Welcome to ISAserver.org
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
Windows update doesnt work at Win. 2k3?
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
Windows update doesnt work at Win. 2k3? - 27.Oct.2005 4:22:00 AM
|
|
|
iraq it
Posts: 297
Joined: 1.Jul.2005
From: Iraq
Status: offline
|
Hi all,
I am using web proxy clients and i cant complete the windows update from the windowsupdate site for all my Win. Srv. 2k3 servers with the message below and failure to update anything even i have anonymous allow rule (http+https) for windows sites and set as the first rule.
The website has encountered a problem and cannot display the page you are trying to view. The options provided below might help you solve the problem.
For self-help options:
Frequently Asked Questions
Find Solutions
Windows Update Newsgroup
For assisted support options:
Any idea,
Thanks
|
|
|
|
|
RE: Windows update doesnt work at Win. 2k3? - 27.Oct.2005 8:02:00 AM
|
|
|
LLigetfa
Posts: 2184
Joined: 10.Aug.2004
From: fort frances.on.ca
Status: offline
|
My guess is the destination set you created is incomplete. Check the WindowsUpdate.log on the server that update failed on.
|
|
|
|
|
RE: Windows update doesnt work at Win. 2k3? - 27.Oct.2005 9:01:00 AM
|
|
|
LLigetfa
Posts: 2184
Joined: 10.Aug.2004
From: fort frances.on.ca
Status: offline
|
Did you look in the log as I suggested? The answer is there.
|
|
|
|
|
RE: Windows update doesnt work at Win. 2k3? - 30.Oct.2005 2:40:00 AM
|
|
|
iraq it
Posts: 297
Joined: 1.Jul.2005
From: Iraq
Status: offline
|
Sorry for delay in feedback.
This is the windowsupdate.log and i couldnt understand what you want from it? I add most of the sites that appeared in the logging and in the articles but still the windows update fail?
=========== Logging initialized (build: 5.8.0.2469, tz: +0300) ===========
= Process: C:\Program Files\Internet Explorer\iexplore.exe
= Module: C:\WINDOWS\system32\wuweb.dll
*********** Setup: Checking whether self-update is required ***********
* Inf file: C:\WINDOWS\SoftwareDistribution\WebSetup\wusetup.inf
Update NOT required for C:\WINDOWS\system32\cdm.dll: target version = 5.8.0.2469, required version = 5.8.0.2469
Update NOT required for C:\WINDOWS\system32\iuengine.dll: target version = 5.8.0.2469, required version = 5.8.0.2469
Update NOT required for C:\WINDOWS\system32\wuapi.dll: target version = 5.8.0.2469, required version = 5.8.0.2469
Update NOT required for C:\WINDOWS\system32\wuauclt.exe: target version = 5.8.0.2469, required version = 5.8.0.2469
Update NOT required for C:\WINDOWS\system32\wuauclt1.exe: target version = 5.8.0.2469, required version = 5.8.0.2469
Update NOT required for C:\WINDOWS\system32\wuaucpl.cpl: target version = 5.8.0.2469, required version = 5.8.0.2469
Update NOT required for C:\WINDOWS\system32\wuaueng.dll: target version = 5.8.0.2469, required version = 5.8.0.2469
Update NOT required for C:\WINDOWS\system32\wuaueng1.dll: target version = 5.8.0.2469, required version = 5.8.0.2469
Update NOT required for C:\WINDOWS\system32\wucltui.dll: target version = 5.8.0.2469, required version = 5.8.0.2469
Update NOT required for C:\WINDOWS\system32\wups.dll: target version = 5.8.0.2469, required version = 5.8.0.2469
Update NOT required for C:\WINDOWS\system32\wups2.dll: target version = 5.8.0.2469, required version = 5.8.0.2469
* IsUpdateRequired = No
=========== Logging initialized (build: 5.8.0.2469, tz: +0300) ===========
= Process: C:\Program Files\Internet Explorer\iexplore.exe
= Module: C:\WINDOWS\system32\wuapi.dll
-------------
-- START -- COMAPI: Search [ClientId = WindowsUpdate]
---------
- Online = Yes; Ignore download priority = No
