NGINX Plus R20 builds on the enhancements made in R19 to rate limiting, adding real-time monitoring and logging; connection limiting now has the same features. We also added prefix matching in the key-value store, DNS resolution per upstream group, new PROXY Protocol variables, and improved security for HTTP/2.
DNS over TLS (DoT) and DNS over HTTPS (DoH) are two emerging technologies for securing Domain Name System (DNS) traffic. In this post we take a look at the history of DNS and show how to implement DoT, DoH, and a DNS filter using NGINX Open Source and NGINX Plus.
PingIdentity provides an NGINX integration with its AI-driven solution for API security, PingIntelligence for APIs. The solution uses API metadata collected by NGINX to determine whether API clients are granted access. PingIntelligence for APIs also provides dashboards, reports, and anomaly detection.
Application isolation in NGINX Unit enables you to control which types of system resources your apps share with NGINX Unit and each other. Running apps in isolated environments improves security. Get all the details on how it works, and what it means for the future of NGINX Unit.
Trace the traffic in your Kubernetes cluster end-to-end with native support for OpenTracing when using the NGINX and NGINX Plus Ingress Controllers for Kubernetes for load balancing. Our step-by-step instructions show you how to get started, using Docker containers and Jaeger.
We provide guidance on using NGINX to mitigate the recently discovered vulnerability in PHP-FPM (CVE-2019-11043). The vulnerability is triggered when the PATH_INFO variable passed to PHP-FPM with an invalid value, which can happen in a common NGINX configuration.
NGINX Unit 1.11.0 introduces support for static file serving, a much requested feature ever since NGINX Unit debuted. It also includes application (process) isolation using Linux namespaces and a WebSocket server implementation for Java Servlet Containers. NGINX Unit 1.12.0 adds support for PHP 7.4.
In a Chaos Engineering experiment, you "inject failure" into a microservices application's environment to test the app's resilience. We discuss important concepts like blast radius, magnitude, abort conditions, and blackhole attacks, which cause dependencies to fail.
The F5 and NGINX control-plane development teams recently integrated their code development practices and tools. They chose GitLab for the code repository, GitLab CI for the development pipeline, and JFrog Artifactory for artifact storage.
NGINX Unit 1.9.0 and 1.10.0 introduce request routing based on matching arguments, headers, cookies, and scheme; appending elements to arrays; a built‑in WebSocket server for Node.js; and new guides for Catalyst, NextCloud, Redmine, Docker, and language modules.