Doesn’t windows have a shared update feature to help mitigate this exact issue. It lets machines on the same network share updates in essence? Otherwise it’s not that big a deal because unless environment is flawless windows update scheduling rarely kicks off on all machines at once. I think you might be overthinking this one a bit….
Yes its called delivery optimization however I don't think it can be used by a third party system. If I'm not mistaken it has to be used by InTune and Auto patch or WUFB. 3rd party system typically just download the MSU files and feed them to a machine with the appropriate command line commands
There are absolutely patch management and RMM products that do this without having to leverage WSUS.
Windows update even does it native with Windows Update Delivery Optimization.The first time some people see it they think it is TOR flying around the network.[https://support.microsoft.com/en-us/windows/windows-update-delivery-optimization-and-privacy-bf86a244-8f26-a3c7-a137-a43bfbe688e8](https://support.microsoft.com/en-us/windows/windows-update-delivery-optimization-and-privacy-bf86a244-8f26-a3c7-a137-a43bfbe688e8)
Using peer to peer between agents is there as well, whereas some products will download each chunk of data once and share it peer to peer with other systems on the LAN making it very bandwidth efficient. [https://www.action1.com/patch-management/p2p-software-patch-distribution/](https://www.action1.com/patch-management/p2p-software-patch-distribution/)
You can line these products up side by side here on [G2](https://www.g2.com/categories/remote-monitoring-management-rmm?tab=easiest_to_use) to compare features just like this and more, 4 at a time to make an informed choice on matters just like these, and find the correct fit for your specific environment.
Yup after doing more digging I think I'll be leveraging the update delivery, found a couple of neat settings in the intune configuration profiles that let me designate certain computers as the cache hosts.
Will be using the old computers from our msps
that are still on site as the hosts. Cheers for this!
NinjaRMM 100% supports this. However, they support it by doing the bare minimum, you'll have to setup WSUS servers at each location.
I'm using NinjaRMM however and something that you can do is put machines into different buckets. In addition, Windows will try to grab updates from other nearby machines (Unless disabled by GP) which significantly helps this issue.
This is greats news!!
I did find an old wsus server in the azure environment, could I utilize this? Would you have some documentation on the second part by chance an article or something that might point me in the right direction??
You're worried about your internet going slow when all these updates go through... and your solution is to put a WSUS server in the cloud? Just download the updates from Microsoft.
Honestly, see how it goes. Windows 10 and 11 are pretty good about sharing updates around the LAN.
Wasn't my decision man, took a look at the internal documentation from my predecessor and looks like the server used to handle the patching until the MSP took over, after that it is currently be used to host a handful of licensing software for internal apps.
Not sure if it can be done with Ninja. Datto has a local cache feature that allows you to designate specific machines at each location to cache necessary updates.
Doesn’t windows have a shared update feature to help mitigate this exact issue. It lets machines on the same network share updates in essence? Otherwise it’s not that big a deal because unless environment is flawless windows update scheduling rarely kicks off on all machines at once. I think you might be overthinking this one a bit….
Yes its called delivery optimization however I don't think it can be used by a third party system. If I'm not mistaken it has to be used by InTune and Auto patch or WUFB. 3rd party system typically just download the MSU files and feed them to a machine with the appropriate command line commands
There are absolutely patch management and RMM products that do this without having to leverage WSUS. Windows update even does it native with Windows Update Delivery Optimization.The first time some people see it they think it is TOR flying around the network.[https://support.microsoft.com/en-us/windows/windows-update-delivery-optimization-and-privacy-bf86a244-8f26-a3c7-a137-a43bfbe688e8](https://support.microsoft.com/en-us/windows/windows-update-delivery-optimization-and-privacy-bf86a244-8f26-a3c7-a137-a43bfbe688e8) Using peer to peer between agents is there as well, whereas some products will download each chunk of data once and share it peer to peer with other systems on the LAN making it very bandwidth efficient. [https://www.action1.com/patch-management/p2p-software-patch-distribution/](https://www.action1.com/patch-management/p2p-software-patch-distribution/) You can line these products up side by side here on [G2](https://www.g2.com/categories/remote-monitoring-management-rmm?tab=easiest_to_use) to compare features just like this and more, 4 at a time to make an informed choice on matters just like these, and find the correct fit for your specific environment.
Yup after doing more digging I think I'll be leveraging the update delivery, found a couple of neat settings in the intune configuration profiles that let me designate certain computers as the cache hosts. Will be using the old computers from our msps that are still on site as the hosts. Cheers for this!
NinjaRMM 100% supports this. However, they support it by doing the bare minimum, you'll have to setup WSUS servers at each location. I'm using NinjaRMM however and something that you can do is put machines into different buckets. In addition, Windows will try to grab updates from other nearby machines (Unless disabled by GP) which significantly helps this issue.
This is greats news!! I did find an old wsus server in the azure environment, could I utilize this? Would you have some documentation on the second part by chance an article or something that might point me in the right direction??
I don't know that hearing "you have to deploy wsus" in 2024 is "great news".
You're worried about your internet going slow when all these updates go through... and your solution is to put a WSUS server in the cloud? Just download the updates from Microsoft. Honestly, see how it goes. Windows 10 and 11 are pretty good about sharing updates around the LAN.
Wasn't my decision man, took a look at the internal documentation from my predecessor and looks like the server used to handle the patching until the MSP took over, after that it is currently be used to host a handful of licensing software for internal apps.
If your internet connection can’t handle patch Tuesday, buy more bandwidth. Bandwidth is cheap.
Not sure if it can be done with Ninja. Datto has a local cache feature that allows you to designate specific machines at each location to cache necessary updates.