Overview
Simplify your stack and deliver consistent high-performance apps and APIs reliably, securely and at scale with NGINX Plus and NGINX App Protect WAF and NGINX App Protect DoS, the all in one, lightweight, load balancer, reverse proxy, and API Gateway with Layer 7 WAF and DoS protection. Get your free 30-day trial today!
NGINX Plus can operate as a standalone solution or can be integrated with AWS services - such as existing load balancing solutions, Auto Scaling groups, and AWS Lambda - to reduce your application delivery and management costs. NGINX Plus provides enterprise-grade features such as session persistence configuration via API, and active health checks so that you can add advanced application load balancing, monitoring, and management to your AWS application stack.
Protecting your web applications is easy using NGINX App Protect, a lightweight, modern application and API, software security solution that seamlessly integrates security policies into DevOps environments to enable security as code as either a robust Web Application Firewall (WAF), and/or as a Layer 7 Denial of Service (DoS) defense. NGINX App Protect security solutions run natively on NGINX Plus to support all platforms, architectures and AWS hybrid environments while delivering consistent performance and protection across your entire infrastructure. Both NGINX App Protect WAF and NGINX App Protect DoS can be deployed in a variety of locations to protect your cloud-native apps which include at the Edge as a load balancer, reverse proxy, or embedded into the API gateway to reduce complexity, TCO, manual oversight and tool sprawl. Both security solutions can provide detailed observability and insights via security log integration with external SIEM tools. NGINX App Protect enables scalable application security and governance for web applications, microservices, cloud-native apps, and APIs to deliver strong security, high-performance and low latency across your AWS hybrid environments.
NGINX App Protect WAF seamlessly integrates security into your CI/CD pipelines enabling your organization to shift left for app security automation, reducing the cost of a breach by up to 80%, and to build more reliable, secure and risk adverse applications. Additionally, NGINX App Protect WAF goes beyond the basic OWASP Top 10 protection with advanced security that includes over 7,500 threat signatures, bot signatures, threat campaigns and Data Guard that masks personal identifiable information (PII), including credit card and social security numbers. NGINX App Protect WAF meets and exceeds PCI DSS requirements and helps your business avoid regulatory non-compliance and mitigate loss of reputation and revenue.
NGINX App Protect Denial of Service (DoS) is a dynamic software security module that uses eBPF with XDP technology to accelerate mitigation of app and API DoS/DDoS attacks at Layer 7. NGINX App Protect DoS is easy to implement, requiring minimal setup and configuration to get started, and can also be used as a standalone security solution and operate without the installation of NGINX App Protect WAF. Designed to defend traditional HTTP/HTTPS and modern HTTP2 applications, like gRPC and WebSocket, against even the most sophisticated DoS/DDoS attacks that include GET and POST flood attacks, Slowloris, Slow read, Slow POST, NAT evasion attacks and targeted SSL/TLS attacks.
NGINX App Protect DoS establishes a baseline for normal traffic patterns using a machine learning based algorithm and analysis of over 300 metrics related to client behavior and application/API health, to significantly reduce false positives. It constructs and deploys dynamic signatures to mitigate attacks automatically, then continuously measures mitigation effectiveness and adapts to changing behavior or health conditions. Attack details are shared among multiple NGINX Plus instances to help mitigate potential future attacks even if only one instance was attacked. NGINX App Protect DoS adaptive learning allows for no-touch policy configuration and delivers consistent DoS/DDoS protection to ensure zero-day protection. NGINX App Protect DoS provides a configurable, robust, multi-layered defense, to deliver the best strategy to mitigate attacks per individual application. This includes blocking IP addresses of bad actors, blocking bad requests with attack signatures, and applying global rate limiting as needed.
NGINX App Protect WAF and DoS security solutions help SecOps and DevOps teams work together in migrating towards a shift left or DevSecOps strategy by facilitating security as code for consistent app security automation. Each of these lightweight software packages provide a continuous feedback loop for threat mitigation effectiveness, enabling developer agility and empowering organizations to bring applications to market at speed without compromising on security.