- Criteria = "IsInstalled=0 and IsHidden=1"
- ServiceID = {9482F4B4-E343-43B6-B170-9A65BC822C77}
<<-- SUBMITTED -- COMAPI: Search [ClientId = WindowsUpdate]
*************
** START ** Agent: Finding updates [CallerId = WindowsUpdate]
*********
+++++++++++ PT: Synchronizing server updates +++++++++++
+ ServiceId = {9482F4B4-E343-43B6-B170-9A65BC822C77}, Server URL = https://update.microsoft.com/v6/ClientWebService/client.asmx
WARNING: Sync of Updates: 0x80244021
* WARNING: Failed to synchronize, error = 0x80244021
* WARNING: Exit code = 0x80244021
*********
** END ** Agent: Finding updates [CallerId = WindowsUpdate]
Agent *************
Agent WARNING: WU client failed Searching for update with error 0x80244021
COMAPI >>-- RESUMED -- COMAPI: Search [ClientId = WindowsUpdate]
COMAPI - Updates found = 0
COMAPI - WARNING: Exit code = 0x00000000, Result code = 0x80244021
COMAPI ---------
COMAPI -- END -- COMAPI: Search [ClientId = WindowsUpdate]
COMAPI -------------
COMAPI WARNING: Operation failed due to earlier error, hr=80244021
COMAPI FATAL: Unable to complete asynchronous search. (hr=80244021)
Report REPORT EVENT: {D8A1CB1E-2CE0-4D3C-819A-6DB7D9A76031} 2005-10-30 09:26:02+0300 1 148 101 {00000000-0000-0000-0000-000000000000} 0 80244021 WindowsUpdate Failure Software Synchronization Error: Agent failed detecting with reason: 0x80244021
|
|
|
|
|
RE: Windows update doesnt work at Win. 2k3? - 30.Oct.2005 5:51:00 AM
|
|
|
spouseele
Posts: 12782
Joined: 1.Jun.2001
From: Belgium
Status: offline
|
Hi Al-Taee,
give HTTP and HTTPS anonymous access to the predefined Domain Name Set 'System Policy Allowed Sites' and it will work.
HTH,
Stefaan
|
|
|
|
|
RE: Windows update doesnt work at Win. 2k3? - 31.Oct.2005 9:01:00 AM
|
|
|
LLigetfa
Posts: 2184
Joined: 10.Aug.2004
From: fort frances.on.ca
Status: offline
|
Again, look at your destination set. Do you have http://*.windowsupdate.com in it?
Show us what your destination set now has.
|
|
|
|
|
RE: Windows update doesnt work at Win. 2k3? - 31.Oct.2005 12:55:00 PM
|
|
|
LLigetfa
Posts: 2184
Joined: 10.Aug.2004
From: fort frances.on.ca
Status: offline
|
Because Microsoft keeps changing it, the original four that you probably read somewhere in an outdated doc, no longer works.
There is no good substitute for analytical thinking, where you examine the logs and adjust the destination set accordingly. A good firewall admin has the skills to analyse logs and network traces and apply the rules to suit.
|
|
|
|
|
RE: Windows update doesnt work at Win. 2k3? - 1.Nov.2005 12:47:00 AM
|
|
|
ClintD
Posts: 1833
Joined: 26.Jan.2001
From: Keller, TX
Status: offline
|
quote:
I will send you the set later but if its work for one of the server that doesnt work before so why i need to check the dest. set again
You would rather waste the time posting this response than actually look in the Destination Set?
The reason one server works over another might be because that server previously connected to Windows Update and received the newer BITS update resulting in different URLs being used than the other servers.
It's really immaterial though - read what you have in front of you - the logs don't lie.
|
|
|
|
|
RE: Windows update doesnt work at Win. 2k3? - 1.Nov.2005 12:52:00 AM
|
|
|
iraq it
Posts: 297
Joined: 1.Jul.2005
From: Iraq
Status: offline
|
There is no good substitute for analytical thinking, where you examine the logs and adjust the destination set accordingly. A good firewall admin has the skills to analyse logs and network traces and apply the rules to suit.
You are right. I add what you suggest (http://*.windowsupdate.com) and also it doesnt work but i examine the log and add the missing site and it works.
