Updating NGINX Ingress controller with integrated Wallarm modules¶
These instructions describe the steps to upgrade deployed Wallarm Ingress Controller to the new version with Wallarm node 2.18.
-
To update Wallarm Ingress controller, you need to clone new Helm chart version and apply updates to the installed version.
-
Current Ingress controller settings and Ingress annotations will be saved and applied to a new version automatically.
Updating¶
-
Clone new Helm chart version from the Wallarm repository:
-
Update the previous Helm chart:
<NODE_TOKEN>
is the token of the Wallarm node received when installing Wallarm Ingress controller<INGRESS_CONTROLLER_NAME>
is the name of the Wallarm Ingress controller to update<KUBERNETES_NAMESPACE>
is the namespace of your Ingress
Testing¶
-
Check that the version of Helm chart was updated:
The chart version should correspond to
wallarm-ingress-1.8.x
. -
Get the list of pods specifying the name of the Wallarm Ingress controller in
<INGRESS_CONTROLLER_NAME>
:Each pod status should be STATUS: Running or READY: N/N. For example:
-
Send the request with test SQLI and XSS attacks to the Wallarm Ingress controller address:
If the filtering node is working in the
block
mode, the code403 Forbidden
will be returned in the response to the request and attacks will be displayed in Wallarm Console → Events.
Configuring¶
Ingress controller settings and Ingress annotations will be automatically moved from the previous version to the new version. The list of all settings and annotations is available here.
Configuration use cases: