Recommendations to manage updates in network following update-manager rules
I have ~50 workstations that I want to update their installed software with every possible updated package inside release repository without upgrading distro (I don't want to go from 16.04 to 18.04 for example).
I can SSH into them but I don't know if apt update && sudo apt upgrade is safe because update-manager (which always worked for me) seems to show less software to upgrade and I don't want to change Ubuntu releases on those machines (some old hardware dropped support in newer kernels).
I also think it would be the best to do so without using lots of bandwidth from ubuntu apt mirrors.
I was thinking something like having local apt mirror (to avoid downloading the same files from external servers 50 times if aprox 300mb per machine justificates doing so).
Doing one small script in Python+Paramiko to iterate each machine and update or would it be best to learn Ansible? I'm not using domain joined workstations so I think if I would use Ansible to deploy I would need to specify each login/password and that seems much more work, and I don't really know Ansible.
TL;DR What do you recommend to deploy updates in Ubuntu 16.04 network environment without domain joined machines and without wasting others bandwidth? (I can connect to each machine using SSH)
Thank you!
networking updates update-manager
asked Jan 15 at 16:15
Fernando MengelFernando Mengel
1
add a comment |
I have ~50 workstations that I want to update their installed software with every possible updated package inside release repository without upgrading distro (I don't want to go from 16.04 to 18.04 for example).
I can SSH into them but I don't know if apt update && sudo apt upgrade is safe because update-manager (which always worked for me) seems to show less software to upgrade and I don't want to change Ubuntu releases on those machines (some old hardware dropped support in newer kernels).
I also think it would be the best to do so without using lots of bandwidth from ubuntu apt mirrors.
I was thinking something like having local apt mirror (to avoid downloading the same files from external servers 50 times if aprox 300mb per machine justificates doing so).
Doing one small script in Python+Paramiko to iterate each machine and update or would it be best to learn Ansible? I'm not using domain joined workstations so I think if I would use Ansible to deploy I would need to specify each login/password and that seems much more work, and I don't really know Ansible.
TL;DR What do you recommend to deploy updates in Ubuntu 16.04 network environment without domain joined machines and without wasting others bandwidth? (I can connect to each machine using SSH)
Thank you!
networking updates update-manager
asked Jan 15 at 16:15
Fernando MengelFernando Mengel
1
Whole lot of possible issues in there. I'm not sure which question you want us to answer?
– user535733
Jan 15 at 18:09
What would you do to update all softwares in 50 Ubuntu installed machines without updating distro version, if you wanted to be lazy and safe? Only you has the root password, different users
– Fernando Mengel
Jan 15 at 18:41
I would sit down at my terminal and run my ssh script that runs 50 apt update and 50 apt upgrade. I would bring a sandwich because I intend to read all 50 sets of output before hitting 'Y' each time. With occasional pondering, it should take about two hours. Then I would edit the script to enable Unattended-Upgrades, and set a specific time each day to run it so all the machines are updated identically. Finally I would look into a caching proxy for the bandwidth during future updates.
– user535733
Jan 15 at 18:43
add a comment |
I have ~50 workstations that I want to update their installed software with every possible updated package inside release repository without upgrading distro (I don't want to go from 16.04 to 18.04 for example).
I can SSH into them but I don't know if apt update && sudo apt upgrade is safe because update-manager (which always worked for me) seems to show less software to upgrade and I don't want to change Ubuntu releases on those machines (some old hardware dropped support in newer kernels).
I also think it would be the best to do so without using lots of bandwidth from ubuntu apt mirrors.
I was thinking something like having local apt mirror (to avoid downloading the same files from external servers 50 times if aprox 300mb per machine justificates doing so).
Doing one small script in Python+Paramiko to iterate each machine and update or would it be best to learn Ansible? I'm not using domain joined workstations so I think if I would use Ansible to deploy I would need to specify each login/password and that seems much more work, and I don't really know Ansible.
TL;DR What do you recommend to deploy updates in Ubuntu 16.04 network environment without domain joined machines and without wasting others bandwidth? (I can connect to each machine using SSH)
Thank you!
networking updates update-manager
asked Jan 15 at 16:15
Fernando MengelFernando Mengel
1
I have ~50 workstations that I want to update their installed software with every possible updated package inside release repository without upgrading distro (I don't want to go from 16.04 to 18.04 for example).
I can SSH into them but I don't know if apt update && sudo apt upgrade is safe because update-manager (which always worked for me) seems to show less software to upgrade and I don't want to change Ubuntu releases on those machines (some old hardware dropped support in newer kernels).
I also think it would be the best to do so without using lots of bandwidth from ubuntu apt mirrors.
I was thinking something like having local apt mirror (to avoid downloading the same files from external servers 50 times if aprox 300mb per machine justificates doing so).
Doing one small script in Python+Paramiko to iterate each machine and update or would it be best to learn Ansible? I'm not using domain joined workstations so I think if I would use Ansible to deploy I would need to specify each login/password and that seems much more work, and I don't really know Ansible.
