Hi, CloudGuard WAF CheckMates members,
Here is the monthly update on the new and exciting releases!

What's new in CloudGuard WAF this month?

1. You can now Bring Your Own Certificate for CloudGuard WAF as a Service
   • While CloudGuard WAF as a Service offers the ability to get a public SSL/TLS certificate for your domain, signed by AWS and managed by Check Point, you can choose to upload your own certificate and private key.
   • Your private key will be securely end-to-end encrypted, ensuring its protection during the upload process.
   • Upon clicking on a domain, you will be able to upload your public certificate and private key. You will need to perform this action for each of your domains.
   • Additional information can be found in the dedicated Documentation page.
     
      
2. New Kubernetes deployment type available: Istio is now supported (Early Availability)
   • CloudGuard WAF for Istio is deployed using a Helm chart that includes a namespace-level webhook.
   • This webhook monitors changes to the Istio IngressGateway deployment and automatically adds the necessary agent and attachment to the deployment.
   • The configuration of the Istio Ingress controller follows standard practices for setting up gateway and virtual service resources to expose your applications.
   • Additional information can be found in the dedicated Documentation page.
     
      
3. Various bug fixes.

Best Regards,
The CloudGuard WAF Team