Angry critics needed! Connecting whonix gateway through another gate

whonixuser3 · September 23, 2018, 1:43am

Serious critics needed.

The reason this topic was created is inconvenience of vpn usage before tor in whonix gateway. No gui, etc.

My idea is to create another gateway - guest OS with GUI for the VPN. (Let’s call it VPNGATEGUESTOS)
In order to connect these systems I offer to create another internal adaptor and remove a NAT adaptor from the whonix gateway.

The Phonix gateway in the config I plan to make will have only 2 network adaptors: whonix internal adaptor, and another internal adaptor to connect with VPNGATEGUESTOS.

What kind of vulnerabilities may emerge if we replace Whonix gateway’s NAT adaptor with another internal network adaptor that will be connected with VPNGATEGUESTOS?

Thanks

0brand · September 23, 2018, 10:12pm

Hi whonixuser3

You may want read over the previous posts on this topic i.e. VPN Gateway VM.

https://forums.whonix.org/search?q=vpn%20vm

And go over the wiki Tunnel docs. Using a VPN can make setup and configuration more complicated and and not always easy to ensure the VPN fails closed.

https://whonix.org/Tunnels/Introduction

Patrick · September 25, 2018, 7:19am

Whonix-Gateway-CLI:
Coming in future. There is now a non-qubes-whonix-gateway-cli meta package. Not much info on it yet. Search the forums / internet for more information and stay tuned for more information.