NGINX Plus with ModSecurity WAF

Protect your applications

  • Layer 7 Attack Protection
  • DDoS Mitigation
  • Real-time Blacklists
  • Data Leakage Protection
  • Audit Logging
  • PCI-DSS 6.6 Compliance

Stop Web Application Attacks

  • Prevent SQL injection, XSS, RFI, and LFI attacks, HTTP violations and more
  • Detect attacks with precise, anomaly-based scores that are derived from multiple rules
  • Identify and stop password-guessing scripts and other brute-force attacks

Maintain Continuous Uptime Even During DDoS Attack

  • Block IP addresses sending large volumes of requests
  • Reduce false positives with configurable thresholds
  • Stop “slow DDoS” attacks by closing off idle TCP connections

Automatically Block Known Malicious Users

  • Look up IP addresses in real time and deny access to blacklisted users
  • Cache results from lookups for 24 hours to improve performance

Log Crucial Data for Quicker Troubleshooting and Increased Visibility

  • Log suspicious transactions, both blocked and unblocked
  • Track behavior, including rules violated, in detail
  • Set up honeypots to log access by bots and other scanners

Comply with PCI-DSS Requirement 6.6

  • Block leakage of credit card numbers and other sensitive information
  • Protect against OWASP Top 10 threats
  • Inspect all application traffic and log the actions taken


Download a 30 day free trial and see what you've been missing.


Got a question for the NGINX team?

< back