In this installment of our "Ask NGINX" series, we discuss how NGINX and NGINX Plus work with Diffie-Hellman, support for Datagram Transport Layer Security, how to control the lifetime of content in the cache, and how to add the NGINX WAF to an NGINX Plus subscription.
借助 NGINX 基于条件的日志记录对请求进行采样
With NGINX conditional logging, you can log a subset of requests which have defined characteristics. This blog uses it to solve a real-world customer use case: the need to reject obsolete and insecure SSL/TLS ciphers without excluding legitimate users of legacy devices.
使用 HashiCorp Vault 保护 NGINX 中的 SSL 私钥
保护 SSL 私钥系列的第二篇介绍了如何设置 HashiCorp Vault 来存储保护 SSL 密钥,以及如何配置 NGINX 来检索密码。我们还讨论了使用硬件安全模块来实现更高的安全性。
测试用于 Kubernetes 的 NGINX Ingress Controller 的性能
这篇文章主要讲了我们为 Kubernetes 打造的 NGINX Ingress Controller 的性能表现,包括三个指标:每秒请求数、每秒 SSL/TLS 事务数和吞吐量。文中包含了我们进行测试时使用的 NGINX 和 Kubernetes 的完整配置。
借助 NGINX 对物联网设备进行隔空更新
One of the biggest challenges in scaling deployments on the Internet of Things is device management, particularly over-the-air updates, commonly called OTA. Guest blogger DeveloperSteve shows how to automate OTA using NGINX as an API gateway, along with the NGINX JavaScript module.
隆重推出 NGINX Plus R18
NGINX Plus R18 introduces dynamic loading of SSL/TLS certificates, enhances our OpenID Connect reference implementation, and supports port ranges for virtual servers. It also includes enhancements to the key-value store, health checks, NGINX Plus clustering, and the NGINX JavaScript module.
如何在 NGINX 中安全地分发 SSL 私钥
针对 NGINX 处理 HTTPS 流量的情景,我们介绍了三种保护 SSL 私钥的方式(这三种方式的保护程度逐步提高):仅允许 root 用户进行读取访问、配置独立存储的密码加密密钥、创建中央密码分发点。
NGINX 百问百答 | 2019 年 3 月
In this installment of our "Ask NGINX" series, we describe how NGINX and NGINX Plus support Nagios, single sign-on, and MQTT; discuss storing cookies in the NGINX Plus key-value store; and explain how to upgrade NGINX Plus licenses from a free trial to a paid subscription.
借助 NGINX Controller API 管理模块保护您的 API 生态系统
The NGINX Controller API Management Module secures your APIs at every API touchpoint – authenticating and authorizing third-party client applications and developers, rate limiting API calls to mitigate DDoS attacks, and protecting backend applications that process the API calls.
借助 NGINX Controller API 管理模块简化 API 定义
With NGINX Controller’s API Management Module, you define an API just once and publish it to as many environments as you want. This “create once, publish many” approach eliminates user errors as well as saving time and effort, especially if you have to define a lot of APIs.
