NGINX Plus Release 13 (R13)

NGINX open source build 1.13.4, 29 August 2017

NGINX Plus R13 is a feature release:

  • Ability to send duplicate all incoming traffic to a dedicated server (the mirror directive)
  • Improvements to nginScript, including the new interactive shell to facilitate development of nginScript code
  • New NGINX Plus API that incorporates the functionality of the previous upstream_conf and (extended) status APIs; it includes a Swagger specification and adds support for key‑value stores
  • New build tool (download here) that creates installable packages of the many third‑party modules available for NGINX and NGINX Plus
  • Ability to gracefully shut down all live client connections when restarting NGINX Plus (the worker_shutdown_timeout directive)
  • Support for adding HTTP trailers (the add_trailer directive)
  • Improvement to session persistence: quicker establishment of sticky sessions between clients and upstream groups (the header parameter to the sticky learn directive)
  • Support for the third‑party HTTP Substitutions Filter module, distributed in NGINX Plus packages and available on the Dynamic Modules page

NGINX Plus R13 is supported on:

  • Amazon Linux 2016.09+
  • CentOS 6.5+, 7.0+
  • Debian 7, 8, 9
  • FreeBSD 10.3, 11.0
  • Oracle Linux 6.5+, 7.0+
  • RHEL 6.5+, 7.0+
  • Ubuntu 14.04 LTS, 16.04 LTS, 17.04 “Zesty”

Notes:

  • Support for RHEL/CentOS/Oracle Linux 5.10+, Ubuntu 12.04 LTS “Precise”, and Ubuntu 16.10 “Yakkety” is no longer available
  • Support for Ubuntu 17.04 “Zesty” is new in this release
  • The sticky_cookie_insert directive (deprecated in NGINX Plus R2) has been removed
  • The upstream_conf and (extended) status APIs are deprecated by the new NGINX Plus API and will be removed in a future release

More information: Announcing NGINX Plus R13

NGINX Plus Release 12 (R12)

NGINX open source build 1.11.10, 14 March 2017

NGINX Plus R12 is a feature release:

  • Updates to the Extended Status module data set, including NGINX Plus version (nginx_build), usage statistics for shared memory zones (under the slabs/ subtree), and additional upstream fields (name, service)
  • New statistics displayed on live activity monitoring dashboard: NGINX Plus version, response time metrics, shared memory zones usage, and server names for upstreams
  • Support for the stale-while-revalidate and stale-if-error extensions to the Cache-Control header, as defined by RFC 5861
  • Ability to bypass cache for byte range requests after a specified offset (the proxy_cache_max_range_offset directive)
  • Length of Vary and ETag cache headers increased to 128 bytes; note that the on‑disk cache format has changed, so cached content is invalidated after the upgrade and must be refreshed from the origin server
  • mandatory parameter to the health_check directive (HTTP and Stream) which requires servers newly added to an upstream group to pass the associated health check before receiving real traffic
  • “Zero config” UDP health check which does not require specifying a match block
  • Support in the Stream module for verification of client SSL certificates for TCP applications
  • SSL variables representing various details about client certificates and capabilities ($ssl_ciphers, $ssl_client_v_end, $ssl_client_v_start, $ssl_client_v_remain, and $ssl_curves)
  • The $ssl_client_verify variable includes the reason for failure
  • The $ssl_client_i_dn and ssl_client_s_dn variables comply with RFC 2253; legacy variants are available as $ssl_client_i_dn_legacy and $ssl_client_s_dn_legacy
  • Support for accessing arbitrary JWT fields as variables
  • Support for JSON escaping in access logs (the escape parameter to the log_format directive)
  • WebP support in the Image-Filter module.
  • Output from the nginx -T command excludes duplicated sections of configuration
  • Improvements to memory usage and performance, including upstream queue optimization

NGINX Plus R12 is supported on:

  • Amazon Linux 2016.09+
  • CentOS 5.10+, 6.5+, 7.0+
  • Debian 7, 8, 9
  • FreeBSD 10.3, 11.0
  • Oracle Linux 5.10+, 6.5+, 7.0+
  • RHEL 5.10+, 6.5+, 7.0+
  • SLES 12, 12 SP1
  • Ubuntu 12.04 LTS, 14.04 LTS, 16.04 LTS, 16.10

Support for Debian 9 (Stretch) is new in this release. FreeBSD 9 is no longer supported.

