Re: [qubes-users] tcp/udp server on qubes
On Thu, March 15, 2018 1:19 pm, idanqu...@gmail.com wrote: > i see, thanks to you i think i understand but i seem to be having at the > very first step after adding both rules in the sys-net terminal i still > dont see the connection attempt from an external pc on the rule for the > for the prerouting i used CIDR netmask to allow all possible values for > the third-forth part of the sys-net's ip Test connecting to Qubes from another computer on the same network as your host before trying to get the remote one working. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/57c1b79f164d223c9e10e6e6154bef7b.squirrel%40tt3j2x4k5ycaa5zt.onion. For more options, visit https://groups.google.com/d/optout.
Re: [qubes-users] tcp/udp server on qubes
On Thursday, March 15, 2018 at 2:09:22 PM UTC+2, awokd wrote: > On Tue, March 13, 2018 8:46 pm, idanqu...@gmail.com wrote: > > On Tuesday, March 13, 2018 at 3:14:20 AM UTC+2, awokd wrote: > > > >> On Mon, March 12, 2018 10:21 pm, idanqu...@gmail.com wrote: > >> > >>> I'm trying to build a server that uses tcp protocol, and I'm having > >>> trouble figuring the firewall rules that I need to set in order to > >>> connect the server so it would be able to communicate with a specific > >>> client through the internet. > >>> > >>> I'm aware that there is the guide for networking and firewall: > >>> https://www.qubes-os.org/doc/firewall/ > >>> > >>> > >>> > >>> but unfortunately I cant infer it to my use case. > >> > >> Not sure what you mean- Qubes doesn't need any special rules to > >> communicate out. If you want to restrict inbound communications to the > >> single source IP of your client, follow the guide and use that IP in > >> the rule. I think there's an example like that in there. > > > > allow me to elaborate i am trying to route all incoming traffic to a > > single vm there is an example that supposedly does just that however i have > > zero experience in "IP tables" and as such the example, as detailed as it > > is does not explain to me how to achieve the desired result with a > > specific vm and its corresponding ip for example i have no idea what > > "MY-HTTPS" is meant to reference > > "MY-HTTPS" is a label/name- just type it as is. > Depending on how you are doing your inbound NATing, you may need to > restrict the source IP at your outside firewall/router or in this line of > the sys-net configuration: "iptables -A MY-HTTPS -s 192.168.x.0/24 -j > ACCEPT". i see, thanks to you i think i understand but i seem to be having at the very first step after adding both rules in the sys-net terminal i still dont see the connection attempt from an external pc on the rule for the for the prerouting i used CIDR netmask to allow all possible values for the third-forth part of the sys-net's ip worth noting that i can connect from the appvm to the net but not vice versa using the telnet commend thank you in advance. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/5a6d6a42-e5dd-4ab2-91db-11974304e8e6%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
Re: [qubes-users] tcp/udp server on qubes
On Tue, March 13, 2018 8:46 pm, idanqu...@gmail.com wrote: > On Tuesday, March 13, 2018 at 3:14:20 AM UTC+2, awokd wrote: > >> On Mon, March 12, 2018 10:21 pm, idanqu...@gmail.com wrote: >> >>> I'm trying to build a server that uses tcp protocol, and I'm having >>> trouble figuring the firewall rules that I need to set in order to >>> connect the server so it would be able to communicate with a specific >>> client through the internet. >>> >>> I'm aware that there is the guide for networking and firewall: >>> https://www.qubes-os.org/doc/firewall/ >>> >>> >>> >>> but unfortunately I cant infer it to my use case. >> >> Not sure what you mean- Qubes doesn't need any special rules to >> communicate out. If you want to restrict inbound communications to the >> single source IP of your client, follow the guide and use that IP in >> the rule. I think there's an example like that in there. > > allow me to elaborate i am trying to route all incoming traffic to a > single vm there is an example that supposedly does just that however i have > zero experience in "IP tables" and as such the example, as detailed as it > is does not explain to me how to achieve the desired result with a > specific vm and its corresponding ip for example i have no idea what > "MY-HTTPS" is meant to reference "MY-HTTPS" is a label/name- just type it as is. Depending on how you are doing your inbound NATing, you may need to restrict the source IP at your outside firewall/router or in this line of the sys-net configuration: "iptables -A MY-HTTPS -s 192.168.x.0/24 -j ACCEPT". -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/98eaec46672c594f6c6e9a4be5e08467.squirrel%40tt3j2x4k5ycaa5zt.onion. For more options, visit https://groups.google.com/d/optout.
Re: [qubes-users] tcp/udp server on qubes
On Tuesday, March 13, 2018 at 3:14:20 AM UTC+2, awokd wrote: > On Mon, March 12, 2018 10:21 pm, idanqu...@gmail.com wrote: > > I'm trying to build a server that uses tcp protocol, and I'm having > > trouble figuring the firewall rules that I need to set in order to > > connect the server so it would be able to communicate with a specific > > client through the internet. > > > > I'm aware that there is the guide for networking and firewall: > > https://www.qubes-os.org/doc/firewall/ > > > > > > but unfortunately I cant infer it to my use case. > > Not sure what you mean- Qubes doesn't need any special rules to > communicate out. If you want to restrict inbound communications to the > single source IP of your client, follow the guide and use that IP in the > rule. I think there's an example like that in there. allow me to elaborate i am trying to route all incoming traffic to a single vm there is an example that supposedly does just that however i have zero experience in "IP tables" and as such the example, as detailed as it is does not explain to me how to achieve the desired result with a specific vm and its corresponding ip for example i have no idea what "MY-HTTPS" is meant to reference -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/5e4ddee5-df6a-40b0-9218-30bb7e533752%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
Re: [qubes-users] tcp/udp server on qubes
On Mon, March 12, 2018 10:21 pm, idanqu...@gmail.com wrote: > I'm trying to build a server that uses tcp protocol, and I'm having > trouble figuring the firewall rules that I need to set in order to > connect the server so it would be able to communicate with a specific > client through the internet. > > I'm aware that there is the guide for networking and firewall: > https://www.qubes-os.org/doc/firewall/ > > > but unfortunately I cant infer it to my use case. Not sure what you mean- Qubes doesn't need any special rules to communicate out. If you want to restrict inbound communications to the single source IP of your client, follow the guide and use that IP in the rule. I think there's an example like that in there. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/bdf21761c2f749d3a3007cec2a0341e8.squirrel%40tt3j2x4k5ycaa5zt.onion. For more options, visit https://groups.google.com/d/optout.
[qubes-users] tcp/udp server on qubes
I'm trying to build a server that uses tcp protocol, and I'm having trouble figuring the firewall rules that I need to set in order to connect the server so it would be able to communicate with a specific client through the internet. I'm aware that there is the guide for networking and firewall: https://www.qubes-os.org/doc/firewall/ but unfortunately I cant infer it to my use case. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/e539598f-6bd7-4f28-9bb2-c8f3fabcc7d0%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
