Feature #9238

Add support for Zerotier

Added by Corey Boyle over 2 years ago. Updated about 2 months ago.

New Package Request
Target version:
Start date:
Due date:
% Done:


Estimated time:


Adding support for ZeroTier with its multi-path feature, would give pfS a better position in the SD-WAN market.


#1 Updated by Corey Boyle over 2 years ago

Excerpt from

1.4.0 should be our next major release. It includes support for multiple concurrent physical network paths
(discovered automatically in most cases) with load balancing and much faster handling of path failures.
This is step one toward "SD-WAN" features, bringing us closer to our goal of a converged
VPN/SDN/SD-WAN/P2P solution. After automatic path bonding and fast fail-over we will be introducing
support for QoS (quality of service) rules and very likely a plugin architecture for packet classification.

#2 Updated by Corey Boyle over 2 years ago

Minimal functionality required would be joining and leaving networks. The controller service is not necessary as that can be done elsewhere on a cheap VPS.

#3 Updated by Jim Pingle about 2 years ago

  • Target version changed from 48 to 2.5.0

#4 Updated by Corey Boyle about 2 years ago

The integration could be very similar to OpenVPN. An OpenVPN client or server, shows up as a virtual NIC, the same way a ZT network does. ZT virtual NICs could then be assigned to pfS interfaces for firewall purposes.

#5 Updated by Christian McDonald almost 2 years ago

Seconding this request!

It seems Corey has and ChanceM have already done most of the heavy lifting:


#6 Updated by Corey Boyle almost 2 years ago

I don't think my code would be of much use, I was just trying to get the package to work with the latest pfS version. ChanceM did the hard part. For the core pfS team, this would probably be trivial to get done.

#7 Updated by Deon George almost 2 years ago

I think it would be pretty awesome if PF supported this. ZT is a great and simple way of securing devices in a virtual network.

#8 Updated by Jim Pingle over 1 year ago

  • Project changed from pfSense to pfSense Packages
  • Category set to New Package Request
  • Target version deleted (2.5.0)

#9 Updated by Gregory Moore about 1 year ago

Package has been updated to run on 2.4.4-RELEASE-p3. Still some work to be done on setting up the interfaces, right now it has to be done manually. Controller functionality needs to be redone as the API changed/never was complete.

#10 Updated by Val Schmidt 2 months ago

+1 for this feature!!!

#11 Updated by Corey Boyle about 2 months ago

@Netgate - Any chance this could be added to 2.5 ?

Also available in: Atom PDF