Nexus Firewall is your first line of defense against dangerous open source components. It provides tools to keep risky components from entering your software supply chain, allowing you to proactively manage your risk while accelerating development by reducing rework.
Nexus Firewall is powered by IQ Server, which also powers Nexus Lifecycle and Auditor. See Licensing and Features to learn more about our products and solutions.
Nexus Firewall is a solution that prevents bad components from entering your software supply chain. When new components are downloaded, Firewall every new package against a set of organization-defined policies. Any component or dependency that violates one of these policies is then blocked from your repository.
Where do I Start?
If you're a new Firewall user, check out our Getting Started page.
To see the latest changes and updates to the IQ Server, see the Release Notes.
Our documentation is written to match the latest available release of Firewall (powered by IQ Server) and any associated Nexus Platform solutions and integrations.
To download the latest version, see Download and Compatibility.
In 2021, we launched Next-Gen Firewall. Next-Gen Firewall is a separate product from the Classic Firewall. The table below outlines the different features.
All references to Nexus Firewall (C) on any order documentation refer to Classic Firewall and all references to Nexus Firewall (NG) on any order documentation refer to Next-Gen Firewall.
|Firewall Features||Next-Gen Firewall with Nexus Repository||Classic Firewall||Next-Gen Firewall with Artifactory|
|Policy Driven Quarantine for Proxy Repositories|
|Namespace Confusion Protection|
|Protection from Pending & Suspicious Components*|
|Automatic Quarantine Release|
|Policy Compliant Component Selection**|
|Minimum IQ Server Version||114||-||119|
* Currently only available for npm, Maven, & PyPI
** Currently only available for npm
As always, if you need any further assistance, please consult https://support.sonatype.com/ or contact support at firstname.lastname@example.org.