book

NGINX Cookbook

Name: NGINX Cookbook
Author: Derek DeJonghe
ISBN: 9781491968956

by Derek DeJonghe

January 2019

Beginner

173 pages

2h 59m

English

O'Reilly Media, Inc.

Read now

Unlock full access

Foreword
Preface
1. Basics
IntroductionInstalling on Debian/UbuntuInstalling on RedHat/CentOSInstalling NGINX PlusVerifying Your InstallationKey Files, Commands, and DirectoriesServing Static ContentGraceful Reload
2. High-Performance Load Balancing
IntroductionHTTP Load BalancingTCP Load BalancingUDP Load BalancingLoad-Balancing MethodsSticky CookieSticky LearnSticky RoutingConnection DrainingPassive Health ChecksActive Health ChecksSlow StartTCP Health Checks
3. Traffic Management
IntroductionA/B TestingProblemSolutionDiscussionAlso SeeUsing the GeoIP Module and DatabaseProblemSolutionDiscussionAlso SeeRestricting Access Based on CountryProblemSolutionDiscussionFinding the Original ClientProblemSolutionDiscussionLimiting ConnectionsProblemSolutionDiscussionLimiting RateProblemSolutionDiscussionLimiting BandwidthProblemSolutionDiscussion
4. Massively Scalable Content Caching
IntroductionCaching ZonesCaching Hash KeysCache BypassCache PerformancePurgingCache Slicing
5. Programmability and Automation
IntroductionNGINX Plus APIKey-Value StoreProblemSolutionDiscussionAlso SeeInstalling with PuppetProblemSolutionDiscussionAlso SeeInstalling with ChefProblemSolutionDiscussionAlso SeeInstalling with AnsibleProblemSolutionDiscussionAlso SeeInstalling with SaltStackProblemSolutionDiscussionAlso SeeAutomating Configurations with Consul TemplatingProblemSolutionDiscussionAlso See
6. Authentication
IntroductionHTTP Basic AuthenticationProblemSolutionDiscussionAuthentication SubrequestsProblemSolutionDiscussionValidating JWTsProblemSolutionDiscussionAlso SeeCreating JSON Web KeysProblemSolutionDiscussionAlso SeeAuthenticate Users via Existing OpenID Connect SSOProblemSolutionDiscussionAlso SeeObtaining the JSON Web Key from GoogleProblemSolutionDiscussionAlso See
7. Security Controls
IntroductionAccess Based on IP AddressProblemSolutionDiscussionAllowing Cross-Origin Resource SharingProblemSolutionDiscussionClient-Side EncryptionProblemSolutionDiscussionAlso SeeUpstream EncryptionProblemSolutionDiscussionSecuring a LocationProblemSolutionDiscussionGenerating a Secure Link with a SecretProblemSolutionDiscussionSecuring a Location with an Expire DateProblemSolutionDiscussionGenerating an Expiring LinkProblemSolutionDiscussionHTTPS RedirectsProblemSolutionDiscussionRedirecting to HTTPS where SSL/TLS Is Terminated Before NGINXProblemSolutionDiscussionHTTP Strict Transport SecurityProblemSolutionDiscussionAlso SeeSatisfying Any Number of Security MethodsProblemSolutionDiscussionDynamic DDoS MitigationProblemSolutionDiscussion
8. HTTP/2
IntroductionBasic ConfigurationProblemSolutionDiscussionAlso SeegRPCProblemSolutionDiscussionHTTP/2 Server PushProblemSolutionDiscussion

9. Sophisticated Media Streaming
IntroductionServing MP4 and FLVStreaming with HLSStreaming with HDSBandwidth Limits
10. Cloud Deployments
IntroductionAuto-Provisioning on AWSProblemSolutionDiscussionRouting to NGINX Nodes Without an AWS ELBProblemSolutionDiscussionAlso SeeThe NLB SandwichProblemSolutionDiscussionDeploying from the AWS MarketplaceProblemSolutionDiscussionCreating an NGINX Virtual Machine Image on AzureProblemSolutionDiscussionAlso SeeLoad Balancing Over NGINX Scale Sets on AzureProblemSolutionDiscussionDeploying Through the Azure MarketplaceProblemSolutionDiscussionDeploying to Google Compute EngineProblemSolutionDiscussionCreating a Google Compute ImageProblemSolutionDiscussionAlso SeeCreating a Google App Engine ProxyProblemSolutionDiscussion
11. Containers/Microservices
IntroductionDNS SRV RecordsUsing the Official NGINX ImageProblemSolutionDiscussionAlso SeeCreating an NGINX DockerfileProblemSolutionDiscussionBuilding an NGINX Plus ImageProblemSolutionDiscussionAlso SeeUsing Environment Variables in NGINXProblemSolutionDiscussionKubernetes Ingress ControllerProblemSolutionDiscussionOpenShift RouterProblemSolutionDiscussion
12. High-Availability Deployment Modes
IntroductionNGINX HA ModeLoad-Balancing Load Balancers with DNSLoad Balancing on EC2Configuration SynchronizationProblemSolutionDiscussionState Sharing with Zone SyncProblemSolutionDiscussion
13. Advanced Activity Monitoring
IntroductionEnable NGINX Open Source Stub StatusProblemSolutionDiscussionEnabling the NGINX Plus Monitoring Dashboard Provided by NGINX PlusCollecting Metrics Using the NGINX Plus API
14. Debugging and Troubleshooting with Access Logs, Error Logs, and Request Tracing
IntroductionConfiguring Access LogsProblemSolutionDiscussionConfiguring Error LogsProblemSolutionDiscussionForwarding to SyslogProblemSolutionDiscussionRequest TracingProblemSolutionDiscussion
15. Performance Tuning
IntroductionAutomating Tests with Load DriversProblemSolutionDiscussionKeeping Connections Open to ClientsProblemSolutionDiscussionKeeping Connections Open UpstreamProblemSolutionDiscussionBuffering ResponsesProblemSolutionDiscussionBuffering Access LogsProblemSolutionDiscussionOS TuningProblemSolutionDiscussion
16. Practical Ops Tips and Conclusion
IntroductionUsing Includes for Clean ConfigsProblemSolutionDiscussionDebugging ConfigsProblemSolutionDiscussionAlso SeeConclusion

Overview

NGINX is one of the most widely used web servers available today, in part because of its capabilities as a load balancer and reverse proxy server for HTTP and other network protocols. The 2019 edition of this popular cookbook provides more than 80 practical recipes to help you set up and use this open source server to solve problems in various use cases.

For professionals who understand modern web architectures, such as n-tier or microservice designs, and common web protocols, including TCP and HTTP, these recipes provide proven solutions for security, software load balancing, and monitoring and maintaining NGINX’s application delivery platform. You’ll also explore advanced features of both NGINX and NGINX Plus, the free and licensed versions of this server.

You’ll find recipes for:

High-performance load balancing with HTTP, TCP, and UDP
Traffic management and A/B testing
Managing programmability and automation with dynamic templating and the NGINX Plus API
Securing access through encrypted traffic, secure links, HTTP authentication subrequests, and more
Deploying NGINX to AWS, Azure, and Google cloud-computing services
Using Docker to deploy containers and microservices
Debugging and troubleshooting, performance tuning, and practical ops tips

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Publisher Resources

ISBN: 9781492049098

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills