- Thread Starter
- #26
Thank you, your suggestion resolves the issue. I have updated the FreeBSD image on Instant Workstation with your fix.Most likely due to defaultUseDNS yes
in /etc/ssh/sshd_config. Change defaults to no and try then (note sshd has to be restarted, or image redeployed in this case).
Indeed, the VNC server is running on the host and not inside the VM. However the SSH server is running inside the virtual machine. Connecting to the SSH server inside the virtual machine from outside is made possible by forwarding a certain host port (e.g. 35022) to port 22 (SSH) of the virtual machine. The virtual machine is isolated from the outside world using QEMU's restrict option. The restrict option can be selectively overridden which is described in more detail in the QEMU documentation. The Instant Workstation virtual machines use these QEMU networking parameters: -device e1000,netdev=net0 -netdev user,id=net0,hostfwd=tcp::35022-:22,,smb=<some path>,restrict=yesHe's forwarding VNC ports of given VMs (on host) to outside completely; VMs run on isolated network.
This seems to block everything except for the host SSHing into the guest and the guest being able to connect to the SMB share. I'm not a networking expert so not sure if this is totally foolproof but at least in my exploratory testing I was not able to circumvent these restrictions. SSHing from the guest into the host or other virtual machines running on the same host was blocked. Furthermore I was not able to mount an SMB share in the guest that was intended for a different virtual machine. Additionally I did not find a way to access the internet from within the virtual machine. Please let me know if there is a workaround to these restrictions.