This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
iamraylau
Participant
8 hours ago

Question about CG-WAF support to private-cloud kubernetes like openshift and DIY-K8s

Hi all,

 

I am building my own lab for CG WAF with an on-premise DIY-K8s environment. I used the NFS as the StorageClass and the PVC are good. Modifying the values.yaml from the helm package file to claim the on premise NFS share from SC during installation. All the installation process seems good but the nano agent never showing online... even the pvc status are claimed successfully.

 

Questions:

1. Will Check Point have a roadmap to provide the Nginx ingress with nano agent for on-premise K8s?

2. Do we have any install procedure for on-premise K8s at this moment? 

 

thank you. 

Ray Lau 

Preview file
53 KB
Preview file
6 KB
Preview file
15 KB
0 Kudos
3 Replies
Nir_Shamir
Employee Employee
Employee
7 hours ago

have you checked the admin guide ?

https://waf-doc.inext.checkpoint.com/getting-started/deploy-enforcement-point/kubernetes-ingress

 

0 Kudos
iamraylau
Participant
7 hours ago
In response to Nir_Shamir

of cause i did....

as i know, currently support AWS Elastic Kubernetes Service (EKS) or Azure Kubernetes Service (AKS)

and i am trying an on-premise K8s deployment.

0 Kudos
yuvalmamka
Employee
Employee
6 hours ago
In response to iamraylau

Hi,

As you mentioned - CloudGuard WAF for Kubernetes Ingress is supported for AWS Elastic Kubernetes Service (EKS) or Azure Kubernetes Service (AKS) only.

You can try use our open-source addition that supports on-premise K8s - open-appsec.
You can find additional information here: open-appsec | Automatic Open Source WAF & API Security

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
UPCOMING CLOUDMATES EVENTS
    Sort by:
    All CloudMates Events