Comment 2 for bug 95929

Removing the * wildcards from the domains didn't work for me. The only way I can update with apt using both our local mirror and a couple of external repositories is by not setting these vars and giving the proxy settings in apt.conf. This obviously stops wget from accessing external sites.

with $http_proxy=http://proxy.XXX.uk.com:80/
and $no_proxy=localhost,127.0.0.0/8,10.XXX.XXX.0/22,.example.internal,.local

wget http://10.XXX.XXX.70:8000/mirror/security.ubuntu.com/ubuntu/dists/hardy-security/multiverse/binary-amd64/Packages.gz
--09:19:42-- http://10.XXX.XXX.70:8000/mirror/security.ubuntu.com/ubuntu/dists/hardy-security/multiverse/binary-amd64/Packages.gz
           => `Packages.gz.1'
Resolving proxy.XXX.uk.com... XX.XX.XX.XX
Connecting to proxy.XXX.uk.com|XX.XX.XX.XX|:80... connected.
Proxy request sent, awaiting response... 403 Forbidden
09:19:42 ERROR 403: Forbidden.

apt-get update gives
...
Err http://10.XX.XX.70 hardy-security/multiverse Packages
  403 Forbidden
Ign http://ppa.launchpad.net hardy Release.gpg
...