NI
Uploaded byNGINX, Inc.
PDF, PPTX999 views

How to Get Started With NGINX

The document provides a comprehensive guide on getting started with Nginx, detailing its installation and configuration as a web server, reverse proxy, and load balancer. It covers installation steps for various operating systems, commands for managing Nginx, and configuration examples for serving web applications and handling upstream requests. Additionally, it discusses advanced features like active health checks, rate limiting, and resources for further learning.

Download as PDF, PPTX
How to Get Started With NGINX Install and configure a web server, reverse proxy and load balancer JayDesai Solutions Architect, Melbourne, Australia
| ©2019 F5 2 Today’sHost Jay Desai • Technical Solutions Architect, Melbourne - Australia
| ©2019 F5 3 Agenda 1. Introducing NGINX 2. Install NGINX 3. ConfigureWeb Server 4. ConfigureReverse Proxy 5. ConfigureLoad Balancer 6. Link to Resources
| ©2019 F5 4 NGINX– EvolutionMap 2004 •NGINX0.1 2007 •“Viable” 2011 •NGINX, Inc. •NGINX 1.0 2013 •NGINX Plus R1 First Commercial Offering 2018 •NGINX Unit 1.0 •Controller 1.0 2019 •Controller 2.0 (API mgmt.) •NGINX Plus R18 •Acquired by F5 Networks 2020 •Controller 3.4 •NGINX Plus R22 •APP Protect
| ©2019 F5 5 #1 450 million Source: NetcraftMay2020 Web ServerSurvey “Mostwebsitesuse NGINX”
| ©2019 F5 6 NGINX- Embracinga Multitudeof UseCases Web Server Reverse Proxy Load Balancer Cache Web Application Firewall Internal DDOS Protection API Gateway K8s IC Sidecar Proxy
| ©2019 F5 7 Let’s workshop!
| ©2019 F5 8 EnterpriseArchitecture Client / Browser Internet / WAN NGINX: Reverse Proxy, Load Balancer & Web Server Backend Services / Applications
| ©2019 F5 9 Whatwe’regoingto build Client / Browser + Internet NGINX: Reverse Proxy, Load Balancer & Web Server Other Services / Applications Some Services / Applications +
| ©2019 F5 10 • Laptop • Internet connection • Linuxhost / VM / Docker • NGINX already installed? −$ nginx -v Confidential – Do Not Distribute Whatwillyou need
| ©2019 F5 11 CONFIDENTIAL InstallingNGINX(simple) CentOS / RHEL • yum install nginx Ubuntu / Debian • apt-get installnginx Docker • docker pull nginx MacOS / MacBook • Use a VM or Docker $ docker run --name mynginx -d -p 8080:80 nginx
| ©2019 F5 12 CONFIDENTIAL WhatI willactuallydo $ sudo wget https://nginx.org/keys/nginx_signing.key $ sudo apt-key add nginx_signing.key $ sudo vi /etc/apt/sources.list deb https://nginx.org/packages/mainline/ubuntu/ bionic nginx deb-src https://nginx.org/packages/mainline/ubuntu/ bionic nginx $ sudo apt-get update $ sudo apt-get install nginx $ sudo service nginx start $ nginx –v nginx version: nginx/1.19.0 $ curl -I 127.0.0.1 HTTP/1.1 200 OK Server: nginx/1.19.0 https://docs.nginx.com/nginx/admin-guide/installing-nginx/installing-nginx-open-source/#prebuilt_ubuntu
| ©2019 F5 13 CONFIDENTIAL Some UsefulNGINXCommands $ sudo service nginx {start|stop|status|restart|reload|force-reload|upgrade|configtest|check- reload} $ sudo nginx –v #version of NGINX $ sudo nginx –V #version & Enabled Modules $ sudo nginx –t #nginx configuration test $ sudo nginx –T #Full configuration dump
| ©2019 F5 14 Status: Now we have successfully Installed NGINX Next: ConfigureWeb Server
| ©2019 F5 15 $ curl http://localhost <!DOCTYPE html> <html> <head> <title>Welcome to nginx!</title> <style> body { width: 35em; margin: 0 auto; font-family: Tahoma, Verdana, Arial, sans-serif; } </style> </head> <body> <h1>Welcome to nginx!</h1> <p>If you see this page, the nginx web server is successfully installed and working. Further configuration is required.</p> <p>For online documentation and support please refer to <a href="http://nginx.org/">nginx.org</a>.<br/> Commercial support is available at <a href="http://nginx.com/">nginx.com</a>.</p> <p><em>Thank you for using nginx.</em></p> </body> </html>
| ©2019 F5 16 Checking/etc/nginx/nginx.conf Exists Has http{} block • Contains include /etc/nginx/conf.d/*.conf; Sample here → /etc/nginx/nginx.conf 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 user nginx; worker_processes auto; error_log /var/log/nginx/error.log notice; pid /var/run/nginx.pid; events { worker_connections 1024; } http { include /etc/nginx/mime.types; default_type application/octet-stream; log_format main '$remote_addr - $remote_user [$time_local] "$request" ' '$status $body_bytes_sent "$http_referer" ' '"$http_user_agent" "$http_x_forwarded_for"'; access_log /var/log/nginx/access.log main; sendfile on; keepalive_timeout 65; include /etc/nginx/conf.d/*.conf; _ }
| ©2019 F5 17 ServingContent– WebServer • Inspectdefault.conf • Cleanupdefault.conf • Remove#commentedoutcontent /etc/nginx/conf.d/default.conf 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 server { listen 80; server_name localhost; location / { root /usr/share/nginx/html; index index.html index.htm; } error_page 500 502 503 504 /50x.html; location = /50x.html { root /usr/share/nginx/html; } } $ sudo nginx –t nginx: the configuration file /etc/nginx/nginx.conf syntax is ok nginx: configuration file /etc/nginx/nginx.conf test is successful $ sudo nginx –s reload
| ©2019 F5 18 CONFIDENTIAL Createindex.htmlfile– APP1 $ cd /opt $ sudo mkdir services $ cd services $ sudo mkdir App1 $ sudo mkdir App2 $ cd App1 $ sudo touch index.html $ sudo vim index.html Copy This → SAVE /opt/services/App1/index.html 1 2 3 4 5 6 7 8 9 10 11 12 13 14 151 6 17 18 <!doctypehtml> <html lang="en-US"> <head> <link rel="icon" type="image/png" href="https://www.nginx.com/wp- content/uploads/2019/10/favicon-48x48.ico"sizes="48x48"> <h1>This is my APP 1</h1> <style> body{ background-color:#FF0000;} </style> <title>RED - APP 1</title> </head> </html>
| ©2019 F5 19 CONFIDENTIAL Createindex.htmlfile– APP2 $ cd /opt/services/App2 $ sudo touch index.html $ sudo vim index.html Copy This → SAVE /opt/services/App1/index.html 1 2 3 4 5 6 7 8 9 10 11 12 13 14 151 6 17 18 <!doctypehtml> <html lang="en-US"> <head> <link rel="icon" type="image/png" href="https://www.nginx.com/wp- content/uploads/2019/10/favicon-48x48.ico"sizes="48x48"> <h1>This is my APP 2</h1> <style> body{ background-color:#00FF00;} </style> <title>RED - APP 2</title> </head> </html>
