--- hanasaki <[EMAIL PROTECTED]> wrote:
> I have a bunch of developers behind a squid firewall. Only http/https
> are allowed out. What is a simple/secure way to let the at least pull
> CVS down from the Internet (ex: sourceforge) and preferable do CVS
> checkins too. An iptables masquerade is not at the top of the list of
> options.
>
ssh(ing) into the firewall will allow clients to application level
port-forward. Also there is VPN software, like IPSEC, where these
client's can be given real-world IPs or new privet IPs that are
masqueraded.
However a statefull NAT solution is still best.
>
> --
> To UNSUBSCRIBE, email to [EMAIL PROTECTED]
> with a subject of "unsubscribe". Trouble? Contact
> [EMAIL PROTECTED]
>
>
__________________________________
Do you Yahoo!?
Read only the mail you want - Yahoo! Mail SpamGuard.
http://promotions.yahoo.com/new_mail
