From owner-freebsd-questions Thu Dec 5 3: 1: 2 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0639B37B401 for ; Thu, 5 Dec 2002 03:01:00 -0800 (PST) Received: from catv-50622a7a.nyircatv.broadband.hu (catv-50622a7a.nyircatv.broadband.hu [80.98.42.122]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4F38E43E9C for ; Thu, 5 Dec 2002 03:00:58 -0800 (PST) (envelope-from andrew@kronos.HomeUnix.com) Received: from slave.east.ath.cx (witch@slave.east.ath.cx [10.1.1.1]) by catv-50622a7a.nyircatv.broadband.hu (8.12.6/8.12.6) with ESMTP id gB5B0uqp031039 (version=TLSv1/SSLv3 cipher=EDH-RSA-DES-CBC3-SHA bits=168 verify=NO) for ; Thu, 5 Dec 2002 12:00:57 +0100 (CET) (envelope-from andrew@east.ath.cx) Date: Thu, 5 Dec 2002 12:00:56 +0100 (CET) From: Andrew Prewett Reply-To: Andrew Prewett To: freebsd-questions@FreeBSD.ORG Subject: Re: hi there =) In-Reply-To: <20021205065317.28453.qmail@mail.com> Message-ID: <20021205112232.T14731-100000@slave.east.ath.cx> References: <20021205065317.28453.qmail@mail.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Today Miguel haber wrote: > Hi > I just have a problem... > I'm behind an http proxy, it's 10.1.1.1 port 8080.. this is the scan of the proxy: > > bash-2.05b$ nmap -P0 10.1.1.1 > Starting nmap V. 3.00 ( www.insecure.org/nmap/ ) > Interesting ports on (10.1.1.1): > (The 1585 ports scanned but not shown below are in state: filtered) > Port State Service > 21/tcp open ftp > 110/tcp closed pop-3 > 389/tcp open ldap > 443/tcp closed https > 445/tcp closed microsoft-ds > 1002/tcp open unknown > 1720/tcp open H.323/Q.931 > 5050/tcp closed mmcc > 5190/tcp closed aol > 6666/tcp closed irc-serv > 6667/tcp closed irc > 6668/tcp closed irc > 6699/tcp closed napster > 6969/tcp closed acmsoda > 7000/tcp closed afs3-fileserver > 8080/tcp open http-proxy > Nmap run completed -- 1 IP address (1 host up) scanned in 422 seconds > bash-2.05b$ > > As you see the port 8080 is open .. and I put this "export HTTP_PROXY="10.1.1.1:8080" in .shrc so when I try to install something from ports it connects to the proxy and fetch the file. and that worked ..see this when i was installing epic4: > migz# make > >> epic4-1.0.1.tar.bz2 doesn't seem to exist in /usr/ports/distfiles/epic4. > >> Attempting to fetch from ftp://ftp.epicsol.org/pub/epic/EPIC4-PRODUCTION/. > fetch: epic4-1.0.1.tar.bz2: size of remote file is not known > Receiving epic4-1.0.1.tar.bz2: 32768 bytes > > You see it connects to the ftp server through proxy cause i found: > bash-2.05b$ sockstat -4 > USER COMMAND PID FD PROTO LOCAL ADDRESS FOREIGN ADDRESS > root fetch 664 3 tcp4 192.168.10.102:3686 10.1.1.1:8080 <-- this > > The problem is .. when I try to ftp manually i get 421 remove server has closed the connection.. cause it doesn't connect to the ftp server through proxy.. check this: > $ ftp ftp://ftp.epicsol.org/pub/epic/EPIC4-PRODUCTION/ > Connected to epicsol.org. > 421 Service not available, remote server has closed connection. Did you read the ftp man page? > ftp: Can't connect or login to host `ftp.epicsol.org' > $ > in the same time i see: > USER COMMAND PID FD PROTO LOCAL ADDRESS FOREIGN ADDRESS > migz ftp 677 3 tcp4 192.168.10.102:3687 209.100.173.7:21 <-- it doesn't connect through the proxy server.. > The question is how to make ftp and ssh connect through the proxy server 10.1.1.1:8080 ? What is exactly listening on port 8080? Squid? Socks? Squid is a http only proxy. For ssh, telnet, ftp, etc. you need Socks5 or NAT, it wouldn't work with a http-only proxy. -andrew > I hope you reply as soon as possible. > Thanks. > P.S.: Please break the lines below 80 char if it's not a source code. Thanks. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message