| ©2019 F5 20 CONFIDENTIAL Editing – default.conf • Inspect default.conf $ cd /etc/nginx/conf.d $ sudo mv default.conf b2b.conf $ sudo vim /etc/nginx/conf.d/b2b.conf Copy This → /etc/nginx/conf.d/b2b.conf 1 2 3 4 5 6 7 8 9 10 11 12 13 14 151 6 17 18 19 20 21 22 23 24 25 26 server { listen 8001 default_server; server_name localhost; location / { root /opt/services/App1; index index.html index.htm; } } server { listen 8002 default_server; server_name localhost; location / { root /opt/services/App2; index index.html index.htm; } } $ sudo nginx –t nginx: the configuration file /etc/nginx/nginx.conf syntax is ok nginx: configuration file /etc/nginx/nginx.conf test is successful $ sudo nginx –s reload
| ©2019 F5 21 $ curl http://localhost:8001 <!doctype html> <html lang="en-US"> . <h1>This is my APP 1</h1> . $ curl http://localhost:8002 <!doctype html> <html lang="en-US"> . <h1>This is my APP 2</h1> .
| ©2019 F5 22 Status: We are serving two applications/services Next: ConfigureReverseProxy & Load Balancer
| ©2019 F5 23 Configuringupstream /etc/nginx/conf.d/b2b.conf upstream backend_servers { zone backend_server_zone 64k; server localhost:8001; server localhost:8002; } server { listen 8080 default_server; server_name localhost; location / { proxy_pass http://backend_servers/; } } server { listen 8001 default_server; server_name localhost; index index.html index.htm; location / { root /opt/services/App1; index index.html index.htm; } } server { listen 8002 default_server; server_name localhost; index index.html index.htm; location / { root /opt/services/App2; index index.html index.htm; } } $ sudo vim /etc/nginx/conf.d/b2b.conf $ sudo nginx –t nginx: the configuration file /etc/nginx/nginx.conf syntax is ok nginx: configuration file /etc/nginx/nginx.conf test is successful $ sudo nginx –s reload
| ©2019 F5 24 $ curl http://localhost:8080 <!doctype html> <html lang="en-US"> . <h1>This is my APP 1</h1> . $ curl http://localhost:8080 <!doctype html> <html lang="en-US"> . <h1>This is my APP 2</h1> .
| ©2019 F5 25 Configuringupstream: AddingServers /etc/nginx/conf.d/b2b.conf upstream backend_servers { zone backend_server_zone 64k; least_conn; server localhost:8001; server localhost:8002; www.jdaus.net:9083; } server { listen 8080 default_server; server_name localhost; location / { proxy_pass http://backend_servers/; } } server { listen 8001 default_server; server_name localhost; index index.html index.htm; location / { root /opt/services/App1; index index.html index.htm; } } server { listen 8002 default_server; server_name localhost; index index.html index.htm; location / { root /opt/services/App2; index index.html index.htm; } $ sudo vim /etc/nginx/conf.d/b2b.conf $ sudo nginx –t nginx: the configuration file /etc/nginx/nginx.conf syntax is ok nginx: configuration file /etc/nginx/nginx.conf test is successful $ sudo nginx –s reload
| ©2019 F5 26 $ curl http://localhost:8080 <!doctype html> <html lang="en-US"> . <h1>This is my APP 1</h1> . $ curl http://localhost:8080 <!doctype html> <html lang="en-US"> . <h1>This is my APP 2</h1> .
| ©2019 F5 27 Status: Now we have configured Web Server, Reverse Proxy & Load Balancer Next: Unique Features
| ©2019 F5 28 Shifting to NGINX PLUS
| ©2019 F5 29 LiveActivityMonitoring • Configuring the Dashboard /etc/nginx/conf.d/b2b.conf . . . . . . . . . . . . server { listen 8005 default_server; server_name localhost; location /api/ { api write=on; allow all; #deny all; } location / { root /usr/share/nginx/html; index dashboard.html; } } # End of file b2b.conf NGINX Plus - ONLY $ sudo nginx –t nginx: the configuration file /etc/nginx/nginx.conf syntax is ok nginx: configuration file /etc/nginx/nginx.conf test is successful $ sudo nginx –s reload
| ©2019 F5 30 ActiveHealthCheck • Actively monitors all upstream server locations • Default – 5 seconds health_check interval=10 fails=3 passes=2; /etc/nginx/conf.d/b2b.conf . . . server { listen 8080 default_server; server_name localhost; location / { proxy_pass http://backend_servers/; health_check; } } . . . NGINX Plus - ONLY $ sudo nginx –t nginx: the configuration file /etc/nginx/nginx.conf syntax is ok nginx: configuration file /etc/nginx/nginx.conf test is successful $ sudo nginx –s reload
| ©2019 F5 31 Zero DowntimeConfigReloads • Adding a new upstream • Zero Downtime for active streams /etc/nginx/conf.d/b2b.conf 1 2 3 4 5 6 7 8 9 upstream backend_servers{ zone backend_server_zone 64k; least_conn; serverlocalhost:8001; serverlocalhost:8002; www.jdaus.net:9083; #INSERTTHE FOLLOWING UPSTREAM www.jdaus.net:9084; } NGINX Plus - ONLY $ sudo nginx –t nginx: the configuration file /etc/nginx/nginx.conf syntax is ok nginx: configuration file /etc/nginx/nginx.conf test is successful $ sudo nginx –s reload
| ©2019 F5 32 RateLimiting Rate limit is configured and monitored at a global level Limit is applied where we want it • Per API gateway • Per API definition • Per URI/route /etc/nginx/conf.d/b2b.conf limit_req_zone $remote_addrzone=perip:1m rate=2r/s; upstream backend_servers{ zone backend_server_zone 64k; . . . server { listen 8000 default_server; server_name localhost; location / { proxy_pass http://backend_servers/; health_check; limit_req zone=perip nodelay; limit_req_status 429; } } . . .
| ©2019 F5 33 $ nginx -s reload $ curl http://localhost:8000 <!doctype html> <html lang="en-US"> <head>… $ !!;!!;!!;!!;!! {"status":429,"message":”Rate limit exceeded"}
| ©2019 F5 34 How did we do? 1. Installing NGINX 2. Configuring Webserver 3. Configure Reverse Proxy & Load Balancer 4. Active Health Check 5. Zero Downtime Configuration Reloads
| ©2019 F5 35 Resources OfficialNGINX open sourcedownloads • http://nginx.org/en/linux_packages.html NGINX Plus Trial License • https://www.nginx.com/free-trial-request/ GettingStartedwith NGINX Guides • https://www.nginx.com/resources/wiki/start/ • http://nginx.org/en/docs/beginners_guide.html
How to Get Started With NGINX

