Re: [qubes-users] qrexec to mimic ssh listen?
Unman: > On Sat, Sep 16, 2017 at 06:43:00PM +, 0xB44EFD8751077F97 wrote: >> Using Qubes3.2, I'm attempting to create a communication >> channel between two VMs. One VM without networking. I'd like to mimic >> ssh -L port:localhost:port. >> >> I think a qrexec rpc should work, but I'm not sure what to include in >> the rpc-action file. Any help is appreciated. >> >> Thanks! > > Have a look at this using socat: > https://github.com/QubesOS/qubes-issues/issues/2148 > > Although it's still marked as open, it works well and is used in Qubes > 4.0. > > socat TCP-LISTEN:444,fork EXEC:"qrexec-client-vm target-vm my-tcp-service" > does just what you want. > > If you had my-tcp-service on target-vm: > socat STDIO TCP:localhost:22 > > You could 'ssh localhost:' and ssh in to target, even when target is not > networked. > A little simple scripting and you can have this as a general listener to > connect to different services on targets. > > unman > Awesome, this really helped me. Thank you so much! -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/8b27a8d0-730c-3e3e-4ee7-bfc6bf13503c%40firemail.cc. For more options, visit https://groups.google.com/d/optout.
Re: [qubes-users] qrexec to mimic ssh listen?
On Sat, Sep 16, 2017 at 06:43:00PM +, 0xB44EFD8751077F97 wrote: > Using Qubes3.2, I'm attempting to create a communication > channel between two VMs. One VM without networking. I'd like to mimic > ssh -L port:localhost:port. > > I think a qrexec rpc should work, but I'm not sure what to include in > the rpc-action file. Any help is appreciated. > > Thanks! Have a look at this using socat: https://github.com/QubesOS/qubes-issues/issues/2148 Although it's still marked as open, it works well and is used in Qubes 4.0. socat TCP-LISTEN:444,fork EXEC:"qrexec-client-vm target-vm my-tcp-service" does just what you want. If you had my-tcp-service on target-vm: socat STDIO TCP:localhost:22 You could 'ssh localhost:' and ssh in to target, even when target is not networked. A little simple scripting and you can have this as a general listener to connect to different services on targets. unman -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/20170920222913.45njd55sneekmzwh%40thirdeyesecurity.org. For more options, visit https://groups.google.com/d/optout.
[qubes-users] qrexec to mimic ssh listen?
I think you can use a systemd socket associated with a `socat` service that connects the rpc stdin/stdout to a target VM listening port. You can mimic how the Templates updates packets are redirected to the port 8082 of sys-net using rpc in R4.0. Since you're using R3.2, if you can't figure out anything, I'll post here an example tomorrow. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/5f7686a0-703c-4285-9b6f-b2e704f52bb9%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[qubes-users] qrexec to mimic ssh listen?
I think you can use a systemd socket associated with a `socat` service that connects the rpc stdin/stdout to a target VM listening port. You can see the basics in how the Templates updates packets are redirected to the port 8082 of sys-net using rpc. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/122c2119-df76-40b2-a4d5-8009d63c3cb5%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[qubes-users] qrexec to mimic ssh listen?
Using Qubes3.2, I'm attempting to create a communication channel between two VMs. One VM without networking. I'd like to mimic ssh -L port:localhost:port. I think a qrexec rpc should work, but I'm not sure what to include in the rpc-action file. Any help is appreciated. Thanks! -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/703aa8fc-350a-bc7d-8666-d7b36fce90e6%40firemail.cc. For more options, visit https://groups.google.com/d/optout.
