Your business no longer just depends on the applications you build, it is the applications you build. Every business is now a digital business, and the applications you build play a critical role in your company’s future. But building applications is only the half the battle; success or failure depends on how well you deploy, secure, and scale your applications.
NGINX Plus extends NGINX Open Source with advanced functionality and award‑winning support, providing customers with a complete application delivery solution. NGINX Plus combines a load balancer, content cache, web server, security controls, and rich application monitoring and management into one easy-to-use software package.
Also check out other solution briefs for NGINX Plus:
Sizing Guide for Deploying NGINX Plus on Bare Metal Servers
Sizing Guide for Deploying NGINX Plus in Virtualized Environments
NGINX Plus on Arm‑Based AWS Graviton2 AMIs
The NGINX Plus Datasheet continues below:
If You Like NGINX, You’ll Love NGINX Plus
Every company is a technology company. The applications you build play a critical role in your company’s future. But building applications is only half the battle; success or failure depends on how well you deploy, secure, and scale your applications.
NGINX Plus is the only all-in-one API gateway, cache, load balancer, web application firewall (WAF), and web server. NGINX Plus extends NGINX Open Source with exclusive features and award-winning support, providing customers with a complete application delivery solution.
Why NGINX Plus?
Consolidation
Reduce complexity and simplify management by consolidating load balancer, API gateway, and WAF into a single elastic ingress/egress tier
Modernization
Build a high-performance, adaptable, software-first IT infrastructure aligned to DevOps and modern app architectures
Flexibility
Deploy anywhere. Multi-cloud: AWS, Azure, GCP, and VMware. Containers: Docker, Kubernetes, and OpenShift.
Features
Authentication
- HTTP Basic Authentication
- HTTP authentication subrequests
- X.509 client certificate authentication
- NTLM authentication
- Encrypted JSON Web Token (JWT, JWE) validation
support - OpenID Connect
- Single sign-on: Keycloak, Okta, OneLogin, Ping Identity, most IdPs
Content Cache
- Cache static and dynamic content
- Micro and byte-range caching
- Serve content when origin is unavailable;
improves uptime - Override or set Cache-Control headers
- Cache purging
High Availability
- Active-active and active-passive HA modes
- Configuration synchronization
- State sharing: sticky-learn session persistence,
rate limiting, and key-value stores - Easy installation with built-in script
Load Balancer
- HTTP, TCP, and UDP load balancing
- Random with Two Choices, Round Robin, and
Least Connections algorithms - Passive health checks
- IP Hash session persistence
- IP transparency
- Direct Server Return (DSR)
- Layer 7 request routing
- Least Time algorithm, can be used with
Random with Two Choices - Active HTTP, TCP, and UDP health checks
- Customizable HTTP status code check
- Regex pattern matching on HTTP response body
- TCP Connect health check
- Sticky-cookie (insertion and learning) and
- Sticky-route session persistence
- Service discovery using DNS
Monitoring
- Stub status module with 7 aggregated metrics
- Extended status with over 150 unique metrics
- Real-time graphical dashboard
- JSON output for integration with custom
monitoring tools
Programmability
- NGINX JavaScript module for scripting and advanced
configurations - Lua scripting language
- Ansible, Chef, and Puppet integration
- Key-value store for dynamic configuration
- NGINX Plus API for managing upstream servers,
key-value stores, and metrics - Dynamic reconfiguration without process reloads
Security Controls
- Request, connection, and bandwidth limiting
- IP address access control list (ACL)
- Dual stack RSA/ECC SSL/TLS offloading
- Server-side SSL/TLS encryption
- TLS 1.3 support
- Mutual TLS termination and proxying
- Secure links
- Dynamic DDoS mitigation
- F5 Device ID+ integration
- NGINX App Protect WAF module*
Streaming Media
- Live: RTMP, HTTP Live Streaming (HLS), DASH
- VoD: Flash (flv), MP4
- Adaptive-bitrate VOD: HLS, Adobe HTTP Dynamic
- Streaming (HDS)
- Bandwidth controls for MP4 streaming
Third-Party Integrations
- Kubernetes Ingress Controller
- OpenShift Router
- Third-party modules: Headers-More, Set-Misc, etc.
- Certified modules: 51Degrees, ForgeRock, etc.
Web Server/Reverse Proxy
- Serve static content with low memory footprint
- Reverse proxy gRPC, HTTP, Memcached, PHP-FPM,
SCGI, and uwsgi servers - IP address geolocation (requires MaxMind GeoIP database)
- HTTP/2 termination and HTTP/2 server push
Supported Environments
Cloud
- Amazon Web Services (AWS)
- Google Cloud Platform (GCP)
- Microsoft Azure
- VMware
Containers
- Docker
- Kubernetes
- OpenShift
CPUs
- ARM (64 bit)
- PowerPC (64 bit)
- x86 (64 bit)
Operating Systems
- Alpine Linux
- Amazon Linux
- CentOS
- Debian
- FreeBSD
- Oracle Linux
- RHEL
- SUSE
- Ubuntu
*NGINX App Protect WAF is based on F5’s market-leading WAF technology. Additional Cost.
Bold features are exclusive to NGINX Plus
If you need expert assistance with NGINX®—WorldTech IT offers enterprise-class NGINX® and NGINX Plus® Professional Services / Consulting and options for emergency support through our Always-On program. Our engineers combine extensive experience in the application delivery and security space with broad expertise in the Linux and open-source community.