On-Premise Repeater (Local Agent)

Overview

NeuraLegion’s Repeater is a local agent that provides a secure connection between NeuraLegion's cloud engine and a target on a local network. A Repeater enables you to securely scan targets on a local network, without having to whitelist NeuraLegion’s IP address in your firewall for incoming traffic.

A Repeater is intended for:

  • Organizations that cannot open a port in the firewall for inbound traffic. The Repeater enables scans to run from either NeuraLegion’s SaaS or private cloud offerings.
  • Users who must run a local scan on their machine without deploying the target application.

🚧

Important

To function properly, the Repeater must have an outbound connection to amq.app.neuralegion.com via the AMQ protocol (over TLS) using port 5672.

A Repeater is not required if you are able to whitelist a specific IP and port in your firewall.

How Does the On-Premises Repeater Deployment Work?

NeuraLegion’s Repeater is an Open Source component. It is a lightweight local agent that securely connects to NeuraLegion’s cloud engines and mediates the traffic from the cloud to any local target.

After starting a scan with a configured Repeater, communication works as follows:

  1. The Repeater initiates a GET request to the cloud engine via the AMQ server.
  2. The Repeater receives the request instructions describing how to interact with the local target.
  3. The Repeater locally adds the relevant headers to the request, such as authentication headers and sends the request to the local target.
  4. The local target returns the response to the Repeater.
  5. The Repeater sends the response to the engine.
  6. The Repeater returns to #1 until the scan completes.

Technical Requirements

The On-Premises Repeater requires:

  • A local machine with:
    • System: Linux 4.4+ / Windows 8+ / Docker 20+
    • Processor: x86 or x64 1 core (minimum), 2 core (recommended)
    • RAM: 512 MB (minimum), 1 GB (recommended)
    • Hard disk: up to 512 MB of available space may be required
    • The Docker compose or NodeJS (v10+) installed
  • Access to the relevant internal targets on the local network
  • Access to amq.app.neuralegion.com on port 5672 or a private cloud on the relevant port

Installation

See the NeuraLegion CLI Installation section for installation instructions.

Usage Examples

See the usage examples in the NeuraLegion CLI Usage Examples section.


Did this page help you?