Note: NGINX Plus R12 is the last release to support Ubuntu 12.04 LTS and CentOS/RHEL/Oracle Linux 5.10+.

More information: Announcing NGINX Plus R12

NGINX Plus R12 Updates

These are bug fix releases for NGINX Plus R12.

NGINX Plus R12 P3
29 June 2017

  • Content caching: fixed issue where a cache response could contain additional internal cache header data.

NGINX Plus R12 P2
30 March 2017

  • Live activity monitoring: fixed issue where response time metric was miscalculated under certain conditions.

NGINX Plus R12 P1
14 March 2017

  • Live activity monitoring: fixed issue that could cause the dashboard to hang for certain configurations.

NGINX Plus Release 11 (R11)

NGINX open source build 1.11.5, 25 October 2016

NGINX Plus R11 is a feature release:

  • Dynamic modules binary compatibility between NGINX Plus and the corresponding version of open source NGINX
  • Enhancements to the Stream module: custom logging with a number of additional variables, PROXY protocol support for incoming connections, support for obtaining real IP address and port from PROXY protocol header, and ability to extract the server name from SNI into a variable for purposes such as custom routing
  • Updates to the Extended Status module data set, including additional Stream metrics (sessions, discarded)
  • Cache manager support for iterative operations mode when deleting old cache files, reducing the disk load (see the manager_files, manager_threshold, and manager_sleep parameters of the proxy_cache_path directive)
  • Support for variables in the domain parameter to the sticky directive
  • New variable $upstream_bytes_received for both Stream and HTTP)

NGINX Plus R11 is supported on:

  • CentOS 5.10+, 6.5+, 7.0+
  • Debian 7, 8
  • FreeBSD 9.3, 10.1+, 11.0
  • Oracle Linux 5.10+, 6.5+, 7.0+
  • RHEL 5.10+, 6.5+, 7.0+
  • SLES 12, 12 SP1
  • Ubuntu 12.04 LTS, 14.04 LTS, 16.04 LTS, 16.10
  • Amazon Linux 2016.03+

Support for Ubuntu 16.10 (Yakkety Yak) and FreeBSD 11.0 is new in this release.

Note: NGINX Plus R11 does not include the nginx-plus-extras package. Any subscribers using this package must migrate to the nginx-plus package and then install the needed dynamic modules.

More information: Announcing NGINX Plus R11

NGINX Plus Release 10 (R10)

NGINX open source build 1.11.3, 23 August 2016

NGINX Plus R10 is a feature release:

  • New dynamic module: ModSecurity (package name is nginx-plus-module-modsecurity) built on an early release of ModSecurity 3.0.
  • New dynamic module: nginScript (package name is nginx-plus-module-njs)
  • Support for client authentication using JSON Web Tokens (JWT)
  • Enhancements to the Stream module used for TCP/UDP load balancing (more NGINX variables, resolver support, map module, geo module, geoip module, and split_clients A/B testing support)
  • Support for dual‑stack RSA/ECC certificates by defining multiple ssl_certificate and ssl_certificate_key directives on the same virtual server
  • Support for IP Transparency and Direct Server Return (DSR) using the transparent parameter to the proxy_bind directive. DSR only supported for UDP load balancing.
  • Support for the IP_BIND_ADDRESS_NO_PORT socket option where available, allowing for many more upstream connections (requires Linux kernel 4.2 or later)
  • HTTP/2 improvements: support for unbuffered upload,and various bug fixes
  • New NGINX variables: $request_id, $proxy_protocol_port, $realip_remote_port
  • Modules updated (both in nginx-plus-extras and as dynamic modules):

NGINX Plus R10 is supported on:

  • CentOS 5.10+, 6.5+, 7.0+
  • Debian 7, 8
  • FreeBSD 9.3, 10.1+
  • Oracle Linux 5.10+, 6.5+, 7.0+
  • RHEL 5.10+, 6.5+, 7.0+
  • SLES 12, 12 SP1
  • Ubuntu 12.04 LTS, 14.04 LTS, 16.04 LTS
  • Amazon Linux 2016.03+

Ubuntu 15.10 (Wily Werewolf) is no longer supported.

