Overview
Product video
NGINX Ingress Controller is a best-in-class traffic management solution for cloud-native apps in Kubernetes and containerized environments in Amazon EKS. Get your free 30-day trial today!
In a CNCF survey, two-thirds of respondents reported using the NGINX Ingress Controller (more than all other controllers combined) and NGINX Ingress Controller has been downloaded more than 10 million times on DockerHub. Combining the speed and performance of NGINX with the trust and security behind the power of F5, NGINX Ingress Controller is synonymous with high-performing, scalable, and secure modern apps in production.
This is the official implementation of NGINX Ingress Controller (based on NGINX Plus) from NGINX. It is high-performance, production-ready, and suitable for long-term deployment. We focus on providing stability across releases, with features that can be deployed at enterprise scale. Included in this subscription is NGINX's award-winning support.
Protecting your Kubernetes applications is easy using NGINX App Protect, a lightweight, modern application and API, software security solution that seamlessly integrates security policies into DevOps environments to enable "security as code" as either a robust Web Application Firewall (WAF), and/or as a layer 7 Denial of Service (DoS) defense. NGINX App Protect security solutions run natively on NGINX Ingress Controller on all platforms, architectures and AWS hybrid environments while delivering consistent performance and protection across your entire infrastructure. Both can be deployed in various Kubernetes environment locations to protect your cloud-native apps which includes being embedded within the NGINX Ingress Controller, or within the cluster as a per-service proxy or as a per-pod proxy delivering reduced complexity, TCO, manual oversight and tool sprawl. Both security solutions can provide detailed observability and insights via security log integration with external SIEM tools. NGINX App Protect enables scalable application security and governance for web applications, microservices, cloud-native apps, and APIs to deliver strong security, high-performance and low latency across your AWS EKS environments.
NGINX App Protect WAF seamlessly integrates security into your CI/CD pipeline enabling your organization to "shift left" for app security automation, reducing the cost of a breach by up to 80%, and to build more reliable, secure and risk adverse applications. Additionally, NGINX App Protect WAF goes beyond the basic OWASP Top 10 protection with advanced security that includes over 7,500 threat signatures, bot signatures, threat campaigns and Data Guard that masks personal identifiable information (PII), including credit card and social security numbers. NGINX App Protect WAF meets and exceeds PCI DSS requirements and helps your business avoid regulatory non-compliance and mitigate loss of reputation and revenue.
NGINX App Protect Denial of Service (DoS) is a dynamic software security module designed to mitigate app and API DoS/DDoS attacks at layer 7 attacks. NGINX App Protect DoS is easy to implement, requiring minimal setup and configuration to get started, and can also be used as a standalone security solution and operate without the installation of NGINX App Protect WAF. Designed to defend traditional HTTP/HTTPS and modern HTTP2 applications, like gRPC and WebSocket, against even the most sophisticated DoS/DDoS attacks that include GET and POST flood attacks, Slowloris, Slow read, Slow POST, NAT evasion attacks and targeted SSL/TLS attacks.
NGINX App Protect DoS establishes a baseline for normal traffic patterns using a machine learning based algorithm and analysis of over 320 metrics related to client behavior and application/API health, to significantly reduce false positives. It constructs and deploys dynamic signatures to mitigate attacks automatically, then continuously measures mitigation effectiveness and adapts to changing behavior or health conditions. NGINX App Protect DoS adaptive learning allows for no-touch policy configuration and delivers consistent DoS/DDoS protection to ensure zero-day protection. NGINX App Protect DoS provides a configurable, robust, multi-layered defense, to deliver the best strategy to mitigate attacks per individual application which includes: 1.) mitigating volumetric attacks, 2.) adaptive learning to detect anomalies and consistently mitigate attacks and 3.) to apply global rate limiting as needed.
NGINX App Protect WAF and DoS security solutions help SecOps and DevOps teams work together in migrating towards a shift left or DevSecOps strategy by facilitating "security as code" for consistent app security automation. Each of these lightweight software packages provide a continuous feedback loop for threat mitigation effectiveness, enabling developer agility and empowering organizations to bring applications to market at speed without compromising on security.
Highlights
- NGINX Ingress Controller delivers advanced app-centric configuration: Use role-based access control and self-service to set up security guardrails, so your teams can manage their apps securely and with agility. Enable multi-tenancy, reusability, simpler configs, and more.
- NGINX App Protect WAF and DoS run natively on NGINX Plus and can be embedded within the NGINX Ingress Controller to provide advanced security for cloud-native applications and APIs as lightweight, software security solutions that integrate seamlessly as "security as code" into your CI/CD pipeline, to deliver strong security, high-performance and low latency at scale across your AWS EKS environments.
- NGINX App Protect DoS establishes a baseline for normal traffic patterns using a machine learning based algorithm and analysis of over 320 metrics related to client behavior and application/API health, to greatly reduce false positives. It constructs and deploys dynamic signatures to mitigate attacks automatically. NGINX App Protect DoS adaptive learning allows for no-touch policy configuration and delivers consistent DoS protection to ensure zero-day protection for a multi-layered defense.
Details
Features and programs
Financing for AWS Marketplace purchases
Pricing
Free trial
Dimension | Description | Cost/unit/hour |
---|---|---|
Hours | Container Hours | $2.18 |
Vendor refund policy
Legal
Vendor terms and conditions
Content disclaimer
Delivery details
EKSDelivery
- Amazon EKS
Container image
Containers are lightweight, portable execution environments that wrap server application software in a filesystem that includes everything it needs to run. Container applications run on supported container runtimes and orchestration services, such as Amazon Elastic Container Service (Amazon ECS) or Amazon Elastic Kubernetes Service (Amazon EKS). Both eliminate the need for you to install and operate your own container orchestration software by managing and scheduling containers on a scalable cluster of virtual machines.
Version release notes
Additional details
Usage instructions
This container requires Kubernetes and can be deployed to EKS. Review the installation instructions https://docs.nginx.com/nginx-ingress-controller/installation/ and utilize the deployment resources available https://github.com/nginxinc/kubernetes-ingress/tree/v3.7.1/deployments Use this image instead of building your own.
Support
Vendor support
To engage our support team, first activate your account at http://www.myf5.com , where you'll be able to register and open a support case. For info on support tickets, see our self-help article
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.