Fedora Minimal ProxyVPN template?
131 views
Skip to first unread message
el...@tutanota.com
Aug 5, 2016, 10:39:55 AM8/5/16
to qubes-users
VPN Services usually offer a number of different sites/cities to connect to. I am trying to set up a minimalist bare-bones Fedora23 template that I can base all of my ProxyVM's off of (via cloning), such that I only have to change the .ovpn file within each Proxy in the /rw/config/openvpn folder (and name the ProxyVM accordingly).
This would allow me to choose to have a quick way to easily have a distinct proxyvm for each appvm that I can change at will w/o taking up excess memory.
Does anyone have this set-up (or a better idea)? If you do, care to share what packages you have pared it down to?
Inspired by Olivier Médoc's post below..
https://groups.google.com/d/msg/qubes-users/LkGNj-mCVHI/e0N0FeLFCQAJ
This would allow me to choose to have a quick way to easily have a distinct proxyvm for each appvm that I can change at will w/o taking up excess memory.
Does anyone have this set-up (or a better idea)? If you do, care to share what packages you have pared it down to?
Inspired by Olivier Médoc's post below..
https://groups.google.com/d/msg/qubes-users/LkGNj-mCVHI/e0N0FeLFCQAJ
Connor Page
Aug 5, 2016, 4:31:40 PM8/5/16
to qubes-users
The reality of life is that you can't clone netvms and proxyvms in qubes-manager. However, if you create a separate template with all customisation saved in /rw and /etc then you will be able to create many copies as /rw will be inherited.
el...@tutanota.com
Aug 7, 2016, 7:11:43 PM8/7/16
to qubes-users
Thx. I wasn't really sure about the inheritance. Qubes keeps on blowing my mind.
It is actually extremely forgiving. Maybe there are a few more hoops to jump through, but as long as you make copies of your templates, you can't really mess up.
Anyway, good to know. I am experimenting with pruning down the fedora23 template and starting one from scratch--not sure which will yield positive results for a minimal fedora openvpn template that I can lock on to. Will update when I figure something out if anyone else has similar interests.
It is actually extremely forgiving. Maybe there are a few more hoops to jump through, but as long as you make copies of your templates, you can't really mess up.
Anyway, good to know. I am experimenting with pruning down the fedora23 template and starting one from scratch--not sure which will yield positive results for a minimal fedora openvpn template that I can lock on to. Will update when I figure something out if anyone else has similar interests.
Zrubi
Aug 8, 2016, 2:36:30 AM8/8/16
to el...@tutanota.com, qubes-users
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
On 08/05/2016 04:39 PM, el...@tutanota.com wrote:
> VPN Services usually offer a number of different sites/cities to
> connect to. I am trying to set up a minimalist bare-bones Fedora23
> template that I can base all of my ProxyVM's off of (via cloning),
> such that I only have to change the .ovpn file within each Proxy in
> the /rw/config/openvpn folder (and name the ProxyVM accordingly).
> This would allow me to choose to have a quick way to easily have a
> distinct proxyvm for each appvm that I can change at will w/o
> taking up excess memory.
>
> Does anyone have this set-up (or a better idea)? If you do, care
> to share what packages you have pared it down to?
This is not what you are looking for?
https://www.qubes-os.org/doc/templates/fedora-minimal/
- --
Zrubi
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2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=k3Qr
-----END PGP SIGNATURE-----
Hash: SHA256
On 08/05/2016 04:39 PM, el...@tutanota.com wrote:
> VPN Services usually offer a number of different sites/cities to
> connect to. I am trying to set up a minimalist bare-bones Fedora23
> template that I can base all of my ProxyVM's off of (via cloning),
> such that I only have to change the .ovpn file within each Proxy in
> the /rw/config/openvpn folder (and name the ProxyVM accordingly).
> This would allow me to choose to have a quick way to easily have a
> distinct proxyvm for each appvm that I can change at will w/o
> taking up excess memory.
>
> Does anyone have this set-up (or a better idea)? If you do, care
> to share what packages you have pared it down to?
https://www.qubes-os.org/doc/templates/fedora-minimal/
- --
Zrubi
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
iQIcBAEBCAAGBQJXqChmAAoJEC3TtYFBiXSvD9oP/ibgjH+3FiTZ3siMoAw7DPmo
f7wslWHaFQTaaXCxgcOpqYmsmfU58Ce7tHiPFA/XCqq/wXghEB7h8g7E0GsUAaVx
bH0LbHlsxRvXnXz/9OGIgGndipoJXH3HV5aI+8klZY9/8Tj6VUeQ4bhXT/cRyX08
JHGIPelJrae84dSmFsTfjehF8Z9Cu+W84ugiUEUg9xz11F5sDMF3QpxtwuOhkfuS
Kaf9TttXY7O+M+yzgUN+JEe13xlEI49U0AA/QSPiR651vkwhJhzHkt2s5T0bHES+
mbnygZJVrwCNanPmHRR5yiHtwJJPSnz4l+F+uu3qjkp2V76UeRz8qUbmXVReEYRp
F9pakAb712iV5eqIVdKDf7rFNW26p+Sb1PRGCdMoziCfgJ5kLgNK6Tm4hv0LZKv8
6QMczvJpYLABUypQAnfYXvo/RZHBfsepeOqm3M8NrzZ/+MlovIRWqp9g9MCf1u1d
GyYbivaCjtha32+aempd/dv9Ax704B2PTe86WKBOl0Jju/y7cJGF6vZYJxdLxHni
HVjd7kyBvPK5JK2fNApMgK+g+Z0Dc/2U9zOK4EtR6YA370Klxq7EQurbEUtQ+K61
/cJTO2M9gRmYGLZ09vD3EG7NKrTrdwfqRnV+FmL8wj16gZijnJT0RBHlbFMIDfPV
Xi4Z4wSnDjbp78bnttkb
=k3Qr
-----END PGP SIGNATURE-----
el...@tutanota.com
Aug 9, 2016, 7:53:23 AM8/9/16
to qubes-users
Yeah, found that.
I have it working from the minimal template, but am missing the network up/down dialog..
I have it working from the minimal template, but am missing the network up/down dialog..
When the qubes-vpn-handler.sh calls
su - -c 'notify-send "$(hostname): LINK IS UP." --icon=network-idle' user
it doesn't seem to work..
I left the template as empty as possible, downloading only
sudo
rsyslog
NetworkManager-openvpn
openvpn
When I try to call the
su - -c.... ork-idle' user
line in from terminal, it asks me for a password.
I am definitely behind the vpn though, just without any dialog boxes. Is it because I am missing gnome? Any way to send a dialog out without having any gui? I am looking to save on RAM and HDD space, so don't want to install anything I do not have to..
Connor Page
Aug 9, 2016, 2:18:27 PM8/9/16
to qubes-users
you can install dunst for minimalist notifications.
el...@tutanota.com
Aug 10, 2016, 5:19:17 AM8/10/16
to qubes-users
On Tuesday, August 9, 2016 at 6:18:27 PM UTC, Connor Page wrote:
> you can install dunst for minimalist notifications.
> you can install dunst for minimalist notifications.
Thanks. I'll look into it.
Reply all
Reply to author
Forward
0 new messages