{"id":3350,"date":"2023-02-03T06:53:14","date_gmt":"2023-02-03T11:53:14","guid":{"rendered":"https:\/\/dft.wiki\/?p=3350"},"modified":"2024-03-24T21:37:02","modified_gmt":"2024-03-25T01:37:02","slug":"how-to-install-whonix-gateway-cli-on-proxmox","status":"publish","type":"post","link":"https:\/\/dft.wiki\/?p=3350","title":{"rendered":"How to Install Whonix Gateway CLI on Proxmox"},"content":{"rendered":"<p><strong>Whonix<\/strong> is a privacy-focused operating system that aims to provide users with the highest level of privacy and security possible.<\/p>\n<p>It is designed to be used in conjunction with the Tor network, a decentralized network that protects users&#8217; online privacy by routing their internet traffic through multiple servers.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-3352 aligncenter\" src=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/whonix.png\" alt=\"\" width=\"588\" height=\"327\" srcset=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/whonix.png 588w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/whonix-300x167.png 300w\" sizes=\"auto, (max-width: 588px) 100vw, 588px\" \/><\/p>\n<p>Why Proxmox and not VirtualBox as it offers out of the box?<\/p>\n<ul>\n<li>Because Proxmox does not require a host operation system such as Windows, Mac, Linux. It can run on a bare metal headless host.<\/li>\n<\/ul>\n<p>Why Whonix CLI and not the one with graphic interface?<\/p>\n<ul>\n<li>Because there is no reason to have a GUI on a gateway that will be headless 100% of the time. It will reduce RAM and CPU overhead.<\/li>\n<\/ul>\n<p>Why Whonix and not OpenWRT or Pfsense?<\/p>\n<ul>\n<li>Whonix will enforce all traffic through Tor network and is conceptually designed to minimise (potentially eliminate) the risk of leaks.<\/li>\n<\/ul>\n<hr \/>\n<p><strong>BASIC STEPS<\/strong><\/p>\n<ul>\n<li>Download Whonix<\/li>\n<li>Import to VirtualBox<\/li>\n<li>Complete installation and Test<\/li>\n<li>Export only the Gateway<\/li>\n<li>Copy the disk to Proxmox<\/li>\n<li>Configure Proxmox Networks (create vmbr2)<\/li>\n<li>Manually create a VM in Proxmox<\/li>\n<li>Convert and attach the disk to the VM<\/li>\n<li>Attach the second network to the VM (vmbr2)<\/li>\n<li>Configure VM&#8217;s boot sequence<\/li>\n<li>Configure Whonix network interfaces (vmbr0)<\/li>\n<li>Run a client VM or container (to vmbr2)<\/li>\n<\/ul>\n<hr \/>\n<p><strong>DOWNLOAD<\/strong><\/p>\n<p>Download the OVA (Open Virtualization Format) file from the official repository [<a href=\"https:\/\/www.whonix.org\/wiki\/VirtualBox_Testers_Only_Version\/CLI\">Link<\/a>].<\/p>\n<p>Alternatively, the version with GUI could also be downloaded. I don&#8217;t see why not.<\/p>\n<hr \/>\n<p><strong>IMPORT TO VIRTUALBOX<\/strong><\/p>\n<p>This step is not mandatory but provides an opportunity to finish the installation, accept terms of services, test, and so on.<\/p>\n<p>Go to <strong>VirtualBox Manager &gt; File &gt; Import Appliance&#8230;<\/strong><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone wp-image-3356 size-large\" src=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-02-09-30-36-1024x257.png\" alt=\"\" width=\"640\" height=\"161\" srcset=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-02-09-30-36-1024x257.png 1024w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-02-09-30-36-300x75.png 300w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-02-09-30-36-768x193.png 768w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-02-09-30-36.png 1065w\" sizes=\"auto, (max-width: 640px) 100vw, 640px\" \/><\/p>\n<p>Click on <strong>Next<\/strong> then <strong>Import<\/strong>.<\/p>\n<p>Accept both terms, of course.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone wp-image-3357 size-medium\" src=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-02-09-33-50-273x300.png\" alt=\"\" width=\"273\" height=\"300\" srcset=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-02-09-33-50-273x300.png 273w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-02-09-33-50.png 379w\" sizes=\"auto, (max-width: 273px) 100vw, 273px\" \/><\/p>\n<p>Both VMs will be deployed effortless. Start them.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-3358\" src=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-02-09-37-11.png\" alt=\"\" width=\"392\" height=\"126\" srcset=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-02-09-37-11.png 392w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-02-09-37-11-300x96.png 300w\" sizes=\"auto, (max-width: 392px) 100vw, 392px\" \/><\/p>\n<hr \/>\n<p><strong>COMPLETE INSTALLATION AND TEST<\/strong><\/p>\n<p>Log in on both. Some people may say you should do the Gateway first then the Workstation. Up to you!<\/p>\n<p>The default credentials are <strong>user<\/strong> and <strong>changeme<\/strong>. As one may guess, change it as soon as you can<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone wp-image-3359 size-large\" src=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-02-09-43-15-1024x752.png\" alt=\"\" width=\"640\" height=\"470\" srcset=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-02-09-43-15-1024x752.png 1024w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-02-09-43-15-300x220.png 300w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-02-09-43-15-768x564.png 768w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-02-09-43-15.png 1252w\" sizes=\"auto, (max-width: 640px) 100vw, 640px\" \/><\/p>\n<p>On the Gateway VM, select the option according to your reality. For most, the option 1 will be the one.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-3360\" src=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-02-09-44-37.png\" alt=\"\" width=\"774\" height=\"258\" srcset=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-02-09-44-37.png 774w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-02-09-44-37-300x100.png 300w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-02-09-44-37-768x256.png 768w\" sizes=\"auto, (max-width: 774px) 100vw, 774px\" \/><\/p>\n<p>The completion of the setup might take several minutes.<\/p>\n<p>Testing the Gateway<\/p>\n<pre>curl http:\/\/ip.me<\/pre>\n<p>The output must be an IP that is different to your real IP because it is reaching the internet through a random Exit Node of the Tor network.<\/p>\n<p>This is a good time to change your password and fully update the gateway.<\/p>\n<pre>passwd<\/pre>\n<pre>sudo apt update &amp;&amp; sudo apt upgrade -y<\/pre>\n<p>Testing the Workstation<\/p>\n<pre>curl http:\/\/ip.me<\/pre>\n<p>Same type of result is expected. Power of both VMs.<\/p>\n<pre>sudo shutdown now<\/pre>\n<hr \/>\n<p><strong>EXPORT WHONIX GATEWAY<\/strong><\/p>\n<p>Go to <strong>VirtualBox Manager &gt; File &gt; Export Appliance&#8230; &gt; <\/strong>Select<strong> Whonix-Gateway-CLI.<\/strong><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone wp-image-3364 size-large\" src=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-02-10-05-30-1024x385.png\" alt=\"\" width=\"640\" height=\"241\" srcset=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-02-10-05-30-1024x385.png 1024w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-02-10-05-30-300x113.png 300w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-02-10-05-30-768x288.png 768w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-02-10-05-30.png 1193w\" sizes=\"auto, (max-width: 640px) 100vw, 640px\" \/><\/p>\n<p>Click on <strong>Next<\/strong>, then <strong>Export<\/strong>.<\/p>\n<p>When completed, both Whonix VMs can be removed and files deleted.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-3365\" src=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-02-10-07-56.png\" alt=\"\" width=\"452\" height=\"270\" srcset=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-02-10-07-56.png 452w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-02-10-07-56-300x179.png 300w\" sizes=\"auto, (max-width: 452px) 100vw, 452px\" \/><\/p>\n<hr \/>\n<p><strong>COPY THE DISK TO PROXMOX<\/strong><\/p>\n<p>The OVA files is similar to a TAR or a ZIP file. Extract all the files from the newly exported OVA:<\/p>\n<pre>tar xvf Whonix-Gateway-CLI.ova<\/pre>\n<p>Open a temporary web server from the directory where the OVA was extracted to.<\/p>\n<pre>python3 -m http.server 8080<\/pre>\n<p>Alternatively, <code>scp<\/code> (SSH) can also be used to copy the file over.<\/p>\n<p>On <strong>Proxmox Shell<\/strong>, download the disk file over. Make the necessary adjustments to the URL if needed.<\/p>\n<pre>wget http:\/\/<strong>10.10.10.10<\/strong>:8080\/Whonix-Gateway-CLI-disk001.vmdk<\/pre>\n<hr \/>\n<p><strong>PROXMOX NETWORKS<\/strong><\/p>\n<p>Go to the Proxmox <strong>Node (pve) &gt; System &gt; Network &gt; Create &gt; Linux Bridge.<\/strong><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-3369\" src=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-05-40-49.png\" alt=\"\" width=\"756\" height=\"449\" srcset=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-05-40-49.png 756w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-05-40-49-300x178.png 300w\" sizes=\"auto, (max-width: 756px) 100vw, 756px\" \/><\/p>\n<p>Click on <strong>Apply Configuration<\/strong>.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-3370\" src=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-05-41-45.png\" alt=\"\" width=\"1066\" height=\"179\" srcset=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-05-41-45.png 1066w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-05-41-45-300x50.png 300w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-05-41-45-1024x172.png 1024w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-05-41-45-768x129.png 768w\" sizes=\"auto, (max-width: 1066px) 100vw, 1066px\" \/><\/p>\n<p>Note that the new bridge does not contain a Gateway nor is attached to any physical port.