Thanks for your answers; many workarounds but no real solution. Workaround: use a local repository There is an open oracle SR/BUG: SR: 7195257 system-repository should support authenticated proxies desc: -------------------- You can use IPS behind a proxy with auth in the global zone only, as the pkg client itself performs all of the transport operations using libcurl, which does support authenticated proxies, and contacts the repositories directly. However, non-global zones access configured repositories through pkg.sysrepo(1m), which does not support authenticated proxies because Apache currently does not. -------------------- it is an apache-2.2 issue: https://issues.apache.org/bugzilla/show_bug.cgi?id=37355 it seems, that apache 2.4 is ready for that, but 2.4 is not included in sol11... so, let's all open an oracle ticket to get oracle fixing that issue ;) thanks again, regards - pressy On 17.10.2012, at 15:24, PRESSY <pressy@pressy.net> wrote: > hello hello, > > we are trying to install zones from the official repository (solaris/support) > using a proxy with authentication to the internet. > > within the global zone, you can set an env-var for $http_proxy and > $https_proxy defining your proxy user: > # export http_proxy='http://WIN-DOMAIN\user:password!@proxy.domain.at:8080' > # export https_proxy='https://WIN-DOMAIN\user:password!@proxy.domain.at:8080' > > (-> just want to say, that our passwords ends with an exclamation mark "!", if > that could be a problem) > > This works perfect for the global zone, no issues with IPS/pkg, btw. we are > running Solaris 11 11/11 SRU 12.4. > BUT the zone-installer is not able to connect to the oracle publisher issuing > "# zoneadm -z foo install" > > Dr. Google says, that you can define proxy settings if you want to use zones > behind a proxy > # svccfg -s svc:/application/pkg/system-repository:default setprop > config/http_proxy=astring: "https://proxy:port" > > source: http://docs.oracle.com/cd/E23824_01/html/821-1460/glqjr.html > > we tried: > svc:/application/pkg/system-repository:default> setprop config/http_proxy = > http://WIN-DOMAIN\user:password!@proxy.domain.at:8080<http://domain/usr:pwd@p > roxy:8080> > > but refresh/restart the SMF-service fails with: > [ Oct 16 15:47:03 Executing refresh method ("/lib/svc/method/svc-pkg-sysrepo > refresh"). ] > Syntax error on line 243 of /system/volatile/pkg/sysrepo/sysrepo_httpd.conf: > ProxyRemote: Bad syntax for a remote proxy server (bad port number) > > In this 243 Line we have: > ProxyRemote http http://WIN-DOMAIN\\user:password!@proxy.domain.at:8080 > > we tried several escape-characters and combinations by setting the http-string > with " ' ` 4 and so on... always the same error message. > > any ideas what is the RIGHT SYNTAX for DEFINING the AUTHENTICATION in the > PROXY-STRING or HOW TO SET the PROXY-USER ;) > > thanks in advance, > regards > - pressyReceived on Thu Oct 18 04:35:46 2012
This archive was generated by hypermail 2.1.8 : Wed Mar 23 2016 - 16:24:28 EDT