Anchore Enterprise in an Air-Gapped Environment
Anchore Enterprise can run in an isolated environment with no outside internet connectivity. It does require a network connection to its own components and must be able to reach registries (Docker v2 API compatible) where the images to be analyzed are hosted.
Installation
Air-gapped deployment follows the standard deployment procedure for either Docker Compose or Kubernetes with Helm.
Accessing Images
Ensure that the Anchore Enterprise images themselves are proxied into a local registry and referenced in your compose file or Helm values.yaml in order to enable installation in a private networkData Synchronization
To ensure that the Anchore Enterprise installation has up-to-date vulnerability data from the vulnerability sources, you will need to periodically download and import feed data into your Anchore Enterprise deployment. Details on how to do this can be found in the Air-Gapped Configuration.
For more detail regarding the Anchore Data Service, please see Anchore Data Service.
Last modified November 28, 2024