Skip to main content
Question

Software Updates OSX Server10.7

  • December 1, 2011
  • 12 replies
  • 45 views
A
Forum|alt.badge.img+8

Hi All

I wanted to know if anyone had success with this, I'm trying to get Apple
updates working, but because we are behind an authenticated Proxy (we are
using Squid) I'm have "no Connection" errors.

I've tried using squidman but with limited/unreliable success.

So far the way I've partially got around the problem is to bypass each of
the URLs in the squid config file

The problem is that i can't download any updates above 10.5 possibly
because Apple have changed the URLs for 10.6 and 10.7 updates

Anyway, to get around this problem im thinking of using to networks connect
to my xserve

Interface 0 will be for our internal LAN

Interface 1 will be a different network with non proxy connection to the
internet

does anyone know if this is possible or a better way of doing this?

I assume I have to change the routing tables on the Xserve, but wanted to
hear other views before I action this

Thanks

Abz

-- Network and Server Operational Support

Mobile: 07771 725 785

Los Angeles · Detroit · Toronto · New York · London · Cologne · Stockholm ·
Singapore · Hong Kong · Shanghai · Tokyo · Sydney

Imagination · London
25 Store Street South Crescent, London WC1E 7BL, United Kingdom
Tel +44 20 7323 3300 Fax +44 20 7462 2837
www.imagination.com

    12 replies

    W
    Forum|alt.badge.img+5
    • Walter
    • Contributor
    • December 1, 2011

    Jared,

    Perhaps you could post a KB on JAMF Nation linking to Apple's KB (your KB on Apple's website).

    Walter
    --
    Walter Rowe, System Hosting
    Enterprise Systems / OISM
    walter.rowe at nist.gov<mailto:walter.rowe at nist.gov>
    301-975-2885

    bentoms
    Forum|alt.badge.img+35
    • bentoms
    • Hall of Fame
    • December 1, 2011

    Hi Abz,

    I'm having issues with non-authenticated proxy too.

    Currently having a SUS with direct access seems to work.

    This advises to n to use a proxy (http://support.apple.com/kb/ht3923).

    The interface option MAY work, but i'd do it in the opposite order OR possibly have a master sus that is unproxied & is using just external DNS & then replicate from there (http://support.apple.com/kb/HT3765).

    A
    Forum|alt.badge.img+8
    • abz_mungul
    • Author
    • Contributor
    • December 1, 2011

    Hi Ben

    It just makes no sense why Apple would do this, most corporate environments
    have Proxy connections, frustrating to say the least.

    Just so I'm clear with the replication option

    1. Have a master "update Server" that has direct access to the internet,
      get this to download all the updates

    2. cascade this to "internal" Casper Server and use this to push out

    What I previously tried was to get the updates downloaded via a OSX Server
    that had direct Internet access then manually copy the downloaded files to
    the same directory on my Casper Server..hoping it would pick up the
    updates...unfortunately it did not. *Sigh*

    A

    W
    Forum|alt.badge.img+5
    • Walter
    • Contributor
    • December 1, 2011

    On a client, you can configure proxies. You can do that on servers too. Web browsing with Safari uses those proxies. Does SUS honor those proxy settings?
    --
    Walter Rowe, System Hosting
    Enterprise Systems / OISM
    walter.rowe at nist.gov<mailto:walter.rowe at nist.gov>
    301-975-2885

    A
    Forum|alt.badge.img+8
    • abz_mungul
    • Author
    • Contributor
    • December 1, 2011

    it doesn't seem so, which is annoying

    N
    Forum|alt.badge.img+18
    • nessts
    • Valued Contributor
    • December 1, 2011

    mine work through the proxy.
    --
    Todd Ness
    Technology Consultant/Non-Windows Services
    Americas Regional Delivery Engineering
    HP Enterprise Services

    bentoms
    Forum|alt.badge.img+35
    • bentoms
    • Hall of Fame
    • December 1, 2011

    Thanks Walter & Todd. Are you guys using a PAC file or do you manually enter the proxies settings?

    I was just going by the difficulties I've had & the following KB http://support.apple.com/kb/ht3923

    AFAIK the issue is that some unix executables are not proxy aware.

    Regards,

    Ben.

    J
    Forum|alt.badge.img+24
    • jarednichols
    • Valued Contributor
    • December 1, 2011

    Have a look at this one: http://support.apple.com/kb/TS3099

    I pretty much wrote it for Apple. My name should be on that damn article... I've still found instances beyond 10.6.3 where you need to modify the LaunchDaemon.

    j
    ---
    Jared F. Nichols
    Desktop Engineer, Client Services
    Information Services Department
    MIT Lincoln Laboratory
    244 Wood Street
    Lexington, Massachusetts 02420
    781.981.5436

    bentoms
    Forum|alt.badge.img+35
    • bentoms
    • Hall of Fame
    • December 1, 2011

    Many thanks Jared.

    Looks like I need to stop using the PAC file.

    Maybe the same issue for you Abz?

    Regards,

    Ben.

    bentoms
    Forum|alt.badge.img+35
    • bentoms
    • Hall of Fame
    • December 1, 2011

    Also, is there a trick to searching apple KB's?? I didn't get those KB's appear when I was searching earlier. :(

    Regards,

    Ben.

    bentoms
    Forum|alt.badge.img+35
    • bentoms
    • Hall of Fame
    • December 1, 2011

    Actually. The kb I linked is linked to by your KB's when you click the link about authenticated proxy.

    (this is where we are going, so I guess I should still put the change request in).

    Regards,

    Ben.

    A
    Forum|alt.badge.img+8
    • abz_mungul
    • Author
    • Contributor
    • December 2, 2011

    Thanks all for your help

    I'm going to have another play with proxyman to see where I get.

    Then perhaps look into using two networks via two Ethernet cards

    Abz

    Terms & ConditionsCookie settingsAccessibility statement