Secure Your API Gateway with NGINX App Protect WAF

2022-05-27 KENNETH 0

Secure Your API Gateway with NGINX App Protect WAF As monoliths move to microservices, applications are developed faster than ever. Speed is necessary to stay competitive and APIs sit at the front of these rapid modernization efforts. But the popularity of APIs for application modernization has significant implications for app security. APIs are vulnerable attack targets, exposing application logic and sensitive data to other apps or third parties. As API usage grows, so does the need for API gateways.   According to F5’s 2021 State of Application Strategy Report, organizations are using various methods to modernize, and APIs top these modernization efforts: 58% are adding a layer of APIs to enable modern user interfaces 51% are adding modern application components (e.g. Kubernetes) 47% are refactoring (modifying application code itself) 40% are moving to public cloud (lift and shift) without modernizing [ more… ]

Introducing F5 NGINX for Azure – Load Balancing Available Natively as a SaaS Offering on Microsoft Azure

2022-05-24 KENNETH 0

Introducing F5 NGINX for Azure – Load Balancing Available Natively as a SaaS Offering on Microsoft Azure High-performing cloud and development teams working in Microsoft Azure have come to appreciate the benefits of putting F5 NGINX Plus to work in their cloud environment. But high performance isn’t a destination – it’s an ongoing journey. Cloud architects and DevOps teams have asked us to take the powerful combination of NGINX Plus and Azure even further. At the top of their wish lists, customers have asked for a native Azure software as a service (SaaS) experience with NGINX products and the flexibility of Bring Your Own Configuration (BYOC) on Azure. Microsoft and F5 NGINX have listened and taken those wishes to heart, joining forces for the past two years to collaborate on fulfilling them. Today, we are excited to announce that NGINX Plus is now native [ more… ]

No Image

Migrating from the Community Ingress Controller to F5 NGINX Ingress Controller

2022-05-20 KENNETH 0

Migrating from the Community Ingress Controller to F5 NGINX Ingress Controller table.nginx-blog, table.nginx-blog th, table.nginx-blog td { border: 2px solid black; border-collapse: collapse; } table.nginx-blog { width: 100%; } table.nginx-blog th { background-color: #d3d3d3; align: left; padding-left: 5px; padding-right: 5px; padding-bottom: 2px; padding-top: 2px; line-height: 120%; } table.nginx-blog td { padding-left: 5px; padding-right: 5px; padding-bottom: 2px; padding-top: 5px; line-height: 120%; } table.nginx-blog td.center { text-align: center; padding-bottom: 2px; padding-top: 5px; line-height: 120%; } pre.table { background-color: white; padding: 0; margin: 0; } Editor – This post is an extract from our comprehensive eBook, Managing Kubernetes Traffic with F5 NGINX: A Practical Guide. Download it for free today. Many organizations setting up Kubernetes for the first time start with the NGINX Ingress controller developed and maintained by the Kubernetes community (kubernetes/ingress-nginx). As Kubernetes deployments mature, however, some organizations find they need advanced features [ more… ]

No Image

F5 NGINX ModSecurity WAF Is Transitioning to End-of-Life

2022-05-11 KENNETH 0

F5 NGINX ModSecurity WAF Is Transitioning to End-of-Life For the past five years, F5 NGINX has been pleased to provide our customers with the NGINX ModSecurity WAF module for NGINX Plus with support against standard classes of vulnerabilities using the OWASP ModSecurity Core Rule Set (CRS). However, due to recent changes to third‑party support for ModSecurity WAF, we regret that we are transitioning NGINX ModSecurity WAF to End-of-Life (EoL) effective March 31, 2024. Our decision is due in part to the recent announcement from Trustwave, the organization that has been maintaining ModSecurity, that as of July 1, 2024, it will: Stop supporting the ModSecurity open source code and WAF Return responsibility for maintaining the ModSecurity code to the open source community No longer provide Commercial Rules Additionally, the OWASP ModSecurity Core Rule Set (CRS) project has announced that it is switching its focus [ more… ]

Announcing Version 1.0.0 of the NGINX Modern Apps Reference Architecture

2022-04-29 KENNETH 0

Announcing Version 1.0.0 of the NGINX Modern Apps Reference Architecture We were upfront with our design goals when we unveiled the NGINX Modern Applications Reference Architecture (MARA) at Sprint 2.0 in August of 2021. We wanted to create an example of a modern application architecture running in Kubernetes and designed to support security, scalability, reliability, monitoring, and introspection. This project needed to be deployable across different infrastructures with a “plug and play” approach to combining functional components without time‑consuming integration efforts. In the months since Sprint, we have been moving forward with our roadmap. Like any project, we have had our share of success and failure and have worked our successes into MARA while keeping a growing list of lessons learned. We hope that we may keep others from hitting the same problems by documenting these issues and designing with these lessons in [ more… ]