ZeroConf

Zero Configuration Network

The zeroconf protocol is a set of protocols that allow computers and network peripherals (printers, file servers, etc.) to be interconnected and communicate with each other over a network without requiring any configuration by the user nor a central server.

Zero configuration networks can:

In the absence of a Dynamic Host Configuration Protocol (DHCP) server, assign link-local addresses:
- IPv4 - 169.254.0.0/16
- IPv6 - ff02::/16
Assign domain names using the top level domain suffix ".local":
- For hosts, this is the host_name followed by ".local"
- For peripherals, this is usually the manufacturer name or initials plus the mac address followed by ".local".
Use the Multicast Domain Name Server (mDNS) protocol to resolve local domain names to IP addresses. There is no centralized server. Each host keeps a cache for translating local domain names to IP addresses.
- For IPv4, mDNS uses address 224.0.0.251 and for IPv6, ff02::fb.
- mDNS uses port 5353 UDP
Use the Domain Name Server - Service Discovery (dns-sd) protocol to discover services advertised by host and network peripherals. Note Microsoft Windows does not implement dns-sd!

The local network in Photo 1 is composed of four Raspberry Pi 5B's connected to a five port ethernet switch. There is no DHCP server, and there is no connection to the Internet.

Photo 1. Four Raspberry Pi's connect to a Dlink, Five Port, Ethernet Switch.

Hostname	IPv4 Address
RPi-1	169.254.199.245
RPi-2	169.254.205.8
RPi-3	169.254.38.114
RPi-4	169.254.11.179

For this to work with the Network Manager, I had to set the IPv4 method to "Link-Local".

Only one of the Raspberry Pi's is connected to a keyboard, mouse, and monitor. It can Secure Shell (ssh) into the other Pi's with the command:

ssh user_name@host_name.local

You can also ping another host with the command:

ping host_name.local

For a zero-configuration network to work properly, either port 5353 UDP needs to be open or IPv4 244.0.0.251.

Zeroconf Implementations

Apple's implementation of the zeroconf protocol is Bonjour, which became infamous with AirPrint and the first driverless printers. Bonjour is a marketing name on MacOS; the program name is mDNSresponder.
Linux's implementation of zeroconf is avahi, which is a daemon, and it is usually installed by default on most Linux distributions. However its utilities: avahi-browse and avahi-resolve are usually not installed by default
Microsoft Windows 11 also implements mDNS. However, out of the box, it currently does not implement DNS-SD (service discovery).

References:

Avahi-browse

Normally the avahi-daemon just sits there in the background silently doing its thing. However, for troubleshooting, you will need avahi-browse, which usually is not installed by default. To install it:

sudo apt install avahi-utils

For the network in Figure 1, to browse all, resolve addresses, and terminate (-art):

avahi-browse -art

and the output is:

 
+   eth0 IPv4 RPI-2                                         Device Info          local
+   eth0 IPv4 RPI-2                                         Microsoft Windows Network local
+   eth0 IPv4 RPi-4 [d8:3a:dd:e4:c9:e1]                     Workstation          local
+   eth0 IPv4 RPi-3 [d8:3a:dd:f2:c4:53]                     Workstation          local
+   eth0 IPv4 RPi-1 [d8:3a:dd:a0:71:e3]                     Workstation          local
+     lo IPv4 RPi-1 [00:00:00:00:00:00]                     Workstation          local
=   eth0 IPv4 RPi-4 [d8:3a:dd:e4:c9:e1]                     Workstation          local
   hostname = [RPi-4.local]
   address = [169.254.11.179]
   port = [9]
   txt = []
=   eth0 IPv4 RPI-2                                         Device Info          local
   hostname = [RPi-2.local]
   address = [169.254.205.8]
   port = [0]
   txt = ["model=MacSamba"]
=   eth0 IPv4 RPI-2                                         Microsoft Windows Network local
   hostname = [RPi-2.local]
   address = [169.254.205.8]
   port = [445]
   txt = []
=   eth0 IPv4 RPi-1 [d8:3a:dd:a0:71:e3]                     Workstation          local
   hostname = [RPi-1.local]
   address = [169.254.199.245]
   port = [9]
   txt = []
=     lo IPv4 RPi-1 [00:00:00:00:00:00]                     Workstation          local
   hostname = [RPi-1.local]
   address = [127.0.0.1]
   port = [9]
   txt = []
=   eth0 IPv4 RPi-3 [d8:3a:dd:f2:c4:53]                     Workstation          local
   hostname = [RPi-3.local]
   address = [169.254.38.114]
   port = [9]
   txt = []

In addition to being a workstation, "RPi-2.local", is also a file server that uses the Server Message Block (SMB) protocol developed by Microsoft ("[Model=MacSamba"] and "Microsoft Windows Network Local"). The Linux implementation of the SMB Protocol is Samba.

