ZenArmor, OpnSense and NetBird interface

Follow

Ari Suutari

• January 02, 2026 11:50

Should ZenArmor work with NetBird interface (wt0, seems it is tun interface, but just renamed). I have chosen it in 'protect interfaces' list, but it doesn't seem that traffic flowing thru it is visible in live view or other reports. Other interface (lan/dmz) work ok so this is something else than general problem in installation. 

This is OPNsense 25.10.1 and ZenArmor 2.3.1.

0

• Official comment

  

  SVN Support Team

  • January 02, 2026 13:01

  Hi Ari,

  Thanks for reaching out and sharing your concern.

  Netmap cannot work with Netbird interfaces because wt0 is a userspace-managed tunnel rather than a kernel-backed NIC. Netmap relies on kernel-level packet I/O and supported NIC drivers. As a result, Zenarmor cannot inspect Netbird traffic.

  Comment actions Permalink
• 

  Ari Suutari

  • January 02, 2026 13:12

  I see. I was under impression that this is similar to OpenVPN tun interface and assumed that it would work. 

  There are messages like this... so "activated" here does not mean it is really activated :-(

  [84291] 936.414539 [1167] generic_netmap_attach     Emulated adapter for wt0 created (prev was NULL)
  [84291] 936.414607 [ 319] generic_netmap_register   Emulated adapter for wt0 activated

  0

  Comment actions Permalink

Please sign in to leave a comment.