DevOps Network between VMs

CaesarVialpando · May 31, 2025, 11:04pm

Hello,

Could you help me to understant, how to setup following networking for my devops network?

There are:

1x AppVM (debian)
1x DisposableVM (debian)
1x Windows HVM

A goal is to setup:

all 3 VMs can access every port on each other VM (so for example port 445 on Windows HVM will be accesible by random port by every debian machine where one is disposable)
AND also all 3 VMs don’t have access to the internet

Could anybody help me to understand how to setup this persistently, so I don’t need to allow every port on every device? (Like in public script how to setup port forwarding in Qubes).

Thank you very much!

Jedi · June 1, 2025, 5:47am

Would the following work:

Create a new AppVM, set its network to (none), and under the Advanced tab tick Provides network access to other qubes.

Base your Debian AppVM, disposable, and your Windows HVM’s networks to this new isolated NetVM.

This way, you should be able to reach each other qube by using the IP addresses the isolated NetVM assigns to them.

Edit:

You may have to add the service qubes-firewall within the NetVM’s settings

CaesarVialpando · June 1, 2025, 1:29pm

Thank you very much!