1 2 3 Previous Next 104 Replies Latest reply on Jan 9, 2008 8:35 AM by jlmale0

    More ESX 3.0.1 03/05/07 Patches......

    MichaelJKnight Hot Shot

      Anyone dived in and applied the new patches yet.....

       

      ....patch adds support for Microsoft Clustering Server (MSCS) with Windows 2003 Service Pack 1 (SP1) and R2 Guest Operating Systems (KB 2021).....[/i]

       

       

      ESX-3199476 Patch | 03/05/07 | Critical Patch

      ESX-5031800 Patch | 03/05/07 | Security Patch

      ESX-5885387 Patch | 03/05/07 | Security Patch

      ESX-6050503 Patch | 03/05/07 | General Patch

      ESX-6856573 Patch | 03/05/07 | Security Patch

      ESX-9865995 Patch | 03/05/07 | General Patch

       

      Please provide feedback below if you have any issues....

       

      Cheers,

       

      Michael.

        • 1. Re: More ESX 3.0.1 03/05/07 Patches......
          MR-T Champion

          Hi Mike, I applied the critical and security patches to a couple of 'fully patched' 3.0.1 servers earlier and didn't run into any issues.

           

          Fingers crossed this will remain the case.

          • 2. Re: More ESX 3.0.1 03/05/07 Patches......
            MichaelJKnight Hot Shot

            Hi Stuart,

             

            Were just embarking on a major Vi3 rollout, so I guess tomorrow I'll be testing these in my lab and updating the build if no major issues arrise

             

            Are you attending  TSX  next month ?

             

            Michael.

             

            Update.... just applied all updates ESX version now showing VMware ESX Server 3.0.1 build-39823

            • 3. Re: More ESX 3.0.1 03/05/07 Patches......
              MR-T Champion

              Sadly I can't make TSX.

               

              It's my turn to stay behind as I went to TSX & VMworld lastyear.

               

              I know you're a scripting guru so I probably don't need to say, but when you apply these patches, to save some time use esxupdate -n

              • 4. Re: More ESX 3.0.1 03/05/07 Patches......
                MichaelJKnight Hot Shot

                Hi,

                 

                Got that covered

                 

                I wrote a script that extracts them from a folder, examines the release date and then sequences them in release date order with the appropriate parameter  to suppress the reboot until the end. 

                 

                My biggest headache was trying to determine patch sequencing as the ESX-xxxxxx numbers are all over the place.

                 

                I was think of posting but others have posted similar already.

                 

                Michael.

                • 5. Re: More ESX 3.0.1 03/05/07 Patches......
                  violet68 Enthusiast

                  I applied 9 patches today, reboot, no problem so far.

                  • 6. Re: More ESX 3.0.1 03/05/07 Patches......
                    dmanconi Hot Shot
                    vExpert

                    Hi Michael

                     

                    Can you post your script anyway please. I am sure it will be useful even if other people have posted their scripts.

                     

                    Cheers

                    David

                     

                    PS I agree the patch name and numbers are all over the place. It is really annoying.

                    • 7. Re: More ESX 3.0.1 03/05/07 Patches......
                      MichaelJKnight Hot Shot

                      Hi,

                       

                      I will need to strip out some work specific bits and post a sanatised script later today

                       

                      Michael.

                      • 8. Re: More ESX 3.0.1 03/05/07 Patches......
                        MichaelJKnight Hot Shot

                        I'm in the processing of trying to provide a proper download location but in the interim you could try and cut 'n paste the script from here.

                         

                        This script assumes the patches have been downloaded and placed into /var/updates/

                         

                        This script examines the contents of /var/updates and expands each patch automatically.

                         

                        It then examines the release date of each patch and resets[/b] the datestamp on the patch directory to match the release date of the patch.

                         

                        The script then builds a dynamic script which ensures that each patch is applied in release date sequence.

                         

                         

                         

                        #!/bin/sh

                        #

                        \# ESX 3.0.1

                        #

                        \#  Purpose: Script to apply ESX 3.x patches

                        \#  Author : MichaelJKnight@gmail.com                                        

                        \#  Version: 1.0

                        \#  Release: 09/03/2007                                                        

                        \#  No warranty is provided with this script, test and use at your own risk     

                        \#  This script is freeware, please contact me with any bugs.

                        #

                         

                        \# Ensure ESX Patches have been MD5SUM checked and precopied into /var/updates.....

                         

                        if \[`vmware -v | grep -i "Server 3." | wc -l` -eq 0 ]

                         

                        then

                             echo

                             echo This script requires an ESX 3.x platform, this server is on

                             echo

                             vmware -v

                             echo

                             echo Exiting.

