{"id":202,"date":"2016-01-28T22:07:29","date_gmt":"2016-01-28T22:07:29","guid":{"rendered":"http:\/\/pjakey.com\/wp\/?p=202"},"modified":"2018-05-08T16:53:03","modified_gmt":"2018-05-08T16:53:03","slug":"cisco-anyconnect-and-host-only-connectivity-in-virtualbox","status":"publish","type":"post","link":"https:\/\/pjakey.com\/wp\/2016\/01\/28\/cisco-anyconnect-and-host-only-connectivity-in-virtualbox\/","title":{"rendered":"Cisco AnyConnect and Host-Only Connectivity in VirtualBox"},"content":{"rendered":"

Sometimes I desire to have a VM on my local machine, which is running Max OS X 10.10. \u00a0I prefer to be able to use SCP to transfer files from my host to my guest, usually some flavor of Linux.<\/p>\n

It seems pretty straight-forward to set up a host only connection. \u00a0There are articles all over describing exactly how it can be done. \u00a0Here’s <\/a>one and here’s a<\/a>nother.<\/p>\n

Under normal conditions, this works flawlessly. \u00a0However, at work, we use Cisco AnyConnect<\/strong> (here is some marketing <\/a>material if you’re interested), which hijacks my routing table and sends everything to the watchful eye of our network admins…or at least through their gateways and hops how they see fit. \u00a0This means that even a local “host-only” route is over-written by whatever they have dictated. \u00a0Here is my “host-only” route being sent out my VPN tunnel:<\/p>\n

192.168.56 \u00a0 \u00a0 \u00a0 \u00a0 link#10 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0UCS \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 0 \u00a0 \u00a0 \u00a0 \u00a00 \u00a0 utun0<\/pre>\n
This means that if you want to have a local VM with which to play and experiment, connecting to it isn’t all that straight-forward. \u00a0First, you have to disconnect from your VPN (AnyConnect > Disconnect). \u00a0You’ll see that your VirtualBox local host-only route is gone completely:<\/p>\n
$ netstat -nr\r\nRouting tables\r\n\r\nInternet:\r\nDestination  Gateway           Flags   Refs     Use   Netif Expire\r\ndefault      10.65.10.1        UGSc      53     315   en3\r\n10.65.10\/23  link#5            UCS        3       0   en3\r\n10.65.10.1   4c:4e:35:77:77:41 UHLWIir   54       0   en3      600\r\n10.65.10.97  127.0.0.1         UHS        0       0   lo0\r\n10.65.10.99  68:5b:35:77:77:85 UHLWI      0       0   en3      644\r\n10.65.11.255 ff:ff:ff:ff:ff:ff UHLWbI     0       3   en3\r\n127          127.0.0.1         UCS        0       0   lo0\r\n127.0.0.1    127.0.0.1         UH        71  839273   lo0\r\n169.254      link#5            UCS        0       0   en3<\/pre>\n
The VirtualBox host-only interface may have an IP address, both on the host and the guest, but its route is not re-added to my routing table when I disconnect from the VPN. \u00a0I have to go into VirtualBox > Preferences > \u00a0Network > Host-only Network, remove the host-only interface (vboxnet0) and re-add it. \u00a0Once I do this, its route is added to my routing table and I can connect to my VM guest!<\/p>\n
$ netstat -nr\r\nRouting tables\r\n\r\nInternet:\r\nDestination    Gateway           Flags Refs    Use   Netif Expire\r\ndefault        10.65.10.1        UGSc    65    315     en3\r\n10.65.10\/23    link#5            UCS      3      0     en3\r\n10.65.10.1     4c:4e:35:77:77:41 UHLWIir 66      0     en3    527\r\n10.65.10.97    127.0.0.1         UHS      0      0     lo0\r\n10.65.10.99    68:5b:35:77:77:85 UHLWI    0      0     en3    571\r\n10.65.11.255   ff:ff:ff:ff:ff:ff UHLWbI   0      6     en3\r\n127            127.0.0.1         UCS      0      0     lo0\r\n127.0.0.1      127.0.0.1         UH      73 840630     lo0\r\n169.254        link#5            UCS      0      0     en3\r\n192.168.56     link#11           UC       2      0 vboxnet\r\n192.168.56.255 ff:ff:ff:ff:ff:ff UHLWbI   0      1 vboxnet<\/pre>\n","protected":false},"excerpt":{"rendered":"
Sometimes I desire to have a VM on my local machine, which is running Max OS X 10.10. \u00a0I prefer to be able to use SCP to transfer files from my host to my guest, usually some flavor of Linux. It seems pretty straight-forward to set up a host only connection. \u00a0There are articles all…<\/span><\/p>\n
Continue Reading<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[10],"tags":[],"class_list":["post-202","post","type-post","status-publish","format-standard","hentry","category-sysadmin"],"_links":{"self":[{"href":"https:\/\/pjakey.com\/wp\/wp-json\/wp\/v2\/posts\/202","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/pjakey.com\/wp\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/pjakey.com\/wp\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/pjakey.com\/wp\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/pjakey.com\/wp\/wp-json\/wp\/v2\/comments?post=202"}],"version-history":[{"count":1,"href":"https:\/\/pjakey.com\/wp\/wp-json\/wp\/v2\/posts\/202\/revisions"}],"predecessor-version":[{"id":285,"href":"https:\/\/pjakey.com\/wp\/wp-json\/wp\/v2\/posts\/202\/revisions\/285"}],"wp:attachment":[{"href":"https:\/\/pjakey.com\/wp\/wp-json\/wp\/v2\/media?parent=202"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/pjakey.com\/wp\/wp-json\/wp\/v2\/categories?post=202"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/pjakey.com\/wp\/wp-json\/wp\/v2\/tags?post=202"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}