NGINX Blog

It's easy to implement PCI DSS best practices, such as using new versions of TLS rather than the older SSL, encrypting upstream as well as downstream communications, and adding a WAF, with NGINX Plus. Taking these steps will help you pass PCI DSS audits. Here's how to implement them.

The NGINX JavaScript module released with NGINX Plus R15 supports subrequests, adding a whole new class of use cases for NGINX Plus. This complete example also uses the NGINX Plus API and Key-Value modules to convert client API requests to separate requests to the microservices APIs that make up an app.

A newly discovered security threat exploits a configuration that allows remote users to specify the server for a request in the HTTP Host header, and thus access potentially sensitive information. In this post we explain how to prevent this "cloud metadata" attack.

The advanced HTTP processing capabilities of NGINX and NGINX Plus make it the ideal platform for building an API gateway. We describe API use cases, show how to configure NGINX to handle them in a way that is efficient, scalable, and easy to maintain, and provide a complete NGINX configuration.

Two NGINX APIs - status, which reads extended status data, and upstream_conf, which manages upstream group configuration - have been deprecated. They will be removed as of the upcoming NGINX Plus R16 release! Read this blog post to learn how to switch over to the new, unified NGINX Plus API.

NGINX Amplify now features MySQL support. Amplify monitors the entire LEMP stack, including variations: Linux, (E)NGINX, MySQL/MariaDB/Percona, PHP, and PHP frameworks such as WordPress. This blog post shows you how to configure the Amplify MySQL plug-in, metrics monitored, and troubleshooting.

NGINX Unit supports PHP, which is very widely used for web programming. NGINX Unit therefore supports WordPress, written in PHP, and which is a content management system and application used by more than 30% of the sites on the Web. Use this blog post to install Unit and NGINX together with WordPress.

NGINX Unit 1.0, a multi-language applications server, launched today. Unit supports Python, PHP, Perl, Ruby, and Go, with more languages to come. Unit is dynamically configured using a REST API; there are no process reloads or service interruptions required for configuration changes to take effect.

NGINX Plus R15 introduces native gRPC proxying (used by Istio and other service mesh architectures), HTTP/2 server push, state sharing in a cluster, API gateway enhancements, OpenID Connect integration, NGINX JavaScript (njs) module enhancements, a new ALPN variable, dynamic module updates, and more.

Many companies want to move to microservices, but are held back by unnecessary complexity. In this blog we discuss our vision for reducing complexity and building microservices with the NGINX Application Platform.