mssymbolserver firewall demo - michaelmworthington/codesamples GitHub Wiki

Introduction

This page walks through the steps to set up NXRM and a Perl Docker container to test CPAN Firewall using http://msdl.microsoft.com/download/symbols

See the community docs at  https://github.com/sonatype-nexus-community/nexus-repository-microsoft-symbol-server

Table of Contents

Prerequisites

  • IQ Server installed and running
  • NXRM 3 installed and running and configured with the IQ Server
  • Docker for Mac installed and running

Step 1. Create a new Proxy Repository in NXRM

Use http://msdl.microsoft.com/download/symbols as the Remote URL. Accept default values for the remainder of the settings.

Step 2. Enable Firewall for the New Proxy Repo

Step 3. Run the Docker Image in Interactive Mode

docker run -it --rm dotnet/core/sdk

Step 4. Use the dotnet command line to set up the repo sources

dotnet tool install -g dotnet-symbol
export PATH="$PATH:/root/.dotnet/tools"

Step 5. Use dotnet-symbol to Install a package

dotnet-symbol --server-path http://host.docker.internal:8082/repository/microsoft-symbol-server-msdl-proxy/ --debugging --modules --symbols /usr/share/dotnet/shared/Microsoft.NETCore.App/3.1.10/*

Observe the inbound requests to NXRM in the request.log file:

172.17.0.1 - - [12/Nov/2020:23:50:46 +0000] "GET /repository/microsoft-symbol-server-msdl-proxy/microsoft.csharp.dll%2FBECED5CCf3a00%2Fmicrosoft.csharp.dll HTTP/1.1" 404 - 1981 100 "-" [qtp1502605925-165]
172.17.0.1 - - [12/Nov/2020:23:50:49 +0000] "GET /repository/microsoft-symbol-server-msdl-proxy/microsoft.csharp.pdb%2F60d528dd475a4ea5aeffb9959ceb9c8fFFFFFFFF%2Fmicrosoft.csharp.pdb HTTP/1.1" 200 - 137260 2571 "-" [qtp1502605925-175]
172.17.0.1 - - [12/Nov/2020:23:50:49 +0000] "GET /repository/microsoft-symbol-server-msdl-proxy/microsoft.visualbasic.core.dll%2FEC6CD77F152c00%2Fmicrosoft.visualbasic.core.dll HTTP/1.1" 404 - 1981 11 "-" [qtp1502605925-165]
172.17.0.1 - - [12/Nov/2020:23:50:50 +0000] "GET /repository/microsoft-symbol-server-msdl-proxy/microsoft.visualbasic.core.pdb%2F1d97da35f9c9492bb162d872da47abf0FFFFFFFF%2Fmicrosoft.visualbasic.core.pdb HTTP/1.1" 200 - 198308 1667 "-" [qtp1502605925-175]
172.17.0.1 - - [12/Nov/2020:23:50:50 +0000] "GET /repository/microsoft-symbol-server-msdl-proxy/microsoft.visualbasic.dll%2FEE237F4E32000%2Fmicrosoft.visualbasic.dll HTTP/1.1" 404 - 1981 5 "-" [qtp1502605925-165]
172.17.0.1 - - [12/Nov/2020:23:50:52 +0000] "GET /repository/microsoft-symbol-server-msdl-proxy/microsoft.visualbasic.pdb%2Ff1a1d28a8f3541cabc0d6575249f0114FFFFFFFF%2Fmicrosoft.visualbasic.pdb HTTP/1.1" 200 - 352 1569 "-" [qtp1502605925-175]
172.17.0.1 - - [12/Nov/2020:23:50:52 +0000] "GET /repository/microsoft-symbol-server-msdl-proxy/microsoft.win32.primitives.dll%2FAEFE83C732c00%2Fmicrosoft.win32.primitives.dll HTTP/1.1" 404 - 1981 5 "-" [qtp1502605925-165]
172.17.0.1 - - [12/Nov/2020:23:50:53 +0000] "GET /repository/microsoft-symbol-server-msdl-proxy/microsoft.win32.primitives.pdb%2F32444ba3f677442fab751c62976d108cFFFFFFFF%2Fmicrosoft.win32.primitives.pdb HTTP/1.1" 200 - 1516 1428 "-" [qtp1502605925-175]
172.17.0.1 - - [12/Nov/2020:23:50:53 +0000] "GET /repository/microsoft-symbol-server-msdl-proxy/microsoft.win32.registry.dll%2FE4DF68D03c400%2Fmicrosoft.win32.registry.dll HTTP/1.1" 404 - 1981 8 "-" [qtp1502605925-165]
172.17.0.1 - - [12/Nov/2020:23:50:55 +0000] "GET /repository/microsoft-symbol-server-msdl-proxy/microsoft.win32.registry.pdb%2Fa55215ed1bb54ba7a2b9ba0cb0291d93FFFFFFFF%2Fmicrosoft.win32.registry.pdb HTTP/1.1" 200 - 8864 1492 "-" [qtp1502605925-175]

Step 6. Browse the Proxy Repo

Step 7. Go to the Firewall Report

Repo List

IQ Server Report

Step 8. Test Quarantine

Not Supported

Step 9. Notes

You can view the component information panel (CIP) right in NXRM

Not Supported

Home | Copyright © 2020.

⚠️ **GitHub.com Fallback** ⚠️