Upgrading the Docker NGINX- or Envoy-based image¶
These instructions describe the steps to upgrade the running Docker NGINX- or Envoy-based image 4.x to the version 4.4.
Using credentials of already existing Wallarm node
We do not recommend using the already existing Wallarm node of the previous version. Please follow these instructions to create a new filtering node of the version 4.4 and deploy it as the Docker container.
To upgrade the end‑of‑life node (3.6 or lower), please use the different instructions.
https://us1.api.wallarm.comif working with US Wallarm Cloud or to
https://api.wallarm.comif working with EU Wallarm Cloud. Please ensure the access is not blocked by a firewall
Step 1: Download the updated filtering node image¶
docker pull wallarm/node:4.4.0-1
docker pull wallarm/envoy:4.4.0-1
Step 2: Stop the running container¶
docker stop <RUNNING_CONTAINER_NAME>
Step 3: Run the container using the new image¶
Proceed to Wallarm Console → Nodes and create Wallarm node.
Copy the generated token.
Run the updated image using the copied token. You can pass the same configuration parameters that were passed when running a previous image version (except for the node token).
There are two options for running the container using the updated image:
- With the environment variables specifying basic filtering node configuration
- In the mounted configuration file specifying advanced filtering node configuration
Step 4: Test the filtering node operation¶
Send the request with test Path Traversal attack to a protected resource address:
Step 5: Delete the filtering node of the previous version¶
If the deployed image of the version 4.4 operates correctly, you can delete the filtering node of the previous version in Wallarm Console → Nodes.