"Matt Plahtinsky" <[EMAIL PROTECTED]> wrote on 01/02/2008 09:38:38 AM:
> How do you handle remote computers / laptops patch management? <snip> > The only way I can think of doing this is open up my WSUS server to > the Internet. I'm not sure I like the idea of that though. Or, if you have a split DNS you can have a WSUS server in your DMZ and put aliases for your internal WSUS server(s) pointing to the DMZ WSUS server. When your clients roam outside your network, they will contact the WSUS server in your DMZ and update. The split DNS lets the clients hit the appropriate WSUS server no matter where they are. Have the DMZ WSUS server be a downstream server on your main internal WSUS server so you can get the reporting information to roll up from your DMZ to your internal infrastructure. Eric Eskam =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= The contents of this message are mine personally and do not reflect any position of the U.S. Government "The human mind treats a new idea the same way the body treats a strange protein; it rejects it." - P. B. Medawar ~ Upgrade to Next Generation Antispam/Antivirus with Ninja! ~ ~ <http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm> ~
