Security updates for linux server with only local network access

robot2022

3/7/24, 5:52 PM

I am using Compute Engine and VPC Networks in Google Cloud Platform.

I have a "classic" frontend - backend server setup inside Google Cloud with two VPC Networks which are connected trough VPC-Peering (for another purpose, validator for a blockchain).

The frontend consists of a few full nodes, full nodes are accessible and accessing other full nodes in the internet and contain the current state and history of the blockchain. They are inside a VPC with different Subnets in different regions. They have all a local and a public IPv4 Address.

The backend consists of one server, a validator, that can only communicate with my full nodes. It is also inside a VPC but has only a local IPv4 Address. Both VPCs are connected trough the in Google Cloud so called "VPC-Peering". They can communicate with each other.

My Question is now: What would be the best way to keep the validator with only local IP Address up to date with security updates etc?

Is there something like a best practice?

In my mind is currently only the option to make a own debian mirror in the full nodes VPC network which might be to cost intensive.

0 + 0

security

linux

google-compute-engine

google-cloud-platform

vpc-peering

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: Security updates for linux server with only local network access

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.