Im having an issue with windows proxy configuration, Normally I used the registry keys in HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings ProxyServer ProxyOverride Proxy Enable etc to enable the proxy for everything but WSUS and my local adobe update server and I had no issues with wsus however after reading that the windows store doesn't use these settings
(explaining the failed downloads I was having due to malware inspection)
I deployed a logon script to also include these applications with winhttp
netsh winhttp set proxy proxy-server=”http=SecureGateway.MyDomain.com:8080;https=SecureGateway.MyDomain.com:8080” bypass-list=”<local>;*.MyDomain.com;WSUS.MyDomain.com:8531"
(initially bypass-list="WSUS.MyDomain.com:8531" but ive added the above to try and get wsus working)
and then after forcing a gpupdate I tried windows update which showed no problems. Then after noticing an event log entry about the number of failed updates today I went in to the wsus console to discover every computer has the ip address of the tmg server
Even though ive set exclusions all the wsus traffic is going through the proxy. Ive tried setting an exclusion for the wsus server inside the TMG proxy server domain exclusions with no luck.
Should I kill the IE proxy definitions and just relay on winhttp or what ?