<\/p>\n<hr \/>\n<p><strong>CREATE VIRTUAL MACHINE<\/strong><\/p>\n<p>Click on <strong>Create VM<\/strong> on the desired node. The process of manually creating a virtual machine in Proxmox does not need any special setup.<\/p>\n<p>Since the exported VM from VirtualBox had a SATA disk type, I wanted to have the same bus and device number to prevent any mismatch.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-3377\" src=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-05-45-16.png\" alt=\"\" width=\"726\" height=\"363\" srcset=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-05-45-16.png 726w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-05-45-16-300x150.png 300w\" sizes=\"auto, (max-width: 726px) 100vw, 726px\" \/><\/p>\n<p>As one can see on the summary of the VM being created, it does not require more than 512 MB of RAM and 2 CPU cores.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-3371\" src=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-05-46-28.png\" alt=\"\" width=\"726\" height=\"517\" srcset=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-05-46-28.png 726w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-05-46-28-300x214.png 300w\" sizes=\"auto, (max-width: 726px) 100vw, 726px\" \/><\/p>\n<p>Click on <strong>Finish<\/strong>.<\/p>\n<hr \/>\n<p><strong>ATTACH THE DISK<\/strong><\/p>\n<p>On <strong>Proxmox Shell<\/strong>, from the location where the disk was previously downloaded, issue the following commands.<\/p>\n<pre>qm importdisk <strong>109<\/strong> Whonix-Gateway-CLI-disk001.vmdk <strong>local-lvm<\/strong> -format qcow2<\/pre>\n<p><strong>Note:<\/strong> customise the VM number and the storage location accordingly.<\/p>\n<p>The original VMDK file can be deleted now or kept for further usage.<\/p>\n<p>Go to <strong>WhonixGateway &gt; Hardware &gt;<\/strong> select<strong> Hard Disk (sata0)<\/strong> &gt; click on <strong>Detach<\/strong> &gt; click on <strong>Remove &gt; <\/strong>double-click on<strong> Unused Disk 0 &gt; <\/strong>select<strong> SATA &gt;<\/strong> click on<strong> Add.<\/strong><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-3378\" src=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-06-18-15.png\" alt=\"\" width=\"649\" height=\"269\" srcset=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-06-18-15.png 649w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-06-18-15-300x124.png 300w\" sizes=\"auto, (max-width: 649px) 100vw, 649px\" \/><\/p>\n<hr \/>\n<p><strong>ATTACH SECOND NETWORK<\/strong><\/p>\n<p>On the same Hardware configuration, click on <strong>Add<\/strong> &gt; <strong>Network<\/strong> <strong>Device<\/strong> &gt; select <strong>vmbr2<\/strong>\u00a0&gt; click on <strong>Add.<\/strong><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-3372\" src=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-05-48-07.png\" alt=\"\" width=\"605\" height=\"262\" srcset=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-05-48-07.png 605w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-05-48-07-300x130.png 300w\" sizes=\"auto, (max-width: 605px) 100vw, 605px\" \/><\/p>\n<p>This is how it will look like:<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-3374\" src=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-05-48-25.png\" alt=\"\" width=\"655\" height=\"327\" srcset=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-05-48-25.png 655w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-05-48-25-300x150.png 300w\" sizes=\"auto, (max-width: 655px) 100vw, 655px\" \/><\/p>\n<hr \/>\n<p><strong>BOOT SEQUENCE<\/strong><\/p>\n<p>Go to <strong>Options<\/strong> &gt; select <strong>Boot<\/strong> <strong>Order<\/strong> &gt; click on <strong>Edit<\/strong> &gt; check only <strong>sata0<\/strong>.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-3376\" src=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-05-51-16.png\" alt=\"\" width=\"803\" height=\"507\" srcset=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-05-51-16.png 803w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-05-51-16-300x189.png 300w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-05-51-16-768x485.png 768w\" sizes=\"auto, (max-width: 803px) 100vw, 803px\" \/><\/p>\n<p>Click <strong>OK<\/strong>.<\/p>\n<hr \/>\n<p><strong>CONFIGURE NETWORK INTERFACE<\/strong><\/p>\n<p>Start the VM and open the Console.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone wp-image-3379 size-large\" src=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-06-24-37-1024x567.png\" alt=\"\" width=\"640\" height=\"354\" srcset=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-06-24-37-1024x567.png 1024w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-06-24-37-300x166.png 300w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-06-24-37-768x425.png 768w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-06-24-37.png 1287w\" sizes=\"auto, (max-width: 640px) 100vw, 640px\" \/><\/p>\n<p>If everything went well, you might see the bootloader and the VM will be up in few seconds.