Actions

Whonix-Workstation Firewall

Advanced users only!

Qubes-Whonix[edit]

TODO: document

Non-Qubes-Whonix[edit]

Introduction[edit]

There is a second, extra firewall for Whonix-Workstation. Experts should read the design notes (see online man page) or run on Whonix-Workstation.

man whonix_firewall

And make an informed decision. It is disabled by default.

Will be enabled in Whonix 14 by default and have more features.

Enable[edit]

On Whonix-Workstation.

Open /etc/whonix_firewall.d/50_user.conf in an editor with root rights.

If you are using a graphical Whonix or Qubes-Whonix, run.

kdesudo kwrite /etc/whonix_firewall.d/50_user.conf

If you are using a terminal-only Whonix, run.

sudo nano /etc/whonix_firewall.d/50_user.conf

Add the following content.

WORKSTATION_FIREWALL=1

Save.

Reload Whonix-Workstation Firewall.

If you are using Qubes-Whonix, complete the following steps.

Qubes App Launcher (blue/grey "Q") -> Whonix-Workstation AppVM (commonly named anon-whonix) -> Reload Whonix Firewall

If you are using a graphical Whonix-Workstation, complete the following steps.

Start Menu -> Applications -> System -> Reload Whonix Firewall

If you are using a terminal-only Whonix-Workstation, run.

sudo whonix_firewall

From now it will be automatically load on every reboot before network is coming up.

See Also[edit]

Footnotes[edit]



Random News:

Did you know that Whonix could provide protection against backdoors? See Verifiable Builds. Help is wanted and welcomed.


https | (forcing) onion

Share: Twitter | Facebook

This is a wiki. Want to improve this page? Help is welcome and volunteer contributions are happily considered! See Conditions for Contributions to Whonix, then Edit! IP addresses are scrubbed, but editing over Tor is recommended. Edits are held for moderation.

Whonix is a licensee of the Open Invention Network. Unless otherwise noted, the content of this page is copyrighted and licensed under the same Libre Software license as Whonix itself. (Why?)