More Related Content

PPTX
5 things you didn't know nginx could do
bysarahnovotny
 
PPTX
NGINX Installation and Tuning
byNGINX, Inc.
 
PPTX
Nginx A High Performance Load Balancer, Web Server & Reverse Proxy
byAmit Aggarwal
 
PDF
Introduction to Node.js
byRob O'Doherty
 
PPT
XSS - Attacks & Defense
byBlueinfy Solutions
 
PDF
W3C Content Security Policy
byMarkus Wichmann
 
ODP
Introduction to Nginx
byKnoldus Inc.
 
PPTX
Learn nginx in 90mins
byLarry Cai
 
5 things you didn't know nginx could do
bysarahnovotny
 
NGINX Installation and Tuning
byNGINX, Inc.
 
Nginx A High Performance Load Balancer, Web Server & Reverse Proxy
byAmit Aggarwal
 
Introduction to Node.js
byRob O'Doherty
 
XSS - Attacks & Defense
byBlueinfy Solutions
 
W3C Content Security Policy
byMarkus Wichmann
 
Introduction to Nginx
byKnoldus Inc.
 
Learn nginx in 90mins
byLarry Cai
 

What's hot

PPTX
Docker Security workshop slides
byDocker, Inc.
 
PPTX
Containers as a Service with Docker
byDocker, Inc.
 
PPTX
Introduction to NGINX web server
byMd Waresul Islam
 
PPTX
Introduction to Node js
byAkshay Mathur
 
ODP
Kong API Gateway
byChris Mague
 
PDF
Nginx Essential
byGong Haibing
 
PPTX
OWASP ZAP Workshop for QA Testers
byJavan Rasokat
 
PPTX
XSS - Do you know EVERYTHING?
byYurii Bilyk
 
PPT
Docker introduction
byPhuc Nguyen
 
PPTX
Docker: From Zero to Hero
byfazalraja
 
PPTX
NGINX: Basics & Best Practices - EMEA Broadcast
byNGINX, Inc.
 
PDF
Introduction to Docker
byAditya Konarde
 
PDF
NGINX: Basics and Best Practices EMEA
byNGINX, Inc.
 
PPTX
Docker
byA.K.M. Ahsrafuzzaman
 
PDF
Cross Origin Resource Sharing
byLuke Weerasooriya
 
PPTX
Reverse proxies & Inconsistency
byGreenD0g
 
PDF
Docker vs VM | | Containerization or Virtualization - The Differences | DevOp...
byEdureka!
 
