NGINX Ingress Controller is a best-in-class traffic management solution for cloud-native apps in Kubernetes and containerized environments in Amazon EKS. Get your free 30-day trial today!

In a CNCF survey, two-thirds of respondents reported using the NGINX Ingress Controller (more than all other controllers combined) and NGINX Ingress Controller has been downloaded more than 10 million times on DockerHub. Combining the speed and performance of NGINX with the trust and security behind the power of F5, NGINX Ingress Controller is synonymous with high-performing, scalable, and secure modern apps in production.

This is the official implementation of NGINX Ingress Controller (based on NGINX Plus) from NGINX. It is high-performance, production-ready, and suitable for long-term deployment. We focus on providing stability across releases, with features that can be deployed at enterprise scale. Included in this subscription is NGINX's award-winning support.

Protecting your Kubernetes applications is easy using NGINX App Protect, a lightweight, modern application and API, software security solution that seamlessly integrates security policies into DevOps environments to enable "security as code" as either a robust Web Application Firewall (WAF), and/or as a layer 7 Denial of Service (DoS) defense. NGINX App Protect security solutions run natively on NGINX Ingress Controller on all platforms, architectures and AWS hybrid environments while delivering consistent performance and protection across your entire infrastructure. Both can be deployed in various Kubernetes environment locations to protect your cloud-native apps which includes being embedded within the NGINX Ingress Controller, or within the cluster as a per-service proxy or as a per-pod proxy delivering reduced complexity, TCO, manual oversight and tool sprawl. Both security solutions can provide detailed observability and insights via security log integration with external SIEM tools. NGINX App Protect enables scalable application security and governance for web applications, microservices, cloud-native apps, and APIs to deliver strong security, high-performance and low latency across your AWS EKS environments.

NGINX App Protect WAF seamlessly integrates security into your CI/CD pipeline enabling your organization to "shift left" for app security automation, reducing the cost of a breach by up to 80%, and to build more reliable, secure and risk adverse applications. Additionally, NGINX App Protect WAF goes beyond the basic OWASP Top 10 protection with advanced security that includes over 7,500 threat signatures, bot signatures, threat campaigns and Data Guard that masks personal identifiable information (PII), including credit card and social security numbers. NGINX App Protect WAF meets and exceeds PCI DSS requirements and helps your business avoid regulatory non-compliance and mitigate loss of reputation and revenue.

NGINX App Protect Denial of Service (DoS) is a dynamic software security module designed to mitigate app and API DoS/DDoS attacks at layer 7 attacks. NGINX App Protect DoS is easy to implement, requiring minimal setup and configuration to get started, and can also be used as a standalone security solution and operate without the installation of NGINX App Protect WAF. Designed to defend traditional HTTP/HTTPS and modern HTTP2 applications, like gRPC and WebSocket, against even the most sophisticated DoS/DDoS attacks that include GET and POST flood attacks, Slowloris, Slow read, Slow POST, NAT evasion attacks and targeted SSL/TLS attacks.

NGINX App Protect DoS establishes a baseline for normal traffic patterns using a machine learning based algorithm and analysis of over 320 metrics related to client behavior and application/API health, to significantly reduce false positives. It constructs and deploys dynamic signatures to mitigate attacks automatically, then continuously measures mitigation effectiveness and adapts to changing behavior or health conditions. NGINX App Protect DoS adaptive learning allows for no-touch policy configuration and delivers consistent DoS/DDoS protection to ensure zero-day protection. NGINX App Protect DoS provides a configurable, robust, multi-layered defense, to deliver the best strategy to mitigate attacks per individual application which includes: 1.) mitigating volumetric attacks, 2.) adaptive learning to detect anomalies and consistently mitigate attacks and 3.) to apply global rate limiting as needed.

NGINX App Protect WAF and DoS security solutions help SecOps and DevOps teams work together in migrating towards a shift left or DevSecOps strategy by facilitating "security as code" for consistent app security automation. Each of these lightweight software packages provide a continuous feedback loop for threat mitigation effectiveness, enabling developer agility and empowering organizations to bring applications to market at speed without compromising on security.