I'm going to move my cobbler server (RHEL6.3, cobbler 2.2.2) to a network that has default deny on outbound connections.
We are configured to use the following repos: rhn://rhel-x86_64-workstation-6 rhn://rhel-x86_64-workstation-optional-6 rhn://rhel-x86_64-workstation-supplementary-6 From our tests running reposync on our open network, it seems that reposync, by default, uses the Akamai CDN. I imagine this would make things very complicated for our firewall, since we can't allow by DNS (only by IP). How would you suggest I handle this? Allow an entire Akamai subnet (though i don't know how to determine which subnet)? Configure yum somehow? Ideally I'd like to use an HTTP proxy but right now we don't have one available to us. I noticed that, at least for up2date, RHN allows one to disable "Location-aware updates", see: https://access.redhat.com/knowledge/node/53075 but I'm not sure if this would affect how reposync operates. (anyone know?) -- -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Robert Jacobson [email protected] Lead System Admin Solar Dynamics Observatory (SDO) Bldg 14, E222 (301) 286-1591 _______________________________________________ cobbler mailing list [email protected] https://fedorahosted.org/mailman/listinfo/cobbler
