Configure firewall rules for CLEAR Engine

2024/3/7 |

This article describes how to configure firewall rules for CLEAR Engine and the Web UI.

In this article, you will learn how to:

  • Configure firewall rules to enable remote access to the Web UI.
  • Configure firewall rules to enable remote access to CLEAR Engine.
  • Configure firewall rules to enable real-time intelligence.
  • Configure firewall rules to enable ML-augmented analysis and remediation.

At the end, you will be able to configure firewall rules for CLEAR Engine and the Web UI.

Configure firewall rules to enable remote access to the Web UI

The Web UI requires inbound connectivity on the following protocols and ports:

  • TCP/80
  • TCP/443

Configure firewall rules to enable remote access to CLEAR Engine

CLEAR Engine requires inbound connectivity on the following protocols and ports:

  • TCP/5759

Configure firewall rules to enable real-time intelligence

Real-time intelligence is a collection of features that enable Lucent Sky AVM to more accurately identify vulnerable software dependencies, generate Instant Fixes and dependency update guidance, and automatically suppress false positives. Real-time intelligence uses localized machine learning and proprietary real-time data, and requires Internet connection.

Real-time intelligence requires outbound connectivity on the following protocols, ports, and destinations:

  • TCP/443: api.lucentskyavm.com
  • TCP/443: update.lucentskyavm.com

Dependency analysis with real-time intelligence enabled requires outbound connectivity on the following additional protocols, ports, and destinations:

  • TCP/443: www.cisa.gov
  • TCP/443: search.maven.org
  • TCP/443: nvd.nist.gov
  • TCP/443: services.nvd.nist.gov
  • TCP/443: static.nvd.nist.gov
  • TCP/443: registry.npmjs.org
  • TCP/443: ossindex.sonatype.org

Advanced real-time intelligence and ML-augmented analysis and remediation requires additional inbound and outbound connectivity. Contact Lucent Sky support to learn about the connectivity requirements.

Configure firewall rules to enable ML-augmented analysis and remediation

ML-augmented analysis and remediation use machine learning to improve the accuracy of analysis and to provide additional context of Instant Fixes and remediation suggestions.

Using ML-augmented analysis and remediation in offline mode requires outbound connectivity on the following protocols, ports, and destinations:

  • TCP/443: api.lucentskyavm.com
  • TCP/443: update.lucentskyavm.com

Using ML-augmented analysis and remediation in offline mode requires additional inbound and outbound connectivity. Contact Lucent Sky support to learn about the connectivity requirements.