> > > What ports must be opened in the firewall so that the machine > > > behind it > > > is able to use "apt-get" to realize an 'dist-upgrade'?. > > > > > > Davi > > > > AFAIK either the HTTP, the FTP, or both; it depends on what > you define in > > your sources.line. > > > > If you only define http sites you would only need the http > port open, the > > same with the ftp. > > Yes, but you need only open the ports for outgoing requests, and your > firewall should be set with a packet filter that will accept > only packets > that are replies to requests from your computer. >
Ehehe, indeed, but nobody said anything about doing the apt securely... just what ports it used ;) Seriously, doing what you mentioned is the correct behavior, having a packet firewall that alloes ESTABLISHED and connections from the intranet to the Intenet; heck, you could even go mediaeval about it and only allow http or ftp requests to those hosts present in the sources.line :) Cheers, -- Frederico S. Muñoz Cap Gemini Ernst & Young : [EMAIL PROTECTED] IIES : [EMAIL PROTECTED] Debian Project: [EMAIL PROTECTED] ** Ever noticed something? Unix comes with compilers. Windows comes with Solitaire. ** -Adep