PPTX
Nginx
byGeeta Vinnakota
 
PDF
XSS Magic tricks
byGarethHeyes
 
PDF
Preventing XSS with Content Security Policy
byKsenia Peguero
 
Docker Security workshop slides
byDocker, Inc.
 
Containers as a Service with Docker
byDocker, Inc.
 
Introduction to NGINX web server
byMd Waresul Islam
 
Introduction to Node js
byAkshay Mathur
 
Kong API Gateway
byChris Mague
 
Nginx Essential
byGong Haibing
 
OWASP ZAP Workshop for QA Testers
byJavan Rasokat
 
XSS - Do you know EVERYTHING?
byYurii Bilyk
 
Docker introduction
byPhuc Nguyen
 
Docker: From Zero to Hero
byfazalraja
 
NGINX: Basics & Best Practices - EMEA Broadcast
byNGINX, Inc.
 
Introduction to Docker
byAditya Konarde
 
NGINX: Basics and Best Practices EMEA
byNGINX, Inc.
 
Docker
byA.K.M. Ahsrafuzzaman
 
Cross Origin Resource Sharing
byLuke Weerasooriya
 
Reverse proxies & Inconsistency
byGreenD0g
 
Docker vs VM | | Containerization or Virtualization - The Differences | DevOp...
byEdureka!
 
Nginx
byGeeta Vinnakota
 
XSS Magic tricks
byGarethHeyes
 
Preventing XSS with Content Security Policy
byKsenia Peguero
 

Similar to How to Get Started With NGINX

PPTX
NGINX: Back to Basics – APCJ
byNGINX, Inc.
 
PDF
ITB2019 NGINX Overview and Technical Aspects - Kevin Jones
byOrtus Solutions, Corp
 
PDF
NGINX ADC: Basics and Best Practices
byNGINX, Inc.
 
PPTX
NGINX 101 - now with more Docker
bysarahnovotny
 
PPTX
NGINX 101 - now with more Docker
bySarah Novotny
 
PDF
NGINX ADC: Basics and Best Practices – EMEA
byNGINX, Inc.
 
PPTX
NGINX: Basics and Best Practices
byNGINX, Inc.
 
DOCX
Installing lemp with ssl and varnish on Debian 9
byعطاءالمنعم اثیل شیخ
 
PPTX
NGINX: High Performance Load Balancing
byNGINX, Inc.
 
PDF
How to Set Up Nginx Server Blocks on Ubuntu 2404.pdf
byGreen Webpage
 
PPTX
NGINX: High Performance Load Balancing
byNGINX, Inc.
 
PDF
Complete-NGINX-Cookbook-2019.pdf
byTomaszWojciechowski22
 
PPTX
Load Balancing Container with Nginx
byKumar Mayank
 
PPTX
Drupal 8 and NGINX
byNGINX, Inc.
 
KEY
Nginx - Tips and Tricks.
byHarish S
 
PPTX
Nginx Deep Dive Kubernetes Ingress
byKnoldus Inc.
 
PPTX
How to Avoid the Top 5 NGINX Configuration Mistakes.pptx
byNGINX, Inc.
 
PPTX
How to Avoid the Top 5 NGINX Configuration Mistakes
byNGINX, Inc.
 
KEY
Nginx in production
byGraham Weldon
 
PDF
Install nginx on ubuntu 21.04 server
byLinuxConcept
 
NGINX: Back to Basics – APCJ
byNGINX, Inc.
 
ITB2019 NGINX Overview and Technical Aspects - Kevin Jones
byOrtus Solutions, Corp
 
NGINX ADC: Basics and Best Practices
byNGINX, Inc.
 
NGINX 101 - now with more Docker
bysarahnovotny
 
NGINX 101 - now with more Docker
bySarah Novotny
 
NGINX ADC: Basics and Best Practices – EMEA
byNGINX, Inc.
 
NGINX: Basics and Best Practices
byNGINX, Inc.
 
Installing lemp with ssl and varnish on Debian 9
byعطاءالمنعم اثیل شیخ
 
NGINX: High Performance Load Balancing
byNGINX, Inc.
 
How to Set Up Nginx Server Blocks on Ubuntu 2404.pdf
byGreen Webpage
 
NGINX: High Performance Load Balancing
byNGINX, Inc.
 
Complete-NGINX-Cookbook-2019.pdf
byTomaszWojciechowski22
 
Load Balancing Container with Nginx
byKumar Mayank
 
Drupal 8 and NGINX
byNGINX, Inc.
 
Nginx - Tips and Tricks.
byHarish S
 
Nginx Deep Dive Kubernetes Ingress
byKnoldus Inc.
 
How to Avoid the Top 5 NGINX Configuration Mistakes.pptx
byNGINX, Inc.
 
How to Avoid the Top 5 NGINX Configuration Mistakes
byNGINX, Inc.
 
Nginx in production
byGraham Weldon
 
Install nginx on ubuntu 21.04 server
byLinuxConcept
 

More from NGINX, Inc.

PDF
【NGINXセミナー】 Ingressを使ってマイクロサービスの運用を楽にする方法
byNGINX, Inc.
 
PDF
【NGINXセミナー】 NGINXのWAFとは?その使い方と設定方法 解説セミナー
byNGINX, Inc.
 
PDF
【NGINXセミナー】API ゲートウェイとしてのNGINX Plus活用方法
byNGINX, Inc.
 
PPTX
Get Hands-On with NGINX and QUIC+HTTP/3
byNGINX, Inc.
 
PPTX
Managing Kubernetes Cost and Performance with NGINX & Kubecost
byNGINX, Inc.
 
