Re: [qubes-users] How to split into two gateways
'Matt Drez' via qubes-users: >> Are you sure the second NIC works under Qubes, even by itself? Also, if >> it's dual ports on a single card, try adding a separate physical NIC card. > > Great thinking! That was one of the first things I have tried. And just to > clarify the first NIC is integrated on the mobo and the second one is was > added later into a pci slot. Both are single port NICs. > Might have missed it then, so the second NIC works by itself if you assign it to the original netvm? If not, the drivers for it may not be installed/loading correctly. Check sudo journalctl inside netvm for messages relating to the NIC's init. -- - don't top post Mailing list etiquette: - trim quoted reply to only relevant portions - when possible, copy and paste text instead of screenshots -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/93858191-1cbb-c3d7-fde9-9b88b80eaf68%40danwin1210.me.
Re: [qubes-users] How to split into two gateways
> Are you sure the second NIC works under Qubes, even by itself? Also, if > it's dual ports on a single card, try adding a separate physical NIC card. Great thinking! That was one of the first things I have tried. And just to clarify the first NIC is integrated on the mobo and the second one is was added later into a pci slot. Both are single port NICs. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/VguPWyl0aKo3mFMqPu3FfUUWe7XL2zimAoKvpIt90grYDPB8Vmz3lfWtqw4pe7DAmv3hX0_0eANfvH1W1Lvw_e2ey5Tk-Jpqd4c9PUkOYzk%3D%40pm.me. publickey - mattdrez@pm.me - 0x8196D0F4.asc Description: application/pgp-keys signature.asc Description: OpenPGP digital signature
Re: [qubes-users] How to split into two gateways
'Matt Drez' via qubes-users: >> Try just doing the passthrough first. If you can get the NICS to show up >> in `lspci` in the two sys-nets and configure networking so you can ping >> out. >> > >> Command to attach the NIC: `qvm-pci attach sys-net2 dom0:`. >> > >> PCI-address can be found in the output of `qvm-pci`. > > Those are the exact steps I tried but no luck. > > > I have no problem passing the NIC to the gw and it shows up with lspci but it > won't acquire an IP. The "funny" thing is that as soon as the sys-net starts > the green light goes out on the the NIC. If I issue an `ip addr` command I > cannot even see its MAC. > > > I even tried connecting the second NIC to a completely different network and > router but made no difference. > Are you sure the second NIC works under Qubes, even by itself? Also, if it's dual ports on a single card, try adding a separate physical NIC card. -- - don't top post Mailing list etiquette: - trim quoted reply to only relevant portions - when possible, copy and paste text instead of screenshots -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/65aa0552-99d1-a195-60ac-3807934d10d5%40danwin1210.me.
Re: [qubes-users] How to split into two gateways
> Try just doing the passthrough first. If you can get the NICS to show up > in `lspci` in the two sys-nets and configure networking so you can ping > out. > > Command to attach the NIC: `qvm-pci attach sys-net2 dom0:`. > > PCI-address can be found in the output of `qvm-pci`. Those are the exact steps I tried but no luck. I have no problem passing the NIC to the gw and it shows up with lspci but it won't acquire an IP. The "funny" thing is that as soon as the sys-net starts the green light goes out on the the NIC. If I issue an `ip addr` command I cannot even see its MAC. I even tried connecting the second NIC to a completely different network and router but made no difference. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/JEL2UbOm3FnbcPLHorIHVP3vjTkyHGCmPE1H2Pm9lQEUVz2PPLKNrv3_1E7OStfcir2xiApqztw0YRcswVugy5RBcjKzqQTCyDvWkmHGc5w%3D%40pm.me. publickey - mattdrez@pm.me - 0x8196D0F4.asc Description: application/pgp-keys signature.asc Description: OpenPGP digital signature
Re: [qubes-users] How to split into two gateways
> Can someone please tell me if you were able to achieve the following? > - Have two NICs handling two separate sys-net > - Behind each sys-net their own firewall > - behind the firewalls their own set of VMs. Yes, the machine I am on has this setup. Both sys-net VMs have a dedicated NIC PCI passed through to them. They each have a sys-firewall, which each has VMs on it. I cloned the original sys-net, but if you follow the instructions for creating a new one, it should work fine. > I was able to handle the firewall rules and everything else but I cannot make > it work to have 2 sys-net each handling a NIC separately. Can someone please > tell me step by step how you achieved that? Try just doing the passthrough first. If you can get the NICS to show up in `lspci` in the two sys-nets and configure networking so you can ping out. Command to attach the NIC: `qvm-pci attach sys-net2 dom0:`. PCI-address can be found in the output of `qvm-pci`. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/8451224f-59f5-fe85-b35e-3d08413dd8e4%40undef.tools.
[qubes-users] How to split into two gateways
Hey guys, I'm working on my 2nd qubes machine but this task I could never figure out on the first one to begin with. Can someone please tell me if you were able to achieve the following? - Have two NICs handling two separate sys-net - Behind each sys-net their own firewall - behind the firewalls their own set of VMs. I was able to handle the firewall rules and everything else but I cannot make it work to have 2 sys-net each handling a NIC separately. Can someone please tell me step by step how you achieved that? Thanks a bunch Matt -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/Eu0jDbf7v-N2lymh-uLget7fmUNSrq9tiI9Z_KRLVt0ROmb306D9dQefNzg8L21Jbmq-t6XC6SuktToMOs1iPP1Z-7Op2xAqyF1L_lYWjBQ%3D%40pm.me. publickey - mattdrez@pm.me - 0x8196D0F4.asc Description: application/pgp-keys signature.asc Description: OpenPGP digital signature
