Hi Richard, Squid itself may not be able to, but on the Gateway, you could write a NAT redirection rule to direct traffic to a specific host/port through squid.
Same as the rule that does the transparent Proxy. On iptables, something like: iptables -t nat -A PREROUTING -i eth0 -p tcp -d windowsupdate.server.ip --dport 80 -j REDIRECT --to-port 8080 --to-destination WSUS.IP Daniel. From: Richard Zulu [mailto:[email protected]] Sent: Wednesday, March 16, 2011 10:24 AM To: Uganda Linux User Group Subject: Re: [LUG] Squid + Windows Updates Simon, I believe I need to configure each and every client to use the WSUS based on the group policy, right? Since I have no active directory I believe I will use the Local Group Policy Object. How about for situations where I have people using personal computers? I cannot enforce a group policy on that. Is there a way squid can redirect windows update traffic to the WSUS? On Wed, Mar 16, 2011 at 9:39 AM, Simon Vass <[email protected]> wrote: Richard, Group policy. If you want your clients to use the wsus server, there is a specific group policy key that changes them. p.s. with that many clients I'd recommend more than 1 server. You can configure them in a master slave configuration. Simon Vass Managing Director E-Tech Uganda Ltd http://www.etech.ug Tel: +256 (0) 312260620 or (0) 312260621 email: [email protected] skype: e-techservicedesk ----- Original Message ----- From: Richard Zulu <[email protected]> To: Uganda Linux User Group <[email protected]> Sent: Wed, 16 Mar 2011 09:32:02 +0300 (EAT) Subject: [LUG] Squid + Windows Updates Hallo Everyone, Quick Question: I have a WSUS (Windows Server Update Services) within my network. I have close to 10,000 clients and I implement transparent proxying within my network. I use Squid as the web cache. How best can I redirect traffic on port 80 from my network to microsoft windows updates websites, to my WSUS instead of the internet? -- Richard Zulu gtug lead, Kampala (Uganda) http://kampala.gtugs.org -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. _______________________________________________ The Uganda Linux User Group: http://linux.or.ug Send messages to this mailing list by addressing e-mails to: [email protected] Mailing list archives: http://www.mail-archive.com/[email protected]/ Mailing list settings: http://kym.net/mailman/listinfo/lug To unsubscribe: http://kym.net/mailman/options/lug The Uganda LUG mailing list is generously hosted by INFOCOM: http://www.infocom.co.ug/ The above comments and data are owned by whoever posted them (including attachments if any). The mailing list host is not responsible for them in any way. -- Richard Zulu gtug lead, Kampala (Uganda) http://kampala.gtugs.org
_______________________________________________ The Uganda Linux User Group: http://linux.or.ug Send messages to this mailing list by addressing e-mails to: [email protected] Mailing list archives: http://www.mail-archive.com/[email protected]/ Mailing list settings: http://kym.net/mailman/listinfo/lug To unsubscribe: http://kym.net/mailman/options/lug The Uganda LUG mailing list is generously hosted by INFOCOM: http://www.infocom.co.ug/ The above comments and data are owned by whoever posted them (including attachments if any). The mailing list host is not responsible for them in any way.
