virt-manager is a free software virtualization solution for Linux. virt-manager has a more complex interface than VirtualBox or GNOME Boxes but it also has a more complete set of features.

Ejecutar Tails dentro de una máquina virtual tiene bastantes implicaciones de seguridad. Dependiendo en el sistema operativo base y tus necesidades de securidad, ejecutar Tails en una máquina virtual podría ser peligroso.

virt-manager is the only virtualization solution that we present that allows the use of a persistent volume. See Running Tails from a USB image.

The following instructions have been tested on Debian 9 (Stretch).

Please, let us know if they do not apply to Debian 10 (Buster).

Terminología

virt-manager is based on a set of lower level virtualization tools, going from the user interface to the hardware interactions with the processor. This terminology is a bit confusing and other documentation might mention the following tools:

  • KVM is the module of the Linux kernel that interacts with the virtualization features of the processor.
  • QEMU is the virtualization software that emulates virtual processors and peripherals based on KVM and that starts and stops virtual machines.
  • libvirt is a library that allows virt-manager to interact with the virtualization capabilities provided by QEMU.
  • SPICE is a protocol that allows to visualize the desktop of virtual machines.
  • virt-manager is the graphical interface that allows to create, configure, and run virtual machines.

Instalación

To install virt-manager in Debian, execute the following command:

sudo apt install virt-manager libvirt-daemon-system

To install virt-manager in Ubuntu, execute the following command:

sudo apt install virt-manager libvirt-bin qemu-kvm

Ejecutar Tails desde una imagen ISO

  1. Start virt-manager.

  2. Double-click on localhost (QEMU) to connect to the QEMU system of your host.

  3. To create a new virtual machine, choose File ▸ New Virtual Machine.

  4. In step 1, choose Local install media (ISO image or CDROM).

  5. In step 2, choose:

    • Use ISO image, then Browse..., and Browse Local to browse for the ISO image that you want to start from
    • OS type: Linux
    • Version: Debian Stretch
  6. In step 3, allocate at least 2048 MB of RAM.

  7. In step 4, disable storage for this virtual machine.

  8. In step 5:

    • Escribe un nombre para la nueva máquina virtual.
    • Haz click en Finalizar para arrancar la máquina virtual.
If you get the error message "Error starting domain: Requested operation is not valid: network 'default' is not active", then try to start the default virtual network:
  1. Click on localhost (QEMU).
  2. Choose Edit ▸ Connection details to administer the connection to your local QEMU system.
  3. Click on Virtual Networks tab, then select the default virtual network in the left pane.
  4. Click on the ?media-playback-start.png icon on the bottom of the left pane to start the default virtual network.

Ejecutar Tails desde una imagen USB

Running Tails from a USB image is the only virtualization solution that allows you to use a persistent volume in a virtual machine.

  1. Download a USB image instead of an ISO image.

  2. Increase the size of the USB image to be at least 8 GB. This creates space for automatic upgrades and the persistent volume.

    truncate -s size tails.img

    • size has to be at least 7200M.
    • tails.img is the file name of the USB image that you want to resize.
  3. Start virt-manager.

  4. Double-click on localhost (QEMU) to connect to the QEMU system of your host.

  5. To create a new virtual machine, choose File ▸ New Virtual Machine.

  6. In step 1, choose Import existing disk image.

  7. In step 2, choose Browse..., and Browse Local to browse for the USB image that you want to start from.

    As operating system, choose Debian Stretch.

  8. In step 3, allocate at least 2048 MB of RAM.

  9. In step 4:

    • Escribe un nombre para la nueva máquina virtual.
    • Choose Customize configuration before install.
    • Click Finish to open the configuration view.
  10. In the configuration view, choose VirtIO Disk 1 or IDE Disk 1

    • Expand the Advanced options and set Disk bus to USB.
    • Click Apply.
    • Check the Removable check box which should appear in the same view.
    • Click Apply again.
    • Click Begin Installation in the top left corner to start the virtual machine.

After you started on the USB image, you can create a persistent volume on it.

Ejecutar Tails desde una memoria USB

To run Tails from a USB stick using virt-manager, first create a virtual machine running from an ISO image as described above.

Then do the following:

  1. From the virtual machine window, choose Virtual Machine ▸ Shut Down ▸ Force Off to shut down the virtual machine.
  2. Plug in the USB stick from which you want to run Tails.
  3. Choose View ▸ Details to edit the configuration of the virtual machine.
  4. Click on the Add Hardware button on the bottom of the left pane.
  5. Select USB Host Device in the left pane.
  6. In the right pane, click on the device from which you want to run Tails, and click Finish.

You can keep the original ISO image connected as a virtual DVD to install Tails onto the USB stick if needed.

You can also disconnect the original ISO image and start directly from the USB stick once Tails is already installed on it. To do so:

  1. Apaga la máquina virtual.
  2. In the configuration of the virtual machine, click on IDE CDROM 1 in the left pane.
  3. Click on the Disconnect button in the right pane.
  4. To enable the USB stick as a boot option:
    1. Click on Boot Options in the left pane.
    2. Select the USB boot option corresponding to your USB device.
    3. Click Apply.
  5. To start the virtual machine choose View ▸ Console and then Virtual Machine ▸ Run.

Once you started from the USB device you can create a persistent volume on it.

Resolución de problemas

Problemas de gráficos

Issues with graphics support in Tails running inside a virtual machine with virt-manager are common. The best solution can vary depending on the version of the virtualization solution and on the virtual machine configuration. For example:

  • The Auto resize VM with window feature does not work in all configurations.
  • The video device that provides optimal graphics performance can be different depending on the version of the host operating system.

To troubleshoot such issues:

  1. Ensure the virtual machine has a Spice display and a Spice channel configured, as opposed to VNC ones.

  2. Try various virtual video device models.

    Start with Virtio and QXL video devices: they generally give the best results. If they don't perform well for you, try every other video device model.