Solved

Using "emerge" from behind a firewall

Posted on 2004-09-02
11
721 Views
Last Modified: 2013-12-15
I'm working on a gentoo linux box and need to install some programs: jikes, w3m, curl, djbdns, bind-tools, mtr and sun-jdk.
I'm working at a bank and they only allow port 80 traffic in and out of the vlan I'm on.  So, using "emerge" doesn't work.  i.e. #emerge jikes.  Since it attempts to ftp the download.  Is there a way around this?  What are my options?
0
Comment
Question by:aandrade
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
11 Comments
 
LVL 11

Expert Comment

by:avizit
ID: 11969229
I dont remember exactly but you can download using 'wget' too ..do you have wget installed.
if installed maybe you have to make a few changes to /etc/make.conf

I dont have acess to a gentoo machine now .. but will check when i reach workplace
0
 
LVL 40

Expert Comment

by:jlevie
ID: 11969941
If the files are only available via FTP and those ports aren't permitted by the firewall you are simply out of luck whether you use an FTP client or wget. Only if you can find a site that allows downloads via HTTP are you cgoing to have any success. You can use a web browser, wget, or lynx for the download, but the install will be a manual process.
0
 
LVL 6

Expert Comment

by:knollbert
ID: 11970008
it appears that if you modify the mirrors select variable in make.conf
that it will download using what ever protocol that mirror has  However if that  program can't be found on one of those mirrors it'll
use  one that works which may or may not be http

I currently use
http://mirror.datapipe.net/gentoo http://mirrors.tds.net/gentoo

i got w3m, djbdns, bind-tools, mtr, and sun must be downloaded seperately

!!! dev-java/sun-jdk-1.4.2.05 has fetch restriction turned on.
!!! This probably means that this ebuild's files must be downloaded
!!! manually.  See the comments in the ebuild for more information.

However jikes appears to only be availible at ftp.ibm.blahblah
0
Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

 
LVL 23

Expert Comment

by:Mysidia
ID: 11970248
I suggest getting your firewall reconfigured to permit at least the destination port for FTP.

If destination port 80 is allowed, then all the destination ports might as well be allowed, as
just about anything can be made to go through that port.

Yeah, you could get around it by finding an http mirror or setting up a local one on the
other side of your firewall.

But the zealous firewall configuration is likely to cause a lot of similar problems.
Consider how much time and energy it's taking you to work around it and just in one instance......
0
 
LVL 7

Expert Comment

by:troopern
ID: 12001177
knollbert is correct, you need to change your GENTOO_MIRRORS variable in /etc/make.conf to "http://" mirrors.
0
 

Author Comment

by:aandrade
ID: 12002077
When accessing http:// the firewall requires that I enter "user id" and "password", how do specify this in the make.conf file?
0
 

Author Comment

by:aandrade
ID: 12002185
This might be more helpful then my last message.  I changed my GENTOO_MIRRORS variable to an "http:// mirror.  When I attempt to i.e. "#emerge curl" I get "HTTP request sent, awaiting response...401 Unathorized Authorization failed."  "Couldn't download curl-7.****. Aborting"

I know that when I access the Internet I have to supply my userid and password.  How can I specify the username and password in my make.conf file?
0
 

Author Comment

by:aandrade
ID: 12011124
Ok, I figured out how to do this.  "emerge" uses "wget" when fetching files online.  I made this entry in my "make.conf" file:

DISTDIR="/usr/portage/distfiles"
URI="http://mirrors.tds.net/gentoo"

FETCHCOMMAND="wget --http-user={username} --http-passwd={passwd} -P \${DISTDIR} \${URI}"
RESUMECOMMAND="/usr/bin/wget --http-user={username} --http-passwd={passwd} -P \${DISTDIR} \${URI}"

And now I can emerge without a problem.  Thanks to everyone for their input and advice.
0
 

Author Comment

by:aandrade
ID: 12011577
The only tool I can't download is jikes, because it's only availble via ftp download (you're right knolbert) and my site blocks all ports except 80.  Is there anyway around this?  I need to be able to use command: #emerge jikes.
0
 
LVL 6

Accepted Solution

by:
knollbert earned 500 total points
ID: 12015400
Download elsewhere and place file in the /usr/portage/distfiles
folder
I know its not the best way.
Unless there is a way to reroute ftp requests into http (none that i know of)
it may be the only way
Unless you can convince your sysadmin to open up FTP for you
0
 
LVL 6

Expert Comment

by:knollbert
ID: 12077761
Any luck??
0

Featured Post

Secure Your Active Directory - April 20, 2017

Active Directory plays a critical role in your company’s IT infrastructure and keeping it secure in today’s hacker-infested world is a must.
Microsoft published 300+ pages of guidance, but who has the time, money, and resources to implement? Register now to find an easier way.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Fetching data from Multiple Linux Server using Shell Scripting 55 180
centos commands 6 92
Apache LDAP Authentication 20 55
AWS Linux EC2 question on group 7 20
It’s 2016. Password authentication should be dead — or at least close to dying. But, unfortunately, it has not traversed Quagga stage yet. Using password authentication is like laundering hotel guest linens with a washboard — it’s Passé.
Join Greg Farro and Ethan Banks from Packet Pushers (http://packetpushers.net/podcast/podcasts/pq-show-93-smart-network-monitoring-paessler-sponsored/) and Greg Ross from Paessler (https://www.paessler.com/prtg) for a discussion about smart network …
Learn how to get help with Linux/Unix bash shell commands. Use help to read help documents for built in bash shell commands.: Use man to interface with the online reference manuals for shell commands.: Use man to search man pages for unknown command…
Connecting to an Amazon Linux EC2 Instance from Windows Using PuTTY.

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question