We provide guidance on where to deploy application services in a Kubernetes environment, using WAF as an example. Depending on your needs, it can make sense to deploy your WAF at the "front door" of the environment, on the Ingress Controller, per-service, or per-Pod.
Owen Garrett
Job title : Sr. Director, Product Management
Company : F5
Owen Garrett leads the product and go-to-market strategy for NGINX’s web acceleration and delivery technologies. Owen has over 15 years of experience in software engineering and product leadership at companies such as Riverbed. Today, Owen uses his technical and management expertise to optimize NGINX products and customer satisfaction.
Sort by
Addressing a DoS Vulnerability (CVE-2020-15598) in ModSecurity
On 14 September 2020 we released an update to the NGINX Plus ModSecurity module (for NGINX Plus R20, R21, and R22) in response to CVE-2020-15598. We encourage NGINX Plus subscribers to upgrade to the patched module.
Deploying Application Services in Kubernetes, Part 1
We explain why duplicating application services paradoxically can improve overall efficiency: because NetOps and DevOps teams have different mandates, it makes sense for them to select and manage the tools that best suit their specific needs.
Choosing the Right Load Balancer on Amazon: AWS Application Load Balancer vs. NGINX Plus
We compare AWS Application Load Balancer (ALB) with NGINX Open Source and NGINX Plus as a Layer 7 reverse proxy and load balancer. ALB has more features than at its debut in 2016, but we conclude that NGINX and NGINX Plus still provide more functionality and much more predictable pricing.
Announcing NGINX Ingress Controller for Kubernetes Release 1.6.0
Release 1.6.0 of the NGINX Ingress Controller for Kubernetes includes improvements to NGINX Ingress Resources, support for OpenTracing, and much more.
Addressing the PHP-FPM Vulnerability (CVE-2019-11043) with NGINX
We provide guidance on using NGINX to mitigate the recently discovered vulnerability in PHP-FPM (CVE-2019-11043). The vulnerability is triggered when the PATH_INFO variable passed to PHP-FPM with an invalid value, which can happen in a common NGINX configuration.
Global Server Load Balancing with NS1 and NGINX Plus
The NGINX agent for NS1 provides rich load and availability data to the NS1 global server load balancing service, for more agile and sophisticated DNS-based load balancing for sites and apps proxied by NGINX Plus at multiple locations. Our deployment guide provides complete instructions.
Do You Need A Service Mesh? – EMEA
Service mesh is one of the hottest emerging technologies. But do you really need a service mesh? Attend this webinar to learn about the app modernization journey and traffic management approaches for microservice-based apps. We'll help you figure out if you really need a service mesh.
Do You Need A Service Mesh?
Service mesh is one of the hottest emerging technologies. But do you really need a service mesh? Attend this webinar to learn about the app modernization journey and traffic management approaches for microservice-based apps. We'll help you figure out if you really need a service mesh.
Facing the Hordes on Black Friday and Cyber Monday
NGINX and NGINX Plus act as a "shock absorber" for traffic spikes like the ones on Black Friday and Cyber Monday. Thanks to enterprise-grade load balancing, connection and rate limiting, and caching, you can provide the flawless shopping experience that keeps your customers coming back.