Hi Juergen,

We love the WAF in ISVA too!

Unfortunately, it was powered by the same componentry we've used in IBMs IPS servers, and as they (and their broader support organisation) are reaching end of life at the end of 2022, 'no more updates' will be available for us to consume. We investigated alternatives, but have come up short on an alternative that can offer the same levels of convenience, strength and simplicity of the PAM powered WAF. Never say never, but in the near term, the WAF capability/usefulness of ISVA will come to a close with the last update.

From a replacement/recommendation perspective, the ISVA team can't suggest/propose one WAF over another, in our experience however a cloud based solution seems to be the most flexible and suitable for the widest variety of solutions. These (and infact most WAFs) already and easily handle TLS traffic, and will integrate seamlessly into your ISVA deployment. It can be a bit more complicated if you're using MTLS, but its certainly possible!

Kind Regards,

Philip Nye

Hi Juergen,

We love the WAF in ISVA too!

Unfortunately, it was powered by the same componentry we've used in IBMs IPS servers, and as they (and their broader support organisation) are reaching end of life at the end of 2022, 'no more updates' will be available for us to consume. We investigated alternatives, but have come up short on an alternative that can offer the same levels of convenience, strength and simplicity of the PAM powered WAF. Never say never, but in the near term, the WAF capability/usefulness of ISVA will come to a close with the last update.

From a replacement/recommendation perspective, the ISVA team can't suggest/propose one WAF over another, in our experience however a cloud based solution seems to be the most flexible and suitable for the widest variety of solutions. These (and infact most WAFs) already and easily handle TLS traffic, and will integrate seamlessly into your ISVA deployment. It can be a bit more complicated if you're using MTLS, but its certainly possible!

Kind Regards,

Philip Nye

Hi Jurgen, Sorry missed your reply,

Yes, the WAF will continue to operate, but no more updates will be available.

The PAM engine and PAM signatures will no longer be 'maintained'. This is detailed on the v10.0 Whats new page:

https://www.ibm.com/docs/en/sva/10.0.0?topic=overview-whats-new-in-this-release

PAM Support

The Web Application Firewall capability will reach end of service on 31st December, 2022. After this date, no further updates will be made available. Customers can continue to use the capability on an as-is basis, and support will be available for general information and existing functionality only. There will be no defect support available. See Documentation updates for known limitation.

Hope this clarifies things for you.

Hi Juergen,

We love the WAF in ISVA too!

Unfortunately, it was powered by the same componentry we've used in IBMs IPS servers, and as they (and their broader support organisation) are reaching end of life at the end of 2022, 'no more updates' will be available for us to consume. We investigated alternatives, but have come up short on an alternative that can offer the same levels of convenience, strength and simplicity of the PAM powered WAF. Never say never, but in the near term, the WAF capability/usefulness of ISVA will come to a close with the last update.

From a replacement/recommendation perspective, the ISVA team can't suggest/propose one WAF over another, in our experience however a cloud based solution seems to be the most flexible and suitable for the widest variety of solutions. These (and infact most WAFs) already and easily handle TLS traffic, and will integrate seamlessly into your ISVA deployment. It can be a bit more complicated if you're using MTLS, but its certainly possible!

Kind Regards,

Philip Nye

Hi Jurgen, Sorry missed your reply,

Yes, the WAF will continue to operate, but no more updates will be available.

The PAM engine and PAM signatures will no longer be 'maintained'. This is detailed on the v10.0 Whats new page:

https://www.ibm.com/docs/en/sva/10.0.0?topic=overview-whats-new-in-this-release

PAM Support

The Web Application Firewall capability will reach end of service on 31st December, 2022. After this date, no further updates will be made available. Customers can continue to use the capability on an as-is basis, and support will be available for general information and existing functionality only. There will be no defect support available. See Documentation updates for known limitation.

Hope this clarifies things for you.

Hi Juergen,

We love the WAF in ISVA too!

Unfortunately, it was powered by the same componentry we've used in IBMs IPS servers, and as they (and their broader support organisation) are reaching end of life at the end of 2022, 'no more updates' will be available for us to consume. We investigated alternatives, but have come up short on an alternative that can offer the same levels of convenience, strength and simplicity of the PAM powered WAF. Never say never, but in the near term, the WAF capability/usefulness of ISVA will come to a close with the last update.

From a replacement/recommendation perspective, the ISVA team can't suggest/propose one WAF over another, in our experience however a cloud based solution seems to be the most flexible and suitable for the widest variety of solutions. These (and infact most WAFs) already and easily handle TLS traffic, and will integrate seamlessly into your ISVA deployment. It can be a bit more complicated if you're using MTLS, but its certainly possible!

