Virtual patching refers to fixing a problem with application code by making a change to related infrastructure rather than the code itself. In the security realm, it's common to use ModSecurity to virtually patch a vulnerability, for example. But virtual patching can be applied to other types of bugs as well, such as the bugs…
Continue reading ›Batching API Requests with NGINX Plus and the NGINX JavaScript Module
The version of the NGINX JavaScript module released with NGINX Plus R15 can now issue subrequests, meaning that requests can be initiated in JavaScript code. This enables a whole new set of use cases to be addressed. One of these use cases is batching API requests so that a single API request from a client…
Continue reading ›NGINX and IoT: Adding Protocol Awareness for MQTT
This post is adapted from a presentation at nginx.conf 2017 by Liam Crilly, Director of Product Management at NGINX, Inc. You can view the complete presentation on YouTube. Table of Contents 0:18 stream, nginScript, and MQTT 0:59 NGINX User Survey 2:19 IoT Developer Survey 3:03 TCP/UDP Load Balancing 3:57 How to load balance MQTT – Let's…
Continue reading ›Detecting Homepage Defacement With Active Health Checks
Running the public‑facing website for any organization is no easy task. Considered by the business to be mission critical, a website requires 100% uptime and flawless stability. And yet, the same website is also expected to be updated frequently to meet the needs of the organization. This dichotomy of requirements between stability and constant change…
Continue reading ›TCP/UDP Load Balancing with NGINX: Overview, Tips, and Tricks
This post is adapted from a presentation delivered at nginx.conf 2016 by Konstantin Pavlov of NGINX, Inc. You can view a recording of the complete presentation on YouTube. Introduction 1:00 TCP Load Balancing 1:53 UDP Load Balancing 3:31 TCP/UDP Load Balancer Tuning 6:18 TCP/UDP Active Health Checks 8:53 Access Control and Limiting 9:43 Passing the Client's IP…
Continue reading ›NGINX Plus for the IoT: Encrypting and Authenticating MQTT Traffic
In the first part of this two‑part series of blog posts about NGINX Plus and the Internet of Things (IoT), we showed how NGINX Plus – as a fully featured application delivery controller (ADC) with support for TCP and UDP applications – increases the availability and reliability of IoT applications. In this second post, we discuss two…
Continue reading ›NGINX Plus for the IoT: Load Balancing MQTT
When it comes to the busiest websites on the Internet, NGINX and NGINX Plus dominate the market. In fact, NGINX powers over 50% of the top 1000, top 10,000, and top 100,000 sites. Its ability to handle over 1 million concurrent connections on a single server has driven its adoption by “hyperscale” sites and apps such as Airbnb, Netflix, and…
Continue reading ›Data Masking for User Privacy with the NGINX JavaScript Module
Fabric pattern that confuses facial-recognition software, designed by Adam Harvey In October 2016, the Court of Justice of the European Union ruled that IP addresses are “personal information” and as such fall under the Data Protection Directive and General Data Protection Regulation (GDPR). For many website owners, this presents challenges for archiving…
Continue reading ›Introduction to the NGINX JavaScript Module
[ngx_snippet name='table-style-blog'] Harnessing the Power and Convenience of JavaScript for Each Request Editor – This post is the first of a number of blogs we're publishing about the NGINX JavaScript module, which was formerly called nginScript (this post uses the names interchangeably). This post discusses why NGINX, Inc. developed its own implementation of JavaScript, and presents a…
Continue reading ›Announcing NGINX Plus R12
[ngx_snippet name='style-bolder-h4-h5'] [Editor – This post has been updated to refer the NGINX Plus API, which replaces and deprecates the separate dynamic configuration and status modules discussed in the original version of the post.] Today we are pleased to announce that NGINX Plus R12 is available as a free upgrade for all NGINX Plus subscribers. NGINX Plus is a…
Continue reading ›