help with web proxying for anonymous rsync

Stefan Nehlsen sn at ParlaNet.de
Wed Feb 9 12:56:43 GMT 2005


On Sat, Feb 05, 2005 at 11:22:46AM -0700, Todd Harris wrote:
> Hi all - 
> 
> I've searched long and hard for some docs on configuring a web proxy for
> rsync.  This is probably in part an apache config question so I apologize if
> this is in the wrong forum.
> 
> What I would like to do is provide anonymous rsync access to a handful of
> IPs via a web proxy so I don't have to punch additional holes in my
> firewall.  In other words, I'd like to use rsync over port 80, ProxyPass'ing
> a requested url to the rsyncd.  It seems like this should work...  (I'd
> rather not tunnel rsyncd via SSH since I do not want to provide these users
> with accounts).

It's not possible to do something you intend.

To provide an rsync server you'll have to punch a new (transparent) hole into
your firewall. You cannot use the apache httpd as an reverse proxy because
a rsync daemon is not a http server and is not able to talk http.

There is also no need to use ssh for an anonymous (public) service.

The proxy method of rsync ist meant to be used when your client is behind a
firewall which will not allow a direct connection to the internet.
When you use the rsync proxy option your client will connect to a
http-proxy. It will use the CONNECT method of the proxy, which is normally
intended to be used for https and is "almost" transparent. The http-proxy
will have to be configured to allow connections to servers on port 873.

Follow the FAQ how to setup an anonymous rsync daemon and change the policy
of the firewall.


cu, Stefan
-- 
Stefan Nehlsen | ParlaNet Administration | sn at parlanet.de | +49 431 988-1260
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.samba.org/archive/rsync/attachments/20050209/a476f0ee/attachment.bin


More information about the rsync mailing list