You can reduce the download size of the folder by using the following parameters:

--productFilterForRepository – Later in this document, you can find a list of the product names that can be used with this parameter. Type the product names or a part of the name. Enclose the in " " if it contains a space. Separate multiple names by a single space, for example: "ESET Management Agent" "Antivirus". When filtering for a partial name, for example "Agent", all products containing the string are filtered.

--languageFilterForRepository – Select which language packs would be downloaded. Type in or copy/paste the codes separated by a single space, for example: sk_SK fr_FR de_DE.

See the list of language codes.

The following command only downloads the packages necessary for an ESET PROTECT upgrade. For example, you can use such a repository when installing ESET Management Agent via the following methods:

• Push install (Server task - Agent Deployment)
• Live installer
• All-in-one installer
• Installation with a direct link to the repository

Example usage of the --productFilterForRepository parameter:

MirrorTool.exe --repositoryServer AUTOSELECT ^
--intermediateRepositoryDirectory repository-intermediate ^
--outputRepositoryDirectory repository-final^
–-productFilterForRepository "ESET Management Agent" "ESET PROTECT Bootstrapper" "ESET PROTECT Server" "ESET PROTECT WebConsole"

1. To reduce the download size of the folder, create a text file in JSON format placed in the same folder as Mirror Tool, for example: --filterFilePath filter.txt

2. In the text file, type in the desired parameters as described in this Online Help article. Later in this document, you can find a list of the product names that can be used with these parameters. See the list of language codes.

3. Optionally, add the parameter --dryRun to the text file and run the Mirror Tool. When you use this optional parameter, Mirror Tool will not download any files, but it will generate a .csv file listing all packages that will be downloaded.

Windows server with Microsoft IIS

1. Copy the whole folder downloaded by the Mirror tool to C:\inetpub\wwwroot.

2. Enable Directory Browsing in IIS Manager.

3. Add MIME type with extension * as text/plain.

   

   Unable to read the extension

   If ESET PROTECT is unable to read the added extension, edit web.config in the IIS root folder and add a line with fileExtension=".".

   <?xml version="1.0" encoding="UTF-8"?>
   <configuration>
       <system.webServer>
           <directoryBrowse enabled="true" />
           <staticContent>
               <mimeMap fileExtension=".*" mimeType="text/plain" />
               <mimeMap fileExtension="." mimeType="text/plain" />
           </staticContent>
       </system.webServer>
   </configuration>

Windows server with Apache HTTP Proxy (distributed with ESET PROTECT)

Install Apache HTTP Proxy (ESET PROTECT)

1. Locate and open the configuration file of your Apache HTTP Proxy. The default location is C:\Program Files\Apache HTTP Proxy\conf\httpd.conf.

2. Find the following line in the file httpd.conf.

   ...
   Listen 3128
   ...

3. Add the following line:

   Listen 8080

4. Save the changes in the file and restart the Apache HTTP Proxy service.

Linux and ESET PROTECT Virtual Appliance (CentOS) with Apache HTTPd

1. Find the following line in the file /etc/httpd/conf/httpd.conf:

   ...
   Listen 3128
   ...

2. Add the following line:

   Listen 8080
   

3. Find the following line:

   #DocumentRoot /var/www/html

4. Replace the line with the following block of code:

   DocumentRoot "/var/www/html"
   <Directory "/var/www/html">
   Options Indexes FollowSymlinks
   AllowOverride none
   Require all granted
   </Directory>

5. Save the file and restart the httpd service.

   sudo systemctl restart httpd.service

SELinux (applicable on Linux and ESET PROTECT Virtual Appliance)

SELinux can block the other devices from accessing the repository machine. Add an exception for the repository/updates files location or disable the SELinux.

To turn off this feature, follow the steps below:

1. Open /etc/selinux/config in your editor, find and set the following value:

   SELINUX=disabled

2. Restart the system (machine) to apply the changes.

Open the ports 8080 a 3128 on Linux or VA firewall

When using the ESET PROTECT Virtual Appliance, use Webmin to add port 8080 to the rule where 3128 is already listed, and save the configuration.

If you prefer the Linux Console, use the following command to do the same:

iptables -A INPUT -p tcp --dport 8080 -j ACCEPT
ip6tables -A INPUT -p tcp --dport 8080 -j ACCEPT
service iptables save
service ip6tables save

Copy the files downloaded by Mirrortool to the offline webserver

Copy the files from the intermediary machine to the offline server where the Apache is running.

1. Copy the whole structure to /var/www/html (or the folder you specified in the DocumentRoot setting).

2. Set the file permissions so the user running the httpd service can read them.

Server settings

1. Open the ESET PROTECT Web Console in your web browser and log in.

2. Navigate to More → Server Settings → Advanced Settings → Repository.

3. Type your address in the Server field.

   

4. Navigate to the Updates section.

5. Type your offline server's address in the Update server field. Type the whole address with the folder structure, according to the product you are setting up.

   

6. Click Save.

   

Agent policy

You need to apply the new settings to all machines (their Agents) which are using the offline server for updates and repository. Select a suitable policy or create a new one and assign it to those machines.

1. Open the ESET PROTECT Web Console in your web browser and log in.

2. Navigate to Policies.
   

3. Select the appropriate policy.

4. In the policy Settings section, navigate to → Advanced Settings → Repository.

5. Type your address in the Server field.

6. Navigate to Updates section.

7. Type your offline server's address in the Update server field. Make sure to enter the whole address with the folder structure, according to the product you are setting up.

Policies for ESET Endpoint products (on Windows)

Activate ESET Endpoint products in the offline environment.

You need to apply the new settings to all machines (their ESET security products) which are using the offline server for updates. Select a suitable policy or create a new one and assign it to those machines.

1. Open the ESET PROTECT Web Console in your web browser and log in.

2. Navigate to Policies.
   

3. Select the appropriate policy.

4. In the policy Settings section, navigate to → UPDATE → Profiles → Updates → Modules Updates.

5. Deselect the Choose automatically option.

6. Type your offline server's address in the Custom server field. Make sure to enter the whole address with the folder structure, according to the product you are setting up. The example image below shows the ESET Endpoint 8.x folder address.