From what I gather, default behavior is to have gateway with NAT adapter and Internal network adapter, workstation with just internal network adapter. We now have a fairly new feature in VB called NAT Network. This makes using 2 ifaces on the gateway redundant. In the meantime, how can I successfully set it up this way for myself? I have both VMs set to NAT Network but now workstation can’t connect out.
Maybe if I just mirror the previous IP addresses. Will try again.
What I’m wanting to do is administer multiple workstations from the host via SSH. The documentation suggests that to do this, I should hop from the gateway to the workstations. This seems bad to me because you’re opening ports on the one VM that actually is connected to the outside Internet (Though admittedly through Tor but still).
Maximum protection should be on the gateway. I see why it could be bad to use NAT Network on the workstation though.
I came up with workarounds to accomplish it. Basically, port forwarding/hopping through the vbox NAT, to the gate, to each WS, opening local host ports.
For instance, if I map the gateway port 22 to vbox NAT port 2222 then I can:
where workstation1 is the hostname (Specified in /etc/hosts on gateway) on the virtual network of the machine I want to be able to connect to on port 21 via local port 2121.