At Percona’s web store you can order your MongoDB database support needs in minutes. No hassles, no fuss, just pick and click. Pay online with a credit card. Handle your MongoDB database support now!
Course Of The Month
8 days, 10 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
WSUS server in DMZ?
Posted on 2011-03-08
My firewall is currently configured such that there are no inbound connections from the DMZ to my internal network. I am looking at adding a WSUS server in the DMZ. Is there any way to configure WSUS such that the configuration is pushed from the internal to the DMZ server? Everything I've seen so far requires opening 80 and 443 to my internal network. I'm just looking for the meta data on my server and the updates themselves provided by MS.
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
-
4
3
- +1
9 Comments
Why do you want to put WSUS into DMZ? DMZ is for services available for outside. Put WSUS into your internal network. It is the place for it. You will not have problems with a firewall either.
I don't want to place my internal WSUS server into the DMZ, but I would like to control what updates my users receive while in the field. There have been too many cases where an update from MS has broken one of our systems and we're not able to address it when the user is half way around the world. I'm not aware of a way to do this without a WSUS server; if there is a way to do please enlighten me.
I would like to have a secondary WSUS server located in the DMZ strictly for these remote users I want to do so without opening any ports from the DMZ into my internal network.
I would like to have a secondary WSUS server located in the DMZ strictly for these remote users I want to do so without opening any ports from the DMZ into my internal network.
More specifically I'm looking for a way to synchronize the approvals from the internal to the external server.
You do not need to use ports 80 or 443. However since you do not want to open any ports, consider http://technet.microsoft.com/en-us/library/cc720486%28WS.10%29.aspx
You need to deploy WSUS on Replica mode:
http://technet.microsoft.com/en-us/library/cc720448(WS.10).aspx
downstream and upstream server.
depends on you config; allow https(s) from DMZ to internal..
http://technet.microsoft.com/en-us/library/cc720448(WS.10).aspx
downstream and upstream server.
depends on you config; allow https(s) from DMZ to internal..
Many thanks gentlemen. The disconnected network configuration looks appealing. Is there a way to use that configuration with the meta data only?
Just skip step 2 :)
Why don't you want to copy updates? Do you want to download them twice from the Internet?
Why don't you want to copy updates? Do you want to download them twice from the Internet?
Featured Post
We value your feedback.
Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
The System Center Operations Manager 2012, known as SCOM, is a part of the Microsoft system center product that provides the user with infrastructure monitoring and application performance monitoring.
SCOM monitors:
Â
Windows or UNIX/LinuxNetwo…
In the world of WAN, QoS is a pretty important topic for most, if not all, networks. Some WAN technologies have QoS mechanisms built in, but others, such as some L2 WAN's, don't have QoS control in the provider cloud.
The viewer will learn how to use the =DISCRINV command to create a discrete random variable, use this command to model a set of probabilities and outcomes in a Monte Carlo simulation, and learn how to find the standard deviation of a set of probabil…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Suggested Courses
Earn Certification
HTML5 Specialist - Certification
Free withPremium
Course of the Month8 days, 10 hours left to enroll
617 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.