Hi. I want to get this VM configuration: Internet <-- OpenBSD(VM1) <-- Firewall(VM2) <-- AppVM(VM3)
I use OpenBSD as a NetVM. I call it VM1. I assigned the PCI network card to this VM, and it has an em0 interface to connect to the internet. I'd like this OpenBSD VM to be the NetVM for other Qubes, so I created a new debian AppVM (VM2), which has no NetVM of its own, and I made it the NetVM of Openbsd(VM1): OpenBSD(VM1) --> VM2 This made it possible to get an xnf0 interface in OpenBSD(VM1). I have enabled IP forwarding and enabled Nat for xnf0, and I can ping google from the xnf0 interface, meaning that it has internet access: ping -I xnf0 8.8.8.8 I made VM2 the NetVM for VM3. VM1 --> VM2 <-- VM3 I enabled IP forwarding in VM2 and I tested some IPtables configurations for allowing forwarding between the 2 interfaces in VM2. I made it possible to ping the xnf0 interface in VM1 from VM3. But when I can't ping an internet address. Could you please tell me what I need to do in VM2 so that I can make VM2 act like a regular firewall VM, even theough it is a default Qubes NetVM? Thanks. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/ea6cbe867d52080d2b2ba3aa39afd048.squirrel%40bitmailendavkbec.onion. For more options, visit https://groups.google.com/d/optout.
