On 04/05/2018 04:41 PM, [email protected] wrote:
Error: Firewall rule(s) not enabled!
The service now checks if the firewall rules were added. In this case it seems they weren't.
When you ran 'sudo /usr/lib/qubes/qubes-vpn-setup --config' in the proxyVM it should have added a symlink to the firewall script in /rw/config/qubes-firewall.d/90_tunnel-restrict. You can check it with 'ls -l /rw/config/qubes-firewall.d'.
Also look at the FORWARD chain which is where the checked rules are added: $ sudo iptables -v -L FORWARD You should see a couple DROP eth0 rules at the top: DROP all -- eth0 any anywhere anywhere DROP all -- any eth0 anywhere anywhere -- Chris Laprise, [email protected] https://github.com/tasket https://twitter.com/ttaskett PGP: BEE2 20C5 356E 764A 73EB 4AB3 1DC4 D106 F07F 1886 -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/3da0bfcc-945d-7c3a-3d16-830db40f0260%40posteo.net. For more options, visit https://groups.google.com/d/optout.
