Hi all!
We recently added a proxy server into the mix...Changed the proxy settings on everyone's IE to point to the new server. We then blocked port 80 on the Netscreen 25 and created a policy above the block to allow the proxy out. That way, if anyone "unchecked" their proxy settings and bypass the proxy, they would not be able to access the internet. Now nobody is getting automtic updates from the Internet (I guess because AU uses port 80???) using the AU client. Is there anyway to block access to the internet but all the automatic update client to go out and get updates from Microsoft? This is the client part of automatic updates...Obviously they can open a browser and go to windowsupdate.com...
Any ideas? SUS is an option...Is there anything I can do in the firewall to block Internet access forcing people to use the proxy to surf but allow the Automatic updates client to access the internet to get updates?
Thanks in advance!
We recently added a proxy server into the mix...Changed the proxy settings on everyone's IE to point to the new server. We then blocked port 80 on the Netscreen 25 and created a policy above the block to allow the proxy out. That way, if anyone "unchecked" their proxy settings and bypass the proxy, they would not be able to access the internet. Now nobody is getting automtic updates from the Internet (I guess because AU uses port 80???) using the AU client. Is there anyway to block access to the internet but all the automatic update client to go out and get updates from Microsoft? This is the client part of automatic updates...Obviously they can open a browser and go to windowsupdate.com...
Any ideas? SUS is an option...Is there anything I can do in the firewall to block Internet access forcing people to use the proxy to surf but allow the Automatic updates client to access the internet to get updates?
Thanks in advance!