/* * Copyright (c)2013-2020 ZeroTier, Inc. * * Use of this software is governed by the Business Source License included * in the LICENSE.TXT file in the project's root directory. * * Change Date: 2024-01-01 * * On the date above, in accordance with the Business Source License, use * of this software will be governed by version 2.0 of the Apache License. */ /****/ package cli import ( "fmt" "zerotier/pkg/zerotier" ) func Help() { fmt.Printf(`ZeroTier Network Hypervisor Service Version %d.%d.%d (c)2013-2020 ZeroTier, Inc. Licensed under the ZeroTier BSL (see LICENSE.txt) Usage: zerotier [-options] [command args] Global Options: -j Output raw JSON where applicable -p Use alternate base path -t Load secret auth token from a file -T Set secret auth token on command line Commands: help Show this help version Print version service [-options] Start node (see below) -d Fork into background (Unix only) status Show node status and configuration join [-options] Join a virtual network -a Token to submit to controller -c Controller identity or fingerprint leave Leave a virtual network networks List VL2 virtual networks network [command] [option] - Network management commands show Show network details (default) set [option] [value] - Get or set network options manageips Is IP management allowed? manageroutes Is route management allowed? globalips Allow assignment of global IPs? globalroutes Can global IP space routes be set? defaultroute Can default route be overridden? peers List VL1 peers peer
[command] [option] - Peer management commands show Show peer details (default) try [...] Try peer at explicit endpoint set [option] [value] - Get or set a core config option port Primary P2P port secondaryport Secondary P2P port (0 to disable) blacklist cidr Toggle physical path blacklisting blacklist if Toggle interface prefix blacklisting portmap Toggle use of uPnP or NAT-PMP controller [option] - Local controller management commands networks List networks run by local controller new Create a new network set [setting] [value] Show or modify network settings members List members of a network member [setting] [value] Show or modify member level settings auth
Authorize a peer deauth
Deauthorize a peer identity [args] - Identity management commands new [c25519 | p384] Create identity (default: c25519) getpublic Extract only public part of identity fingerprint Get an identity's fingerprint validate Locally validate an identity sign Sign a file with an identity's key verify Verify a signature cert [args] - Certificate commands show [serial] List or show details of a certificate newsid [secret] Create a new subject unique ID newcsr [csr] Create a subject CSR sign [certificate] Sign a CSR to create a certificate verify Verify a certificate import [trust,[trust]] Import certificate into this node rootca Certificate is a root CA rootset ZeroTier root node set restore Re-import default certificates export [path] Export a certificate from this node delete Delete certificate from this node An
may be specified as a 10-digit short ZeroTier address, a fingerprint containing both an address and a SHA384 hash, or an identity. The latter two options are equivalent in terms of specificity and may be used if stronger security guarantees are desired than those provided by the basic ZeroTier addressing system. Fields of type must be full identities and may be specified either verbatim or as a path to a file. An is a place where a peer may be reached. Currently these are just 'IP/port' format addresses but other types may be added in the future. The 'service' command starts a node. It will run until the node receives an exit signal and is normally not used directly. `,zerotier.CoreVersionMajor, zerotier.CoreVersionMinor, zerotier.CoreVersionRevision) }