Whonix-Workstation Firewall
Advanced users only!
Qubes-Whonix[edit]
TODO: document
Non-Qubes-Whonix[edit]
Introduction[edit]
There is a second, extra firewall for Whonix-Workstation. Experts should read the design notes (see online man page) or run on Whonix-Workstation.
And make an informed decision. It is disabled by default.
Will be enabled in Whonix 14 by default and have more features.
Enable[edit]
On Whonix-Workstation.
Open /etc/whonix_firewall.d/50_user.conf in an editor with root rights.
If you are using a graphical Whonix or Qubes-Whonix, run.
If you are using a terminal-only Whonix, run.
Add the following content.
Save.
Reload Whonix-Workstation Firewall.
If you are using Qubes-Whonix, complete the following steps.
Qubes App Launcher (blue/grey "Q") -> Whonix-Workstation AppVM (commonly named anon-whonix) -> Reload Whonix Firewall
If you are using a graphical Whonix-Workstation, complete the following steps.
Start Menu -> Applications -> System -> Reload Whonix Firewall
If you are using a terminal-only Whonix-Workstation, run.
From now it will be automatically load on every reboot before network is coming up.
See Also[edit]
Footnotes[edit]
Did you know that Whonix could provide protection against backdoors? See Verifiable Builds. Help is wanted and welcomed.
This is a wiki. Want to improve this page? Help is welcome and volunteer contributions are happily considered! See Conditions for Contributions to Whonix, then Edit! IP addresses are scrubbed, but editing over Tor is recommended. Edits are held for moderation.
Whonix is a licensee of the Open Invention Network. Unless otherwise noted, the content of this page is copyrighted and licensed under the same Libre Software license as Whonix itself. (Why?)