I recently realized that I can boot a live USB from an ISO using a standalone template with ‘boot qube from DISC or block device.’
However, I am unable to provide network access to live usb.
How can I enable network access?
If I can do this, it would be convenient to combine Whonix and the live USB, so please let me know how.
TL;DR Set ip, gateway, netmask, and dns manually
p.s.
Simply set your whonix network qube as the net qube for standalone in question
It works well with sys-firewall, but I can’t connect to the internet with sys-whonix. Why do you think that is?
Are you sure? Just FYI, ping doesn’t work over tor
Does it work with qubes-integrated vms?
It should work without any further modification
Shouldn’t netmask be 32?
Absolutely not - absent some clever routing, many OS require the
netmask to be set properly, in order to reach upstream.
/24 would allow 10.137.0 addresses, which may be fine depending on what
upstream gateway is used.
I never presume to speak for the Qubes team.
When I comment in the Forum I speak for myself.
Can confirm, for some reason parrot doesn’t connect even if netmask is less than 32
p.s. @kzlz:
echo 1 | sudo tee $(find /proc/sys/net/ipv4 -name arp_ignore)
I changed the netmask to 24, and although I don’t fully understand it, I executed this command in sys-whonix, and the standalone was able to connect to the internet.
Please don’t, this forum may be a good attack vector against qubes
Besides, even workarounds posted by core developers might have flaws
Indeed. I have a lot to learn, so I often execute commands before fully understanding them, and I regret that… Was this command dangerous?
Maybe? It makes sys-whonix arp policy less strict, may allow some spoofing attacks:
p.s. About arp_ignore:
https://www.kernel.org/doc/Documentation/networking/ip-sysctl.txt
