Multiple NIC/NetVM selection
205 views
Skip to first unread message
Drew White
Nov 1, 2015, 7:37:36 PM11/1/15
to qubes-users
Hi folks,
Any change we can get multiple NIC/NetVM selection available please?
Would make things much easier if one can set up multiple to allow for using 2 (or more) IP ranges for connections to the internet.
I'm trying to have 1 that uses the primary NIC's NetVM, and another that uses a secondary NIC's AppVM. This is only because I need the 2 connections.
Sincerely,
Drew.
Any change we can get multiple NIC/NetVM selection available please?
Would make things much easier if one can set up multiple to allow for using 2 (or more) IP ranges for connections to the internet.
I'm trying to have 1 that uses the primary NIC's NetVM, and another that uses a secondary NIC's AppVM. This is only because I need the 2 connections.
Sincerely,
Drew.
Marek Marczykowski-Górecki
Nov 1, 2015, 8:13:15 PM11/1/15
to Drew White, qubes-users
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
We don't have such feature on our roadmap, but if anyone would implement
it (securely, with reasonable code quality), I think we could include it
in the next release.
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iQEcBAEBCAAGBQJWNrimAAoJENuP0xzK19csT/oH/3N8s0IWoLUEC97wgGqyS9IU
B6MGOt4HYmwMfqQmRPC9xgfFGjwD/TPkAbbfsR0xuSYj6tUJ7V9BlxL26wd19u3M
HB68a6/astvGoRuexKdHmNQ7xv6g+bRyXuNiqyLDTyjC8l37+VtPEVB+fYNSfQ7r
FlnptML0XBXsm22mMhykJLBS1CpksvwvE1IsY05ob8xslQskgdAokDkQiN/yKmVw
m/Q94m4cqd0PgbyjqdkX//6wTW5btlTRL5+4HJrGr8hGYqYRWUjFfLjymohfpxQ9
MvnPOdIrphsfGWOIVR3Cf4Veb7wimkIBoJrm3fRJGe2873OiFxfkew/MpryZnS4=
=q4uk
-----END PGP SIGNATURE-----
Hash: SHA256
it (securely, with reasonable code quality), I think we could include it
in the next release.
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iQEcBAEBCAAGBQJWNrimAAoJENuP0xzK19csT/oH/3N8s0IWoLUEC97wgGqyS9IU
B6MGOt4HYmwMfqQmRPC9xgfFGjwD/TPkAbbfsR0xuSYj6tUJ7V9BlxL26wd19u3M
HB68a6/astvGoRuexKdHmNQ7xv6g+bRyXuNiqyLDTyjC8l37+VtPEVB+fYNSfQ7r
FlnptML0XBXsm22mMhykJLBS1CpksvwvE1IsY05ob8xslQskgdAokDkQiN/yKmVw
m/Q94m4cqd0PgbyjqdkX//6wTW5btlTRL5+4HJrGr8hGYqYRWUjFfLjymohfpxQ9
MvnPOdIrphsfGWOIVR3Cf4Veb7wimkIBoJrm3fRJGe2873OiFxfkew/MpryZnS4=
=q4uk
-----END PGP SIGNATURE-----
Anonymous
Nov 1, 2015, 9:12:55 PM11/1/15
to qubes-users
What's being asked here? I have no problems assigning one NIC to one NetVM, and another NIC to another NetVM. I can then setup my firewallVMs to connect to whichever NIC I choose.
Drew White
Nov 1, 2015, 9:27:57 PM11/1/15
to qubes-users, mrdrew...@gmail.com
Hi Marek,
Happy to hear from you again.
What would be involved in that though?
Is it not just a matter of another selection box and then having that applied as another device in the VM?
Maybe it could be something that could be on the roadmap?
It would just be something that would be beneficial for people, such as myself, whom are web developers.
Would make life so much easier to be able to exit on one external IP and come back in on the other, to test using the one VM and run all the tests using tools and more.
Not to mention it could then even load balance across the 2 NetVMs from the one machine, while allowing other machines to only have 1 NetVM and NIC.
The improvement would be greatly beneficial, for more than just myself I would say.
I understand that you have a lot to do and fix, including Windows Tools, and you still need to make the Linux version too, so I know that that alone, since the bugs I reported months ago aren't fixed yet, there is a lot that needs to be done and that is happenning. So it's jsut something that I find I am recommending and finding out if it's possible or how hard it would be.
Annonymous,
Happy to hear from you again.
What would be involved in that though?
Is it not just a matter of another selection box and then having that applied as another device in the VM?
Maybe it could be something that could be on the roadmap?
It would just be something that would be beneficial for people, such as myself, whom are web developers.
Would make life so much easier to be able to exit on one external IP and come back in on the other, to test using the one VM and run all the tests using tools and more.
Not to mention it could then even load balance across the 2 NetVMs from the one machine, while allowing other machines to only have 1 NetVM and NIC.
The improvement would be greatly beneficial, for more than just myself I would say.
I understand that you have a lot to do and fix, including Windows Tools, and you still need to make the Linux version too, so I know that that alone, since the bugs I reported months ago aren't fixed yet, there is a lot that needs to be done and that is happenning. So it's jsut something that I find I am recommending and finding out if it's possible or how hard it would be.
