For some context, here is my previous guide on fixing snowflake in whonix from earlier today.

https://forum.qubes-os.org/t/qubes-whonix-17-tor-snowflake-proxy-setup-guide-that-works/28844

In my last guide at the top of this post, I showed how to get snowflake proxy working in Qubes-Whonix(sys-whonix), by replacing the default (outdated?)bridges found in the whonix(qubes-whonix) snowflake documentation and bypassing qubes-whonix's Tor Control Panel, on top of configuring DNS settings specific to qubes-whonix. This guide will show you how to get the snowflake proxy in sys-whonix's Tor Control Panel working using the same principle, and independent from the Tor User Config, if you find that to be useful. (It feels nice to click snowflake and have it not stop at 10%(you know, work the way it is supposed to work), and it frees up your Tor User Config.)

If this has been done before, or if this is trivial/pointless then I apologize, but I like when things are made to be easy for people, and if I can help, I will(i hope I'm helping at least). So here we go.

This procedure was first tested in the sys-whonix VM as root, do it in the whonix-gateway-17 template for persistence.

This guide assumes the user has already configured sys-whonix's DNS using sudoedit /etc/resolv.conf.whonix and setting the output of qubesdb-read /qubes-netvm-primary-dns as nameserver near the bottom of the file by uncommenting it and changing the ip. It also assumes the user has copied and installed snowflake-client by copying it from the whonix-workstation-17 template to the whonix-gateway-17 template in /usr/bin , and making the file executable.

EDIT: It might be wise to cut network access to sys-whonix while logged in as root (i'm in the process of testing this in the whonix-gateway-17 template for persistence[testing is done and it works fine 🙂 ])

Choose from the following Options; A for testing, and B for persistent template install, to proceed.

Option A: In dom0:(for testing) qvm-run --user root sys-whonix xterm In sys-whonix xterm:(for testing) skip Option B and execute commands below for testing

Option B: In whonix-gateway-17 terminal:(For Template Install) execute commands below for template install

cd /usr/share/anon-conection-wizard/

sudo nano bridges_default

Replace the outdated snowflake bridges in the file to these newer ones from the tor project found at this link, I suggest the CDN77 bridges(option 2): https://forum.torproject.org/t/fix-problems-with-snowflake-since-2024-03-01-broker-failure-unexpected-error-no-answer/11755

CTRL+O then CTRL+ENTER (to save file) CTRL+X (to exit file)

Shut down whonix-gateway-17

Start/Restart sys-whonix

Find and launch your Tor Control Panel under Main Qubes Menu > Services > sys-whonix > Tor Control Panel

Click stop Tor

Click Configure

Select snowflake as your bridge type

Click Restart Tor

It should look like this.

qubesforum-torcontrolpanelfix|690x388

Snowflake should connect fine. This has also been tested in the whonix-gateway-17 template for persistence and it works great! :). I hope I have contributed something around here!(probably not but some feedback would be nice) 😃