On 12/18/2017 03:10 PM, donoban wrote: > First: > - Block all traffic and whitelist your DNS provider IP with sys-firewall > (you should connect your VPN-VM to sys-firewall). For riseup and bitmask > you should permit some ip's.
Also consider disabling ICMP and DNS queries > Then: > The solution is edit /etc/resolv.conf to the default gw of the tunnel. > Try 'sudo route -n' and see the gateway which uses tun0 interface. > After editing /etc/resolv.conf you have to run: 'sudo /usr/lib/qubes/qubes-setup-dnat-to-ns' for doing it effective. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/19fb218a-b997-c53c-b0b8-35f86f80187d%40riseup.net. For more options, visit https://groups.google.com/d/optout.
signature.asc
Description: OpenPGP digital signature