nginx

Building a Security Shield for Your Applications with NGINX & Wallarm td { padding-right: 10px; } This post is adapted from a presentation by Stepan Ilyan of Wallarm at nginx.conf in September 2016. You can view a recording of the presentation on YouTube. Table of Contents 0:00 Introduction   Who Am I? 0:34 Some Stats 1:38 Agenda 2:11 Why NGINX? 2:41 Attack Blocking with NGINX 3:05 Chapter 1 – Detect and Block 3:14 Tip #1 – Use ModSecurity WAF   Deployment is Easy   What The Rules Look Like   Core Rule Set (CRS)   More Rules, More Overhead   When ModSecurity Is A Pain   Best Practices   Use Request-Response   ModSecurity Handbook 9:27 Tip #2 – Use NAXSI   NAXSI Security Rules   Scoring-Based Protection   Example for SQLi   Whitelists   Pros and Cons   Kibana and Elasticsearch 12:57 Tip #3 – Try [ more… ]

Microservices & API Gateways, Part 2: How Kong Can Help td { padding-right: 10px; } This post is adapted from a presentation presentation by Marco Palladino at nginx.conf in September 2016. This blog post is the second of two parts, and is focused on how Marco Palladino’s API Gateway, Kong, can fit your microservices architecture. Click here for part one, which highlights the core difference between monolithic and microservices architectures as well as how to set up and API gateway for additional functionality. Table of Contents 23:52 API Gateways and Kong Can Help 25:49 What is Kong? 26:09 What Does Kong Do? 26:35 Kong Plugins 27:22 Kong: OpenResty + NGINX 30:26 NGINX Configuration 32:53 Kong Entry-Points 33:30 Core Entities 34:34 Plugins Configuration Matrix 35:18 Multi-DC Deployment 37:27 Demo Time 41:14 Questions 23:52 API Gateways and Kong Can Help Palladino: API gateways can [ more… ]

NGINX Amplify for Distributed Application Monitoring Many of today’s applications are getting more distributed in nature. Engineers and architects are choosing to implement different approaches for making the apps more scalable and responsive to infrastructure changes. The popularity of “microservices” is rising, and we have written many overview posts on this topic. A very useful and popular series by Chris Richardson about microservices application design The Chris Richardson articles collected into a free ebook, with additional tips on implementing microservices with NGINX and NGINX Plus A series of blogs about the NGINX Microservices Reference Architecture (MRA), also available as a free ebook Other microservices blog posts Microservices webinars Making your application more distributed does not always come easy, however. New challenges arise in areas that previously didn’t even exist. Let’s take a close look at some of the challenges in monitoring distributed [ more… ]

Microservices & API Gateways, Part 1: Why an API Gateway? td { padding-right: 10px; } This post is adapted from a presentation presentation by Marco Palladino at nginx.conf in September 2016. This blog post is the first of two parts, and is focused on how to connect an API Gateway to your microservices application. Part two will be released soon, and will focus on how Marco Palladino’s technology, Kong, can fit your architecture. <!–Click here for part two, which focuses on how Marco Palladino’s technology, Kong, can fit your architecture.–> Table of Contents 0:00 Microservices & API Gateways 0:23 Topics 0:47 Monolithic Architecture 1:45 Monolithic Application Pros and Cons 3:55 Microservice-oriented Architecture 5:47 Microservice-oriented Application Pros and Cons 11:18 Why an API Gateway? 11:54 API Gateway Pattern 12:53 Optimized Endpoints 15:28 Centralized Middleware Functionality 17:24 Ops: Blue/Green Deployments 18:50 Ops: Canary Releases [ more… ]