WAF Docker Post-Installation Steps currently relevant for Single Container Conf only #1482
Description
The Post-installation steps need to be deployment/configuration specific.
Specifically this document: https://github.com/nginx/documentation/blob/main/content/includes/waf/install-post-checks.md
These parts are applicable to a single container or a virtual machine or bare metal deployment type only.
They should be ran in the environment with the WAF components.
Check that the three processes for F5 WAF for NGINX are running using
ps aux:
- bd-socket-plugin
- nginx: master process
- nginx: worker process
USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND root 8 1.3 2.4 3486948 399092 ? Sl 09:11 0:02 /usr/share/ts/bin/bd-socket-plugin tmm_count 4 proc_cpuinfo_cpu_mhz 2000000 total_xml_memory 307200000 total_umu_max_size 3129344 sys_max_account_id 1024 no_static_config root 14 0.0 0.1 71060 26680 ? S 09:11 0:00 nginx: master process /usr/sbin/nginx -c /tmp/policy/test_nginx.conf -g daemon off; root 26 0.0 0.3 99236 52092 ? S 09:12 0:00 nginx: worker process root 28 0.0 0.0 11788 2920 pts/0 Ss 09:12 0:00 bash root 43 0.0 0.0 47460 3412 pts/0 R+ 09:14 0:00 ps aux
and
If your policy includes JSON/XML profiles, check
/var/log/app_protect/bd-socket-plugin.logfor possible errors:grep '|ERR' /var/log/app_protect/bd-socket-plugin.log
The rest of the document seems correct and applicable to all deployment types.