I’ll be quick on this, since I’m away. Hopefully it’ll help someone. I’ll edit it properly in the weeks ahead.
So, I needed to connect to internet via USB tethering. Here’s how I do it.
- I didn’t choose during Qubes OS install
sys-usbandsys-netto be handled together, but separately. - I have more than one USB controllers (NOT ports!).
- For each controller, I created separate
sys-usb, preferably based onminimals, thus reducing attacking surface. - Each
sys-usbis a-must disposable for security reasons. - One of the controllers is strictly dedicated to USB mouse and/or USB keyboard, nothing else can be attached to it.
- For the noobs, for the other USB controller, in its sys-usb
Settings->Advanced tab "Provides network"is checked. Let’s call that qube -sys-usb-teth. - Detach any external devices you had on
sys-usb-tethand restart the qube to bring it to clean state for security reasons. - Connect your phone to the qube.
- When recognized, on the phone enter
"Portable hotspot"setting, don’t turn it on, but only “USB tethering” option. - In
sys-usb-tethterminal now run
$ sudo NetworkManager
Yes, with privileges.
- Now check if it’s working by running there for example
$ ping 8.8.8.8
-
If everything is OK, proceed to
-
I have created
sys-firewall-tethbased also on disposable minimal template. Start it and set its NetVmsys-usb-teth. -
I have created
sys-whonix-teth, and set its netvmsys-firewall-teth. -
Start your browsing
dispVMand set for its netVM eithersys-whonix-teth, orsys-firewall-teth(tor or clearnet) -
Everything should work flawlessly.
-
After you finish, disconnect phone and don’t forget to restart
sys-usb-tethbefore attaching again external devices to it, in order to bring it to clean state for the devices.