                             echo

                             exit

                        fi    

                         

                        esxpatches=`ls /var/updates/ESX*.tgz 2>/dev/null | wc -l`

                         

                        echo

                        echo Found $esxpatches ESX patches in /var/updates/

                        echo

                         

                        if \[ $esxpatches -ne "0" ] 

                         

                            then

                             

                             pcount=0

                                 

                                cd /var/updates/

                         

                                 

                        1. Start creation of patch bundle script....

                         

                                echo "#!/bin/bash" > /tmp/patchbundle.sh

                                echo "# Start of patch bundle of $esxpatches ESX Patches " >> /tmp/patchbundle.sh

                                  

                             for i in `ls -l ESX*.tgz 2>/dev/null | awk '\{ print $9} '`

                              do

                         

                                

                        1. Now expand each patch found into its corresponding folder

                         

                                 let "pcount = $pcount + 1"

                                  

                                 echo

                                 echo Found patch $pcount / $esxpatches $i

                                 echo Now Expanding....$i

                                 echo

                         

                                 tar -xvzf "$i"

                         

                              done

                         

                                 chmod +x /tmp/patchbundle.sh

                                  

                                 rm -rf /var/updates/ESX*.tgz

                                  

                                 

                        1. Cycle through patches and determine release date and then set datestamp on patch directory to ensure patch sequence is in release date order.

                         

                                cd /var/updates/

                              

                             for i in `ls -ltr  2>/dev/null | awk '\{ print $9} '`

                         

                                 do

                                     tstamp=`cat /var/updates/$i/descriptor.xml | grep "" | cut -f1 -d"<"`

                                     echo

                                     echo Patch $i release date is $tstamp 

                                     echo

                                     touch /var/updates/$i -d"$tstamp"

                                 done

                         

                                 

                        1. Update patch bundle script with patches now in release date equence....

                         

                                pcount=1

                         

                                echo

                                 

                             for i in `ls -ltr  2>/dev/null | awk '\{ print $9} '`

                                 do

                                    echo Sequencing $i into patch bundle script

                         

                                 echo cd /var/updates/`echo $i |cut -f1 -d. `>> /tmp/patchbundle.sh

                                  

                                 echo echo ' `date +%e/%m/%y" "%H:%M:%S` ' "Patch `echo $i |cut -f1 -d. ` ` echo $pcount of $esxpatches ` Installation Started   " >> /tmp/patchbundle.sh

                         

                                 echo "esxupdate -v 20 -n update" >> /tmp/patchbundle.sh

                         

                                 echo echo ' `date +%e/%m/%y" "%H:%M:%S` ' "Patch `echo $i |cut -f1 -d. ` Installation Completed   " >> /tmp/patchbundle.sh

                         

                                    let "pcount = $pcount + 1"

                         

                         

                                 done

                         

                                 echo "# End of patch bundle" >> /tmp/patchbundle.sh

                           

                                 echo

                                 echo Applying patches, please wait....

                              echo

                                  

                                 /tmp/patchbundle.sh

                                  

                        \# Tidy up post installs

                         

                                 rm -rf /tmp/patchbundle.sh

                                 rm -rf /var/updates/ESX*            

                         

                              echo

                                 echo All $esxpatches patches applied. Schedule reboot asap..

                              echo

                         

                        else

                         

                             echo No ESX Patches to be applied...

                              

                        fi

                         

                         

                         

                         

                         

                        /code

                         

                        Please try on your TEST[/b] ESX hosts first feedback any issues....

                         

                         

                         

                        NOTE[/b]

                         

                        Always read the VMWARE associated patch documentation

                        for any special instructions and assess whether each

                        patch is applicable to your environment/confguration

                        before applying in this fashion.

                         

                         

                         

                         

                         

                         

                        Michael.

                        • 9. Re: More ESX 3.0.1 03/05/07 Patches......
                          oreeh Guru

                          Thanks for sharing this script.

                          • 10. Re: More ESX 3.0.1 03/05/07 Patches......
                            Nicke Master

                            Tried it yesterday on my lab equipment, worked like a charm.

                             

                            Thanks for sharing!

                             

                            /Nicke

                            • 11. Re: More ESX 3.0.1 03/05/07 Patches......
                              dmanconi Hot Shot
                              vExpert

                              Hi

                               

                              Thanks for the script. Looks like a winner. Appreciate you sharing it.

                               

                              Cheers

                              David

                              • 12. Re: More ESX 3.0.1 03/05/07 Patches......
                                newmy Enthusiast

                                Hi Michael,

                                good script but can you extend it to:

                                1) use an NFS Share instead

                                2) the script looks what pathces are installed and install only the missing patches

                                3) can ue a prepopulated (unpacked) NFS-Share directory structure?

                                 

                                it seems you are familiar with .sh - i'm not.

                                 

                                newmy

                                • 13. Re: More ESX 3.0.1 03/05/07 Patches......
                                  SafetyMan Novice

                                  THIS WORKS PERFECTLY......just what the doctor ordered

                                  • 14. Re: More ESX 3.0.1 03/05/07 Patches......
                                    MichaelJKnight Hot Shot

                                    Hi,

                                     

                                    Glad to hear people find it useful

                                     

                                    I will try and look at points 1 & 3 , it should be just a small change. Perhaps making the patch source location into a variable and let the user specify the location whether it be local or a NFS mount point.

                                     

                                    In response to point 2, the esxupdate process will detect if the patch is already installed and skip it. At present the script incurs the overhead of needlessly expanding patch, I will look at running an esxupdate -l query command to perhaps bypass any installed patches.

                                     

                                    I'll post back with some updates later....

                                     

                                    Michael.

                                    1 2 3 Previous Next