NGINX.COM
Web Server Load Balancing with NGINX Plus

Ensure Holistic Protection for Modern Apps and APIs

Diagram depicting eight types of attacks blocked by NGINX App Protect WAF and DoS

Wondering How NGINX App Protect Stacks Up Against Other WAFs?

Read the Report

Why Use NGINX App Protect?

  • Seamless NGINX Integration
  • Solutions Security icon
    Defense and Visibility
  • DevOps
    Integration
  • Powerful, Lightweight WAF
  • Layer 7
    DoS Security

Save Time with Seamless NGINX Integration

Looking to quickly and easily integrate advanced app security into your NGINX Plus data‑plane instances?

NGINX App Protect:

  • Seamlessly integrates strong security controls with NGINX Plus and NGINX Ingress Controller
  • Defends against many advanced threats and evasive attacks
  • Reduces complexity and tool sprawl while delivering modern apps

Get Powerful, App-Centric Data Plane Security

Strengthen your security posture through app‑centric, holistic protection against the most advanced threats with NGINX App Protect.

Secure Apps with Rapid Threat Defense and Analytics

Want complete data plane security that’s lightweight, high‑performance, and designed for modern apps?

NGINX App Protect:

  • Provides agile, app‑centric security from the most advanced threats – well beyond basic signatures
  • Easily forwards security telemetry to third‑party analytics and visibility solutions
  • Leverages F5’s leading and trusted security expertise
  • Reduces false positives with high‑confidence signatures and automated behavior analysis
Diagram depicting NGINX App Protect blocking malicious traffic while allowing legitimate traffic to pass
Solutions Security icon

Protect Modern Apps

Run on NGINX Plus to enable consistent app security controls for web applications, microservices, containers, and APIs.

Align and Integrate Security with Agile DevOps Practices

Looking to automate controls and build a “Security-as-Code” practice?

NGINX App Protect:

  • Helps teams integrate security natively into CI/CD pipelines
  • Deploys as a lightweight software package, agnostic of underlying infrastructure
  • Leverages a declarative model for authoring security policies
  • Reduces time to market and lowers costs with DevOps‑aligned security controls
  • Decreases developer burden with a feedback loop for quick security remediation

Reduce Costs with Automation

Manage and automate approved security controls via CI/CD pipelines, removing workflow bottlenecks and supporting DevOps.

Protect Apps with a Powerful, DevOps‑Aligned WAF

Looking to secure your apps against the most sophisticated attacks?

NGINX App Protect WAF:

  • Provides robust security beyond basic signatures using trusted and proven F5 security technology
  • Secures apps anywhere NGINX Plus is deployed – on‑prem, Kubernetes environments, and everything in between
  • Shifts security closer to the application—baking it in, not bolting it on
  • Simplifies security provisioning and abstracts complexity through a tight integration with NGINX Controller

Secure Modern Apps with a Modern WAF

Take an app‑centric approach to security with a lightweight WAF that provides robust security and aligns the priorities of DevOps and SecOps teams.

Secure Apps from Hard-to-Detect Attacks

Want to defend apps from advanced, evasive Layer 7 DoS attacks?

NGINX App Protect DoS:

  • Defends against hard-to-detect Layer 7 DoS attacks including HTTP(S) Slowloris, Slow POST, Challenge Collapsar, and more
  • Uses automated user and site behavior analysis to secure apps and improve policies
  • Leverages a no‑touch configuration model to simplify DoS security for modern applications
  • Applies consistent controls across app deployment environments
  • Integrates seamlessly with the NGINX platform

Stop DoS Attacks in Their Tracks

Defend your modern apps from threats that can slip through traditional network defenses with NGINX App Protect DoS.

Technical Specifications

Distributions

  • Docker
  • Kubernetes
  • Red Hat OpenShift Container Platform

Architectures

  • x86

Operating Systems

  • Alpine Linux
  • CentOS
  • Debian
  • Red Hat Enterprise Linux
  • Ubuntu

Cloud Platforms

  • Amazon Web Services
  • Google Cloud Platform
  • Microsoft Azure

For more technical specifications and lists of features and modules, see the full technical specifications.