1

I know that Qubes Os is not suitable for a server use, but some of its features are quite interesting for that. In fact, all the network drivers are contained in a VM that run a different Linux based system and the connections from the "main OS" to the network are made through TCP/IP with that VM. Moreover, network drivers have been moved out from the main OS kernel. That allows to prevent the use of a potential bug in the network driver.

How can I reproduce the same configuration ? I thought about using Xen with a virtual network, but I would like to know if somebody already made it.

Ben W
  • 13
  • 1
  • 4

2 Answers2

2

If you take a glance at the Qubes OS source code repositories you will be surprised to find out that most of the code is not written in C but in Python and Shell script. This is not without reason: many of its core features (PCI passthrough, virtual networks, VM templates with layering and snapshots...) were already available in Xen and the Linux kernel, and what Qubes really does is gluing all those together to create a beautiful seamless and effortless desktop experience that would otherwise be an cumbersome to configure by hand and actually be suitable for everyday use.

However, as most servers don't really need a seamless GUI experience and Libvirt does some of the heavy lifting, the task becomes much simpler and the amount of work needed is reduced to relatively tolerable levels for an experienced sysadmin (Nevertheless, I am also linking to native Xen docs for those who believe that real programmers don't use Pascal or who simply wants to know how thinks work underneath).

Note: Enterprise Linux distributions most likely have tools and utilities to manage virtual machines comfortably from fancy web control panels, and Openstack also has it. However, the former's licenses usually are more expensive than the used 1U servers you can find online and the latter simply deploys an entire cloud on a cluster...

Before you start you will need to know about the following subjects:

Now, to set up a server system similar to Qubes, on Dom0 one would have to install a minimal Fedora (latest kernel/packages) or CentOS (stability, make sure the kernel version isn't too old) witk LUKS system encryption, the /boot partition, a Logical Volume Manager partition with a thin provisioning pool and, at least, the root and swap logical volumes (don't make the swap thin). Once finished, install Xen and its dependencies.

When it comes to TemplateVMs, Qubes usually creates a root (/) and private (/rw /home /usr/local) logical volumes for each of them and creates a snapshot of both before starting the VM and mounting them. They are both readable and writable and, when the VM stops, the snapshots are removed.

AppVMs though, only have a private (/rw /home /usr/local /var/spool/cron) logical volume and, right before the VM starts, Qubes makes a snapshot of the TemplateVM's root partition (or from another snapshot in case the TemplateVM is running) and mounts the new snapshot as root (/). They are both readable and writable too. However, when the AppVM stops, the root snapshot is removed discarding thus all previous changes.

DispVMs create both a root and private snapshots of the TemplateVM and AppVM logical volumes respectively before starting, and discards both after stopping.

Albert Gomà
  • 434
  • 2
  • 10
0

"That allows to prevent the use of a potential bug in the network driver."

In the host ... The network VM is now the vulnerable part and certainly one of the more important VM's.

"How can I reproduce the same configuration ? I thought about using Xen with a virtual network, but I would like to know if somebody already made it."

Depends on the hypervisor and OS. You are looking for something like PCI passthrough, DDA, SR-IOV

schroeder
  • 123,438
  • 55
  • 284
  • 319
buildscratch
  • 1