TL;DR What do you recommend to deploy updates in Ubuntu 16.04 network environment without domain joined machines and without wasting others bandwidth? (I can connect to each machine using SSH)
Thank you!
networking updates update-manager
networking updates update-manager
asked Jan 15 at 16:15
Fernando MengelFernando Mengel
1
asked Jan 15 at 16:15
Fernando MengelFernando Mengel
1
asked Jan 15 at 16:15
Fernando MengelFernando Mengel
1
asked Jan 15 at 16:15
Fernando MengelFernando Mengel
1
asked Jan 15 at 16:15
Fernando MengelFernando Mengel
1
1
Whole lot of possible issues in there. I'm not sure which question you want us to answer?
– user535733
Jan 15 at 18:09
What would you do to update all softwares in 50 Ubuntu installed machines without updating distro version, if you wanted to be lazy and safe? Only you has the root password, different users
– Fernando Mengel
Jan 15 at 18:41
I would sit down at my terminal and run my ssh script that runs 50 apt update and 50 apt upgrade. I would bring a sandwich because I intend to read all 50 sets of output before hitting 'Y' each time. With occasional pondering, it should take about two hours. Then I would edit the script to enable Unattended-Upgrades, and set a specific time each day to run it so all the machines are updated identically. Finally I would look into a caching proxy for the bandwidth during future updates.
– user535733
Jan 15 at 18:43
add a comment |
Whole lot of possible issues in there. I'm not sure which question you want us to answer?
– user535733
Jan 15 at 18:09
What would you do to update all softwares in 50 Ubuntu installed machines without updating distro version, if you wanted to be lazy and safe? Only you has the root password, different users
– Fernando Mengel
Jan 15 at 18:41
I would sit down at my terminal and run my ssh script that runs 50 apt update and 50 apt upgrade. I would bring a sandwich because I intend to read all 50 sets of output before hitting 'Y' each time. With occasional pondering, it should take about two hours. Then I would edit the script to enable Unattended-Upgrades, and set a specific time each day to run it so all the machines are updated identically. Finally I would look into a caching proxy for the bandwidth during future updates.
– user535733
Jan 15 at 18:43
Whole lot of possible issues in there. I'm not sure which question you want us to answer?
– user535733
Jan 15 at 18:09
Whole lot of possible issues in there. I'm not sure which question you want us to answer?
– user535733
Jan 15 at 18:09
What would you do to update all softwares in 50 Ubuntu installed machines without updating distro version, if you wanted to be lazy and safe? Only you has the root password, different users
– Fernando Mengel
Jan 15 at 18:41
What would you do to update all softwares in 50 Ubuntu installed machines without updating distro version, if you wanted to be lazy and safe? Only you has the root password, different users
– Fernando Mengel
Jan 15 at 18:41
I would sit down at my terminal and run my ssh script that runs 50 apt update and 50 apt upgrade. I would bring a sandwich because I intend to read all 50 sets of output before hitting 'Y' each time. With occasional pondering, it should take about two hours. Then I would edit the script to enable Unattended-Upgrades, and set a specific time each day to run it so all the machines are updated identically. Finally I would look into a caching proxy for the bandwidth during future updates.
– user535733
Jan 15 at 18:43
I would sit down at my terminal and run my ssh script that runs 50 apt update and 50 apt upgrade. I would bring a sandwich because I intend to read all 50 sets of output before hitting 'Y' each time. With occasional pondering, it should take about two hours. Then I would edit the script to enable Unattended-Upgrades, and set a specific time each day to run it so all the machines are updated identically. Finally I would look into a caching proxy for the bandwidth during future updates.
– user535733
Jan 15 at 18:43
add a comment |
0
active
oldest
votes
Your Answer
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "89"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2faskubuntu.com%2fquestions%2f1109992%2frecommendations-to-manage-updates-in-network-following-update-manager-rules%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
0
active
oldest
votes
0
active
oldest
votes
active
oldest
votes
active
oldest
votes
Thanks for contributing an answer to Ask Ubuntu!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2faskubuntu.com%2fquestions%2f1109992%2frecommendations-to-manage-updates-in-network-following-update-manager-rules%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Whole lot of possible issues in there. I'm not sure which question you want us to answer?
– user535733
Jan 15 at 18:09
What would you do to update all softwares in 50 Ubuntu installed machines without updating distro version, if you wanted to be lazy and safe? Only you has the root password, different users
– Fernando Mengel
Jan 15 at 18:41
I would sit down at my terminal and run my ssh script that runs 50 apt update and 50 apt upgrade. I would bring a sandwich because I intend to read all 50 sets of output before hitting 'Y' each time. With occasional pondering, it should take about two hours. Then I would edit the script to enable Unattended-Upgrades, and set a specific time each day to run it so all the machines are updated identically. Finally I would look into a caching proxy for the bandwidth during future updates.
– user535733
Jan 15 at 18:43