Kind Regards,

Philip Nye

Hi Jurgen, Sorry missed your reply,

Yes, the WAF will continue to operate, but no more updates will be available.

The PAM engine and PAM signatures will no longer be 'maintained'. This is detailed on the v10.0 Whats new page:

https://www.ibm.com/docs/en/sva/10.0.0?topic=overview-whats-new-in-this-release

PAM Support

The Web Application Firewall capability will reach end of service on 31st December, 2022. After this date, no further updates will be made available. Customers can continue to use the capability on an as-is basis, and support will be available for general information and existing functionality only. There will be no defect support available. See Documentation updates for known limitation.

Hope this clarifies things for you.

Hi Juergen,

We love the WAF in ISVA too!

Unfortunately, it was powered by the same componentry we've used in IBMs IPS servers, and as they (and their broader support organisation) are reaching end of life at the end of 2022, 'no more updates' will be available for us to consume. We investigated alternatives, but have come up short on an alternative that can offer the same levels of convenience, strength and simplicity of the PAM powered WAF. Never say never, but in the near term, the WAF capability/usefulness of ISVA will come to a close with the last update.

From a replacement/recommendation perspective, the ISVA team can't suggest/propose one WAF over another, in our experience however a cloud based solution seems to be the most flexible and suitable for the widest variety of solutions. These (and infact most WAFs) already and easily handle TLS traffic, and will integrate seamlessly into your ISVA deployment. It can be a bit more complicated if you're using MTLS, but its certainly possible!

Kind Regards,

Philip Nye

Hi Jurgen, Sorry missed your reply,

Yes, the WAF will continue to operate, but no more updates will be available.

The PAM engine and PAM signatures will no longer be 'maintained'. This is detailed on the v10.0 Whats new page:

https://www.ibm.com/docs/en/sva/10.0.0?topic=overview-whats-new-in-this-release

PAM Support

The Web Application Firewall capability will reach end of service on 31st December, 2022. After this date, no further updates will be made available. Customers can continue to use the capability on an as-is basis, and support will be available for general information and existing functionality only. There will be no defect support available. See Documentation updates for known limitation.

Hope this clarifies things for you.

Hi Juergen,

We love the WAF in ISVA too!

Unfortunately, it was powered by the same componentry we've used in IBMs IPS servers, and as they (and their broader support organisation) are reaching end of life at the end of 2022, 'no more updates' will be available for us to consume. We investigated alternatives, but have come up short on an alternative that can offer the same levels of convenience, strength and simplicity of the PAM powered WAF. Never say never, but in the near term, the WAF capability/usefulness of ISVA will come to a close with the last update.

From a replacement/recommendation perspective, the ISVA team can't suggest/propose one WAF over another, in our experience however a cloud based solution seems to be the most flexible and suitable for the widest variety of solutions. These (and infact most WAFs) already and easily handle TLS traffic, and will integrate seamlessly into your ISVA deployment. It can be a bit more complicated if you're using MTLS, but its certainly possible!

Kind Regards,

Philip Nye

Hi Frank,

With time, the 'existing' functionality will gradually become more and more obselete, removal of the function would make sense. This is the most I would say with any certainty at this time.

Regards,

Phil

Hi Jurgen, Sorry missed your reply,

Yes, the WAF will continue to operate, but no more updates will be available.

The PAM engine and PAM signatures will no longer be 'maintained'. This is detailed on the v10.0 Whats new page:

https://www.ibm.com/docs/en/sva/10.0.0?topic=overview-whats-new-in-this-release

PAM Support

The Web Application Firewall capability will reach end of service on 31st December, 2022. After this date, no further updates will be made available. Customers can continue to use the capability on an as-is basis, and support will be available for general information and existing functionality only. There will be no defect support available. See Documentation updates for known limitation.

Hope this clarifies things for you.

Hi Juergen,

We love the WAF in ISVA too!

Unfortunately, it was powered by the same componentry we've used in IBMs IPS servers, and as they (and their broader support organisation) are reaching end of life at the end of 2022, 'no more updates' will be available for us to consume. We investigated alternatives, but have come up short on an alternative that can offer the same levels of convenience, strength and simplicity of the PAM powered WAF. Never say never, but in the near term, the WAF capability/usefulness of ISVA will come to a close with the last update.

From a replacement/recommendation perspective, the ISVA team can't suggest/propose one WAF over another, in our experience however a cloud based solution seems to be the most flexible and suitable for the widest variety of solutions. These (and infact most WAFs) already and easily handle TLS traffic, and will integrate seamlessly into your ISVA deployment. It can be a bit more complicated if you're using MTLS, but its certainly possible!

Kind Regards,

Philip Nye