Simplify your stack and deliver consistent high-performance apps and APIs reliably, securely and at scale with NGINX Plus and NGINX App Protect WAF and NGINX App Protect DoS, the all in one, lightweight, load balancer, reverse proxy, and API Gateway with Layer 7 WAF and DoS protection. Get your free 30-day trial today!

NGINX Plus can operate as a standalone solution or can be integrated with AWS services - such as existing load balancing solutions, Auto Scaling groups, and AWS Lambda - to reduce your application delivery and management costs. NGINX Plus provides enterprise-grade features such as session persistence configuration via API, and active health checks so that you can add advanced application load balancing, monitoring, and management to your AWS application stack.

Protecting your web applications is easy using NGINX App Protect, a lightweight, modern application and API, software security solution that seamlessly integrates security policies into DevOps environments to enable security as code as either a robust Web Application Firewall (WAF), and/or as a Layer 7 Denial of Service (DoS) defense. NGINX App Protect security solutions run natively on NGINX Plus to support all platforms, architectures and AWS hybrid environments while delivering consistent performance and protection across your entire infrastructure. Both NGINX App Protect WAF and NGINX App Protect DoS can be deployed in a variety of locations to protect your cloud-native apps which include at the Edge as a load balancer, reverse proxy, or embedded into the API gateway to reduce complexity, TCO, manual oversight and tool sprawl. Both security solutions can provide detailed observability and insights via security log integration with external SIEM tools. NGINX App Protect enables scalable application security and governance for web applications, microservices, cloud-native apps, and APIs to deliver strong security, high-performance and low latency across your AWS hybrid environments.

NGINX App Protect WAF seamlessly integrates security into your CI/CD pipelines enabling your organization to shift left for app security automation, reducing the cost of a breach by up to 80%, and to build more reliable, secure and risk adverse applications. Additionally, NGINX App Protect WAF goes beyond the basic OWASP Top 10 protection with advanced security that includes over 7,500 threat signatures, bot signatures, threat campaigns and Data Guard that masks personal identifiable information (PII), including credit card and social security numbers. NGINX App Protect WAF meets and exceeds PCI DSS requirements and helps your business avoid regulatory non-compliance and mitigate loss of reputation and revenue.

NGINX App Protect Denial of Service (DoS) is a dynamic software security module that uses eBPF with XDP technology to accelerate mitigation of app and API DoS/DDoS attacks at Layer 7. NGINX App Protect DoS is easy to implement, requiring minimal setup and configuration to get started, and can also be used as a standalone security solution and operate without the installation of NGINX App Protect WAF. Designed to defend traditional HTTP/HTTPS and modern HTTP2 applications, like gRPC and WebSocket, against even the most sophisticated DoS/DDoS attacks that include GET and POST flood attacks, Slowloris, Slow read, Slow POST, NAT evasion attacks and targeted SSL/TLS attacks.

NGINX App Protect DoS establishes a baseline for normal traffic patterns using a machine learning based algorithm and analysis of over 300 metrics related to client behavior and application/API health, to significantly reduce false positives. It constructs and deploys dynamic signatures to mitigate attacks automatically, then continuously measures mitigation effectiveness and adapts to changing behavior or health conditions. Attack details are shared among multiple NGINX Plus instances to help mitigate potential future attacks even if only one instance was attacked. NGINX App Protect DoS adaptive learning allows for no-touch policy configuration and delivers consistent DoS/DDoS protection to ensure zero-day protection. NGINX App Protect DoS provides a configurable, robust, multi-layered defense, to deliver the best strategy to mitigate attacks per individual application. This includes blocking IP addresses of bad actors, blocking bad requests with attack signatures, and applying global rate limiting as needed.

NGINX App Protect WAF and DoS security solutions help SecOps and DevOps teams work together in migrating towards a shift left or DevSecOps strategy by facilitating security as code for consistent app security automation. Each of these lightweight software packages provide a continuous feedback loop for threat mitigation effectiveness, enabling developer agility and empowering organizations to bring applications to market at speed without compromising on security.