Data Synchronization

Introduction

In this section, you’ll learn how Anchore Enterprise ingests the data used for analysis and vulnerability management.

Your Anchore Enterprise deployment uses five datasets that are managed by the Anchore Data Service. These datasets are automatically synced to your Anchore Enterprise deployment by the Data Syncer Service. The datasets are:

• Vulnerability Database (vulnerability_db)
• Vulnerability Match Exclusions (vulnerability_match_exclusions_db)
• ClamAV Malware Database (clamav_db)
• CISA KEV (Known Exploited Vulnerabilities) (kev_db)
• EPSS (Exploit Prediction Scoring System) (epss_db)

If your deployment is air-gapped, please review the Air-gapped Deployment documentation for instructions on how to manually sync these datasets.

Please review the Anchore Data Service status page for information on how to check the status of the datasets.

Requirements

Network Ingress

The following FQDN will need to be allowlisted in your network to allow the Data Syncer Service to communicate with the Anchore Data Service:

https://data.anchore-enterprise.com

Ideally the endpoint can be whitelisted via a layer 7/proxy.

If you are filtering based on IP, please raise a support ticket with Anchore so that we can provide you with the IP addresses.