Subject: bin/4959: sysinst cannot specify 'ftp -p' to FTP out through firewalls
To: None <>
From: Jonathan Stone <jonathan@DSG.Stanford.EDU>
List: netbsd-bugs
Date: 02/09/1998 00:24:06
>Number:         4959
>Category:       bin
>Synopsis:       sysinst cannot specify 'ftp -p' to FTP out through firewalls
>Confidential:   no
>Severity:       serious
>Priority:       high
>Responsible:    bin-bug-people (Utility Bug People)
>State:          open
>Class:          change-request
>Submitter-Id:   net
>Arrival-Date:   Mon Feb  9 00:35:01 1998
>Originator:     Jonathan Stone
>Release:        NetBSD 1.3 binary release
System: NetBSD Reno.DSG.Stanford.EDU 1.3 NetBSD 1.3 (GENERIC) #2: Tue Dec 30 01:16:36 PST 1997 jonathan@Reno.DSG.Stanford.EDU:/reno/compile/GENERIC pmax


The sysinst tool supports auto-fetching installation filesets from an
FTP server.  This doesn't work from behind firewalls which  let
passive FTP connections out, but not active (the default client behaviour).

There's also no way to specify a proxy, if one is required.


Try doing a sysinst installation from behind a firewall.


Add a new entry to sysinst's FTP argument-list menu to let the user
specify additional arguments to the ftp command line.  snprintf() that
argument into the command, between the "ftp" and the URL.

One possible workaround is to use a second machine inside the firewall
as an intermediate FTP server, pre-fetching the files onto the
intermediate server from the external source.  

It'd be nice not to force users to think of that ahead of time.