On 09/04/2013 06:30 PM, HillTopsGM wrote:
> Hey Eliezer Croitoru-2,
>
> You mentioned:
>
>> If you have a local windows network and server you can just add WSUS
>> service that will build a updates store which is better for many networks.
>
> Is that an actual part of the windows server (WSUS) or is it refering to
> what Helmut was referring to earlier http://www.wsusoffline.net/
> <http://www.wsusoffline.net/> ?
I am referring to the windows server (WSUS) since it's a service that
can help a network and is not taking to much resources as far as I can tell.
the wsus offline tool is another approach to another problem you are
referring.
if you dont want to update manually each node on the network just learn
a bit how to configure windows updates.
There is no need to update all MS updates in all environments..
Unless it's a business that has a lot of weight and history there is no
real need to update and update and update..
There should be an update policy for the network..
squid is a nice tool but the windows update solution it does was meant
for a more ISP like environment rather then SMB or ENTERPRISE class
networks.
if you have a network less then 10 machines just update the network
nodes every month since there wont be too much of an updates for that
unless there is another windows update cycle that I do not know about.
for a network greater then 20 machines I do suggest to use WSUS auto
services..
you can take couple minutes to read about microsoft solution for the
problem at:
http://technet.microsoft.com/en-us/windowsserver/bb332157.aspx
About the patterns that you were writing I would say something like:
OK the guy that implemented these refresh_pattern did not like his
client if he used squid 2.X and 3.1, 3.2.
The basics of caching is *do not harm the client while testing*.
I have seen what happens if a client sees a page that he already updated
on his server and he just tries to understand why at home he has one
page and on the server another..
squid tries to make sure that the CIA is being verified...
if you can share the access logs from the proxy I can try to identify
something about the url but I am not promising anything.
By the way if you do have a working printer driver which dosn't have any
problems I do not thing you should run and update it since windows guys
think you should...
There might be a security issue but if you firewall the place correctly
and intercept traffic you would be able to find pretty fast if some
rouge process\client does something in your network.
If you do suspect that there is something going on SNORT is a nice tool.
Anyway if wsusoffline is the tool for you I think you have found the
right tool for you.
Eliezer
>
> Regarding:
>
>> #start
>> range_offset_limit -1
>> maximum_object_size 2 GB # or any other size that you think worth and
>> make sense.
>> quick_abort_min -1
>> #end
>
> That is basically right out of the FAQ, and I have done that.
>
> Here is what I noticed: There was one particular update (it was a samsung
> printer driver - ok not really a "windows update" per se, but it was one I
> could identify easily) that appeared on all machines. I updated one machine
> choosing that update only. When I went to the next machine to do the same,
> it appeared to take just as long if not longer to download.
>
> It is not very scientific, but it leaves me wondering what to do next.
>
> I did see this added to a particular squid.conf file . . . I am not sure,
> but does anyone think this would help:
>
>
>> # compressed
>> refresh_pattern -i \.gz$ 10080 90% 999999 override-expire override-lastmod
>> reload-into-ims ignore-reload
>> refresh_pattern -i \.cab$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.bzip2$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.bz2$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.gz2$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.tgz$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.tar.gz$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.zip$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.rar$ 1008000 90% 99999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.tar$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.ace$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.7z$ 10080 90% 999999 override-expire override-lastmod
>> reload-into-ims ignore-reload
>>
>> # documents
>> refresh_pattern -i \.xls$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.doc$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.xlsx$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.docx$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.pdf$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.ppt$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.pptx$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.rtf\?$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>>
>> # multimedia
>> refresh_pattern -i \.mid$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.wav$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.viv$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.mpg$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.mov$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.avi$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.asf$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.qt$ 10080 90% 999999 override-expire override-lastmod
>> reload-into-ims ignore-reload
>> refresh_pattern -i \.rm$ 10080 90% 999999 override-expire override-lastmod
>> reload-into-ims ignore-reload
>> refresh_pattern -i \.rmvb$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.mpeg$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.wmp$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.3gp$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.mp3$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.mp4$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>>
>> # images
>> refresh_pattern -i \.gif$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.jpg$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.png$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.jpeg$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.bmp$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.psd$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.ad$ 10080 90% 999999 override-expire override-lastmod
>> reload-into-ims ignore-reload
>> refresh_pattern -i \.gif\?$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.jpg\?$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.png\?$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.jpeg\?$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.psd\?$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>>
>> # application
>> refresh_pattern -i \.deb$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.rpm$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.msi$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.exe$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>> refresh_pattern -i \.dmg$ 10080 90% 999999 override-expire
>> override-lastmod reload-into-ims ignore-reload
>
>
>
>
>
>
> --
> View this message in context: http://squid-web-proxy-cache.1019090.n4.nabble.com/Any-Way-To-Check-If-Windows-Updates-Are-Cached-tp4661935p4661975.html
> Sent from the Squid - Users mailing list archive at Nabble.com.
>
Received on Sun Sep 08 2013 - 00:39:52 MDT
This archive was generated by hypermail 2.2.0 : Sun Sep 08 2013 - 12:00:07 MDT