Note: NGINX Plus R10 is the last release to include the nginx-plus-extras package. Any subscribers using this package should migrate to the nginx-plus package and then install the needed dynamic modules.

More information: Announcing NGINX Plus R10

NGINX Plus Release 9 (R9)

NGINX open source build 1.9.13, 12 April 2016

NGINX Plus R9 is a feature release:

NGINX Plus R9 is supported on:

  • CentOS 5.10+, 6.5+, 7.0+
  • Debian 7, 8
  • FreeBSD 9.3, 10.1+
  • Oracle Linux 5.10+, 6.5+, 7.0+
  • RHEL 5.10+, 6.5+, 7.0+
  • SLES 12, 12 SP1
  • Ubuntu 12.04 LTS, 14.04 LTS, 15.10, 16.04 LTS
  • Amazon Linux 2016.03+

Ubuntu 15.04 (Vivid Vervet) is no longer supported.

More information: Announcing NGINX Plus R9

NGINX Plus R9 Updates

These are bug fix releases for NGINX Plus R9.

NGINX Plus R9 P1
25 May 2016

  • Fixed potential segmentation fault when writing a client request body to a temporary file. A specially crafted request may cause an NGINX worker process to crash due to a NULL pointer dereference (CVE-2016-4450).

NGINX Plus Release 8 (R8)

NGINX open source build 1.9.9, 19 January 2016

NGINX Plus R8 is a feature release:

  • OAuth Technology Preview, which performs OAuth 2.0 processing for proxied applications
  • Improved HTTP/2 implementation now included in the nginx-plus and nginx-plus-extras packages; the nginx-plus-http2 package is deprecated
  • Caching improvements, including support for caching HEAD requests and more effective caching of large files with the Cache Slice module
  • Changes to upstream groups made with the on‑the‑fly reconfiguration API can now be configured to persist across restarts and configuration reloads
  • Support for sending health check requests to a specified port (the port parameter to the health_check directive)
  • Enhancement to the Real IP module: the new $realip_remote_addr variable represents the original client IP address
  • Enhancement to syslog logging: the nohostname parameter disables logging of the hostname field, which is unnecessary when logging to a local syslog server
  • Updated live activity monitoring dashboard
  • In the nginx-plus-extras package:

NGINX Plus R8 is supported on:

  • CentOS 5.10+, 6.5+, 7.0
  • Debian 6.0, 7.0
  • FreeBSD 9.3, 10.1+
  • Oracle Linux 5.10+, 6.5+, 7.0
  • RHEL 5.10+, 6.5+, 7.0
  • SLES 12, 12 SP1
  • Ubuntu 12.04 LTS, 14.04 LTS, 15.04, 15.10
  • Amazon Linux

NGINX Plus R8 does not include the nginx-plus-lua package; customers previously using this package are advised to migrate to the nginx-plus-extras package.

More information: Announcing NGINX Plus R8

NGINX Plus R8 Updates

These are bug fix releases for NGINX Plus R8.

NGINX Plus R8 P3
24 February 2016

  • HTTP/2: Fixed handling of client_body_timeout directive

NGINX Plus R8 P2
11 February 2016

  • Logging: Fixed buffer over‑read while logging invalid request headers
  • HTTP/2: Various fixes

NGINX Plus R8 P1
26 January 2016

  • Resolver: Limit CNAME resolutions to prevent remote attackers from causing a denial of service (CVE-2016-0747)

NGINX Plus Release 7 (R7)

NGINX open source build 1.9.4, 15 September 2015

NGINX Plus R7 is a feature release:

  • Support for HTTP/2 in the new nginx-plus-http2 package (the nginx-plus and nginx-plus-extras packages continue to support SPDY)

    Note: Before installing the nginx-plus-http2 package, you must remove the spdy parameter on all listen directives in your configuration (replace it with the http2 and ssl parameters to enable support for HTTP/2). NGINX Plus fails to start if any listen directives have the spdy parameter.

