Hi,
I have a problem with whonix on qubes 4.0.1 - manually upgraded to whonix-15, fedora-30, kernel 4.19.
When whonix-sys networking VM is configured to my VPN VM, tor connection gets established which allows me to use TOR browser in 'anon-whonix'. Everything works fine, but... that's not the recommend way of connecting to TOR. When possible 'whonix-sys' should be set-up using ISP line directly ISP (non-VPN) so that Tor establishes the route between its 3 levels of nodes without having VPN server as a fixed entry/exit point.
And that's what I'm having a proplem with, unexpectedly. When I set up 'sys-firewall' or 'sys-net' as netVM for 'whonix-sys' I can't get 'anon-whonix' to establish Tor Browser connection, can't access any website. Even whonix-sys 'Tor Control Panel' struggles with establishing Tor connection. This is highly surprising as I don't live in a country where ISP's prevent any onion/tor traffic. It should all work fine.
I then tried playing with various clock settings on my host (dom0) to match the clock in UTC in sys-whonix (timedatectl command). Unfortunately the problem persists - I am able to connect to Tor via VPN VM but not directly via 'open' ISP sys-net or sys-firewall VM.
I have an impression the problem started after whonix upgrade to version 15 and qubes introduction of the clock-synchronisation-monitor. I might be completely wrong about it, it's just the timing of the issue coincides with the introduced qubes changes.
Does anyone had a similar problem? Or better still, does anyone know the solution and how to fix it?
Please help or point me to the right directly.
Many thanks,
cubecub