I’m currently setting up the OpenBSD NetVM following this guide: Integrate pfSense/OPNsense VM on QubesOS · Issue #1 · jcholsap/freemod · GitHub
I’ve got through it all, but the issues / questions I have is this:
- In this discussion { Configuring Networking in OpenBSD HVM - #5 by unman } @qubesnewb raises the issue of networking with disposable VM’s using OpenBSD netvm and suggests the following work around
use this in
/etc/hostname.xnf0
:
inet 10.137.0.35 255.255.255.0
!route add -iface -cloning 10.138.7.37 10.137.0.35
and in /etc/mygate
:
10.138.7.37
the !route
in hostname.xnf0 makes sure bsd knows how to reach the default gw since its separate subnet
Are these the only changes I need to make (adjusted for my variables) to get disposables to run? Almost all my net activity is through disposable appvms.
- Is it possible to run OpenBSD disposable, would there be value?
So any advice on how what is required to get disposables working with OpenBSD netvm would be MASSIVELY appreciated.
In the guide it just references:
Set the "fedora-32-dvm" "NetVM" to "sys-net".
a. This works around Qubes' 10.138.0.0/24 networking on disposable VMs.
b. Repeat for all your DisposableVMs.
When I try this I get “Error: Basic tab: Loops in network are unsupported”
Lastly, when I added services in my sys-firewall
c. Add in “Services” the following:
– i. “clocksync” daemon.
– ii. “qubes-update-check”.
– iii. “qubes-updates-proxy”.
– iv. “qubes-yum-proxy”.
There were no options in the dropdown menu, so I just went custom and wrote the names in, assuming they would be called upon by name. Is this wrong?
Sorry for so much text, thank you greatly for reading & advising! @unman