<\/p>\n<pre>sudo nano \/etc\/network\/interfaces.d\/30_non-qubes-whonix<\/pre>\n<p>The eth0 interface is the public side of the Whonix gateway. And the eth1 is the private side.<\/p>\n<p>On the private side, no changes are required, but on the public side it needs to have hard-coded an IP that is not in use from your local network.<\/p>\n<p>For some reason, Whonix does not allow DHCP. So make sure you pick ne IP that is out of the rance of your LAN&#8217;s DHCP Server leasing range.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone wp-image-3380 size-large\" src=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-06-31-09-1024x682.png\" alt=\"\" width=\"640\" height=\"426\" srcset=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-06-31-09-1024x682.png 1024w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-06-31-09-300x200.png 300w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-06-31-09-768x512.png 768w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-06-31-09.png 1424w\" sizes=\"auto, (max-width: 640px) 100vw, 640px\" \/><\/p>\n<p>Reboot the VM.<\/p>\n<pre>sudo reboot<\/pre>\n<p>Then test for Internet connectivity.<\/p>\n<pre>sudo apt update<\/pre>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone wp-image-3381 size-large\" src=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-06-42-31-1024x232.png\" alt=\"\" width=\"640\" height=\"145\" srcset=\"https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-06-42-31-1024x232.png 1024w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-06-42-31-300x68.png 300w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-06-42-31-768x174.png 768w, https:\/\/dft.wiki\/wp-content\/uploads\/sites\/15\/2023\/02\/Screenshot-from-2023-02-03-06-42-31.png 1048w\" sizes=\"auto, (max-width: 640px) 100vw, 640px\" \/><\/p>\n<p><strong>Note:<\/strong> the repositories are being reached through Tor. Worked!<\/p>\n<hr \/>\n<p><strong>RUN A CLIENT ON THE SECONDARY NETWORK<\/strong><\/p>\n<p>Attach any client VM or CT to the secondary isolated network <strong>vmbr2<\/strong> and start it.<\/p>\n<p>Out-of-the-box it will not work. It is because Whonix Gateway does not provided an IP to the clients. It has to be done manually too.<\/p>\n<p>Use the <strong>Console<\/strong> to configure the network interface. I my case, I deployed a Debian Container:<\/p>\n<pre>nano \/etc\/network\/interfaces<\/pre>\n<pre>auto lo\r\niface lo inet loopback\r\n\r\nauto eth0\r\niface eth0 inet <strong>static<\/strong>\r\n        address <strong>10.152.152.11\/18<\/strong>\r\n        gateway <strong>10.152.152.10<\/strong><\/pre>\n<pre>reboot<\/pre>\n<p>Test it for connectivity. All your traffic is now anonymous!<\/p>\n<hr \/>\n<p><strong>BONUS<\/strong><\/p>\n<p>Have you heard about <strong>Qubes OS<\/strong> [<a href=\"https:\/\/www.qubes-os.org\/\">Link<\/a>]. While Whonix + Tails are privacy focus and exclusively access the internet though Tor, while Qubes OS has a security driven focus by compartmentalization between virtual machines.<\/p>\n<p>Qubes OS is a hypervisor type 1 based on Xen Project that isolates workloads for maximum security and reliability weather running production + development environments or safely analyzing malware without infecting other systems.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Whonix is a privacy-focused operating system that aims to provide users with the highest level [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[9,1],"tags":[],"class_list":["post-3350","post","type-post","status-publish","format-standard","hentry","category-hacking","category-ccna"],"_links":{"self":[{"href":"https:\/\/dft.wiki\/index.php?rest_route=\/wp\/v2\/posts\/3350","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/dft.wiki\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/dft.wiki\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/dft.wiki\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/dft.wiki\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=3350"}],"version-history":[{"count":13,"href":"https:\/\/dft.wiki\/index.php?rest_route=\/wp\/v2\/posts\/3350\/revisions"}],"predecessor-version":[{"id":3971,"href":"https:\/\/dft.wiki\/index.php?rest_route=\/wp\/v2\/posts\/3350\/revisions\/3971"}],"wp:attachment":[{"href":"https:\/\/dft.wiki\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=3350"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/dft.wiki\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=3350"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/dft.wiki\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=3350"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}