Thanks for help,
Al-Taee
|
|
|
|
|
RE: Windows update doesnt work at Win. 2k3? - 10.Nov.2005 4:53:57 PM
|
|
|
iraq it
Posts: 297
Joined: 1.Jul.2005
From: Iraq
Status: offline
|
Hi,
I have anonymous rule to allow (http + https + kerberos sec udp) to
windows update sites and its working correctly but by coincidence today
i saw that all my domain clients are updating their windows
automatically and I check that and it works good but they cant access
any site except the windows update site and that’s good.
I want to make sure that there is no problem with allowing users to
update their windows auto nor any risk with that?
Its better to enable this a week / month or schedule something or this
is ok?
Thanks,
|
|
|
|
|
RE: Windows update doesnt work at Win. 2k3? - 10.Nov.2005 6:33:47 PM
|
|
|
LLigetfa
Posts: 2184
Joined: 10.Aug.2004
From: fort frances.on.ca
Status: offline
|
Not sure where you are going with this and what you mean by setting a schedule. Do you want to limit when users can go to the URLS in that destination set? If you want to prevent users from interacting with those sites, you might want to deploy WSUS rather than allowing internet access.
_____________________________
The School of Hard Knocks is a mean teacher. She gives the exam before the lesson.
|
|
|
|
|
RE: Windows update doesnt work at Win. 2k3? - 10.Nov.2005 7:42:19 PM
|
|
|
iraq it
Posts: 297
Joined: 1.Jul.2005
From: Iraq
Status: offline
|
Not sure where you are going with this and what you mean by setting a schedule. Do you want to limit when users can go to the URLS in that destination set? If you want to prevent users from interacting with those sites, you might want to deploy WSUS rather than allowing internet access.
I agree with you that no meaning for schedule here but i was mean that i disable the rule for some weeks and then i enable it for other weeks.
I was plan to deploy WSUS but IF there is no risk of having users access the windows update sites (even if its tiny risk) so i will continue use this rule so confirm me please.
Thanks,
|
|
|
|
|
RE: Windows update doesnt work at Win. 2k3? - 13.Nov.2005 2:37:43 PM
|
|
|
iraq it
Posts: 297
Joined: 1.Jul.2005
From: Iraq
Status: offline
|
Hi,
I just want a confirm that there is no risk of having users access the windows update sites (even if its tiny risk) and also for upading the antivirus sites.
Can they use that sites for other things ?
Thanks,
|
|
|
|
|
RE: Windows update doesnt work at Win. 2k3? - 13.Nov.2005 3:13:08 PM
|
|
|
spouseele
Posts: 12782
Joined: 1.Jun.2001
From: Belgium
Status: offline
|
Hi iraq it,
*not* keeping the OS and the antivirus up-to-date is a much greater risk!
I strongly suggest you implement WSUS if you want to manage the updates. It's for free and it saves on bandwith too because the updates are only downloaded once.
HTH,
Stefaan
|
|
|
|
|
RE: Windows update doesnt work at Win. 2k3? - 13.Nov.2005 5:05:52 PM
|
|
|
iraq it
Posts: 297
Joined: 1.Jul.2005
From: Iraq
Status: offline
|
quote:
ORIGINAL: spouseele
Hi iraq it,
*not* keeping the OS and the antivirus up-to-date is a much greater risk!
I strongly suggest you implement WSUS if you want to manage the updates. It's for free and it saves on bandwith too because the updates are only downloaded once.
HTH,
Stefaan
Hi Stefaan,
So its not a big risk but you prefer the WSUS. Any disadvantage of deploying WSUS?
What about the Norton Antivirus, can WSUS support the update?
Thanks,
|
|
|
|
|
RE: Windows update doesnt work at Win. 2k3? - 13.Nov.2005 5:24:15 PM
|
|
|
LLigetfa
Posts: 2184
Joined: 10.Aug.2004
From: fort frances.on.ca
Status: offline
|
WSUS does not update Norton but you can deploy corporate editions of NAV/SAV that will update all the clients without giving clients internet access.
_____________________________
The School of Hard Knocks is a mean teacher. She gives the exam before the lesson.
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
![[Confused]](/image/smiles/confused.gif)
