I am trying to connect two windows VMs: 1 to simulate a c2, the other as a target. I created a proxy vm to provide networking to both qubes, and set rules in iptables:
iptables -A FORWARD -i vif+ -o vif+ -j ACCEPT
and the same command twice with both of the ips for the vms, but I still cannot ping one windows vm from the other.
I am still learning how networking works in qubes, and want to do it int he simplest way possible. Can anyone help?
Thank you. The process I used was similar, but the thing is that both qubes I want to connect are windows, so nftables isn’t available. I am experimenting with reverse shells.
Both qubes send their traffic to the same netvm, so with these nftables rules it should be forwarded accordingly, so if I’m not mistaken, it should reach the destination (the Windows qube). What might be blocking is the firewall there. Try disabling the Windows firewall on both qubes and try to ping again. If it works, create a rule to allow the incoming IP from the other qube.
I have it now such that I can ping a debian vm from the windows VM, but not the other way around. In the instructions, it says that you need an nft rule on the firewall vm, and an nft rule on the VM you want to connect to. In my case, I set a rule on the proxy vm, and the debian VM. The issue now is that I would like to be able to establish connection both ways, but I can’t set nftables rules in windows.
Do you know of any workaround?
You just need to allow the other qube IP on the Windows qube in the firewall on the incoming table. Make sure the forward nftables rules are set for each qube in the firewall qube back and forth and that’s all you need to do.
windows firewall blocks icmp by default