Microservices March is a month-long virtual festival of microservices activities here at NGINX. Whether you’re already using Kubernetes in production or your interest is just blossoming, you’re sure to find sessions to pique your interest. Check out the schedule on our blog!
NGINX Ingress Controller now supports single sign-on with OpenID Connect. Release 1.10.0 also introduces new configuration queue metrics, annotations on log entries, better validation of annotations and secrets, support for NGINX App Protect user-defined signatures, and more.
We introduce the NGINX Controller App Security add-on for Controller Application Delivery, which provides an app-centric, self-service way for app teams to enable WAF protection for their apps, while security teams can still define policies and monitor apps for compliance.
NGINX Service Mesh (NSM) is now available in a development release -- download it for free and give us your feedback! NSM is a fully integrated lightweight service mesh that leverages a data plane powered by NGINX Plus to manage container traffic in Kubernetes environments.
Sort by
Filter by category
NGINX Announces Sponsorship of the OWASP ModSecurity CRS Project
NGINX, a part of F5, Inc., is pleased to announce that we have become the first Gold sponsor of the OWASP ModSecurity Core Rule Set (CRS) project. We look forward to working with the CRS team and helping ensure the CRS project’s long-term success.
Mitigating Security Vulnerabilities Quickly and Easily with NGINX Plus
An often-overlooked benefit of NGINX Plus is how it makes protecting yourself against security threats quick and easy. We proactively inform NGINX Plus subscribers of security vulnerabilities and patches, provide help during attacks, support JWT and OIDC authentication, and more.
Securing gRPC APIs with NGINX App Protect
NGINX App Protect secures gRPC APIs by detecting malicious data in message headers and payloads, nested and complex data structures included. Define security policies in gRPC IDL files, and NGINX App Protect applies them immediately with no changes to its configuration.
Leveraging Beacon for NGINX Observability
With the F5 Beacon integrations for NGINX Plus and NGINX Open Source, you understand the entire application experience from end to end. Our SaaS offering ingests and displays telemetry data, and can perform synthetic health checks for added context and visibility.
Reduce Complexity with Production-Grade Kubernetes
We explain how production-grade Kubernetes solves the challenges of deploying containerized microservices-based apps, which include culture, complexity, and security. In addition to a Kubernetes infrastructure you need a scalable Ingress controller, WAF, and service mesh.
Update: Using Free Let’s Encrypt SSL/TLS Certificates with NGINX
Learn how to use the Let’s Encrypt client to generate RSA certificates and automatically configure NGINX to use the newly issued certificates.
Managing Your Greatest Asset – People
Guest blogger Brian Gleason advises #NetOps managers on a couple ways to get the most from, and for, their greatest asset: their people. First, make sure they have time for focus on their own priorities. Second, learn enough about network technologies to communicate well.
Self-Service Application Delivery Bridges the Divide Between Developer Productivity and Infrastructure Reliability
The modern market's demand for speed has heightened the tension between DevOps and NetOps/SecOps teams. But you can have both developer productivity and infrastructure reliability -- bridge the divide with self-service app delivery tools from NGINX.
Deploying NGINX as an API Gateway, Part 3: Publishing gRPC Services
This part of our series on deploying NGINX Plus as an API gateway - along with its other rich functionality - focuses on gatewaying gRPC services. gRPC is an alternative to REST APIs for building distributed applications, service mesh implementations in particular.
Deploying NGINX as an API Gateway, Part 2: Protecting Backend Services
In the second post in our API gateway series, Liam shows you how to batten down the hatches on your API services. You can use rate limiting, access restrictions, request size limits, and request body validation to frustrate illegitimate or overly burdensome requests.