With NGINX App Protect, you no longer have to choose between security and performance. It combines the proven effectiveness of F5’s advanced WAF technology with the agility and performance of NGINX Plus, to address the security challenges facing modern DevOps environments.
Release 1.7.0 of the NGINX Ingress Controller for Kubernetes includes certification of the Red Hat OpenShift Operator, support for TCP, UDP, and TCP Passthrough load balancing, a circuit breaker implementation, and improved validation and reporting for NGINX Ingress resources.
NGINX Unit 1.16.0 introduces two new features that are already familiar to NGINX users. First, it can load balance across a group of upstream servers using the round-robin method. Second, you can define what happens when a requested file can't be served, similar to the NGINX 'try_files' directive.
Assembly language is popular in all kinds of system software and we believe that web development can also benefit from the advantages it provides. Today we're pleased to add support for assembly language to NGINX Unit. Web development in assembly has never been so easy.
Organizations on the frontlines of the COVID-19 pandemic are experiencing increased website traffic from users who now must access resources remotely. NGINX and F5 are offering free software, documentation, and training to help websites scale easily to meet increased demand, and calling on our open source community members to lend their expertise too.
NGINX Controller 3.0 is a complete platform upgrade that introduces application-centric management of your NGINX Plus-based infrastructure. It includes a self‑service portal for RBAC-based collaboration, a DevOps-optimized API, and a built-in certificate manager.
NGINX Plus R20 builds on the enhancements made in R19 to rate limiting, adding real-time monitoring and logging; connection limiting now has the same features. We also added prefix matching in the key-value store, DNS resolution per upstream group, new PROXY Protocol variables, and improved security for HTTP/2.
We provide guidance on using NGINX to mitigate the recently discovered vulnerability in PHP-FPM (CVE-2019-11043). The vulnerability is triggered when the PATH_INFO variable passed to PHP-FPM with an invalid value, which can happen in a common NGINX configuration.
NGINX Unit 1.11.0 introduces support for static file serving, a much requested feature ever since NGINX Unit debuted. It also includes application (process) isolation using Linux namespaces and a WebSocket server implementation for Java Servlet Containers. NGINX Unit 1.12.0 adds support for PHP 7.4.