/qubes-issues

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

ProxyVM not working all the time #1126

Closed
Scinawa opened this Issue Aug 16, 2015 · 3 comments

Comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
4 participants
@Scinawa @unman @mfc @andrewdavidwong
@Scinawa

Scinawa commented Aug 16, 2015

Hi,
I have experienced a issue with a ProxyVM I use for openvpn.
My appvm is attached to the proxyvm (both with a fedora21 template). Inside the proxyvm i run openvpn in command line.
Sometimes my appvm just ignore the proxyvm, resulting in a direct access to the internet, withouth passing through the vpn.
Perhaps is something related to a networking problem

When I experience the issue again I would be able to run some tests: tcpdump in proxyvm
A patch could be write some iptables line to drop all non vpn connection in netvm

Thank you
@unman

This comment has been minimized.

Show comment
Hide comment
@unman

unman Aug 17, 2015

Member

@Scinawa
There have been quite a few posts on qubes-users on setting up and using openvpn. How are you directing traffic to the openvpn tunnel?
It's simple to add rules in /rw/config/qubes-firewall-user-script to capture dns, redirect traffic down the tunnel, and restrict output from the proxyVM to openvpn tunnel. (If you do this then you neednt worry about leaks and you have the option of switching the appVM to another proxyVM/netVM without reconfiguration if you choose.)
Member

unman commented Aug 17, 2015

@Scinawa
There have been quite a few posts on qubes-users on setting up and using openvpn. How are you directing traffic to the openvpn tunnel?
It's simple to add rules in /rw/config/qubes-firewall-user-script to capture dns, redirect traffic down the tunnel, and restrict output from the proxyVM to openvpn tunnel. (If you do this then you neednt worry about leaks and you have the option of switching the appVM to another proxyVM/netVM without reconfiguration if you choose.)
@mfc

This comment has been minimized.

Show comment
Hide comment
@mfc

mfc Aug 20, 2015

Member

hi @Scinawa, I don't know if you saw the recent post in qubes-users as well as the OpenVPN, revisited thread.
Member

mfc commented Aug 20, 2015

hi @Scinawa, I don't know if you saw the recent post in qubes-users as well as the OpenVPN, revisited thread.

@andrewdavidwong andrewdavidwong added the question label Apr 6, 2016

@andrewdavidwong

This comment has been minimized.

Show comment
Hide comment
@andrewdavidwong

andrewdavidwong Apr 6, 2016

Member

I'm assuming this issue has been resolved based on the lack of recent activity. If not, please feel free to re-open it.
Member

andrewdavidwong commented Apr 6, 2016

I'm assuming this issue has been resolved based on the lack of recent activity. If not, please feel free to re-open it.

@andrewdavidwong andrewdavidwong closed this Apr 6, 2016

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment