balin1
November 8, 2023, 11:40am
1
One of my *.sls contains something aling the lines of
VPN sys VM setup:
qvm.prefs:
- name: sys-vpn
- network-vm: sys-firewall
- provides-network: true
I am consolidating my stuff into unsing the qvm.vm umbrella state, where the network-vm bit may be integrated as so
VPN sys VM:
qvm.vm:
- name: sys-vpn
- present:
- template: debian-12
- label: red
- flags:
- net
- prefs:
- netvm: sys-firewall
but I fail to discern how to integrate the provides-network bit into this. Is that currently not possible?
szz9pza
November 12, 2023, 1:01pm
2
At the end of the Qubes Salt documentation:https://www.qubes-os.org/doc/salt/#further-reading
you have 2 usefull links:
from the first link:qvm.vm
Wrapper to contain all VM state functions.
that means that the preferences in qvm-prefs are the same as the one in qvm.vm: -prefs.
qvm-vm-id:
qvm.vm:
- prefs:
- netvm: sys-firewall
- provides-network: true
In your qvm.prefs you have: - network-vm: sys-firewall- netvm: sys-firewall ??
I don’t use Salt, so maybe both works.
From the second link, you got examples of *.sls used by Qubes:sys-net:https://github.com/QubesOS/qubes-mgmt-salt-dom0-virtual-machines/blob/master/qvm/sys-net.sls#L40
unman
November 12, 2023, 3:32pm
3
Yes, it should.@balin1 does say “contains something aling the lines of”
On the original question:
It is possible, and it works as expected.
balin1
November 16, 2023, 3:41pm
4
So I just use the - network-vm: sys-firewall bit under - prefs and it appears to work indeed. Thank you. docs are a bit light on the subject.
unman
November 18, 2023, 4:17am
5
What version of the salt tools are you using?- network-vm: is silently ignored. (Which looks like a bug.)
Have you resolved the original issue setting provides-network?
balin1
November 23, 2023, 1:47pm
6
You are so right. template_for_dispvms and many others are also ignored… without documentation I can find…