  • Support for proxying NTLM requests
  • Enhancements to TCP load balancing and proxying:
  • More efficient distribution of connections across NGINX Plus worker processes (new reuseport parameter to the listen directive)
  • Thread pools for multithreaded reading and sending of files without blocking worker processes
  • Live activity monitoring dashboard redesigned to use tabs
  • Additional live activity monitoring metrics in the Status module (dataset version 6)
  • Additional arguments to playlist and fragment URIs in the HLS module (start, end, and offset)
  • New -T flag on nginx command to dump the configuration to standard output in a standardized format
  • New $upstream_connect_time variable to capture the connection time to upstream servers
  • sub_filter directive now supports variables in both the string being replaced and the replacement string; multiple sub_filter directives can appear at a configuration level
  • In the nginx-plus-extras package:

NGINX Plus R7 is supported on:

  • CentOS 5.10+, 6.5+, 7.0+
  • Debian 7.0, 8.0
  • FreeBSD 9.3, 10.1+
  • Oracle Linux 5.10+, 6.5+, 7.0+
  • RHEL 5.10+, 6.5+, 7.0+
  • SLES 12
  • Ubuntu 12.04 LTS, 14.04 LTS, 15.04

The following OS distributions are no longer supported: Debian 6.0, SLES 11 SP3, and Ubuntu 10.04 LTS and 14.10.

The nginx-plus-extras package has additional dependencies.

NGINX Plus R7 is the last release that includes the nginx-plus-lua package; customers using the package will have to migrate to the nginx-plus-extras package in NGINX Plus Release 8.

More information and important upgrade information for users of the Phusion Passenger Open Source module: Announcing NGINX Plus Release 7

NGINX Plus Release 6 (R6)

NGINX open source build 1.7.11, 14 April 2015

NGINX Plus R6 is a feature release:

  • TCP proxy enhancements (health checks, dynamic reconfiguration, SSL support, logging, status counters)
  • New Least-Time load‑balancing algorithm
  • Support for unbuffered upload (proxy_request_buffering directive)
  • Proxy SSL authentication support for HTTP and uwsgi
  • Proxy cache enhancements (variables in value of proxy_cache directive, new use_temp_path parameter to proxy_cache_path directive)
  • Mail proxy supports client SSL certificates
  • Enhancement to Autoindex module (new autoindex_format directive)
  • New live activity monitoring dashboard
  • In the nginx-plus-extras package:

NGINX Plus R6 is supported on:

  • CentOS 5.10+, 6.5+, 7.0
  • Debian 6.0, 7.0, 8.0
  • FreeBSD 9.3, 10.1
  • Oracle Linux 5.10+, 6.5+, 7.0
  • RHEL 5.10+, 6.5+, 7.0
  • SLES 11 SP3, 12
  • Ubuntu 10.04 LTS, 12.04 LTS, 14.04 LTS, 14.10

The nginx-plus-extras package has additional dependencies.

More information: Announcing NGINX Plus Release 6 with Enhanced Load Balancing, High Availability, and Monitoring Features

NGINX Plus Release 5 (R5)

NGINX open source build 1.7.7, 2 December 2014

NGINX Plus R5 is a feature release:

  • Proxying and load balancing of raw TCP traffic (the Stream module)
  • Sticky session timeout now applies from the most recent request in the session
  • Upstream “draining” can be used to remove an upstream server without interrupting any user sessions (new drain parameter to the upstream_conf directive)
  • Improved control over request retries in the event of failure, based on number of tries and time; also available for FastCGI, memcached, SCGI, and uwsgi modules
  • Vary field in response header is correctly handled for caching (multiple variants of the same resource can be cached); note that the on‑disk cache format has changed, so upgrading to R5 invalidates cached content
  • Improved caching support for byte‑range requests
  • Control of upstream bandwidth (new proxy_limit_rate directive)
  • In the nginx-plus-extras package:
  • In the nginx-plus-lua package:
    • Lua module updated to version 0.9.13

NGINX Plus R5 is supported on:

  • CentOS 5.9, 6.5, 7.0
  • Debian 6.0, 7.0
  • FreeBSD 9.3, 10.0
  • Oracle Linux 5.10+, 6.5+, 7.0
  • RHEL 5.9, 6.5, 7.0
  • SLES 11 SP3, 12
  • Ubuntu 10.04 LTS, 12.04 LTS, 14.04 LTS, 14.10

The nginx-plus-extras and nginx-plus-lua packages have additional dependencies.

