Solved

SBS 2008 Proxy

Posted on 2010-09-17
18
1,298 Views
Last Modified: 2012-06-27
Here's what I have.

1 SBS 2008 box, and 1 2008 Standard box. The SBS box is the DC, and I am wanting to setup a proxy server to help with our downloads of updates and such so that it can be cached on the proxy serer and save on bandwidth. We had done it previously with a 2003 SBS inside ISA but with 2008 having ISA removed, I am a little lost on this one. Both servers have Dual nics and are both Dell Poweredge 2900's. I would prefer to use tools and software solutions that are no or low cost.
0
Comment
Question by:anotherhick
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 7
  • 6
  • 4
  • +1
18 Comments
 
LVL 20

Expert Comment

by:woolnoir
ID: 33701110
As far as i know 2008 SBS doesnt include proxy functionality, as you mentioned this was removed between 2003 and 2008 - iSA has been re-released as TMG (threat management gateway).

http://msmvps.com/blogs/thenakedmvp/archive/2008/06/06/sbs2008-the-best-response-yet-to-the-quot-why-no-isa-or-other-built-in-firewall-quot-question.aspx
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 33701181
ISA has been replaced by Forefront, which you could add to your network. It is not sold with SBS 2008 std or premium.
If it is just for Windows updates, SBS does that by default with WSUS.
The other option, as Forefront can be pricey for a small network, though very powerful is a 3rd party solution:
http://www.computalynx.net/software/cproxy/features.asp
http://www.websense.com
http://www.surfcontrol.com/ 
http://www.rhinosoft.com/AllegroSurf/

0
 
LVL 11

Expert Comment

by:Coast-IT
ID: 33701210
As far as the functionality you require, just set up WSUS so that clients dont have to go out to the internet and the download just gets downloaded once.

thus giving you your caching functionality.

http://learn.iis.net/page.aspx/239/deploying-updates-with-wsus-30/

If you are only using your proxy for this, use WSUS
0
Don't miss ATEN at NAB Show April 24-27!

Visit ATEN at NAB Show to learn how our "Seamlessly Entertaining" solutions deliver fast, precise video streaming without delays for the broadcasting and media environment. ATEN will showcase its 16x16 Modular Matrix Switch (VM1600) and KVM Over IP Solution (KE6900 series).

 
LVL 77

Expert Comment

by:Rob Williams
ID: 33701362
The printer index is out of bounds
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 33701370
Sorry "The printer index is out of bounds" posted in error.
--Rob
0
 

Author Comment

by:anotherhick
ID: 33702137
I guess I forgot to specify an additional caveat/requirement.  We use this to update multiple client computers and can't install a software client as the systems don't remain in our central office location for long periods of time.  We'd previously ruled out WSUS as it requires a client be installed and the server stay static.  We're really looking for a way to save the bandwidth required to manually download the various Windows updates on all of the systems without using WSUS.  We ew're hoping we might use a proxy server to cache the updates and save some bandwidth.  If this wouldn't work does someone have an alternative that would allow us to cache these updates in an easily accessible form that the Windows Update web site could make use of?
0
 
LVL 20

Expert Comment

by:woolnoir
ID: 33702362
Then maybe consider using an external proxy server, either a linux solution, a appliance (box) or a third party proxy server which can be installed onto the SBS server.

Its not really going to be an option to use a MS solution without expense...do you want me to suggest alternatives, or do you have restrictions about what can go on your network ?.
0
 

Author Comment

by:anotherhick
ID: 33702572
@Wollnoir,

I have no problems with doing a linux box for that purpose, the only downside I see to that is that I am very limited in my experience with Linux. Do you have any insight as to flavor of linux, and or hardware that I might need to accomplish this?
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 33702985
Is it primarily for windows updates, or are you wanting to cache other items as well?

Are the machines members of your domain?
0
 

Author Comment

by:anotherhick
ID: 33703930
@RobWill

Part A: I am wanting to cache most of the things we download inside of a windows / application build. (Windows Updates, Applications like reader and updates, itunes, etc. )

Part B: No the machines are not members of my domain.
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 33704024
Agreed then, a proxy server would be best. There are a few Windows based ones for free but I am not familiar with them, I am sure others are.
I assume you didn't buy Software Assurance for ISA? If so you can reinstall it on another server.
0
 

Author Comment

by:anotherhick
ID: 33704195
That is correct.
0
 

Author Comment

by:anotherhick
ID: 33719450
Ok, what distro of linux would work best for this, and I can DL anything that I need. Also, what additonal steps should I take after downloading and installing the linux OS?
0
 
LVL 77

Accepted Solution

by:
Rob Williams earned 250 total points
ID: 33724622
I was waiting to see if woolnoir would suggest a Linux solution. I am not a Linux guy, gave it up years ago :-)
However the one I hear of most often is Squid: http://www.squid-cache.org/
Quick Start Guide:  http://www.visolve.com/squid/sqguide.php
You can Google lots more. There are many Windows versions available but I am not aware of a free one and you would need an O/S as well.
0
 

Author Comment

by:anotherhick
ID: 33810283
Yeah, I'm giving up on the Linux box, too much issues with trying to configure stuff.
0
 
LVL 20

Expert Comment

by:woolnoir
ID: 33810304
@anotherhick its not that crazy, if you get any linux distro such as ubuntu and install 'webmin' you get a really nice graphical front end. Using squid especially allows most if not everything to be configured throught he GUI ...
0
 
LVL 20

Assisted Solution

by:woolnoir
woolnoir earned 250 total points
ID: 33810315
This is a good guide which allows setup as a transparent proxy, that way clients wont even know its there.

http://www.ubuntugeek.com/how-to-setup-transparent-squid-proxy-server-in-ubuntu.html
0
 

Author Comment

by:anotherhick
ID: 33810535
Thanks, I was having trouble finding any info that was step by step. One question does this setup need two NIC's? If so, how exactly would that config?
0

Featured Post

Portable, direct connect server access

The ATEN CV211 connects a laptop directly to any server allowing you instant access to perform data maintenance and local operations, for quick troubleshooting, updating, service and repair.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
How to rollback Windows updates with SCCM? 6 82
Run Windows Server from USB 2 39
Blocking Microsoft Edge From Running? 14 58
Problem to Citrix 2 15
New Windows 7 Installations take days for Windows-Updates to show up and install. This can easily be fixed. I have finally decided to write an article because this seems to get asked several times a day lately. This Article and the Links apply to…
This article explains how to install and use the NTBackup utility that comes with Windows Server.
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…
This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question