ZeroTier VPN Setup
Set up a software-defined networking platform using ZeroTier on your RamNode VPS. Create secure peer-to-peer networks with centralized management and authentication.
What is ZeroTier?
ZeroTier is a software-defined networking platform that creates secure peer-to-peer networks. Unlike traditional VPNs that route all traffic through a central server, ZeroTier creates direct encrypted connections between devices while maintaining centralized network management and authentication.
Key Features
- Software-defined networking
- Peer-to-peer connections
- Centralized management
- Cross-platform support
Benefits
- Easy setup and management
- NAT traversal capabilities
- Scalable architecture
- Free tier available
Prerequisites
Before beginning the ZeroTier installation, ensure you have the following:
Initial VPS Setup and Security
First, let's make sure your VPS is properly configured and secured:
sudo apt update && sudo apt upgrade -yConfigure Basic Firewall
# Install UFW if not already installed
sudo apt install ufw -y
# Set default policies
sudo ufw default deny incoming
sudo ufw default allow outgoing
# Allow SSH (adjust port if you've changed it)
sudo ufw allow 22/tcp
# Allow ZeroTier
sudo ufw allow 9993/udp
# Enable firewall
sudo ufw --force enable
# Check status
sudo ufw status verboseSecurity Note
Make sure SSH access is properly configured before enabling the firewall to avoid being locked out of your VPS.
Create ZeroTier Account
Before installing ZeroTier on your VPS, you'll need a ZeroTier account to manage your networks:
- 1Visit my.zerotier.com and create a free account
- 2Verify your email address
- 3Log in to the ZeroTier Central dashboard
Free Tier Includes
- • Up to 25 devices per network
- • Unlimited networks
- • Basic support
- • All core features
Install ZeroTier on Your VPS
Install the ZeroTier client on your RamNode VPS:
curl -s https://install.zerotier.com | sudo bashAlternative Manual Installation
If you prefer to install manually:
# Add ZeroTier GPG key
curl -s 'https://raw.githubusercontent.com/zerotier/ZeroTierOne/master/doc/contact%40zerotier.com.gpg' | gpg --import
# Add ZeroTier repository
echo 'deb https://download.zerotier.com/debian/jammy jammy main' | sudo tee /etc/apt/sources.list.d/zerotier.list
# Update package list
sudo apt update
# Install ZeroTier
sudo apt install zerotier-one -y# Check ZeroTier service status
sudo systemctl status zerotier-one
# Check ZeroTier version
zerotier-cli infoCreate a ZeroTier Network
Now create a new network through the ZeroTier Central dashboard:
- 1Log in to ZeroTier Central
- 2Click "Create A Network"
- 3Note down the 16-character Network ID (you'll need this)
- 4Give your network a descriptive name
- 5Configure the IPv4 address range (default is usually fine)
Network ID Format:
Network IDs are 16 hexadecimal characters, like: a1b2c3d4e5f6g7h8
Join Your VPS to the Network
Connect your VPS to the ZeroTier network you just created:
# Replace NETWORK_ID with your actual network ID sudo zerotier-cli join NETWORK_IDzerotier-cli listnetworksAuthorize the Device
By default, new devices need to be authorized before they can communicate on the network:
- 1. Go back to ZeroTier Central in your browser
- 2. Click on your network
- 3. Scroll down to the "Members" section
- 4. You should see your VPS listed with its ZeroTier address
- 5. Check the "Auth?" checkbox to authorize the device
- 6. Optionally, give it a descriptive name
# Check if you have received an IP address zerotier-cli listnetworks # The network should show as ONLINE with an assigned IPConfigure Network Settings
Configure your ZeroTier network settings through the web interface:
Connect Additional Devices
Connect other devices to your ZeroTier network:
Remember
Each device needs to be authorized in ZeroTier Central before it can communicate on the network. This provides an additional security layer.
Advanced Configuration
Configure advanced features for your ZeroTier network:
Testing Your ZeroTier Network
Verify that your ZeroTier network is working correctly:
# List all ZeroTier networks
zerotier-cli listnetworks
# Check peers (other devices on the network)
zerotier-cli listpeers# Ping another device on the network (replace with actual ZeroTier IP)
ping 192.168.195.2
# Test SSH to another device
ssh user@192.168.195.2
# Check routing table
ip route show | grep ztConnection Tests
Basic Tests
- • Ping between devices
- • SSH connectivity
- • File transfer (scp/rsync)
- • Web service access
Performance Tests
- • Network speed (iperf3)
- • Latency measurement
- • Connection stability
- • NAT traversal check
Troubleshooting Common Issues
Security Best Practices
Follow these security guidelines to keep your ZeroTier network secure:
Network Security
- Use private networks (not public)
- Regularly review authorized devices
- Implement flow rules for access control
- Use descriptive device names
System Security
- Keep ZeroTier client updated
- Secure ZeroTier Central account with 2FA
- Monitor network activity logs
- Use strong passwords for connected services
Security Reminders
- • Never share your Network ID publicly
- • Deauthorize devices that are no longer needed
- • Regularly audit your network members
- • Consider using flow rules to segment network access
Success!
You now have a fully functional ZeroTier network running on your RamNode VPS. This setup provides you with a secure, software-defined network that can connect devices anywhere in the world as if they were on the same local network.
ZeroTier's peer-to-peer architecture means that once devices are connected, they can communicate directly with each other, providing excellent performance while maintaining security through encryption and centralized authentication.
Remember to regularly review your network members and keep your ZeroTier client updated. With proper management, this setup will provide reliable, secure networking for all your connected devices.
For advanced features and enterprise options, visit the ZeroTier documentation or explore their commercial offerings.