PDF
Manage Microservices Chaos and Complexity with Observability
byNGINX, Inc.
 
PDF
Accelerate Microservices Deployments with Automation
byNGINX, Inc.
 
PDF
Unit 2: Microservices Secrets Management 101
byNGINX, Inc.
 
PDF
Unit 1: Apply the Twelve-Factor App to Microservices Architectures
byNGINX, Inc.
 
PDF
NGINX基本セミナー(セキュリティ編)~NGINXでセキュアなプラットフォームを実現する方法!
byNGINX, Inc.
 
PDF
Easily View, Manage, and Scale Your App Security with F5 NGINX
byNGINX, Inc.
 
PDF
NGINXセミナー(基本編)~いまさら聞けないNGINXコンフィグなど基本がわかる!
byNGINX, Inc.
 
PDF
Keep Ahead of Evolving Cyberattacks with OPSWAT and F5 NGINX
byNGINX, Inc.
 
PPTX
Install and Configure NGINX Unit, the Universal Application, Web, and Proxy S...
byNGINX, Inc.
 
PPTX
Protecting Apps from Hacks in Kubernetes with NGINX
byNGINX, Inc.
 
PPTX
NGINX Kubernetes API
byNGINX, Inc.
 
PPTX
Successfully Implement Your API Strategy with NGINX
byNGINX, Inc.
 
PPTX
Installing and Configuring NGINX Open Source
byNGINX, Inc.
 
PPTX
Shift Left for More Secure Apps with F5 NGINX
byNGINX, Inc.
 
PDF
Kubernetes環境で実現するWebアプリケーションセキュリティ
byNGINX, Inc.
 
【NGINXセミナー】 Ingressを使ってマイクロサービスの運用を楽にする方法
byNGINX, Inc.
 
【NGINXセミナー】 NGINXのWAFとは?その使い方と設定方法 解説セミナー
byNGINX, Inc.
 
【NGINXセミナー】API ゲートウェイとしてのNGINX Plus活用方法
byNGINX, Inc.
 
Get Hands-On with NGINX and QUIC+HTTP/3
byNGINX, Inc.
 
Managing Kubernetes Cost and Performance with NGINX & Kubecost
byNGINX, Inc.
 
Manage Microservices Chaos and Complexity with Observability
byNGINX, Inc.
 
Accelerate Microservices Deployments with Automation
byNGINX, Inc.
 
Unit 2: Microservices Secrets Management 101
byNGINX, Inc.
 
Unit 1: Apply the Twelve-Factor App to Microservices Architectures
byNGINX, Inc.
 
NGINX基本セミナー(セキュリティ編)~NGINXでセキュアなプラットフォームを実現する方法!
byNGINX, Inc.
 
Easily View, Manage, and Scale Your App Security with F5 NGINX
byNGINX, Inc.
 
NGINXセミナー(基本編)~いまさら聞けないNGINXコンフィグなど基本がわかる!
byNGINX, Inc.
 
Keep Ahead of Evolving Cyberattacks with OPSWAT and F5 NGINX
byNGINX, Inc.
 
Install and Configure NGINX Unit, the Universal Application, Web, and Proxy S...
byNGINX, Inc.
 
Protecting Apps from Hacks in Kubernetes with NGINX
byNGINX, Inc.
 
NGINX Kubernetes API
byNGINX, Inc.
 
Successfully Implement Your API Strategy with NGINX
byNGINX, Inc.
 
Installing and Configuring NGINX Open Source
byNGINX, Inc.
 
Shift Left for More Secure Apps with F5 NGINX
byNGINX, Inc.
 
Kubernetes環境で実現するWebアプリケーションセキュリティ
byNGINX, Inc.
 

Recently uploaded

PDF
Vibe Coding and AI-Assisted Development (Ploneconf 2025, Lightning Talk)
bykitconcept GmbH
 
PPTX
Which Tableau Alternative Offers Better Customization and Embeddability.pptx
byVarsha Nayak
 
PPTX
Standardization of open-source software ISO/IEC 5230:2020 and ISO/IEC 18974:2...
byShane Coughlan
 
PPTX
Financial Literacy for Software Developers
byBalanathanVirupasan
 
PDF
The 50+ First-Timer: My OpenTelemetry Contribution and How Your CNCF Journey...
byImma Valls Bernaus
 
PDF
What Writing 250+ Blog Posts Taught Me About Artificial Intelligence.pdf
byMarkus Eisele
 
PDF
Dreamforce 2025: Welcome to the Agentic Enterprise
byDele Amefo
 
PDF
Transform Salesforce Workflows: The Basics You Must Know to Deploy AI Agents
byCymetrix Software
 
PDF
VADY Invoice Intelligence — From Unstructured PDFs to Decision-Ready Business...
byNewFangledVision
 
PDF
ASTC Conference 2025 - Bridging the Gap!
byGareth Oakes
 
PDF
Performance Testing and observability in Grafana Cloud
byImma Valls Bernaus
 
PDF
Top Tech Stacks for Developing Scalable Social Networking Apps.pdf
byOlivia Rose
 
PDF
The journey from (not)REST to GraphQL at scale - The Deezer experience
byLoïc Doubinine
 
PDF
Best Tableau Alternatives for Data Analytics and Reporting.pdf
byVarsha Nayak
 
PPTX
Foundations of Marketo Engage - Professional Exam Preparation - October 2025
bybbedford2
 
PPTX
An Introduction to C Programming Language
byAlonTashobya
 
PDF
The 50+ First-Timer: It’s never too late for Open Source!
byImma Valls Bernaus
 
