none
Redirecting from Microsoft Update to WSUS

    Question

  • Hey,

    is it possible to redirect Clients asking for Microsoft Update to a local WSUS installation?

    Background is I'm organizing a LAN-Party with about 300 users. We have quite a good internet connection, but I'd like to reduce traffic as much as I can, to not disrupt online gaming.

    Since I have no access to the clients there is no way I can get them to use my WSUS from there. 

    Can I just point update.microsoft.com or whatever to my WSUS?

    Regards,
    Hans

    Thursday, March 06, 2014 12:55 PM

Answers

  • Background is I'm organizing a LAN-Party with about 300 users. We have quite a good internet connection, but I'd like to reduce traffic as much as I can, to not disrupt online gaming.

    Maybe the better question is what the hell WSUS has to do with a gaming LAN-party?

    Even *IF* you were to configure them all to use your WSUS server:

    • It would be pointless because of the amount of TIME and EFFORT it would take to download and install the missing patches.
    • Doing so is a violation of the EULA for WSUS and for Windows Server!

    If you want to require that your party attendees have a fully-patched computer before connecting to your LAN then just have 'em boot up the computer (OFF of the network) and prove to you that updates were installed since the last Patch Tuesday. If they were, they probably got all of 'em; if they weren't, then don't give 'em a port!


    Lawrence Garvin, M.S., MCSA, MCITP:EA, MCDBA
    SolarWinds Head Geek
    Microsoft MVP - Software Packaging, Deployment & Servicing (2005-2014)
    My MVP Profile: http://mvp.microsoft.com/en-us/mvp/Lawrence%20R%20Garvin-32101
    http://www.solarwinds.com/gotmicrosoft
    The views expressed on this post are mine and do not necessarily reflect the views of SolarWinds.

    Friday, March 07, 2014 3:49 AM

All replies

  • Hello Hans,

    As you're about to create a LAN, maybe the best would be to create a domain with GPO and to set an automatic GPO for all machine of your domain that will perform the change.

    Here are Technet issue on how to redirect with GPO :
    Link : http://technet.microsoft.com/en-us/library/cc708574%28v=ws.10%29.aspx

    To redirect Automatic Updates to a WSUS server
    1. In the Group Policy Object Editor, expand Computer Configuration, expand Administrative Templates, expand Windows Components, and then click Windows Update.

    2. In the details pane, click Specify Intranet Microsoft update service location.

    3. Click Enabled and type the HTTP(S) URL of the same WSUS server in the Set the intranet update service for detecting updates box and in the Set the intranet statistics server box. For example, type http(s)://servername in both boxes, where servername is the name of the server. If the port is not 80 for HTTP or 443 for HTTPS, you should add the port number: https://servername:portnumber.

    4. Click OK.

    Hope this will help.

    Thanks.

    TiGrOu.

    Thursday, March 06, 2014 1:48 PM
  • I guess you didn't read my question entirely:

    I'm organizing a LAN party, not creating a LAN. There are about 300 people coming with their own computers, to which I have no access, so GPOs won't work.

    Thursday, March 06, 2014 3:03 PM
  • Not sure if there is another way then playing with DNS. On your router or what every you have for internet add static entry for update.microsoft.com to your WSUS server IP.

    Thanks

    Thursday, March 06, 2014 9:52 PM
  • If you have no access and no GPO then I suppose supplying a registry file and asking everyone to load it is out of the question too - http://technet.microsoft.com/en-us/library/cc708449%28v=ws.10%29.aspx

    A second registry setting to restore the old environment after than LAN party would be needed too.

    Windows Registry Editor Version 5.00

    [-HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate]

    [-HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU]

    Friday, March 07, 2014 12:20 AM
  • Background is I'm organizing a LAN-Party with about 300 users. We have quite a good internet connection, but I'd like to reduce traffic as much as I can, to not disrupt online gaming.

    Maybe the better question is what the hell WSUS has to do with a gaming LAN-party?

    Even *IF* you were to configure them all to use your WSUS server:

    • It would be pointless because of the amount of TIME and EFFORT it would take to download and install the missing patches.
    • Doing so is a violation of the EULA for WSUS and for Windows Server!

    If you want to require that your party attendees have a fully-patched computer before connecting to your LAN then just have 'em boot up the computer (OFF of the network) and prove to you that updates were installed since the last Patch Tuesday. If they were, they probably got all of 'em; if they weren't, then don't give 'em a port!


    Lawrence Garvin, M.S., MCSA, MCITP:EA, MCDBA
    SolarWinds Head Geek
    Microsoft MVP - Software Packaging, Deployment & Servicing (2005-2014)
    My MVP Profile: http://mvp.microsoft.com/en-us/mvp/Lawrence%20R%20Garvin-32101
    http://www.solarwinds.com/gotmicrosoft
    The views expressed on this post are mine and do not necessarily reflect the views of SolarWinds.

    Friday, March 07, 2014 3:49 AM
  • Hello Hans Hering,

    Since we haven’t heard from you for several days. I want to confirm whether the issue has been resolved.

    If you have any further question, please feel free to let us know.

    Thank you.

    Tuesday, March 11, 2014 3:30 AM