We have released updates to NGINX Open Source, NGINX Plus, and NGINX Ingress Controller to fix a vulnerability in DNS resolution (CVE-2021-23017). We consider the vulnerability to be low-severity, but encourage users to upgrade to the latest versions.
如何选择 Service Mesh(服务网格)
NGINX Service Mesh 现已正式投入生产!NGINX Service Mesh 是免费的、针对开发人员优化的,并且提供了最简单的方法来实现 mTLS ,以及 Kubernetes 中东西向( service 到 service )流量和南北向( ingress 和 egress )流量的端到端加密。
Announcing NGINX Plus R24
NGINX Plus R24 introduces support for encrypted JSON Web Tokens (JWE) and integration with F5 Device ID+. The NGINX JavaScript module reaches an important milestone with support for response filtering and use of HTTP-based authentication services for TCP/UDP connections.
使用 NGINX Ingress Controller 增强 TCP/UDP 负载均衡和 WAF 配置
NGINX Ingress Controller 现可以代码片段方式增强 TCP/UDP 负载均衡能力,并提供健康检查和多种 TransportServer 资源。1.11.0 版本还引入了 WAF 策略,从而可以更轻松地配置 NGINX App Protect,另外它还提供了对 Istio 的兼容性以及其它更多功能。
Introducing NGINX Instance Manager – A Tool to Track, Configure, and Monitor NGINX Open Source and NGINX Plus Instances at Scale
The more ways you leverage the power of NGINX, the more of challenge it can be to track and manage the NGINX Open Source and NGINX Plus instances across your infrastructure. Introducing NGINX Instance Manager, one tool for tracking, configuring, and monitoring NGINX at scale.
NGINX Announces Sponsorship of the OWASP ModSecurity CRS Project
NGINX, a part of F5, Inc., is pleased to announce that we have become the first Gold sponsor of the OWASP ModSecurity Core Rule Set (CRS) project. We look forward to working with the CRS team and helping ensure the CRS project’s long-term success.
借助 OpenID Connect 和 NGINX Ingress Controller 实现简单而强大的单点登录
NGINX Ingress Controller 现在支持使用 OpenID Connect (OIDC) 单点登录。版本 1.10.0 还引入了额外的配置队列指标、日志注释、改进的注释和 secret 验证、支持 NGINX App Protect 用户定义的签名等。
Updates to NGINX Unit for Autumn 2020
Since our last update, the NGINX Unit team has released three versions, 1.19.0 through 1.21.0. New features include support for ASGI with Python, multi-threading with several languages (Java, Perl, Python, Ruby), regular expressions in routing conditions, and more.
Introducing the NGINX Controller App Security Add-On for Application Delivery
We introduce the NGINX Controller App Security add-on for Controller Application Delivery, which provides an app-centric, self-service way for app teams to enable WAF protection for their apps, while security teams can still define policies and monitor apps for compliance.
Announcing NGINX Plus R23
NGINX Plus R23 introduces new features including health checks for backend gRPC servers, unprivileged installation, support for the OpenID Connect PKCE extension, finer-grained control over TLS connections, a new method of setting cookie flags, and NGINX JavaScript enhancements.