On Thu, Jul 27, 2017 at 07:43:26AM -0700, Finsh wrote: > Hey Guys, > > im trying to get a http-filtering proxy in a firewall vm to work for my > Email-appvm. > The reason is im using a google-mail account, so i cant use the normal > firewall resolving to ipadresses. > > I followed the tutorial to the letter, and as far as i can tell, everything > worked fine, the script can properly recognize the rule files, > when i run " sudo /rw/config/tinyproxy/proxyctl.py show " everything is as > expected. > Name IP Interface Proxy_Pid > privatmail 10.137.6.19 vif10.0 1265 > > However, when i configure thunderbird to use the firewallvm proxy settings, > the complete internet connection is blocked. > > I set the Thunderbird-networksettings like so: > > Port 8100 Http-proxy: 10.137.5.1 (which is the gateway of the firewall-vm) > > the firewall-rules of the email-vm i set to "deny network access except..." > and unchecked "allow ICMP traffic" and "allow DNS queries" > > i tried everything i could think of, but just couldnt get it to work :(. > > Help is much appreciated > > cheers. >
I dont understand what you are trying to do here - that tutorial is for setting up a http-filtering proxy using tinyproxy. I'm not convinced that tinyproxy offers what you want, which is a fully featured proxy server - that's on the assumption that you're trying to use IMAP SMTP at gmail. I could be completely wrong about this. If you want to test your current set-up the simplest thing to do would be to set a proxy in firefox, and see if you can access web sites by name and by IP address. Depending on what filtering rule you have you should see content or see a message from tinyproxy. You should be able to see the traffic on your firewall, so you can understand what is happening. A combination of iptables -L -nv and tinyproxy logging should help you understand what's going on on the firewall. That way you will be clear that you have the proxy set up and working properly. unman -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/20170727153616.xxdki5npp5eiekeb%40thirdeyesecurity.org. For more options, visit https://groups.google.com/d/optout.
