| Home | Register | Members | Search | Links |
 |
| Thread Tools | Display Modes |
|
Guest
Posts: n/a
|
Hi all,
one of my servers host Windows System Update Service + Windows Sharepoint Services + symantec server. I want to reject all IP conections except my local IP subnet + windows update servers + symantec update servers. It seems that windows update servers IP are not stables (dynamic A class change between two pings for Downloads.windowsupdate.com). How can I solve that problem ? I did not investigate yet Symantec liveUpdate servers but if anyone has already do it  )thanks |
|
|
|
|||
|
|
| |
|
Guest
Posts: n/a
|
Eddie,
You can close off all incoming network traffic except your local subnets as windows and Symantec update services use HTTP established by your server. Out going connections only. "Eddie Iannuccelli" wrote: > Hi all, > one of my servers host Windows System Update Service + Windows Sharepoint > Services + symantec server. I want to reject all IP conections except my > local IP subnet + windows update servers + symantec update servers. > It seems that windows update servers IP are not stables (dynamic A class > change between two pings for Downloads.windowsupdate.com). How can I solve > that problem ? > > I did not investigate yet Symantec liveUpdate servers but if anyone has > already do it )> > thanks |
|
|
|
|
|||
|
Guest
Posts: n/a
|
I am trying to do that using local IP policy (not a firewall) and I currently :
-reject all traffic (incoming and outgoing) by setting default filter to reject action -accept my subnet traffic with mirroring This work fine but server cant reach windows update by example, so I add a rule that : -accept all traffic from myIP to anyIP with no mirroring but my server still cannot reach windowsupdate throug IE. What's wrong ? "Wendel Hamilton" wrote: > Eddie, > You can close off all incoming network traffic except your local subnets as > windows and Symantec update services use HTTP established by your server. Out > going connections only. > > "Eddie Iannuccelli" wrote: > > > Hi all, > > one of my servers host Windows System Update Service + Windows Sharepoint > > Services + symantec server. I want to reject all IP conections except my > > local IP subnet + windows update servers + symantec update servers. > > It seems that windows update servers IP are not stables (dynamic A class > > change between two pings for Downloads.windowsupdate.com). How can I solve > > that problem ? > > > > I did not investigate yet Symantec liveUpdate servers but if anyone has > > already do it )> > > > thanks |
|
|
|
|
|||
|
|
| |
|
| Thread Tools | |
| Display Modes | |
|
|
Similar Threads
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| RRAS - Bill Grant Help :-) | Tmack | Windows Networking | 1 | 12-07-2007 05:26 AM |
| To Bill Grant | dindigul | Windows Networking | 0 | 09-30-2006 02:10 AM |
| Grant User Permissions on Win2k3 across a Trusted Domain | rickrk | Windows Networking | 1 | 04-28-2005 08:53 PM |
| Unable to connect to network and internet after WPA update thru Windows Update | hesp | Broadband Hardware | 3 | 05-27-2004 10:28 PM |
| E MAIL WILLNOT DOWNLOAD, WINDOWS UPDATE WONT UPDATE | BRUCEGRANT@ONCEANDDONE.COM | Windows Networking | 1 | 12-18-2003 09:06 PM |
Linear Mode
