• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 446
  • Last Modified:

What is the best approach to implement a patching solution for servers if you have two sites?

We have site A and site B. Both two seperate network segments but both sites can communicate across the WAN with each other. We are trying out Shavlik Protect 9 as a patching solution for our servers (all Windows VMs). What is the best approach in setting up a patch solution for both sites? So far, I got the console loaded only on one site (site A). Should the Shavlik console also be installed on Site B? I can deploy patches from site A to site B, but that is going across the WAN, which is slower. What should my approach be?
1 Solution
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
It is best to use a Single Path solution and Management Console for ALL servers, you can define groups in Shavlik, e.g.

Site A and Site B, and the Shavlik console would then hold all the updates and be a repo, for all sites.

Deploy Patches at night, out of core hours, how slow is your WAN?

Does internet access run over the same WAN, because another Shavlik installation, would create a duplicate repo (store) of the updates, and it would download them all over the WAN.

Once you are up to date with patches, Updates are quite small.
piyushranusriSystem Cloud SpecialistCommented:
here is the main point is WAN bandwidth

its not recommended to run updates on windows vm, from one site to another site.

here you should take a test of WSUS configuration.

please share the output
As other experts have mentioned you should control / approve your update from one site but at the other site you should cache the approved updates so client will connect to their local update server instead of the remote server. In WSUS this is a upstream downstream set up...
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Become an IT Security Management Expert

In today’s fast-paced, digitally transformed world of business, the need to protect network data and ensure cloud privacy has never been greater. With a B.S. in Network Operations and Security, you can get the credentials it takes to become an IT security management expert.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now