Thanks Simon, let me look through. Daniel, that is what I thought of doing, however, these windows updates have quite a number of references
http://windowsupdate.microsoft.com http://*.windowsupdate.microsoft.com https://*.windowsupdate.microsoft.com http://*.update.microsoft.com https://*.update.microsoft.com http://*.windowsupdate.com http://download.windowsupdate.com http://download.microsoft.com http://*.download.windowsupdate.com http://stats.update.microsoft.com http://ntservicepack.microsoft.com Isn't this supposed to be like iptables -t nat -A PREROUTING -i eth0 -p tcp –d windowsupdate.server.ip --dport 80 -j DNAT --to-destination WSUS.IP:80 On Wed, Mar 16, 2011 at 11:02 AM, Okalany Daniel < [email protected]> wrote: > Hi Richard, > > Squid itself may not be able to, but on the Gateway, you could write a NAT > redirection rule to direct traffic to a specific host/port through squid. > > Same as the rule that does the transparent Proxy. > > > > On iptables, something like: > > iptables -t nat -A PREROUTING -i eth0 -p tcp –d windowsupdate.server.ip > --dport 80 -j REDIRECT --to-port 8080 --to-destination WSUS.IP > > > > > > Daniel. > > > > *From:* Richard Zulu [mailto:[email protected]] > *Sent:* Wednesday, March 16, 2011 10:24 AM > > *To:* Uganda Linux User Group > *Subject:* Re: [LUG] Squid + Windows Updates > > > > Simon, > > > > I believe I need to configure each and every client to use the WSUS based > on the group policy, right? Since I have no active directory I believe I > will use the Local Group Policy Object. > > > > How about for situations where I have people using personal computers? I > cannot enforce a group policy on that. > > > > Is there a way squid can redirect windows update traffic to the WSUS? > > On Wed, Mar 16, 2011 at 9:39 AM, Simon Vass <[email protected]> wrote: > > Richard, > > Group policy. If you want your clients to use the wsus server, there is a > specific group policy key that changes them. p.s. with that many clients I'd > recommend more than 1 server. You can configure them in a master slave > configuration. > > > > Simon Vass > Managing Director > E-Tech Uganda Ltd > http://www.etech.ug > Tel: +256 (0) 312260620 or (0) 312260621 > email: [email protected] > skype: e-techservicedesk > > ----- Original Message ----- > From: Richard Zulu <[email protected]> > To: Uganda Linux User Group <[email protected]> > Sent: Wed, 16 Mar 2011 09:32:02 +0300 (EAT) > Subject: [LUG] Squid + Windows Updates > Hallo Everyone, > Quick Question: I have a WSUS (Windows Server Update Services) within my > network. I have close to 10,000 clients and I implement transparent > proxying > within my network. I use Squid as the web cache. > How best can I redirect traffic on port 80 from my network to microsoft > windows updates websites, to my WSUS instead of the internet? > -- > Richard Zulu > gtug lead, Kampala (Uganda) > http://kampala.gtugs.org > > -- > This message has been scanned for viruses and > dangerous content by MailScanner, and is > believed to be clean. > > _______________________________________________ > The Uganda Linux User Group: http://linux.or.ug > > Send messages to this mailing list by addressing e-mails to: > [email protected] > Mailing list archives: http://www.mail-archive.com/[email protected]/ > Mailing list settings: http://kym.net/mailman/listinfo/lug > To unsubscribe: http://kym.net/mailman/options/lug > > The Uganda LUG mailing list is generously hosted by INFOCOM: > http://www.infocom.co.ug/ > > The above comments and data are owned by whoever posted them (including > attachments if any). The mailing list host is not responsible for them in > any way. > > > > > -- > Richard Zulu > gtug lead, Kampala (Uganda) > http://kampala.gtugs.org > > > _______________________________________________ > The Uganda Linux User Group: http://linux.or.ug > > Send messages to this mailing list by addressing e-mails to: > [email protected] > Mailing list archives: http://www.mail-archive.com/[email protected]/ > Mailing list settings: http://kym.net/mailman/listinfo/lug > To unsubscribe: http://kym.net/mailman/options/lug > > The Uganda LUG mailing list is generously hosted by INFOCOM: > http://www.infocom.co.ug/ > > The above comments and data are owned by whoever posted them (including > attachments if any). The mailing list host is not responsible for them in > any way. > -- Richard Zulu gtug lead, Kampala (Uganda) http://kampala.gtugs.org
_______________________________________________ The Uganda Linux User Group: http://linux.or.ug Send messages to this mailing list by addressing e-mails to: [email protected] Mailing list archives: http://www.mail-archive.com/[email protected]/ Mailing list settings: http://kym.net/mailman/listinfo/lug To unsubscribe: http://kym.net/mailman/options/lug The Uganda LUG mailing list is generously hosted by INFOCOM: http://www.infocom.co.ug/ The above comments and data are owned by whoever posted them (including attachments if any). The mailing list host is not responsible for them in any way.
