From owner-freebsd-questions@FreeBSD.ORG Tue Feb 3 12:37:58 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D689C16A4CE for ; Tue, 3 Feb 2004 12:37:58 -0800 (PST) Received: from themango.org (64-151-23-134-dhcp-kc.everestkc.net [64.151.23.134]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1BDAD43D31 for ; Tue, 3 Feb 2004 12:37:57 -0800 (PST) (envelope-from luke@themango.org) Received: from www.themango.org (localhost [127.0.0.1]) by themango.org (Postfix) with SMTP id 47243450F6; Tue, 3 Feb 2004 14:37:51 -0600 (CST) Received: from 208.24.179.207 (SquirrelMail authenticated user luke) by www.themango.org with HTTP; Tue, 3 Feb 2004 14:37:51 -0600 (CST) Message-ID: <51258.208.24.179.207.1075840671.squirrel@www.themango.org> In-Reply-To: References: Date: Tue, 3 Feb 2004 14:37:51 -0600 (CST) From: luke@themango.org To: "Anthony Discolo" User-Agent: SquirrelMail/1.4.2 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 Importance: Normal cc: kstewart@owt.com cc: freebsd-questions@freebsd.org Subject: Re: ftp/fetch/cvsup behind a firewall X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 03 Feb 2004 20:37:59 -0000 > Unfortunately, I do not have control over my firewall. > > > ----Original Message Follows---- > From: Kent Stewart > To: "Anthony Discolo" , kaeru@pd.jaring.my > CC: freebsd-questions@freebsd.org > Subject: Re: ftp/fetch/cvsup behind a firewall > Date: Mon, 2 Feb 2004 19:16:37 -0800 > > On Monday 02 February 2004 11:18 am, Anthony Discolo wrote: > > I don't have a /usr/share/examples/etc/defaults/make.conf, but I have > > a /usr/share/examples/etc/make.conf. But it doesn't have a FETCH_ENV > > line in it. > > > > I'm sure someone has been successful in running cvsup behind a > > firewall? After all, don't all these tools use ftp indrectly? > > I use cvsup behind the ipfw firewall. I thought I had to allow port > 5999, which is the port cvsup used to talk to the server, and will have > to look at my firewall rules more closely. I use a cvs-mirror to > maintain my outside information. I have fewer problems accessing the > mirror from inside my firewall. A 100mpbs network is also much faster > than my DSL line :). > > Do you have control of the firewall? > > Kent > If you cannot get the admin of the firewall to open up port 5999 how about port 21 for ssh. It seems that most people have that open anyway so it may not be much of an issue. Here's where I am going. 1) You need to get shell access on a remote machine outside the firewall. This shouldn't be too hard, either your machine at home, a friends machine or one of those many that are offering free shell access. We'll call it "friendly.example.com" 2) From your FreeBSD machine behind the firewall you would open up a tunnel between yourself and the friendly machine on port 5999 for cvsup. $ ssh -L 5999:cvsupmirror.freebsd.org:5999 loginid@friendly.excample.com replace "cvsupmirros.freebsd.org" with an actual one from the list of mirrors. loginid is your login name on the remote machine. 3) From another command prompt you run cvsup while pointing to your localhost as the cvsup server. # cvsup -g -L2 -h localhost /path/to/cvsupfile Cheers and good luck, Luke