Solved

What is the best approach to implement a patching solution for servers if you have two sites?

Posted on 2013-12-21
5
433 Views
Last Modified: 2014-01-23
We have site A and site B. Both two seperate network segments but both sites can communicate across the WAN with each other. We are trying out Shavlik Protect 9 as a patching solution for our servers (all Windows VMs). What is the best approach in setting up a patch solution for both sites? So far, I got the console loaded only on one site (site A). Should the Shavlik console also be installed on Site B? I can deploy patches from site A to site B, but that is going across the WAN, which is slower. What should my approach be?
0
Comment
Question by:jaedenone
5 Comments
 
LVL 120

Accepted Solution

by:
Andrew Hancock (VMware vExpert / EE MVE^2) earned 500 total points
ID: 39733765
It is best to use a Single Path solution and Management Console for ALL servers, you can define groups in Shavlik, e.g.

Site A and Site B, and the Shavlik console would then hold all the updates and be a repo, for all sites.

Deploy Patches at night, out of core hours, how slow is your WAN?

Does internet access run over the same WAN, because another Shavlik installation, would create a duplicate repo (store) of the updates, and it would download them all over the WAN.

Once you are up to date with patches, Updates are quite small.
0
 
LVL 8

Expert Comment

by:piyushranusri
ID: 39743123
here is the main point is WAN bandwidth

its not recommended to run updates on windows vm, from one site to another site.

here you should take a test of WSUS configuration.



please share the output
0
 
LVL 20

Expert Comment

by:compdigit44
ID: 39745063
As other experts have mentioned you should control / approve your update from one site but at the other site you should cache the approved updates so client will connect to their local update server instead of the remote server. In WSUS this is a upstream downstream set up...
0

Featured Post

Watch Anatomy of a Wi-Fi Hack On-Demand

In less than a weekend, anyone with Internet access and some free time can become a Wi-Fi MitM to wreak havoc on your network. View our Wi-Fi Expert in an on-demand episode of our Secure Wi-Fi mini-series as he explores the motives, execution, and anatomy of a Wi-Fi hack.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

HOW TO: Install and Configure VMware vSphere Hypervisor 6.5 (ESXi 6.5), Step by Step Tutorial with screenshots. From Download, Checking Media, to Completed Installation.
This article will show you how to create an ISO CD-ROM/DVD-ROM image (*.iso), and MD5 checksum signature, for use with VMware vSphere Hypervisor 6.5 (ESXi 6.5). It's a good idea to compare checksums, because many installations fail because of a corr…
Teach the user how to convert virtaul disk file formats and how to rename virtual machine files on datastores. Open vSphere Web Client: Review VM disk settings: Migrate VM to new datastore with a thick provisioned (lazy zeroed) disk format: Rename a…
This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job. The first step is to acquire the necessary licen…

713 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question