Imperva Cyber Community

communities_1.jpg
 View Only
  • 1.  automated upgrades for appliances

    Posted 03-24-2021 09:01
    Hi,

    I'm currently exploring solutions for automated upgrades for physical securesphere appliances.
    Anything other existing options besides the ansible module here:
    imperva/ansible-role-imperva-appliance
    GitHub remove preview
    imperva/ansible-role-imperva-appliance
    This project will help you upgrade a Imperva MXs and/or Gateways from a central Ansible workstation (or using your existing Ansible infrastructure). If you don't have an existing Ansible infrastructure, you'll need to set up an Ansible workstation to run the playbook and push out the upgrades.
    View this on GitHub >


    Thanks,
    Mihai




    #On-PremisesWAF(formerlySecuresphere)

    ------------------------------
    Mihai Turcu
    Security Analyst
    Yardi
    Santa Barbara CA
    ------------------------------


  • 2.  RE: automated upgrades for appliances

    Posted 03-25-2021 12:04
    Mihai,

    Depending on what version you are on, you have the ability to manage the software versions from within the system.  See https://docs.imperva.com/bundle/v14.3-administration-guide/page/Software_Updates_Overview.htm form more details.

    If you are on an older version (12 or so?), sometimes you have to apply the first set of upgrades manually to get to the update dashboard.  

    If you still want to automate running the patches, the ansible provider is a pretty good choice if you don't have another method.  (You don't need an ansible infrastructure to use it - you just need ansible running on one workstation).  

    If you are running in AWS, we have a different patching method for gateways.  (also available on the docs site).

    Jim

    ------------------------------
    Jim Burtoft
    SE
    State College PA
    ------------------------------