WSUS on Disconnected Networks
Some organizations have networks partitioned from the Internet but which also host computers that need updates regularly applied. Although you can apply updates to all these computers manually, some isolated networks have so many hosts on them that such an approach is impractical. In this situation, you can deploy WSUS in disconnected mode, which enables you to use WSUS when the WSUS server is unable to obtain updates from an upstream server. In essence, you transfer updates and metadata from an Internet-connected WSUS server to the disconnected WSUS server.
To use disconnected mode, you must do three things:
■ Configure Advanced Options Ensure that the options for express installation files and update languages are the same on both the connected and disconnected WSUS servers.
■ Copy Updates Copy updates from the \WSUS\WSUSContent\ folder on the connected server to a removable storage device. Connect the removable storage device to the disconnected server and copy updates from that device to the \WSUS \WSUSContent\ folder. You can also use Windows Backup to back up these files on the connected server and restore them on the disconnected server.
■ Export and import Metadata Use the wsusutil.exe utility to export metadata from the connected WSUS server. Copy the export data to a removable storage device and use the wsusutil.exe utility to import the data to the disconnected WSUS server. WSUS metadata stores information about available updates, groups, and approval status.
Post a comment