From owner-freebsd-hackers Wed Mar 5 01:04:20 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id BAA03354 for hackers-outgoing; Wed, 5 Mar 1997 01:04:20 -0800 (PST) Received: from ns.ge.com (ns.ge.com [192.35.39.24]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id BAA03349 for ; Wed, 5 Mar 1997 01:04:16 -0800 (PST) Received: from thomas.ge.com (thomas.ge.com [3.47.28.21]) by ns.ge.com (8.8.4/8.7.3) with ESMTP id DAA02872; Wed, 5 Mar 1997 03:59:00 -0500 (EST) Received: from burg.is.ge.com (burg.is.ge.com [3.19.120.24]) by thomas.ge.com (8.8.4/8.7.5) with ESMTP id EAA09749; Wed, 5 Mar 1997 04:01:52 -0500 (EST) Received: (from burg@localhost) by burg.is.ge.com (8.8.4/8.8.4) id JAA04235; Wed, 5 Mar 1997 09:53:44 +0100 (MET) Date: Wed, 5 Mar 1997 09:53:44 +0100 (MET) Message-Id: <199703050853.JAA04235@burg.is.ge.com> From: Dick van den Burg To: Chris Timmons Cc: Dick van den Burg , cvsup-bugs@polstra.com, freebsd-hackers@freebsd.org Subject: Re: cvsup In-Reply-To: References: <199703012027.VAA20143@burg.is.ge.com> Sender: owner-hackers@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Chris Timmons wrote: > > Dick, > > John Polstra (the CVSup author) might be able suggest something when he > returns to the list mid-month. I'd encourage you to email him directly at > . > > > Is there any way whereby I can tell the server to connect to the > > firewall (in stead of my-host) on a given port or is there any way I > > can specify a portnumber I can connect to on the server in passive > > mode? > > Either way it would probably require modifications to CVSup and CVSupd. > The former seems like it would be easier than trying to guarantee port > assignments at the server for a particular run of passive-mode CVSup. > I have successfully hacked CVSup to make my setup work. The temporary very gross workaround is that I hard-code the PORT command with the IP address of the firewall and the port number from the -P argument. This results in CVSupd connecting back to a know port on the firewall. That connection is then plugged through to my FreeBSD box and both cvsup sides think they are talking to each other. I would like to either expand the -P option to include a hostname or IP number, or add another option to specify the host to connect to, but I do not have enough knowledge of modula3 to do this quickly. I suspect that there are not many people waiting for this feature ... > > > Any other suggestions ? > > It's probably not likely that you would change your firewall software > (i.e. to socks) to get around this problem; however, might you locate an > otherwise retired/discarded 386/486 machine outside the firewall with just > ssh and cvsup? You could set up your own mirror and talk to it through > the firewall using ssh port forwarding. If you are inclined to do this > let me know, and I can help you with setting up your mirror. > Ssh, socks or another box on the DMZ are not options I can use under our current security policy. > Good luck, > > -Chris > > Thanks ... Dick