I have an air-gapped laptop, which I have installed Qubes 4.2.1. During the installation I chose “do not configure anything” as I want to install everything using Salt and want all my qubes and templates configured and secured before it ever touches a network. My basic anticipated workflow is:
Install default minimal Debian 12 template
Create a clone of this template for each of my service qubes (sys-usb, sys-net, sys-firewall, etc…).
Install the dependencies for each service qube in their respective template.
Start service qubes and connect to WiFi.
The problem I am encountering is that how do I do steps #1 and #3 if I don’t have an internet connection during those steps? Salt complains about the templates not existing as none were installed during setup.
You will have to download, and verify, a debian-12-minimal template on
some other network connected machine.
You could do this on the same laptop, if this is your only device, using
a live distro - boot into live, download the template from https://yum.qubes-os.org/r4.2/templates-itl/rpm/
Verify it manually - rpm -qi will show you the key used to sign the
package you have downloaded.
Transfer the template to Qubes and install it.
For the debian packages, I would look at using apt-offline.
I never presume to speak for the Qubes team.
When I comment in the Forum I speak for myself.