Accessing external IP of machine from internal

AWhite · November 21, 2023, 11:17pm

Hi folks,

I’ve got a little issue that I just don’t know what to do about it in this regard.

Trying to get the external IP accessible from inside sys-net.

For example… (not actual IPs)
External IP is 10.0.1.9
sys-firewall is 10.137.13.5
virtual1 is 10.138.14.8
virtual2 is 10.138.14.9

Virtual 2 has a service on it.
Virtual 1 is trying to access that service as though it is an external machine.

So targeting 10.0.1.9 is just saying that it can’t be connected to.
Yet from external, it can be.

How can I get that working correctly?

Thanks.
A.

DVM · November 22, 2023, 12:12am

If I understand correctly, you want to access a service inside a qube from an external machine on the same network?

AWhite · November 22, 2023, 12:41am

Not exactly.
That is what currently happens.

What I want is to be able to access the PCs external IPfrom insider a different vrtualjust like I would be on an external remote machine. So having it targetted external IP and pretty mu loop back to the external NIC essentially,so it’s just like accessing it from outside.

apparatus · November 22, 2023, 2:24am

Is it the IP of your network interface in sys-net?
Try to ping 10.0.1.9 from sys-net, sys-firewall and virtual1, see where it fails.

barto · November 22, 2023, 3:15pm

You need to setup a “u-turn NAT”, which is doable… in different ways, for iptables and nft.
So, what Qubes-OS release do you run?