Hi All,
We are facing a strange issue with our WSUS server. we are using a WSUS server in our Organization and all the microsoft patch we push to client through WSUS server only. We are using GPO for WSUS configuration in Client Pcs .
Recently we have faced an incident in which our entire network bandwidth got choked ( 100 % ) 200 MB utilized.
As we checked our Proxy log we found that many of clients connected with following Microsoft URL and used most of the bandwidth.
We blocked all these URL temp and then Utilization got reduced from 200 MB to 30-35 MB.
http://dl.delivery.mp.microsoft.com
http://2.tlu.dl.delivery.mp.microsoft.com
http://3.tlu.dl.delivery.mp.microsoft.com
http://7.tlu.dl.delivery.mp.microsoft.com
So can anyone suggest what are the uses of these URLs . If we push update from WSUS server only than why client are communicating directly with Microsoft site for any kind of update ?
Thanks in Advance
Rakesh Kumar

][1]