Web Server Load Balancing with NGINX Plus

Prevent Downtime and Breaches by Securing Your Modern Apps and APIs

NGINX App Protect Diagram

Wondering How NGINX App Protect Stacks Up Against Other WAFs?

Read the Report

Why Use NGINX App Protect?

  • Seamless NGINX Integration
  • Defense and Analytics
  • DevOps

Save Time with Seamless NGINX Integration

Looking to add a WAF and advanced application security quickly to your NGINX Plus instances?

NGINX App Protect:

  • Enables seamless integration of strong security controls with NGINX Plus and NGINX Ingress Controller
  • Outperforms other WAFs for improved user experience
  • Reduces complexity and tool sprawl while delivering modern apps

Deploy App-Centric Security

Push high‑performance, scalable, and proven security closer to your apps, protecting against revenue‑impacting attacks and data thefts.

Secure Apps with Rapid Threat Defense and Analytics

Want a WAF that’s lightweight but high‑performance and designed for modern apps?

NGINX App Protect:

  • Provides expanded security beyond basic signatures to ensure adequate controls
  • Utilizes F5 app‑security technology for efficacy superior to ModSecurity and other WAFs
  • Builds on proven F5 expertise, so you can confidently run in “blocking” mode in production
  • Offers high‑confidence signatures for extremely low false positives
  • Increases visibility, integrating with third‑party analytics solutions

Protect Modern Apps

Run on NGINX Plus to enable consistent app security controls for web applications, microservices, containers, and APIs.

Make Security Agile with DevOps Integration

Need to automate security controls with Infrastructure-as-Code built into your CI/CD pipeline?

NGINX App Protect:

  • Integrates security and WAF natively into the CI/CD pipeline
  • Deploys as a lightweight software package that is agnostic of underlying infrastructure
  • Facilitates declarative policies for “security as code” and integration with DevOps tools
  • Decreases developer burden and provides feedback loop for quick security remediation
  • Accelerates time to market and reduces costs with DevSecOps‑automated security

Reduce Costs with Automation

Manage and automate approved security controls via CI/CD pipelines, removing workflow bottlenecks and supporting DevOps.

Technical Specifications


  • Docker
  • Kubernetes
  • Red Hat OpenShift Container Platform


  • x86

Operating Systems

  • Alpine
  • CentOS
  • Debian
  • Red Hat Enterprise Linux
  • Ubuntu

Cloud Platforms

  • Amazon Web Services
  • Google Cloud Platform
  • Microsoft Azure

For more technical specifications and lists of features and modules, see the full technical specifications.