeah I see that there are alternatives. I didn't know it is opensource (simply tried search debian repos for it but couldn't find package). Then it's ok.
+1
Thanks!