More information: NGINX Plus R5 Released

NGINX Plus Release 4 (R4)

NGINX open source build 1.7.3, 24 July 2014

NGINX Plus R4 is a feature release:

  • Ability to verify backend SSL certificates
  • Support for SNI while working with SSL backends
  • Passphrases for SSL private keys can now be stored in an external file
  • New load‑balancing method based on user‑defined keys with optional consistency (hash directive)
  • New session affinity mechanism (sticky learn) based on server‑initiated sessions
  • Cache revalidation now uses If-None-Match header field when possible
  • Conditional logging for requests (new if parameter to the access_log directive)
  • Ability to retrieve a subset of the live activity monitoring data
  • MP4 module now supports the end argument in request URIs, which sets the end point of playback
  • In the nginx-plus-extras package:
  • In the nginx-plus-lua package:
    • Lua module updated to version 0.9.10

NGINX Plus R4 is supported on:

  • CentOS 5.9, 6.5, 7.0
  • Debian 6.0, 7.0
  • FreeBSD 9.2, 10.0
  • Oracle Linux 5.10+, 6.5+, 7.0
  • RHEL 5.9, 6.5, 7.0
  • SLES 11 SP3
  • Ubuntu 10.04 LTS, 12.04 LTS, 14.04 LTS

The nginx-plus-extras and nginx-plus-lua packages have additional dependencies.

More information: NGINX Plus R4 Released

NGINX Plus Release 3 (R3)

NGINX open source build 1.5.12‑1, 2 April 2014

NGINX Plus R3 is a feature release:

  • Automatic re‑resolution of hostnames in upstream groups allows group members to be updated on‑the‑fly using DNS
  • New connection limits and an internal connection queue protect servers from connection overload and improve connection scheduling by NGINX Plus’ load balancing
  • Support for PROXY protocol
  • SPDY support updated to comply with draft 3.1
  • Additional controls over SSL have been added to control the use of session tickets and reduce time to first byte
  • Support for IPv6 DNS resolution

NGINX Plus R3 is supported on:

  • CentOS 5.9, 6.5
  • Debian 6.0, 7.0
  • FreeBSD 9.2, 10.0
  • Oracle Linux 5.10+, 6.5+, 7.0
  • RHEL 5.9, 6.5
  • SLES 11 SP3
  • Ubuntu 10.04 LTS, 12.04 LTS, 12.10, 13.10, 14.04 LTS

The nginx-plus-extras and nginx-plus-lua packages have additional dependencies.

More information: NGINX Plus R3 Released

NGINX Plus Release 2 (R2)

NGINX open source build 1.5.7‑1, 12 December 2013

NGINX Plus R2 is a feature release:

  • Enhanced sticky routing support
  • Additional status metrics for virtual hosts and cache zones
  • Cache purge support (also available for FastCGI)
  • Support for cache revalidation
  • Support for authorization based on the result of a subrequest (new ngx_http_auth_request_module module)

The sticky_cookie_insert directive is deprecated and replaced by the sticky cookie directive.

NGINX Plus R2 Updates

Security Update to NGINX Plus Release R2
NGINX open source build 1.5.7‑4, 21 March 2014

  • Fixes vulnerability in experimental SPDY implementation in open source build 1.5.7‑3 and earlier.

Functional Update to NGINX Plus R2
NGINX open source build 1.5.7‑3, 5 March 2014

  • NGINX Plus now correctly applies the value set with the client_max_body_size directive when processing HTTP requests that contain chunk‑encoded body data.

Functional Update to NGINX Plus R2
NGINX open source build 1.5.7‑2, 13 February 2014

  • Updates to MP4 and HLS streaming functionality
  • Fix for premature closing of connections when using SPDY with proxy cache
  • Updates to implementation of SPDY/2
  • Added status.html file for live activity monitoring, missing from some packages

NGINX Plus Initial Release (R1)

NGINX open source build 1.5.3‑1, 22 August 2013

NGINX Plus is the fully supported, commercial version of NGINX. It includes most NGINX open source modules and adds further features:

  • Application health checks
  • Live activity monitoring (implemented in the Extended Status module)
  • Advanced load balancing
  • On‑the‑fly reconfiguration of load‑balanced upstream groups
  • Extended logging capabilities
  • High availability setup
  • Adaptive media streaming