PDF
End-to-End Payroll Processing Checklist for Growing Businesses.pdf
byCRMLeaf
 
PDF
BoSUSA25 | Ivan Vargas | Top 15 Reasons the Vibes are Off With Vibe Coding
byBusiness of Software Conference
 
PDF
Salesforce Integration Consultant​.pdf
byRobert Mark
 
Vibe Coding and AI-Assisted Development (Ploneconf 2025, Lightning Talk)
bykitconcept GmbH
 
Which Tableau Alternative Offers Better Customization and Embeddability.pptx
byVarsha Nayak
 
Standardization of open-source software ISO/IEC 5230:2020 and ISO/IEC 18974:2...
byShane Coughlan
 
Financial Literacy for Software Developers
byBalanathanVirupasan
 
The 50+ First-Timer: My OpenTelemetry Contribution and How Your CNCF Journey...
byImma Valls Bernaus
 
What Writing 250+ Blog Posts Taught Me About Artificial Intelligence.pdf
byMarkus Eisele
 
Dreamforce 2025: Welcome to the Agentic Enterprise
byDele Amefo
 
Transform Salesforce Workflows: The Basics You Must Know to Deploy AI Agents
byCymetrix Software
 
VADY Invoice Intelligence — From Unstructured PDFs to Decision-Ready Business...
byNewFangledVision
 
ASTC Conference 2025 - Bridging the Gap!
byGareth Oakes
 
Performance Testing and observability in Grafana Cloud
byImma Valls Bernaus
 
Top Tech Stacks for Developing Scalable Social Networking Apps.pdf
byOlivia Rose
 
The journey from (not)REST to GraphQL at scale - The Deezer experience
byLoïc Doubinine
 
Best Tableau Alternatives for Data Analytics and Reporting.pdf
byVarsha Nayak
 
Foundations of Marketo Engage - Professional Exam Preparation - October 2025
bybbedford2
 
An Introduction to C Programming Language
byAlonTashobya
 
The 50+ First-Timer: It’s never too late for Open Source!
byImma Valls Bernaus
 
End-to-End Payroll Processing Checklist for Growing Businesses.pdf
byCRMLeaf
 
BoSUSA25 | Ivan Vargas | Top 15 Reasons the Vibes are Off With Vibe Coding
byBusiness of Software Conference
 
