Updating CentOS servers with no Internet access
by fawaz25 from LinuxQuestions.org on (#58F58)
Dear Linux Community,
How do we patch our CentOS Linux server which is not connected to the internet? Like for example we may have to update the servers based on CVE. I know how to update the server packages by creating a local yum repo and running yum update and the system will update packages based on new repo. Is this the only way system administrators perform updates for servers not connected to internet??
How can we achieve this? Please advice. Suppose there is a CVE and we need to update our servers to make it secure. How do we do updates in real time production environment. What all things must be taken into consideration?
Can we directly run "yum update" as this will update all the packages? Or should we restrict it to limited security updates?
How do we patch our CentOS Linux server which is not connected to the internet? Like for example we may have to update the servers based on CVE. I know how to update the server packages by creating a local yum repo and running yum update and the system will update packages based on new repo. Is this the only way system administrators perform updates for servers not connected to internet??
How can we achieve this? Please advice. Suppose there is a CVE and we need to update our servers to make it secure. How do we do updates in real time production environment. What all things must be taken into consideration?
Can we directly run "yum update" as this will update all the packages? Or should we restrict it to limited security updates?