On Sun, Jul 16, 2017 at 12:03:49AM +0200, PhR wrote: > Hello, > > On 07/15/2017 11:53 PM, Noor Christensen wrote: > > Just a thought: > > > > Create a ProxyVM and set it to be the NetVM for the file server and all > > those VMs that need access to it. Now you have a single point where > > all traffic to the file server comes through, and iptables can be set up > > to allow specific AppVMs to access it. > I don't get it... > > [AppVM] -> [Repository ProxyVM] -> [Firewall ProxyVM] -> [NetVM]
More like:
[RepositoryVM] \
|---> [Repository ProxyVM] ---> system fw and netvm etc
[AppVM] /
Repository ProxyVM is where you do your iptables config to allow traffic
from AppVM to reach RepositoryVM. See the docs[0] for some examples on how
to configure proxies.
Please reply to the mailing list next time.
[0] https://www.qubes-os.org/doc/
-- noor
|_|O|_|
|_|_|O| Noor Christensen
|O|O|O| n...@fripost.org ~ 0x401DA1E0
--
You received this message because you are subscribed to the Google Groups
"qubes-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to qubes-users+unsubscr...@googlegroups.com.
To post to this group, send email to qubes-users@googlegroups.com.
To view this discussion on the web visit
https://groups.google.com/d/msgid/qubes-users/20170715222423.33xruiepu3e7yov5%40mail.
For more options, visit https://groups.google.com/d/optout.
signature.asc
Description: PGP signature
