• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 916
  • Last Modified:

WSUS configurations needed to setup downstream server

We have one upstream server and one downstream server configured. We use downstream server to update the patches for all desktop clients. Downstream server is configured to get the updates from upstream server which is configured to use proxy server for updates and we have enabled "Download update files to this server only when updates are approved" on both server. So If we apporve pathces on downstream server, will it look for updates only in the upstream server or if the updates are not available in the upstream server, will it intiate to download from internet in upstream server. How we can do the best configuration on both upstream and downstream server.
0
sivark14
Asked:
sivark14
  • 7
  • 5
1 Solution
 
motnahp00Commented:
The upstream server is the sole-source for downstream servers. If the upstream server did not approve an update, it will not be available at the downstream server. The best flexibility you will get with a downstream is by not configuring it as a replica.
0
 
sivark14Author Commented:
Thanks for the response. We have not configured the downstream server as replica. So If we approve the patches in downstream server, how it will get download from upstream server since the updates are not available in upstream server or how we can configure downstream server to get updates from upstream server after we approve in downstream server.
0
 
DonNetwork AdministratorCommented:
What is your ultimate goal? Are you trying to alleviate bandwidth??


WSUS: How To Throttle BITS
http://blogs.technet.com/b/sus/archive/2008/06/30/wsus-how-to-throttle-bits.aspx

also look over

Best Practices with Windows Server Update Services 3.0
http://technet.microsoft.com/en-us/library/cc720525%28v=ws.10%29.aspx
0
Upgrade your Question Security!

Your question, your audience. Choose who sees your identity—and your question—with question security.

 
sivark14Author Commented:
We are going to reconfigure WSUS and want to confirm whether downstrem server will have the update download after the patches are approved in downstream server

1. Both servers are configured with the option "Download update files to this server only when updates are approved"
2. Downstream server is not configured as replica server.

I guess downstream server won't have download updates since upstream server won't have the updates until patches are approved in upstream server. So we have to uncheck the option "Download update files to this server only when updates are approved" in upstream server.

I just want which option should be enabled on both server.
0
 
DonNetwork AdministratorCommented:
Again, what is your main purpose of the second WSUS server?  Bandwidth??
0
 
sivark14Author Commented:
We are going to use downstream server for only desktop patching and hand over to helpdesk team to do.
0
 
DonNetwork AdministratorCommented:
Ok :)



This will be the option you are looking for

Configuring downstream servers to obtain content from Microsoft
In addition to configuring clients to download directly from Microsoft, it is also possible to configure the WSUS Downstream Server to download content files directly from Microsoft.

1. In the left pane of the WSUS Administration Console, click Options.

2. In Update Files and Languages, click the Update Files tab.

3. Under "Store update files locally on this server", enable the option "Download files from MIcrosoft Update; do not download from upstream server". This option will be enabled for selection when the server is configured as a downstream server.


http://technet.microsoft.com/en-us/library/cc708431%28v=ws.10%29.aspx
0
 
DonNetwork AdministratorCommented:
^^ it wont matter if the upstream is configured to "Download update files to this server only when updates are approved" or not ^^
0
 
sivark14Author Commented:
It's correct.

What about unchecking the option "Download update files to this server only when updates are approved" in upstream server and configuring to synchronize the updates with upstream server..

Will it work ?
0
 
DonNetwork AdministratorCommented:
· Download update files to this server only when updates are approved: If this is not checked then ALL updates which are synchronized are downloaded to the WSUS server. To minimize disk space requirements, this option should be checked. Note: Only use this option when you intend to approve all products and classifications that you have configured under Options – Products and Classifications.


http://blogs.technet.com/b/gborger/archive/2009/02/27/what-to-do-when-your-wsuscontent-folder-grows-too-large.aspx
0
 
DonNetwork AdministratorCommented:
so yes, it would work...just be sure to have ample space on upstream
0
 
sivark14Author Commented:
If this is the case, It's not a downstream server we can say and I can configure two seperate WSUS servers for servers and desktops..

Is it correct ?
0
 
DonNetwork AdministratorCommented:
Yes, or you could create "Target groups" <<Client side targeting and then use 2 group policies and 1(one) WSUS server
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 7
  • 5
Tackle projects and never again get stuck behind a technical roadblock.
Join Now