Hello Imperva specialists,
I'm deploying an on-prem WAF in ABR mode(the newly released on - 14.3).
Its main advantage is that it can work with the more advanced DHE ciphers, which it does brilliantly.
However, on each reboot it fails to start, reporting:
registered, not-running
The error I get when I try to start it is:
[root@GWWAF ~]# impctl gateway start --prepare
GW Advanced Bridge mode supports Transparent Reverse Proxy rules only. Any legacy ports should be converted to TRP rules prior to mode change. For more information please contact support
Cannot start gateway (exit status: 7)
I am able to get it up and running by unregistering the GW, registering it again, and finally starting it with the --prepare argument:
impctl gateway unregister
impctl gateway register
impctl gateway start --prepare
Doing this manually is one thing, automating the task, so it executes after each boot is another
I've encountered an error when creating a custom service which executes a bash script with the above commands,
linux doesn't recognize impctl as a legitimate command, and won't let it run as such.
Any alternative way of fixing this issue?
#On-PremisesWAF(formerlySecuresphere)------------------------------
Jovan Marinković
Cyber-Security Engineer
Mantasystem
Belgrade
------------------------------