F5 WAF for NGINX
Enforce, automate and scale your app and API security across distributed architectures and hybrid environments with lightweight, high-performance, advanced protection against Layer 7 attacks.
Improve Security, Accelerate DevOps, and Simplify Management
Protecting your applications and APIs from Layer 7 attacks is easy using F5 WAF for NGINX, a lightweight, high-performance web application firewall for DevOps environments. Running natively on NGINX Plus and NGINX Ingress Controller, it is platform-agnostic and supports deployment options ranging from edge load balancers to individual pods in Kubernetes clusters.
Why Use F5 WAF for NGINX
Enforce Robust App & API Security
Protect against and mitigate common vulnerabilities, advanced threats, and zero-day attacks. With F5 WAF for NGINX you can:
- Exceed basic OWASP Top 10 protection with over 7,500 advanced signatures, bot signatures and threat campaign protection
- Protect your organization’s HTTP/S and HTTP/2 applications, as well as protocols such as gRPC bi-directional streaming
- Mask personal identifiable information (PII), including credit card and social security numbers, with built-in Data Guard feature
- Exceed PCI DSS requirements and avoid regulatory non-compliance
- Deploy in blocking mode with trusted high-confidence signatures for extremely low false positives
Deploy Platform-Agnostic Security
Secure your organization’s apps and APIs with a single security solution across distributed architectures and environments including on-premises, hybrid, and multi-cloud. With F5 WAF for NGINX you can:
- Build consistent security controls for web apps, microservices, containers, and APIs
- Achieve seamless single-vendor technology integration within the NGINX platform for reduced complexity, friction, and tool sprawl
- Deploy the uniquely flexible software form factor across all modern app topologies – from load balancers at the edge to API gateways and Kubernetes Ingress controllers to per-service or per-pod proxies inside the Kubernetes cluster
- Scale your Kubernetes apps in the cloud with a lightweight, high-performance, low-latency, and low-compute security solution
Integrate Security at Scale
Take control by scaling your security policy deployments to all F5 WAF for NGINX instances using NGINX Management Suite. With the NGINX Management Suite, you can:
- Gain centralized visibility of protection insights to guide WAF policy tuning using the NGINX Management Suite Security Monitoring
- Manage configuration for your entire F5 WAF for NGINX fleet using the NGINX Management Suite Instance Manager module
- Integrate WAF security into your CI/CD pipeline for easy DevSecOps
- Control WAFs at scale using either the GUI or REST API
- Give SecOps, Platform Ops, and DevOps teams centralized visibility and fine-grained control of app policies based on workflow needs
Support for Shift Left, DevSecOps, and Security Automation
Enable a shift-left strategy where security is incorporated into every stage of the software development lifecycle (SDLC). With F5 WAF for NGINX you can:
- Use declarative policies created by SecOps to enable DevOps to integrate security as code into CI/CD pipelines
- Implement security automation to reduce the cost of breaches by up to 80%
- Save time and money by finding and fixing vulnerabilities before an app is released into production
- Maintain developer agility and innovation while building more reliable and secure apps
- Accelerate time to market and reduce costs with DevSecOps automated security
Resources

Security as Code
In this eBook from O'Reilly Media, compliments of NGINX, learn how to implement a DevSecOps strategy by integrating security early into your development process through cloud infrastructure on AWS.
Download for freeDatasheets
Webinars
Securing Modern Apps Against Layer 7 DoS Attacks ›
Shift Left for More Secure Apps with F5 NGINX ›
Blog
How NGINX App Protect Denial of Service Adapts to the Evolving Attack Landscape ›
Secure Your gRPC Apps Against Severe DoS Attacks with NGINX App Protect DoS ›
NGINX App Protect Denial of Service Blocks Application-Level DoS Attacks ›
Protecting Your Apps from Layer 7 DoS Attacks with NGINX App Protect Denial of Service ›
Defending Applications from Complex and Modern Attacks ›
Automate Security with F5 NGINX App Protect and F5 NGINX Plus to Reduce the Cost of Breaches ›
Technical Specifications

Visit NGINX Docs For Full Technical Specifications
Modern app security solution that works seamlessly in DevOps environments.
NGINX App Protect DoS DocumentationDistributions
Docker
Kubernetes
Red Hat OpenShift Container Platform
Architectures
x86
Operating Systems
Alpine Linux
CentOS
Debian
Oracle Linux
Red Hat Enterprise Linux
Ubuntu
Cloud Platforms
Amazon Web Services (AWS)
Google Cloud Platform (GCP)
Microsoft Azure