F5 Guardian Unity Partner
Home » NGINX Plus Datasheet

Your business no longer just depends on the applications you build, it is the applications you build. Every business is now a digital business, and the applications you build play a critical role in your company’s future. But building applications is only the half the battle; success or failure depends on how well you deploy, secure, and scale your applications.

NGINX Plus extends NGINX Open Source with advanced functionality and award‑winning support, providing customers with a complete application delivery solution. NGINX Plus combines a load balancer, content cache, web server, security controls, and rich application monitoring and management into one easy-to-use software package.

Also check out other solution briefs for NGINX Plus:

Sizing Guide for Deploying NGINX Plus on Bare Metal Servers

Sizing Guide for Deploying NGINX Plus in Virtualized Environments

NGINX Plus on Arm‑Based AWS Graviton2 AMIs

The NGINX Plus Datasheet continues below:

If You Like NGINX, You’ll Love NGINX Plus

Every company is a technology company. The applications you build play a critical role in your company’s future. But building applications is only half the battle; success or failure depends on how well you deploy, secure, and scale your applications.

NGINX Plus is the only all-in-one API gateway, cache, load balancer, web application firewall (WAF), and web server. NGINX Plus extends NGINX Open Source with exclusive features and award-winning support, providing customers with a complete application delivery solution.

Why NGINX Plus?

Consolidation

Reduce complexity and simplify management by consolidating load balancer, API gateway, and WAF into a single elastic ingress/egress tier

Modernization

Build a high-performance, adaptable, software-first IT infrastructure aligned to DevOps and modern app architectures

Flexibility

Deploy anywhere. Multi-cloud: AWS, Azure, GCP, and VMware. Containers: Docker, Kubernetes, and OpenShift.

Features

Authentication

  • HTTP Basic Authentication
  • HTTP authentication subrequests
  • X.509 client certificate authentication
  • NTLM authentication
  • Encrypted JSON Web Token (JWT, JWE) validation
    support
  • OpenID Connect
  • Single sign-on: Keycloak, Okta, OneLogin, Ping Identity, most IdPs

Content Cache

  • Cache static and dynamic content
  • Micro and byte-range caching
  • Serve content when origin is unavailable;
    improves uptime
  • Override or set Cache-Control headers
  • Cache purging

High Availability

  • Active-active and active-passive HA modes
  • Configuration synchronization
  • State sharing: sticky-learn session persistence,
    rate limiting, and key-value stores
  • Easy installation with built-in script

Load Balancer

  • HTTP, TCP, and UDP load balancing
  • Random with Two Choices, Round Robin, and
    Least Connections algorithms
  • Passive health checks
  • IP Hash session persistence
  • IP transparency
  • Direct Server Return (DSR)
  • Layer 7 request routing
  • Least Time algorithm, can be used with
    Random with Two Choices
  • Active HTTP, TCP, and UDP health checks
    • Customizable HTTP status code check
    • Regex pattern matching on HTTP response body
    • TCP Connect health check
  • Sticky-cookie (insertion and learning) and
  • Sticky-route session persistence
  • Service discovery using DNS

Monitoring

  • Stub status module with 7 aggregated metrics
  • Extended status with over 150 unique metrics
  • Real-time graphical dashboard
  • JSON output for integration with custom
    monitoring tools

Programmability

  • NGINX JavaScript module for scripting and advanced
    configurations
  • Lua scripting language
  • Ansible, Chef, and Puppet integration
  • Key-value store for dynamic configuration
  • NGINX Plus API for managing upstream servers,
    key-value stores, and metrics
  • Dynamic reconfiguration without process reloads

Security Controls

  • Request, connection, and bandwidth limiting
  • IP address access control list (ACL)
  • Dual stack RSA/ECC SSL/TLS offloading
  • Server-side SSL/TLS encryption
  • TLS 1.3 support
  • Mutual TLS termination and proxying
  • Secure links
  • Dynamic DDoS mitigation
  • F5 Device ID+ integration
  • NGINX App Protect WAF module*

Streaming Media

  • Live: RTMP, HTTP Live Streaming (HLS), DASH
  • VoD: Flash (flv), MP4
  • Adaptive-bitrate VOD: HLS, Adobe HTTP Dynamic
  • Streaming (HDS)
  • Bandwidth controls for MP4 streaming

Third-Party Integrations

  • Kubernetes Ingress Controller
  • OpenShift Router
  • Third-party modules: Headers-More, Set-Misc, etc.
  • Certified modules: 51Degrees, ForgeRock, etc.

Web Server/Reverse Proxy

  • Serve static content with low memory footprint
  • Reverse proxy gRPC, HTTP, Memcached, PHP-FPM,
    SCGI, and uwsgi servers
  • IP address geolocation (requires MaxMind GeoIP database)
  • HTTP/2 termination and HTTP/2 server push

Supported Environments

Cloud

  • Amazon Web Services (AWS)
  • Google Cloud Platform (GCP)
  • Microsoft Azure
  • VMware

Containers

  • Docker
  • Kubernetes
  • OpenShift

CPUs

  • ARM (64 bit)
  • PowerPC (64 bit)
  • x86 (64 bit)

Operating Systems

  • Alpine Linux
  • Amazon Linux
  • CentOS
  • Debian
  • FreeBSD
  • Oracle Linux
  • RHEL
  • SUSE
  • Ubuntu

*NGINX App Protect WAF is based on F5’s market-leading WAF technology. Additional Cost.

Bold features are exclusive to NGINX Plus

If you need expert assistance with NGINX®—WorldTech IT offers enterprise-class NGINX® and NGINX Plus® Professional Services / Consulting and options for emergency support through our Always-On program. Our engineers combine extensive experience in the application delivery and security space with broad expertise in the Linux and open-source community.