LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Newbie (https://www.linuxquestions.org/questions/linux-newbie-8/)
-   -   Want to know (https://www.linuxquestions.org/questions/linux-newbie-8/want-to-know-4175545172/)

spr0o 06-12-2015 10:08 AM
Want to know
 
Hi all,
I am new to VMware. And new to my job. There are about 20 linux Redhat servers attached to VMware. I need to patch them. How can I do that ? Do i do each individually or all at once ?

Habitual 06-12-2015 10:13 AM
Welcome to LQ!

Log in to each host as root, or get root and run yum update.

spr0o 06-12-2015 10:16 AM
Are you saying that VMware cannot collect the patches and deploy them to the linux servers ? There is an equivalent in windows ! JHow about if I had over 100 servers ?

Soadyheid 06-13-2015 08:20 PM
Is that 20 RHEL VMs on one VMware host? Patching an OS generally means you have to reboot the system which implies downtime and loss of service to your customers. If you went ahead and patched 100 servers all at once and the patch failed, what's your back out plan? How big a disaster to your company would that be?
Are all the 20 RHEL VMs EXACTLY the same? Same version of Oracle (or whatever database you may have) Same applications on them all? I rather think not. To remediate the risk you need to gather all the relevant information on EACH VM and check it against the patch. This probably includes checking against firmware patch levels for Array controllers, BIOS, nics, HBAs and disks on the host server. Pain huh?

Prove the patch works against a development or test system first, then I'd patch the DR system (preferably before a DR fail over test) then if when you fail the production system over to the patched DR system, if you have problems, you can just fail it back again.

In major commercial companies, patching a live system is a real pain in the aspidistra as you have to get all the resources needed in place; SysAdmins, DBAs, Application Analysts and business owners plus you need to include backout plans for when it doesn't go as it should. You did run a system backup before you started didn't you? That's one per VM plus the host server if you're patching it as well!

Patching a DR system (not live, no mounted databases, no disruption to services when rebooted.) needs less resources so is easier to manage. All this is to manage the risk involved in patching a system.

The problem is bigger than just setting something up to automatically patch a load of servers whether VMs or bare metal.

Anyway... that's my thoughts for what they're worth. :twocents:?

Play Bonny!

:hattip:


All times are GMT -5. The time now is 03:25 AM.