To list a particular service type use:

Service Name	Service Type	Port No.
Printer	_ipp._tcp	631
File Server	_smb._tcp	445
Web Server	_http._tcp	80

For example, to list just file servers:

avahi-browse -rt _smb._tcp

For the network in Photo 1, the output is:

 
+   eth0 IPv4 RPi-2                                           Microsoft Windows Network local
=   eth0 IPv4 RPi-2                                           Microsoft Windows Network local
   hostname = [RPi-2.local]
   address = [169.254.205.8]
   port = [445]
   txt = []

References

How to Configure mDNS with Avahi on Ubuntu

Zero Configuration Networks with a DHCP Server

Nowaday, nearly everyone has Internet access, and the router that connects to Internet has a built-in DHCP server that automatically assigns IP addresses.

The network in Photo 2 depicts a zero-configuration network with a router that has a built-in DHCP server and a 4 port Ethernet switch.

Photo 2. Three Raspberry Pi's and a Windows 11 HP computer connected to a four port Dlink Router.

Hostname	IPv4 Address
RPi-1	192.168.5.6
RPi-2	192.168.5.7
RPi-3	192.168.5.8
hp6	192.168.5.9

For the network in Photo 2:

avahi-browse -art

and the output is:

 
+   eth0 IPv4 RPI-2                                         Device Info          local
+   eth0 IPv4 RPI-2                                         Microsoft Windows Network local
+   eth0 IPv4 RPi-3 [d8:3a:dd:f2:c4:53]                     Workstation          local
+   eth0 IPv4 RPi-1 [d8:3a:dd:a0:71:e3]                     Workstation          local
+     lo IPv4 RPi-1 [00:00:00:00:00:00]                     Workstation          local
=   eth0 IPv4 RPI-2                                         Device Info          local
   hostname = [RPi-2.local]
   address = [192.168.5.7]
   port = [0]
   txt = ["model=MacSamba"]
=   eth0 IPv4 RPI-2                                         Microsoft Windows Network local
   hostname = [RPi-2.local]
   address = [192.168.5.7]
   port = [445]
   txt = []
=   eth0 IPv4 RPi-3 [d8:3a:dd:f2:c4:53]                     Workstation          local
   hostname = [RPi-3.local]
   address = [192.168.5.8]
   port = [9]
   txt = []
=   eth0 IPv4 RPi-1 [d8:3a:dd:a0:71:e3]                     Workstation          local
   hostname = [RPi-1.local]
   address = [192.168.5.6]
   port = [9]
   txt = []
=     lo IPv4 RPi-1 [00:00:00:00:00:00]                     Workstation          local
   hostname = [RPi-1.local]
   address = [127.0.0.1]
   port = [9]
   txt = []

Windows 11

Windows 11 does implement DNS-SD, therefore the HP6 computer is not listed as a Workstation.

Windows 11 does implement the mDNS (name resolution), but it does not implement DNS-SD (servicce discovery). Therefore, hp6.local is not listed as a workstation in the output of avahi-browse -art, but if you know the hostname.local, it willresolve the IP address:

avahi-resolve -n hp6.local

 
hp6.lcal        192.168.5.9

However, it will not resolve address:

avahi-resolve -a 192.168.5.9

results in a timeout error!

Trying to determine what protocol Windows 11 uses in place of DNS-SD is like trying to hit a moving target; it keeps moving.

I believe that Microsoft currently used Web Service Dynamic Discovery (WS-Discover or WSD) to discovery services. WS-Discovery is another multicast discovery protocol that uses Web Services Standards instead of DNS-SD for disovering services. WS-Discovery uses IPv4 address 239.255.255.250 or IPv6 ff02::c and port 3702 TCP and UDP. WS-Discover is the protocol name whereas Web Services for Devices (WSD) is the API.

Previously, Microsoft use NetBIOS/SMBv1 for discovering services.

Microsoft's new ignitaves is Windows Protoected Print (WPS) mode. Sometime is 2027, they intent to do away with legancy print drivers.

There is also Universal Plug and Play (UPnP)

Windows Internet Naming Service

WINS

137

UDP

-- -- -- -- -- -- -- -- -- -- --

SSH

Althought Windows 11 claims to have a built-in SSH Client and Server, only the client is installed by default.

To install & Enable OpenSSH:

Download & Install OpenSSH
Enable the SSH Server:
Open Port 22 to incoming traffic:
- Settings --> Network & internet --> Ethernet
- Select "Private Network"

References

Virtual Private Networks (VPNs) and Firewalls

VPNs and firewalls can block mDNS and/or DNS-SD. On a VPN, either whitelist IPv4 244.0.0.251 (IPv6 ff02::fb) or port 5353 UDP.

Local DNS Server

Security

As depicted in the output of avahi-browse above, all a hacker has to do is gain access to your network, and immediately available to him is the mac address, IP address, and host_name of every device on your network. This is a trust all devices on the network security model.

The US National Security Agency (NAS) and the US National Institute of Stands and Technology (NIST) recommends a zero trust model. That is, trust no device on the network.

Below are the devices I discovered on my home network, as a non-priviledged user, with "avahi-browse -art":