helm firewall demo - michaelmworthington/codesamples GitHub Wiki
This page walks through the steps to set up NXRM and a Helm Docker container to test Helm Firewall using https://kubernetes-charts.storage.googleapis.com/
See the official docs at https://help.sonatype.com/repomanager3/formats/helm-repositories
- Prerequisites
- Step 1. Create a new Proxy Repository in NXRM
- Step 2. Enable Firewall for the New Proxy Repo
- Step 3. Run Docker Image for the Dependency Manager
- Step 4. Set the environment to download packages from NXRM
- Step 5. Install a package
- Step 6. Browse NXRM to view it
- Step 7. View the Firewall Report
- Step 8. Test Quarantine
- Step 9. Notes
- IQ Server installed and running
- NXRM 3 installed and running and configured with the IQ Server
- Docker for Mac installed and running
Use https://kubernetes-charts.storage.googleapis.com/ as the Remote URL. Accept default values for the remainder of the settings.
docker run -it --rm dtzar/helm-kubectl
helm repo add nexusrepo http://host.docker.internal:8083/nexus/repository/helm-kubernetes-charts.storage.googleapis.com/ --username admin --password admin123
helm fetch nexusrepo/mysql
Observe the inbound requests to NXRM in the request.log file:
172.19.0.1 - admin [13/Nov/2020:00:58:09 -0500] "GET /nexus/repository/helm-kubernetes-charts.storage.googleapis.com/index.yaml HTTP/1.1" 200 - 8370715 9620 "Helm/3.4.0" [qtp493982847-365] host=host.docker.internal:8083 forwarded-proto=- forwarded-host=- forwarded-port=- forwarded-server=- "new-forwarded=-" "RUT=-" "foo=-"
172.19.0.1 - admin [13/Nov/2020:00:59:41 -0500] "GET /nexus/repository/helm-kubernetes-charts.storage.googleapis.com/mysql-1.6.8.tgz HTTP/1.1" 200 - 11597 10463 "Helm/3.4.0" [qtp493982847-292] host=host.docker.internal:8083 forwarded-proto=- forwarded-host=- forwarded-port=- forwarded-server=- "new-forwarded=-" "RUT=-" "foo=-"
Repo List
IQ Server Report
| Not Supported |
|---|
| Not Supported |
|---|
| Not supported |
|---|
