The WinCvs firewall is known to work with TIS Firewall Toolkit, that's all.
Regards,
alex.
----- Original Message -----
From: "Mike Friemann" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Friday, September 08, 2000 9:13 AM
Subject: UPDATE: CVS, Proxies, and Firewalls -- Oh My!!!
> UPDATE:
>
> We are now using the default port of 2401. Our firewall has port
> 2401 open for outbound access. I am using the WinCVS11b15 for the
> client on NT 4.0 SP6. The server is running CVS1.10.8 on Slackware
> 7.1. The firewall that we are using is a Raptor, which is made by a
> company called Axent.
>
> We still get:
> cvs [login aborted]: proxy server 10.1.3.40:2401 does not support
> http tunnelling
>
> The SysAdmin says that according to what he sees in the log of the
> firewall I have an active connection to the firewall. There are no
> other messages in the log pertaining to me.
>
> We actually got the same results using a different firewall. The
> other firewall was an altavista.
>
> Does anyone have any ideas as to why this is happening? We can
> connect fine if we don't go through the firewall. I appreciate any
> help that anyone can give us.
>
> Is it truely as easy as opening port 2401 for outbound access?
>
> Mike
>
>
> --- In [EMAIL PROTECTED], "David H. Thornley"
> <[EMAIL PROTECTED]> wrote:
> >
> >
> > Mike Friemann wrote:
> > >
> > > The company that I work for has two offices in the US. We
> decided to
> > > look into CVS so that both offices would have access to the same
> > > source repository.
> > >
> > > The server sits out on the web and the clients are behind a
> firewall.
> > > We can get WinCVS clients to connect to a CVS server just fine as
> long
> > > as we don't have to go through a firewall. With a firewall we
> seem to
> > > connect to the server, but then we get, "Connection reset by
> peer".
> > > All I had the SysAdmin do was open the 8888 port on the firewall
> for
> > > outgoing.
> > >
> > Since you're using WinCVS, I assume you're using the pserver
> connection.
> > This means that the sysadmin needs to open 2401 for outgoing
> > connections. If you were using ssh, you'd presumably open 22.
> >
> > Now, pserver is not secure, so you might want to see about using
> > ssh (which some people on this list claim is easy) or running some
> > sort of secure socket connection for port 2401.
> >
> > > I've looked all over the net for a solid step by step instruction
> > > document on connecting to a cvs server through a firewall and I
> cannot
> > > find one.
> > >
> > I would assume that it's a matter of firewalls differing. The
> > documents refer to what you need to use CVS. If you've got a
> > firewall, you should have a sysadmin who is able to manage it,
> > and the docs will tell you that pserver is on port 2401.
> >
> > (Note: AIX seems to use 2401 for something different, so if you're
> > working on AIX you may have additional problems.)
> >
> > > I don't even remember the official docs mentioning anything about
> a
> > > firewall entering the picture.
> > >
> > They also don't describe how TCP/IP works, or how to hook up an
> > ethernet LAN. Again, if you've got a firewall, you should have
> > somebody who knows how to let specific ports through. If you're
> > using pserver, you need to open 2401 for outgoing connections.
> > If your sysadmin doesn't understand that, you have more problems
> > than we can help with.
>
>
