nginx

NGINX Tutorial: How to Securely Manage Secrets in Containers This post is one of four tutorials that help you put into practice concepts from Microservices March 2023: Start Delivering Microservices: How to Deploy and Configure Microservices How to Securely Manage Secrets in Containers (this post) How to Use GitHub Actions to Automate Microservices Canary Releases (coming soon) How to Use OpenTelemetry Tracing to Understand Your Microservices (coming soon) Many of your microservices need secrets to operate securely. Examples of secrets include the private key for an SSL/TLS certificate, an API key to authenticate to another service, or an SSH key for remote login. Proper secrets management requires strictly limiting the contexts where secrets are used to only the places they need to be and preventing secrets from being accessed except when needed. But this practice is often skipped in the rush [ more… ]

NGINX Tutorial: How to Deploy and Configure Microservices This post is one of four tutorials that help you put into practice concepts from Microservices March 2023: Start Delivering Microservices: How to Deploy and Configure Microservices (this post) How to Securely Manage Secrets in Containers (coming soon) How to Use GitHub Actions to Automate Microservices Canary Releases (coming soon) How to Use OpenTelemetry Tracing to Understand Your Microservices (coming soon) intro $ kubectl get pods NAME READY STATUS RESTARTS AGE coffee-87cf76b96-5b85h 1/1 Running 0 7h39m coffee-87cf76b96-lqjrp 1/1 Running 0 7h39m tea-55bc9d5586-9z26v 1/1 Running 0 111m All apps require configuration, but the considerations when configuring a microservice may not be the same as for a monolithic app. We can look to Factor 3 (Store config in the environment) of the twelve‑factor app for guidance applicable to both types of apps, but that guidance can be [ more… ]

Best Practices for Configuring Microservices Apps The guidelines known as the twelve‑factor app were first published more than ten years ago. Since then, nearly all its mandated practices have become the de facto standard way to write and deploy web apps. And while they have remained applicable in the face of changes to the way apps are organized and deployed, in some cases additional nuance is required to understand how the practices apply to microservices patterns for developing and deploying apps. This blog focuses on Factor 3, Store config in the environment, which states: Configuration is everything that varies between deployment environments (which the twelve‑factor app calls deploys). Configuration must be strictly separated from the app’s code – otherwise how can it vary across deploys? Configuration data is stored in environment variables. As you move into microservices, you can still honor these [ more… ]

Get Me to the Cluster…with BGP? Creating and managing a robust Kubernetes environment demands smooth collaboration between your Network and Application teams. But their priorities and working styles are usually quite different, leading to conflicts with potentially serious consequences – slow app development, delayed deployment, and even network downtime. Only the success of both teams, working towards a common goal, can ensure today’s modern applications are delivered on time with proper security and scalability. So, how do you leverage the skills and expertise of each team, while helping them work in tandem? In our whitepaper Get Me to the Cluster, we detail a solution for enabling external access to Kubernetes services that enables Network and Application teams to combine their strengths without conflict. How to Expose Apps in Kubernetes Clusters The solution works specifically for Kubernetes clusters hosted on premises, with [ more… ]

Building a Docker Image of NGINX Plus with NGINX Agent for Kubernetes p.indent { margin-left: 20px; white-space: nowrap; } F5 NGINX Management Suite is a family of modules for managing the NGINX data plane from a single pane of glass. By simplifying management of NGINX Open Source and NGINX Plus instances, NGINX Management Suite simplifies your processes for scaling, securing, and monitoring applications and APIs. You need to install the NGINX Agent on each NGINX instance you want to manage from NGINX Management Suite, to enable communication with the control plane and remote configuration management. For NGINX instances running on bare metal or a virtual machine (VM), we provide installation instructions in our documentation. In this post we show how to build a Docker image for NGINX Plus and NGINX Agent, to broaden the reach of NGINX Management Suite to NGINX Plus instances deployed in [ more… ]