On Wednesday, October 12, 2016 at 4:35:53 PM UTC-5, Manuel Amador (Rudd-O) wrote: > It gives me great pleasure to release the first iteration of the > leakproof Qubes VPN. > > https://github.com/Rudd-O/qubes-vpn > > This package allows you to set up a leakproof OpenVPN VM on your Qubes > OS system. All VMs attached to the VPN VM are automatically and > transparently routed through the VPN. DNS requests do not hit the NetVM > they get routed through the VPN instead. > > Users and developers welcome to contribute to the project in any way you > can! > > -- > Rudd-O > http://rudd-o.com/
I tried to make the rpm package you posted on github, but the build / compile / prerequisites necessary to do so were not native to the Fedora 23 template out of the box, and you didn't say what were. I am also unfamiliar with Fedora so I don't know what packages to include. Bottom line: I didn't make the rpm. I had resolved myself to just start the vpn manually for now, but reviewed the qubes firewall user script and noticed the last line referred to eth0 (a device) rather than an upstream virtual reference. So I commented out the last line ONLY, the "iptables output eth0..." and vpn now works as per the video tutorial -as best I can tell- Not sure if I get all the intended protection or if that last line is necessary and just needs to be altered around the eth0 device dependency or not. Hopefully it's more secure than the GUI / Network Manager approach, which I couldn't use either with my VPN as they don't provide a "user cert", and the network manager doesn't handle all the variations of the .ovpn files directly. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/720ef818-565c-421f-b7b7-20cd1fdcd49e%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