Annonymous,
What's being asked here? I have no problems assigning one NIC to one NetVM, and another NIC to another NetVM. I can then setup my firewallVMs to connect to whichever NIC I choose.
I have one VM, I want it to have multiple NICs in it. Not one VM connected to one NetVM connected to one NIC.
I want the one VM to have multiple network connections. To connect through multiple routers and internet connections.
But I want 2 NetVMs with one NIC each.
If you require more information or do not understand, let me know.
I want the one VM to have multiple network connections. To connect through multiple routers and internet connections.
But I want 2 NetVMs with one NIC each.
If you require more information or do not understand, let me know.
Anonymous
Nov 1, 2015, 10:16:46 PM11/1/15
to qubes-users, mrdrew...@gmail.com
Oh, yes. I desperately want this as well. For one reason is pfSense. But there are all sorts of networking things that I would like to experiment with that requires multiple NICs. Being able to connect one ProxyVM to multiple NetVMs would be very useful also.
Yeah, I'm with ya.
Yeah, I'm with ya.
Drew White
Nov 1, 2015, 10:22:50 PM11/1/15
to qubes-users, mrdrew...@gmail.com
On Monday, November 2, 2015 at 2:16:46 PM UTC+11, Anonymous wrote:
Oh, yes. I desperately want this as well. For one reason is pfSense. But there are all sorts of networking things that I would like to experiment with that requires multiple NICs. Being able to connect one ProxyVM to multiple NetVMs would be very useful also.
Yeah, I'm with ya.
Yes, I too have pfSense running as my NetVM, for it provides most security without need of iptables. I just wish it would turn off IPv6 properly in the virtuals.
I don't use a ProxyVM. I just use the NetVM. The only thing that uses a ProxyVM is Dom0, which uses the ProxyVM for updating and installing.
I am glad that you understand where I am coming from, and the want and need for this one thing.
Perhaps someone with knowledge in programming in C or C++ or C# or whatever it's in, would be able to assist in the coding of this simple feature?
I am not very versed in C or any other Microsoft language, as I despise Microsoft.
If anyone out there knows how to achieve the desired result, please, oh please could you see if it can be achieved quickly and easily? Thanks in advance!
Marek Marczykowski-Górecki
Nov 2, 2015, 6:25:58 AM11/2/15
to Anonymous, qubes-users, mrdrew...@gmail.com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Hash: SHA256
1. It is possible to assign multiple NICs (devices) to a single NetVM.
2. It is not possible to connect a single (Proxy)VM to multiple NetVMs.
- --
Best Regards,
Marek Marczykowski-Górecki
Invisible Things Lab
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
k4xiamlsSHzlpJZvqMQSd8lCoSGhKx2+tyVV3xQ23orMp0yvGyQAKiTDmWAt4YnA
ssbfRhBZABZ8MTxpmS/cQSnjlWigI3bYbpYyjDuYseGtjEXaIgbaRFFiKHmOMcbr
U1sn4gs1FrqsQI0wInk9D5toFqG5tZEIZaqtWcoTBLYwob89/nUTrY06cw/c/CRh
3+tDzA7MDEIutFpjJdCR//XmKIhMI9NoB4GTGUG5aQ7oX/1A5s6Mkc5KQA8vdaTq
GapPOTT0/4RWgc9qw4wEOtfGR8IEhIkJEl4tgyoRCXzIZKPA7Z2hxFq5G3nA2XM=
=Vz3R
-----END PGP SIGNATURE-----
Anonymous
Nov 2, 2015, 10:46:20 PM11/2/15
to qubes-users, k.c.l....@gmail.com, mrdrew...@gmail.com
Need multiple virtual interfaces and VLAN support.
Frank
Nov 3, 2015, 1:58:22 AM11/3/15
to qubes...@googlegroups.com
On 03.11.2015, at 04:46, Anonymous k.c.l.callagy-at-gmail.com |qubes-mailing-list/Example Allow| <p2hod...@sneakemail.com> wrote:
Need multiple virtual interfaces and VLAN support.
Why not use a free VPN provider and openvpn to create a second, virtual interface with it's own external IP address? My VPN proxy vm has two NICs: the eth0 connected to my netvm and the tun0 created by openvpn. All you need to do, is to massage the routing table to your liking and maybe some iptables rules.
Regards, Frank
--
You received this message because you are subscribed to the Google Groups "qubes-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users...@googlegroups.com.
To post to this group, send email to qubes...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/9ba750d7-0328-43ab-a4b6-c547686a2649%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
Drew White
Nov 9, 2015, 6:22:19 PM11/9/15
to qubes-users
The reason we don't want to create a VLAN is because we want it on a different NIOC, for CentOS or the operating system to see another NIC, not to have a virtual LAN on the one NIC as well as the standard. That only causes shared NIC, not creating 2 NICs that can have Load Balancing and have improved performance because it's actually 2 NICs.
Personally I want one for one network and another for another network. Not 1 NIC and 2 VLAN's on the one NIC.
Personally I want one for one network and another for another network. Not 1 NIC and 2 VLAN's on the one NIC.
Reply all
Reply to author
Forward
0 new messages