NGINX Web Application Firewall

Improve Security, Accelerate DevOps, and Simplify Management

Protecting your applications and APIs from Layer 7 attacks is easy using F5 WAF for NGINX, a lightweight, high-performance web application firewall for DevOps environments. Running natively on NGINX Plus and NGINX Ingress Controller, it is platform-agnostic and supports deployment options ranging from edge load balancers to individual pods in Kubernetes clusters.

Why Use F5 WAF for NGINX

Enforce Robust App & API Security

Protect against and mitigate common vulnerabilities, advanced threats, and zero-day attacks. With F5 WAF for NGINX you can:

Exceed basic OWASP Top 10 protection with over 7,500 advanced signatures, bot signatures and threat campaign protection
Protect your organization’s HTTP/S and HTTP/2 applications, as well as protocols such as gRPC bi-directional streaming
Mask personal identifiable information (PII), including credit card and social security numbers, with built-in Data Guard feature
Exceed PCI DSS requirements and avoid regulatory non-compliance
Deploy in blocking mode with trusted high-confidence signatures for extremely low false positives

Deploy Platform-Agnostic Security

Secure your organization’s apps and APIs with a single security solution across distributed architectures and environments including on-premises, hybrid, and multi-cloud. With F5 WAF for NGINX you can:

Build consistent security controls for web apps, microservices, containers, and APIs
Achieve seamless single-vendor technology integration within the NGINX platform for reduced complexity, friction, and tool sprawl
Deploy the uniquely flexible software form factor across all modern app topologies – from load balancers at the edge to API gateways and Kubernetes Ingress controllers to per-service or per-pod proxies inside the Kubernetes cluster
Scale your Kubernetes apps in the cloud with a lightweight, high-performance, low-latency, and low-compute security solution

Integrate Security at Scale

Take control by scaling your security policy deployments to all F5 WAF for NGINX instances using NGINX Management Suite. With the NGINX Management Suite, you can:

Gain centralized visibility of protection insights to guide WAF policy tuning using the NGINX Management Suite Security Monitoring
Manage configuration for your entire F5 WAF for NGINX fleet using the NGINX Management Suite Instance Manager module
Integrate WAF security into your CI/CD pipeline for easy DevSecOps
Control WAFs at scale using either the GUI or REST API
Give SecOps, Platform Ops, and DevOps teams centralized visibility and fine-grained control of app policies based on workflow needs

Support for Shift Left, DevSecOps, and Security Automation

Enable a shift-left strategy where security is incorporated into every stage of the software development lifecycle (SDLC). With F5 WAF for NGINX you can:

Use declarative policies created by SecOps to enable DevOps to integrate security as code into CI/CD pipelines
Implement security automation to reduce the cost of breaches by up to 80%
Save time and money by finding and fixing vulnerabilities before an app is released into production
Maintain developer agility and innovation while building more reliable and secure apps
Accelerate time to market and reduce costs with DevSecOps automated security

Resources

Security as Code

In this eBook from O'Reilly Media, compliments of NGINX, learn how to implement a DevSecOps strategy by integrating security early into your development process through cloud infrastructure on AWS.

Download for free