From owner-freebsd-net Wed Jan 26 5:22:10 2000 Delivered-To: freebsd-net@freebsd.org Received: from apollo.ocsny.com (apollo.ocsny.com [204.107.76.2]) by hub.freebsd.org (Postfix) with ESMTP id 74FD514FA2 for ; Wed, 26 Jan 2000 05:22:05 -0800 (PST) (envelope-from mikel@ocsny.com) Received: from ocsny.com (thoth.upan.org [204.107.76.16]) by apollo.ocsny.com (8.9.2/8.9.3) with ESMTP id IAA10045; Wed, 26 Jan 2000 08:19:14 -0500 (EST) Message-ID: <388EF5B7.9712A2C4@ocsny.com> Date: Wed, 26 Jan 2000 08:25:12 -0500 From: Mikel Organization: Optimized Computer Solutions, Inc. X-Mailer: Mozilla 4.6 [en] (Win98; I) X-Accept-Language: en MIME-Version: 1.0 To: mm@i.cz Cc: freebsd-net@FreeBSD.ORG Subject: Re: distributing software updates to boxes on a network References: Content-Type: multipart/mixed; boundary="------------8A1EEFBC140DCC0E3DFE9CD7" Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is a multi-part message in MIME format. --------------8A1EEFBC140DCC0E3DFE9CD7 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Martin Machacek wrote: > On 26-Jan-00 graeme.n.brown@bt.com wrote: > > In the past I have tried doing this > > > > (i) via NFS where master version of S/W is held on an NFS server with > > individulal routers mounting exported directory for the s/w and thus > > all routers can execute same uptodate version of code > > > > OR > > > > (ii) via each router running a PERL script which does an ftp download > > of the s/w from an ftp server and then compiles/runs new version of > > code. > > OR > > have a master that keeps binaries and configuration for all routers/servers and > uses rsync (preferrably over ssh) to distribute them to target machine. This > scheme of course assumes that target machines have local harddisks. The big > advantage of this scheme is security. Target machines have to trust the master > but the master need not to trust anybody. Every action (with regards to changing > binaries and/or configuration on target machines) is invoked from the master. > Of course the master machine must be properly secured. I'm using this scheme to > manage over 40 servers (DNS/mail servers and firewalls) for one of our > customers. An extra goodie of this setup is that I can reinstall any machine > remotely. I only need somebody to exchange crashed disk for new one and insert > a boot floppy with minimal system (derived from picobsd). I'm working on using > netboot instead of the floppy. So far I'm very happy with this setup. > > As usual YMMV :-) > > Martin > I find that an interesting possibility...I wouldn't mind hearing mor about it in the future...I've used rsync for mail, and account synchronization...but never thought about total reinstall before...;) I've also used fetch which works amazingly well and it relatively simple in its approach...the down side is to fetch is the need for either ftp or http services... -- Cheers, Mikel +~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~+ | Optimized Computer Solutions, Inc http://www.ocsny.com | 39 W14th Street, Suite 203 212 727 2238 x132 | New York, NY 10011 +~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~+ | Labor rates: Tech $125 hourly | Net Engineer $150 hourly | Phone Support $ 33 quarter hourly | Lost Password $ 45 per incedent +~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~+ | http://www.ocsny.com/~mikel +~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~+ --------------8A1EEFBC140DCC0E3DFE9CD7 Content-Type: text/x-vcard; charset=us-ascii; name="mikel.vcf" Content-Transfer-Encoding: 7bit Content-Description: Card for Mikel Content-Disposition: attachment; filename="mikel.vcf" begin:vcard n:King;Mikel x-mozilla-html:TRUE org:Optimized Computer Solutions version:2.1 email;internet:mikel@ocsny.com title:Procurement Manager tel;fax:2124638402 tel;home:http://www.upan.org/vizkr tel;work:2127272100 adr;quoted-printable:;;39 W14th St.=0D=0ASte 203;New York;NY;10011;US x-mozilla-cpt:;0 fn:Mikel King end:vcard --------------8A1EEFBC140DCC0E3DFE9CD7-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message