Bigfix server needs to access the respective vendor sites for downloading the patches. Does anyone has a comprehensive list of “ALL Vendor URL’s” that need to be opened out?
I wish there was a document that stated all vendors URL requirements in the following format
Bigfix Platform
*.bigfix.com
*.ibm.com
Microsoft Patching
*.microsoft.com
*.windowsupdate.com
Additional List of URL’s, IP addresses and port numbers
AIX Patching
List of URL’s, IP addresses and port numbers
Debian Patching
List of URL’s, IP addresses and port numbers
Suse Patching
List of URL’s, IP addresses and port numbers
RHEL Patching
List of URL’s, IP addresses and port numbers
uBuntu Patching
List of URL’s, IP addresses and port numbers
Apple MacOS Patching
List of URL’s, IP addresses and port numbers
Unfortunately, the non-Windows OS’es - specially the *Nix ones RHEL, Solaris, AIX etc do not throw up the URLs in the session relevance output. Probably the download link in the fixlet does not exist.
@JasonWalker assisted on a similar thread previously. This should be a good start for some of the prefetch locations you’re looking for. I will see if I can track down any others you might be interested in.
In the debug menu, select “Presentation Debugger” and paste the following…
unique values of (matches (case insensitive regex “(http|https|ftp)://[^ ^/]") of matches (case insensitive regex "^(download|prefetch).$”) of scripts of it) of actions whose (exists script of it) of fixlets of bes sites whose (name of it = “Enterprise Security”)
Note that the site name “Enterprise Security” is actually “patches for windows” . You can change the site name to get lists of download URLs to compile for your white listing purposes.