Sometimes you may need to install Imunify360 on several servers with identical configurations or copy existing configs to other servers. Here you can find the list of steps on how to clone the installation of Imunify360 for several servers with identical configuration.
Step 3. Whitelists / Blacklists / Blocked Ports
Step 4. Features re-installation
Step 1. Installation
Firstly, Imunify360 usual installation comes. All necessary changes including integration with 3rd party components will be applied during installation & agent startup. See the manual for details.
Step 2. Cloning config files
Secondly, copy the following files from the existing installation.
- /etc/sysconfig/imunify360/imunify360.config
- /usr/share/i360-php-opts/module.ini
- /usr/share/i360-php-opts/rules_whitelist (if it exists)
- /etc/pam_imunify/i360.ini
- /etc/sysconfig/imunify360/hooks.yaml
In order to apply notifications (Hooks) settings on the target system, run:
# systemctl restart imunify-notifier
All required settings will be picked up and applied automatically.
Step 3. Whitelists / Blacklists / Blocked Ports
Whitelist and blacklist entries that are distributed as files can be found at
/etc/imunify360/whitelist/*.txt and /etc/imunify360/blacklist/*.txt
If you want to export local Imunify360 firewall entries and then import them into a new Imunify360 instance, use the following CLI command:
# imunify360-agent blacklist [subject] [command] <value> [--option]
# imunify360-agent whitelist [subject] [command] <value> [--option]
# imunify360-agent blocked-port [command] <value> [--option]
Step 4. Features re-installation
You need to re-setup features from the original server which you’re using. There are few available features:
- hardened-php
- invisible-captcha
- kernelcare
- mod_remoteip
To evaluate installed features do the following:
# imunify360-agent features status hardened-php {'status': 'not_installed', 'message': 'Hardened-PHP is not installed'}
# imunify360-agent features status invisible-captcha {'status': 'error', 'message': 'Webshield should be enabled to use this feature'}
# imunify360-agent features status kernelcare {'status': 'not_installed', 'message': 'KernelCare is not installed'}
# imunify360-agent features status mod_remoteip WARNING: Feature is not available: mod_remoteip
Once you get the list of needed features you can install them one by one:
# imunify360-agent features install <feature-name>
Step 5. Setup backup system
In case if you’ve used a backup service then you need to re-setup it in a new environment.
Particular steps depend on the backend used for backup:
- Use embedded backup service of a hosting panel (cPanel, Plesk, DirectAdmin):
Copy the /etc/sysconfig/imunify360/.imunify360.backup_config file from the existing installation - Use the same Acronis account:
Copy the /var/restore_infected/acronis_api_token.json file from the existing installation - All other cases:
see the manual for details
Comments
0 comments
Please sign in to leave a comment.