Repository Firewall Getting Started
Repository Firewall is a set of features, powered by IQ Server, that integrate with Nexus Repository or through a plugin with JFrog Artifactory.
Configure the Repository Firewall with the following steps:
Follow these instructions to install the IQ Server and add the Repository Firewall license. This step is not required with Sonatype Cloud tenants.
Connect your artifact repository to the IQ Server instance.
Select your repositories to be protected by the Repository Firewall.
Configure your policies to quarantine new violating components and protect against introducing risk.
Inform your development teams of the change to set expectations.
Connect to an Artifact Repository
Your Repository Firewall license supports either Nexus Repository Pro or JFrog Artifactory.
Nexus Repository Pro
The Firewall features are enabled in Nexus Repository Pro when you install your license.
JFrog Artifactory
For JFrog Artifactory you are required to install and manage the Repository Firewall for Artifactory plugin to enable the functionality. Note that Artifactory SaaS is not supported.
Use the Guided Setup
We recommend using the Repository Firewall Guided Setup for the fastest deployment.
Manual installation requires each repository to be configured one at a time. The guided setup simplifies this by allowing you to select every repository to be onboarded from one view.
To manually configure Nexus Repository, review the Firewall Audit and Quarantine Capability
Review the Repository Audit
Once enabled, the Repository Firewall begins to audit repositories for open-source threats and generate a report of the current risk.
Components currently in your artifact repository are not quarantined; there is no disruption to your existing builds and deployments.
Learn more about the Repository Results view.