NGINX App Protect integration overview
You can now integrate the features of F5 NGINX App Protect WAF v4 and v5 in F5 NGINX One Console. NGINX App Protect offers advanced Web Application Firewall (WAF) capabilities. Through the NGINX One Console UI, you can now set up the NGINX App Protect WAF firewall. This solution provides robust security and scalability.
Once you’ve connected to the NGINX One Console, select App Protect > Policies. You can add new policies or edit existing policies, as defined in the NGINX App Protect WAF Administration Guide
Through the NGINX One Console UI, you can:
- Add and configure a policy
- Review existing policies
- Deploy policies on instances and Config Sync Groups
You can also set up policies through the NGINX One Console API.
You can install and upgrade NGINX App Protect:
Version 4:
Version 5:
NGINX App Protect WAF Version 5 has specific requirements for the configuration with Docker containers:
- Directory associated with the volume, which you may configure in a
docker-compose.yamlfile.-
You may set it up with the
volumesdirective with a directory like/etc/nginx/app_protect_policies. -
You need to set up the container volume. So when the policy bundle is referenced in the
nginxdirective, the file path is what the container sees. -
You need to also include an
app_protect_policy_file, as described in App Protect Specific Directives -
You’ll need to set a policy bundle (in compressed tar format) in a configured
volume. -
Make sure the directory for NGINX Agent includes
/etc/nginx/app_protect_policies.
-
When you deploy NAP policy through NGINX One Console, do not also use plain JSON policy in the same NGINX instance.