WSUS in Hampshire
Some of you may remember my thread about WSUS content not getting through. After speaking to EDICT several times they assured me it was not a problem their end and must lie with our ISA server. After fiddling with ISA for a few days it seemed all was fine here.
They phoned me back today and informed me their firewalls block ALL WSUS content from getting through. I can sync 100% but as far as getting the updates themselves, its a no go. I mean WTF. How can they justify blocking MS updates. I have 600 computers sitting here all needing about 200-300 critical / security updates. Its an absolutely stupid decision on their parts.
Is anyone else in the same boat, i.e behind hampshires firewalls? Have you found a work around.
Oh dear.. sounds almost suicidal if they're not allowing windows clients to be patched. How do they expect you to be keeping that aspect of your network secure?
I don't know about EDICT but at least they had the decency to get back to you with an HONEST answer. My next step would be to justify allowing windows updates - if this means them having to provide an upstream server then so be it. Do you have anyone you can escalate to?
Request that they setup an upstream WSUS box then ... that way they will cache the updates and not get hit for bandwidth.
Worked when we tried it (on hantsnet) - stick your WSUS server on the other side of your ISA box.. and see what happens.
I do not have ISA, and receive updates from WSUS through HantsNet no problem - even received some updates today.
Must be ISA related?
they must be telling me porkies then. They do seem like clueless idiots lol.