Deploy Updates and Security Fixes to Disconnected RHEL 6.7 Servers?
I have multiple environments that are not internet connected and contain RHEL 6.7 servers.
I need to be able to provide updates and security fixes to these servers on a regular basis.
We don't have Satellite and there are no plans to deploy it.
From the research I've done, it appears that my next best option is a YUM Repo server?
I have found two different methods of achieving this from searching the RedHat site.
https://access.redhat.com/solutions/45956
and
https://access.redhat.com/solutions/23016
One method utilizes 'reposync' while the other uses a combination of:
yumdownloader --resolve rpm -qa --destdir /tmp/rpm_updates
and
yum update --downloadonly --downloaddir /tmp/rpm_updates
Which method should I use?
45956 or 23016?
I also need to install Security updates on these systems.
How should I do this?
I found this on the RedHat site.
https://access.redhat.com/solutions/55654
Do I need to implement this?
Thanks!
Responses
Hey Mark,
Just to be clear, I am not a Red Hatter!
If it were me, I would use the solution for repo sync, seems like it would be a little more manageable than downloader, especially if you have more than 1 disconnected machine. Think of it like a poor man's satellite. you can sync the repos that you need, qualify the patches, off-line the repo server and patch your disconnected systems. Once your systems are patched, you can remove the repo server from that secured network, and on-line to sync the repo.
I would keep that sync between your repo server and RHN as current as possible, though. Nothing like having a critical patch that needs deployed and then waiting for a channel to sync before you can apply it.
Cheers, Dave
Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.