Cloudguard Appsec Integration with existing nginx reverse proxy
Does AppSec works with nginx reverse proxy? Lets say I have 5 portals behind nginx reverse proxy as a on-prem server.
Can I -
- Deploy on-prem Nginx integration with AppSec
- Also we are deciding to move to the cloud wondering then can we move to the cloud?
You can deploy our Agent on a Linux Server with NGINX deployed on it.
I have done it in a lab environment and it worked with no issues.
When you move to a cloud environment you can just deploy another agent in the new deployment on the server or as a CloudGuard AppSec Gateway to protect it.
What if I have multiple portals configured in reverse proxy? Can single agent detect those multiple portals? How are the SKUs per portal or per agent.
I think the license is per amount of requests or something like that.
anyway you configure on the Agent the IP addresses that it needs to protect so if the requests are going to IP addresses on that server then he will protect all of the portals.
Thanks man - the Idea is currently we are using mod_sec and protecting apps like
Thanks Shay - Since we have done numerous Nginx reverse proxy installations we are pretty confident on it. However I am replicating and testing in my partner portal account and in my test environment. So far is going good and have integrated with nginx.
Once I am confident we then can replicate the same story with our customers as Nginx reverse proxy. However I am confused about commercials and workings.
lets discuss that later for sure - Let me first finish the technical part and if I am stuck will contact you for sure.
I am facing this unique issue in further testing. Now my reverse proxy holds two URLs
I created two assets for two different websites. However both my websites are getting blocked by Check Point Infinity agent even though I set the profile accordingly. Now for testing purpose I stopped the agent with cpnano -q and both the sites started accessing properly. However when I start the agent it blocks again.
Any reason why?
I restarted the agent but its still blocking the legitimate requests
Thanks @Nir_Shamir I had a offline discussion with Shay, Gal and Eyal and found the issue. Well certain features are still in EA and have activated prevent mode directly without learning mode.
Thanks a lot @Shay_Levin for helping me out on resolving the issue. It was due to the setting on asset for blocking non-relevant applications and since my web server was listening on other portal request is being blocked by agent.
We added the setting in nginx web server and bypassed that location.
Thanks a lot Team!!