Highlights
- NGINX App Protect WAF and DoS run natively on NGINX Plus and provide advanced security for cloud-native applications and APIs as lightweight, software security solutions that integrate seamlessly as security as code into your CI/CD pipelines, to deliver robust security, high-performance and low latency at scale across your AWS hybrid environments.
- NGINX Plus for Application Delivery: Is a reliable, lightweight and high-performance load balancer and reverse proxy that can be managed at scale.
- NGINX Plus as an API Gateway: Can route requests, authenticate API calls, apply rate limits and deliver APIs in real-time. NGINX App Protect DoS can be embedded within the API Gateway as a streamlined technology solution, reducing latency while delivering high performance in protecting your APIs from DoS attacks.
Details
Typical total price
$2.403/hour
Features and programs
Financing for AWS Marketplace purchases
Pricing
Free trial
- ...
Instance type | Product cost/hour | EC2 cost/hour | Total/hour |
---|---|---|---|
t2.medium | $2.32 | $0.046 | $2.366 |
t2.large | $2.32 | $0.093 | $2.413 |
t2.xlarge | $2.32 | $0.186 | $2.506 |
t2.2xlarge | $2.32 | $0.371 | $2.691 |
t3.medium | $2.32 | $0.042 | $2.362 |
t3.large Recommended | $2.32 | $0.083 | $2.403 |
t3.xlarge | $2.32 | $0.166 | $2.486 |
t3.2xlarge | $2.32 | $0.333 | $2.653 |
t3a.medium | $2.32 | $0.038 | $2.358 |
t3a.large | $2.32 | $0.075 | $2.395 |
Additional AWS infrastructure costs
Type | Cost |
---|---|
EBS General Purpose SSD (gp2) volumes | $0.10/per GB/month of provisioned storage |
Vendor refund policy
We do not offer refunds for hourly usage fees after free trial has expired
Legal
Vendor terms and conditions
Content disclaimer
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
NGINX AppProtect DoS - https://docs.nginx.com/nginx-app-protect-dos/releases/ , NGINX App Protect WAF - https://docs.nginx.com/nginx-app-protect-waf/releases , NGINX Plus - https://docs.nginx.com/nginx/releases
Additional details
Usage instructions
Usage Instructions: When a new AMI is deployed for the first time, the latest version of NGINX Plus and NGINX App Protect will be installed, auto configured, and started.
If you wish to upgrade NGINX Plus on an existing AMI, please refer to https://docs.nginx.com/nginx/admin-guide/installing-nginx/installing-nginx-plus/#upgrading-nginx-plus
NGINX Plus status can then be checked by running: "service nginx status", and the NGINX Plus default index page will be accessible on public EC2 instance address. Login via SSH with username: ubuntu
NGINX Plus configuration can be found in /etc./nginx and the documentation is available on the instance locally (as a PDF), and at https://nginx.com/admin-guide . NGINX App Protect WAF documentation can be found at https://docs.nginx.com/nginx-app-protect/ . NGINX App Protect DoS documentation can be found at https://docs.nginx.com/nginx-app-protect-dos/ .
Support
Vendor support
The Premium edition includes access to 24x7 email and phone support for unlimited number of incidents. SLA within 30 minutes for urgent Severity 1 requests, 24 hours response for low Severity requests. Documentation questions answered within 24 hours. Receive hot bug fixes and email notifications of all NGINX software updates. To engage the F5 support team, please first activate your account at https://account.f5.com/myf5/signin/register where you will be able to register and open a support case. For assistance on working in http://www.myf5.com and to open a support case, please see our complete self-help article at https://support.f5.com/csp/article/K23782072 . Support response times vary with the support level and severity of the product you purchased. NGINX Professional Services and Support
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.