SUS through firewall

  • Thread starter Thread starter Simon Church
  • Start date Start date
S

Simon Church

Hello,

I have the w2k master SUS server in front of our firewall
and am wondering what to do about the servers that are in
our DMZ. It looks like we have 2 options:
- give access to the SUS clients to go through the
firewall to get to the master for their updates. In which
case, how do I do the firewall for this scenario and what
is the best way to configure the clients, since they won't
be using a GPO?
- set up a SUS server in the DMZ and have it recieve
approved security patches from the master. In which case
how do I set up the firewalling for this and what is the
best way to configure the SUS clients to work with the SUS
server, since they won't be using a GPO?

Please advise.

Thanks,

Simon
 
The SUS deployment paper discuss this type of scenerio.
http://www.microsoft.com/windowsserversystem/sus/susdeployment.mspx

You could point the machines in the DMZ to a SUS server in the DMZ by using
the reg entries or by local group policies. The detailed info on how to do
this is in the white paper. I would then install a SUS on your corporate
network that is configured to sync content from the SUS server in the DMZ.

IBTerry [MSFT]
This posting is provided "AS IS" with no warranties, and confers no rights.
 
Back
Top