Salesforce Integration Consultant​.pdf
byRobert Mark
 

How to Get Started With NGINX

  • 1.
    How to GetStarted With NGINX Install and configure a web server, reverse proxy and load balancer JayDesai Solutions Architect, Melbourne, Australia
  • 2.
    | ©2019 F5 2 Today’sHost JayDesai • Technical Solutions Architect, Melbourne - Australia
  • 3.
    | ©2019 F5 3 Agenda 1.Introducing NGINX 2. Install NGINX 3. ConfigureWeb Server 4. ConfigureReverse Proxy 5. ConfigureLoad Balancer 6. Link to Resources
  • 4.
    | ©2019 F5 4 NGINX–EvolutionMap 2004 •NGINX0.1 2007 •“Viable” 2011 •NGINX, Inc. •NGINX 1.0 2013 •NGINX Plus R1 First Commercial Offering 2018 •NGINX Unit 1.0 •Controller 1.0 2019 •Controller 2.0 (API mgmt.) •NGINX Plus R18 •Acquired by F5 Networks 2020 •Controller 3.4 •NGINX Plus R22 •APP Protect
  • 5.
    | ©2019 F5 5 #1450 million Source: NetcraftMay2020 Web ServerSurvey “Mostwebsitesuse NGINX”
  • 6.
    | ©2019 F5 6 NGINX-Embracinga Multitudeof UseCases Web Server Reverse Proxy Load Balancer Cache Web Application Firewall Internal DDOS Protection API Gateway K8s IC Sidecar Proxy
  • 7.
  • 8.
    | ©2019 F5 8 EnterpriseArchitecture Client/ Browser Internet / WAN NGINX: Reverse Proxy, Load Balancer & Web Server Backend Services / Applications
  • 9.
    | ©2019 F5 9 Whatwe’regoingtobuild Client / Browser + Internet NGINX: Reverse Proxy, Load Balancer & Web Server Other Services / Applications Some Services / Applications +
  • 10.
    | ©2019 F5 10 •Laptop • Internet connection • Linuxhost / VM / Docker • NGINX already installed? −$ nginx -v Confidential – Do Not Distribute Whatwillyou need
  • 11.
    | ©2019 F5 11CONFIDENTIAL InstallingNGINX(simple) CentOS / RHEL • yum install nginx Ubuntu / Debian • apt-get installnginx Docker • docker pull nginx MacOS / MacBook • Use a VM or Docker $ docker run --name mynginx -d -p 8080:80 nginx
  • 12.
    | ©2019 F5 12CONFIDENTIAL WhatI willactuallydo $ sudo wget https://nginx.org/keys/nginx_signing.key $ sudo apt-key add nginx_signing.key $ sudo vi /etc/apt/sources.list deb https://nginx.org/packages/mainline/ubuntu/ bionic nginx deb-src https://nginx.org/packages/mainline/ubuntu/ bionic nginx $ sudo apt-get update $ sudo apt-get install nginx $ sudo service nginx start $ nginx –v nginx version: nginx/1.19.0 $ curl -I 127.0.0.1 HTTP/1.1 200 OK Server: nginx/1.19.0 https://docs.nginx.com/nginx/admin-guide/installing-nginx/installing-nginx-open-source/#prebuilt_ubuntu
  • 13.
    | ©2019 F5 13CONFIDENTIAL Some UsefulNGINXCommands $ sudo service nginx {start|stop|status|restart|reload|force-reload|upgrade|configtest|check- reload} $ sudo nginx –v #version of NGINX $ sudo nginx –V #version & Enabled Modules $ sudo nginx –t #nginx configuration test $ sudo nginx –T #Full configuration dump
  • 14.
    | ©2019 F5 14 Status: Nowwe have successfully Installed NGINX Next: ConfigureWeb Server
  • 15.
    | ©2019 F5 15 $curl http://localhost <!DOCTYPE html> <html> <head> <title>Welcome to nginx!</title> <style> body { width: 35em; margin: 0 auto; font-family: Tahoma, Verdana, Arial, sans-serif; } </style> </head> <body> <h1>Welcome to nginx!</h1> <p>If you see this page, the nginx web server is successfully installed and working. Further configuration is required.</p> <p>For online documentation and support please refer to <a href="http://nginx.org/">nginx.org</a>.<br/> Commercial support is available at <a href="http://nginx.com/">nginx.com</a>.</p> <p><em>Thank you for using nginx.</em></p> </body> </html>
  • 16.
    | ©2019 F5 16 Checking/etc/nginx/nginx.conf Exists Hashttp{} block • Contains include /etc/nginx/conf.d/*.conf; Sample here → /etc/nginx/nginx.conf 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 user nginx; worker_processes auto; error_log /var/log/nginx/error.log notice; pid /var/run/nginx.pid; events { worker_connections 1024; } http { include /etc/nginx/mime.types; default_type application/octet-stream; log_format main '$remote_addr - $remote_user [$time_local] "$request" ' '$status $body_bytes_sent "$http_referer" ' '"$http_user_agent" "$http_x_forwarded_for"'; access_log /var/log/nginx/access.log main; sendfile on; keepalive_timeout 65; include /etc/nginx/conf.d/*.conf; _ }
  • 17.
    | ©2019 F5 17 ServingContent–WebServer • Inspectdefault.conf • Cleanupdefault.conf • Remove#commentedoutcontent /etc/nginx/conf.d/default.conf 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 server { listen 80; server_name localhost; location / { root /usr/share/nginx/html; index index.html index.htm; } error_page 500 502 503 504 /50x.html; location = /50x.html { root /usr/share/nginx/html; } } $ sudo nginx –t nginx: the configuration file /etc/nginx/nginx.conf syntax is ok nginx: configuration file /etc/nginx/nginx.conf test is successful $ sudo nginx –s reload
  • 18.
    | ©2019 F5 18CONFIDENTIAL Createindex.htmlfile– APP1 $ cd /opt $ sudo mkdir services $ cd services $ sudo mkdir App1 $ sudo mkdir App2 $ cd App1 $ sudo touch index.html $ sudo vim index.html Copy This → SAVE /opt/services/App1/index.html 1 2 3 4 5 6 7 8 9 10 11 12 13 14 151 6 17 18 <!doctypehtml> <html lang="en-US"> <head> <link rel="icon" type="image/png" href="https://www.nginx.com/wp- content/uploads/2019/10/favicon-48x48.ico"sizes="48x48"> <h1>This is my APP 1</h1> <style> body{ background-color:#FF0000;} </style> <title>RED - APP 1</title> </head> </html>
  • 19.
    | ©2019 F5 19CONFIDENTIAL Createindex.htmlfile– APP2 $ cd /opt/services/App2 $ sudo touch index.html $ sudo vim index.html Copy This → SAVE /opt/services/App1/index.html 1 2 3 4 5 6 7 8 9 10 11 12 13 14 151 6 17 18 <!doctypehtml> <html lang="en-US"> <head> <link rel="icon" type="image/png" href="https://www.nginx.com/wp- content/uploads/2019/10/favicon-48x48.ico"sizes="48x48"> <h1>This is my APP 2</h1> <style> body{ background-color:#00FF00;} </style> <title>RED - APP 2</title> </head> </html>
  • 20.
