Zerotierone: Keep forced DNS on Windows

Created on 25 Aug 2020 · 9Comments · Source: zerotier/ZeroTierOne

Every time you forcibly establish a DNS server in windows, the Zerotier client deletes it when you enter and exit the network causing all clients to lose internal name resolution. It would be great if entering and leaving the network did not replace the existing DNS configuration.

Maybe it can be forced in the peer configuration on my.zerotier.com...

Windows bug management

Source

alejandroed

👀1

Most helpful comment

We're working on making the DNS automatic!

laduke on 26 Aug 2020

👍4

All 9 comments

https://www.reddit.com/r/zerotier/comments/ig69r6/suggestions_features_requests_fall_2020/g2s66i4?utm_source=share&utm_medium=web2x&context=3

unquietwiki on 25 Aug 2020

What do you mean by "establish a DNS server in Windows"? Please provide steps to reproduce.

laduke on 25 Aug 2020

Connect to a network and set the DNS parameters and DNS Sufix

Captura de pantalla 2020-08-25 a las 19 19 15

Then disconnect unchecking the network on Zerotier GUI and re-connect, you
should see something like this:
Captura de pantalla 2020-08-25 a las 19 27 43

Empty dns server and suffix.

Regards

El mar., 25 ago. 2020 a las 19:15, Travis LaDuke (notifications@github.com)
escribió:

alejandroed on 25 Aug 2020

Thanks! The images didn't work.

laduke on 25 Aug 2020

Re-uploaded

alejandroed on 25 Aug 2020

I see. The Windows client deletes the adapter when it leaves a network, so all that config gets lost. See #659 for more info.

For now, maybe we can find a work-around. Don't leave the network? Uncheck Allow Managed to just remove the address?

laduke on 25 Aug 2020

We tried these strategies but we still having a lot of incidents with end
users. They leave unintentionally or trying to solve one problem they
generate an other..

El El mar, 25 ago 2020 a las 20:07, Travis LaDuke notifications@github.com
escribió:

>
>

I see. The Windows client deletes the adapter when it leaves a network.
See #659 https://github.com/zerotier/ZeroTierOne/issues/659 for more
info.

For now, maybe we can find a work-around. Don't leave the network? Uncheck
Allow Managed to just remove the address?

—
You are receiving this because you authored the thread.
Reply to this email directly, view it on GitHub
https://github.com/zerotier/ZeroTierOne/issues/1249#issuecomment-680185735,
or unsubscribe
https://github.com/notifications/unsubscribe-auth/AGHBBQLHI2OVAEDDMVBQIYTSCP4W7ANCNFSM4QKMQNOQ
.

--

Alejandro Escobar

[image: Aitire S.L.] http://aitire.es/
C/ Uruguay 15 - Entreplanta B - 36201 VIGO (Pontevedra)

Tlf: (+34) 986 16 30 50

www.aitire.es

De conformidad con lo establecido en la Ley 34/2002 de 11 de julio, de
Servicios de la Sociedad de la Información y del Comercio Electrónico, le
comunicamos que en el supuesto de que no desee seguir recibiendo las
comunicaciones e informaciones que viene recibiendo mediante este sistema
de comunicación electrónica, nos lo indique con un correo a
[email protected]. De esta forma sus datos personales serán dados
de baja de nuestra base de datos. Su solicitud será accionada en un plazo
de 10 días desde su envío. En el supuesto de que no recibamos
contestación expresa por su parte, entenderemos que acepta y autoriza que
nuestra empresa siga realizando las referidas comunicaciones. Este mensaje
se dirige exclusivamente a su destinatario y puede contener información
privilegiada o confidencial. Si no es usted el destinatario indicado, queda
notificado de que la utilización, divulgación y/o copia sin autorización
está prohibida en virtud de la legislación vigente.

De acuerdo con el Reglamento General de Protección de datos, se le informa
de que sus datos personales, recogidos en cualquiera de nuestros medios,
van a ser incorporados a un tratamiento de datos automatizado cuya
finalidad es la gestión profesional por parte de AITIRE, S.L.. Los datos
proporcionados se conservarán mientras se mantenga la relación comercial
o durante los años necesarios para cumplir con las obligaciones legales.
Los datos no se cederán a terceros salvo en los casos en que exista una
obligación legal. Si desean ejercer el derecho de acceso, rectificación,
supresión y oposición, limitación del tratamiento, portabilidad de datos
y a no ser objeto de decisiones individualizadas automatizadas, dirijan un
escrito a:

AITIRE, S.L.

C/ Uruguay 15 - Entreplanta B, 36201 Vigo (Pontevedra)
Mail: [email protected]

alejandroed on 25 Aug 2020

We're working on making the DNS automatic!

laduke on 26 Aug 2020

👍4

1.5.0 (1.6.0 Beta) is now available here: https://download.zerotier.com/PRERELEASES/1.5.0/dist/
Release notes here: https://github.com/zerotier/ZeroTierOne/commit/fe1ce885a04ae68894b8a8fc1892db212addbf6e

This allows you to configure a DNS server for a specific search domain (eg. mycompany.local) on macOS and Windows endpoints joined to the network. Unfortunately there's no "standard" way of doing this on Linux yet, so those will be up to the administrator to implement. Data can be retrieved from zerotier-cli listnetworks -j.

You can set enable DNS settings in central by going to https://my.zerotier.com/network/$NETWORK_ID?dns=1. (Note the query arg). You'll also have to enable DNS configuration on the nodes you wish to configure via zerotier-cli set $NETWORK_ID allowDNS 1 because we don't want to open up ZeroTier clients to DNS hijacking just by joining a network. It is an explicit choice by the user/administrator of the machine running ZeroTier.