Imperva Cyber Community

I have a really old version(V11) of Imperva WAF.
I wanted to transfer older configuration to new machine, how could I migrate old imperva waf to the new one?
This is customer's environment that I couldn't upgrade without test.
But I didn't found any corresponding version(V11) to test on FTP server.
Are there any other safer way to transfer.

Kind regards,
#On-PremisesWAF(formerlySecuresphere)

------------------------------
danny chang
Engineer
Fairline Technology Co., Ltd
Taipei
------------------------------

Hello Danny,

Thank you for the post, yes you are obsoletely correct version 11 is very old and EOL, hence its not visible in the FTP server, if you are plaining to upgrade you can follow the below path v11 > 12.6 > 13.x > latest.
Procedure would be same, take MX export before the upgrade and make sure we have enough space in /var partition before each upgrade, sharing the below link from 13.6 pre-checklist,
https://docs.imperva.com/bundle/v13.6-upgrade-guide/page/57805.htm
If its a virtual machine you can take a snap shot and revert back if any issues.

------------------------------
Syed Noor Fazal
Product Support Engineer
------------------------------

Hi Syed,

If revert back the snap shot would it have any system event/alert not detected during the operation time?
If customer didn't want to upgrade with this method.
In this case, I can only copied the configuration one by one?

Kind regards,

------------------------------
danny chang
Engineer
Fairline Technology Co., Ltd
Taipei
------------------------------

Original Message:
Sent: 08-19-2022 01:14
From: Syed Noor Fazal
Subject: WAF version too old to upgrade/transfer

Hello Danny,

Thank you for the post, yes you are obsoletely correct version 11 is very old and EOL, hence its not visible in the FTP server, if you are plaining to upgrade you can follow the below path v11 > 12.6 > 13.x > latest.
Procedure would be same, take MX export before the upgrade and make sure we have enough space in /var partition before each upgrade, sharing the below link from 13.6 pre-checklist,
https://docs.imperva.com/bundle/v13.6-upgrade-guide/page/57805.htm
If its a virtual machine you can take a snap shot and revert back if any issues.

------------------------------
Syed Noor Fazal
Product Support Engineer
------------------------------

Hello Danny,

Reverting the snap shot will not take much time however when you say alerts, the alerts will be be generated if any violation, during the snap shot revert it may not, hence suggest to perform the activity during a maintenance window.
Regarding copying the config, you cannot copy the config from lower version to higher(version should be same), you need to re-configure it one by one.

------------------------------
Syed Noor Fazal
Product Support Engineer
------------------------------

Hi Syed,

As far as I know, MX is used to manage GW, isn't the alert would record in GW and display in MX?
If I'm not mistaken, during the snap shot revert the MX wouldn't affect GW to collect alert.
If there are any missing items, please let me know.

Kind regards,
Danny

------------------------------
danny chang
Engineer
Fairline Technology Co., Ltd
Taipei
------------------------------

Original Message:
Sent: 08-19-2022 02:41
From: Syed Noor Fazal
Subject: WAF version too old to upgrade/transfer

Hello Danny,

Reverting the snap shot will not take much time however when you say alerts, the alerts will be be generated if any violation, during the snap shot revert it may not, hence suggest to perform the activity during a maintenance window.
Regarding copying the config, you cannot copy the config from lower version to higher(version should be same), you need to re-configure it one by one.

------------------------------
Syed Noor Fazal
Product Support Engineer
------------------------------

Hello Danny,

Gateway handles the traffic, MX is the one for generating the alerts and monitor the traffic based on the policies that we have configured.

------------------------------
Syed Noor Fazal
Product Support Engineer
------------------------------

Original Message:
Sent: 08-22-2022 00:51
From: danny chang
Subject: WAF version too old to upgrade/transfer

Hi Syed,

As far as I know, MX is used to manage GW, isn't the alert would record in GW and display in MX?
If I'm not mistaken, during the snap shot revert the MX wouldn't affect GW to collect alert.
If there are any missing items, please let me know.

Kind regards,
Danny

------------------------------
danny chang
Engineer
Fairline Technology Co., Ltd
Taipei
------------------------------


Original Message:
Sent: 08-19-2022 02:41
From: Syed Noor Fazal
Subject: WAF version too old to upgrade/transfer

Hello Danny,

Reverting the snap shot will not take much time however when you say alerts, the alerts will be be generated if any violation, during the snap shot revert it may not, hence suggest to perform the activity during a maintenance window.
Regarding copying the config, you cannot copy the config from lower version to higher(version should be same), you need to re-configure it one by one.

------------------------------
Syed Noor Fazal
Product Support Engineer