Git-Mirrors/qubes-doc
1
0
Fork 0
mirror of https://github.com/QubesOS/qubes-doc.git synced 2024-10-01 01:25:40 -04:00
Code Issues Packages Projects Releases Wiki Activity

Merge branch 'patch-3' of https://github.com/gasull/qubes-doc into gasull-patch-3

Browse Source
This commit is contained in:
Andrew David Wong 2018-09-03 14:51:47 -05:00
commit e9cb0fbdf5
No known key found for this signature in database
GPG Key ID: 8CE137352A019A17
1 changed files with 7 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
configuration/vpn.md
View File

@ -56,8 +56,11 @@ Set up a ProxyVM as a VPN gateway using NetworkManager
```bash ```bash
# Automatically connect to the VPN once Internet is up # Automatically connect to the VPN once Internet is up
nm-online --quiet --wait-for-startup while ! ping -c 1 -W 1.1.1.1; do
nmcli connection up file-vpn-conn passwd-file /rw/config/NM-system-connections/secrets/passwd-file.txt sleep 1
done
PWDFILE="/rw/config/NM-system-connections/secrets/passwd-file.txt"
nmcli connection up file-vpn-conn passwd-file $PWDFILE
``` ```
You can find the actual "file-vpn-conn" in `/rw/config/NM-system-connections/`. You can find the actual "file-vpn-conn" in `/rw/config/NM-system-connections/`.
@ -74,7 +77,7 @@ Set up a ProxyVM as a VPN gateway using NetworkManager
Edit `/rw/config/qubes-firewall-user-script` and add these lines: Edit `/rw/config/qubes-firewall-user-script` and add these lines:
```bash ```bash
# Block forwarding of connections through upstream network device # Block forwarding of connections through upstream network device
# (in case the vpn tunnel breaks): # (in case the vpn tunnel breaks)
iptables -I FORWARD -o eth0 -j DROP iptables -I FORWARD -o eth0 -j DROP
iptables -I FORWARD -i eth0 -j DROP iptables -I FORWARD -i eth0 -j DROP
``` ```