    | ©2019 F5 20CONFIDENTIAL Editing – default.conf • Inspect default.conf $ cd /etc/nginx/conf.d $ sudo mv default.conf b2b.conf $ sudo vim /etc/nginx/conf.d/b2b.conf Copy This → /etc/nginx/conf.d/b2b.conf 1 2 3 4 5 6 7 8 9 10 11 12 13 14 151 6 17 18 19 20 21 22 23 24 25 26 server { listen 8001 default_server; server_name localhost; location / { root /opt/services/App1; index index.html index.htm; } } server { listen 8002 default_server; server_name localhost; location / { root /opt/services/App2; index index.html index.htm; } } $ sudo nginx –t nginx: the configuration file /etc/nginx/nginx.conf syntax is ok nginx: configuration file /etc/nginx/nginx.conf test is successful $ sudo nginx –s reload
  • 21.
    | ©2019 F5 21 $curl http://localhost:8001 <!doctype html> <html lang="en-US"> . <h1>This is my APP 1</h1> . $ curl http://localhost:8002 <!doctype html> <html lang="en-US"> . <h1>This is my APP 2</h1> .
  • 22.
    | ©2019 F5 22 Status: Weare serving two applications/services Next: ConfigureReverseProxy & Load Balancer
  • 23.
    | ©2019 F5 23 Configuringupstream /etc/nginx/conf.d/b2b.conf upstreambackend_servers { zone backend_server_zone 64k; server localhost:8001; server localhost:8002; } server { listen 8080 default_server; server_name localhost; location / { proxy_pass http://backend_servers/; } } server { listen 8001 default_server; server_name localhost; index index.html index.htm; location / { root /opt/services/App1; index index.html index.htm; } } server { listen 8002 default_server; server_name localhost; index index.html index.htm; location / { root /opt/services/App2; index index.html index.htm; } } $ sudo vim /etc/nginx/conf.d/b2b.conf $ sudo nginx –t nginx: the configuration file /etc/nginx/nginx.conf syntax is ok nginx: configuration file /etc/nginx/nginx.conf test is successful $ sudo nginx –s reload
  • 24.
    | ©2019 F5 24 $curl http://localhost:8080 <!doctype html> <html lang="en-US"> . <h1>This is my APP 1</h1> . $ curl http://localhost:8080 <!doctype html> <html lang="en-US"> . <h1>This is my APP 2</h1> .
  • 25.
    | ©2019 F5 25 Configuringupstream: AddingServers /etc/nginx/conf.d/b2b.conf upstreambackend_servers { zone backend_server_zone 64k; least_conn; server localhost:8001; server localhost:8002; www.jdaus.net:9083; } server { listen 8080 default_server; server_name localhost; location / { proxy_pass http://backend_servers/; } } server { listen 8001 default_server; server_name localhost; index index.html index.htm; location / { root /opt/services/App1; index index.html index.htm; } } server { listen 8002 default_server; server_name localhost; index index.html index.htm; location / { root /opt/services/App2; index index.html index.htm; } $ sudo vim /etc/nginx/conf.d/b2b.conf $ sudo nginx –t nginx: the configuration file /etc/nginx/nginx.conf syntax is ok nginx: configuration file /etc/nginx/nginx.conf test is successful $ sudo nginx –s reload
  • 26.
    | ©2019 F5 26 $curl http://localhost:8080 <!doctype html> <html lang="en-US"> . <h1>This is my APP 1</h1> . $ curl http://localhost:8080 <!doctype html> <html lang="en-US"> . <h1>This is my APP 2</h1> .
  • 27.
    | ©2019 F5 27 Status: Nowwe have configured Web Server, Reverse Proxy & Load Balancer Next: Unique Features
  • 28.
  • 29.
    | ©2019 F5 29 LiveActivityMonitoring •Configuring the Dashboard /etc/nginx/conf.d/b2b.conf . . . . . . . . . . . . server { listen 8005 default_server; server_name localhost; location /api/ { api write=on; allow all; #deny all; } location / { root /usr/share/nginx/html; index dashboard.html; } } # End of file b2b.conf NGINX Plus - ONLY $ sudo nginx –t nginx: the configuration file /etc/nginx/nginx.conf syntax is ok nginx: configuration file /etc/nginx/nginx.conf test is successful $ sudo nginx –s reload
  • 30.
    | ©2019 F5 30 ActiveHealthCheck •Actively monitors all upstream server locations • Default – 5 seconds health_check interval=10 fails=3 passes=2; /etc/nginx/conf.d/b2b.conf . . . server { listen 8080 default_server; server_name localhost; location / { proxy_pass http://backend_servers/; health_check; } } . . . NGINX Plus - ONLY $ sudo nginx –t nginx: the configuration file /etc/nginx/nginx.conf syntax is ok nginx: configuration file /etc/nginx/nginx.conf test is successful $ sudo nginx –s reload
  • 31.
    | ©2019 F5 31 ZeroDowntimeConfigReloads • Adding a new upstream • Zero Downtime for active streams /etc/nginx/conf.d/b2b.conf 1 2 3 4 5 6 7 8 9 upstream backend_servers{ zone backend_server_zone 64k; least_conn; serverlocalhost:8001; serverlocalhost:8002; www.jdaus.net:9083; #INSERTTHE FOLLOWING UPSTREAM www.jdaus.net:9084; } NGINX Plus - ONLY $ sudo nginx –t nginx: the configuration file /etc/nginx/nginx.conf syntax is ok nginx: configuration file /etc/nginx/nginx.conf test is successful $ sudo nginx –s reload
  • 32.
    | ©2019 F5 32 RateLimiting Ratelimit is configured and monitored at a global level Limit is applied where we want it • Per API gateway • Per API definition • Per URI/route /etc/nginx/conf.d/b2b.conf limit_req_zone $remote_addrzone=perip:1m rate=2r/s; upstream backend_servers{ zone backend_server_zone 64k; . . . server { listen 8000 default_server; server_name localhost; location / { proxy_pass http://backend_servers/; health_check; limit_req zone=perip nodelay; limit_req_status 429; } } . . .
  • 33.
    | ©2019 F5 33 $nginx -s reload $ curl http://localhost:8000 <!doctype html> <html lang="en-US"> <head>… $ !!;!!;!!;!!;!! {"status":429,"message":”Rate limit exceeded"}
  • 34.
    | ©2019 F5 34 Howdid we do? 1. Installing NGINX 2. Configuring Webserver 3. Configure Reverse Proxy & Load Balancer 4. Active Health Check 5. Zero Downtime Configuration Reloads
  • 35.
    | ©2019 F5 35 Resources OfficialNGINXopen sourcedownloads • http://nginx.org/en/linux_packages.html NGINX Plus Trial License • https://www.nginx.com/free-trial-request/ GettingStartedwith NGINX Guides • https://www.nginx.com/resources/wiki/start/ • http://nginx.org/en/docs/beginners_guide.html