Im trying to get WSUS going on a server at my new work. Apparently we used to run a WSUS server but it was decommissioned a while ago due to space issues or something but I am in the process of reinstating it because of the huge security holes it has left us with (and a subsequent malware infection).
I thought I had installed all the prerequisites but I was getting errors trying to download the updates.
Checking the event log showed a BITS related error
Event Type: Error
Event Source: Windows Server Update Services
Event Category: Synchronization
Event ID: 364
Time: 10:50:17 AM
Content file download failed. Reason: The server does not support the necessary HTTP protocol. Background Intelligent Transfer Service (BITS) requires that the server support the Range protocol header.
Source File: /msdownload/update/software/secu/2008/07/ie7-windowsxp-kb938127-v2-x86-enu_b99f2a4e5971b67a399604bab143f20b0f26bf76.exe Destination File: j:\WSUS\WsusContent\76\B99F2A4E5971B67A399604BAB143F20B0F26BF76.exe.
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
After a bit of googling I found these KBs (http://support.microsoft.com/kb/842773
) and when I tried to install the update it told me I had a newer version and it could not be installed. I followed the KB to check to see if the required files are on the server. The winhttp.dll file is missing but all the other files are of a new version than the update installs.
The second KB seems to be more likely the issue. We have a Watchguard Firebox that is most likely preventing it from working. I have checked the policies on the Firebox and was already a policy for WSUS (im guessing from the previous deployment) that allows port 80 from all our server IPs to any external IP.
How can I check if this firewall rule is behaving the same way as the Sonicwall as described in the KB article and preventing the downloads from succeeding?