Merge branch 'main' into waf/refactor

Author: ADubhlaoich

.github/workflows/dot-org-content.yml

@@ -0,0 +1,88 @@
+---
+title: Features configuration
+weight: 150
+toc: true
+nd-docs: DOCS-000
+nd-content-type: how-to
+---
+
+## Overview
+
+This guide describes the F5 NGINX Agent features, and how to enable and disable features using the NGINX Agent configuration file.
+
+## Before you begin
+
+Before you start, make sure that you have:
+
+- [NGINX Agent installed]({{< ref "/agent/installation-upgrade/" >}}) in your system.
+- Access to the NGINX Agent configuration file.
+
+## Features
+
+The following table lists the NGINX Agent features:
+
+{{< table "features" >}}
+| Feature Name     | Description                                                             | Default/Non-default |
+| ---------------- | ----------------------------------------------------------------------- | ------------------- |
+| registration     | Registering the NGINX Agent with the management plane.                  | Default             |
+| nginx-config-async | Enable the publishing and uploading of NGINX configurations from the management plane. | Default             |
+| metrics          | Enable collecting of NGINX metrics.                                     | Default             |
+| metrics-throttle | Batch metrics before sending.                                           | Non-default         |
+| metrics-sender   | Reports metrics over the gRPC connection.                               | Non-default         |
+| dataplane-status | Report the health of the NGINX Instance.                                | Default             |
+| process-watcher  | Observe changes to the NGINX process.                                   | Default             |
+| file-watcher     | Observe changes to the NGINX configuration or any changes to files on disk. | Default          |
+| activity-events  | Send NGINX or NGINX Agent related events to the management plane.       | Default             |
+| agent-api        | Enable the NGINX Agent REST API.                                        | Default             |
+{{< /table >}}
+
+## Use cases
+
+### Enable metrics only
+
+1. Access the NGINX instance: Connect using SSH to the VM or server where NGINX Agent is running.
+
+   `ssh user@your-nginx-instance`
+
+1. Open the NGINX Agent configuration file in a text editor.
+
+   `sudo vim /etc/nginx-agent/nginx-agent.conf`
+
+1. Add the features section: Add the following to the end of the configuration file if it doesn't already exist.
+
+   ```nginx
+   features:
+      - metrics
+      - metrics-throttle
+      - dataplane-status
+   ```
+
+1. Restart the NGINX Agent service to apply the changes.
+
+   `sudo systemctl restart nginx-agent`
+
+Once the steps have been completed, users will be able to view metrics data being sent but will not have the capability to push NGINX configuration changes.
+
+### Enable the publishing of NGINX configurations and disable the collection of metrics
+
+1. Access the NGINX instance: Connect using SSH to the VM or server where NGINX Agent is running.
+
+   `ssh user@your-nginx-instance`
+
+1. Open the NGINX Agent configuration file in a text editor.
+
+   `sudo vim /etc/nginx-agent/nginx-agent.conf`
+
+1. Add the fetures section: Add the following to the end of the configuration file if it doesn't already exist.
+
+   ```nginx
+   features:
+      - nginx-config-async
+      - dataplane-status
+      - file-watcher
+
+1. Restart the NGINX Agent service to apply the changes.
+
+   `sudo systemctl restart nginx-agent`
+
+Once the steps have been completed, users will be able to publish NGINX configurations but metrics data will not be collected by the NGINX Agent.

content/agent/configuration/configure-nginx-agent-features.md

@@ -8,13 +8,14 @@ files:
 After entering your data plane key, you'll see a `curl` command to install NGINX Agent, similar to the one below. Copy and run this command on each NGINX instance. Once installed, NGINX Agent typically registers with NGINX One within a few seconds.
 
 {{<call-out "important" "Connecting to NGINX One" >}}
- Ensure that any firewall rules you have in place for your NGINX hosts allows network traffic to port `443` for all of the following IPs:
+ Make sure your firewall rules for NGINX hosts allow traffic to port `443` from these IP address ranges:
 
-- `3.135.72.139`
-- `3.133.232.50`
-- `52.14.85.249`
+- `3.135.72.139/32`
+- `3.133.232.50/32`
+- `52.14.85.249/32`
+- `2600:1f16:19c8:d400::/62`
 
-NGINX Agent must be able to establish a connection to NGINX One Console's Agent endpoint (`agent.connect.nginx.com`). 
+NGINX Agent must be able to establish a connection to NGINX One Console's Agent endpoint (`agent.connect.nginx.com`).
 {{</call-out>}}
 
 To install NGINX Agent on an NGINX instance:

content/includes/nginx-one/how-to/install-nginx-agent.md

@@ -30,6 +30,13 @@ h2 {
 
 Stay up-to-date with what's new and improved in the F5 NGINX One Console.
 
+## September 16, 2025
+
+### IPv6 endpoints for NGINX Agent and NGINX Plus usage reporting
+
+Your instances which run in dual-stack or IPv6-only environments can now communicate with NGINX One Console APIs through IPv6 addresses.
+See the [Getting Started Guide]({{< ref "/nginx-one/getting-started.md#install-nginx-agent" >}}) for the IP address ranges you need to allow in your firewalls.
+
 ## July 15, 2025
 
 ### Set up F5 WAF for NGINX security policies

content/nginx-one/changelog.md

@@ -126,11 +126,12 @@ Depending on whether this is your first time using NGINX One Console or you've u
 After entering your data plane key, you'll see a `curl` command similar to the one below. Copy and run this command on each NGINX instance to install NGINX Agent. Once installed, NGINX Agent typically registers with NGINX One within a few seconds.
 
 {{<call-out "important" "Connecting to NGINX One" >}}
-NGINX Agent must be able to establish a connection to NGINX One Console's Agent endpoint (`agent.connect.nginx.com`). Ensure that any firewall rules you have in place for your NGINX hosts allows network traffic to port `443` for all of the following IPs:
+NGINX Agent must be able to establish a connection to NGINX One Console's Agent endpoint (`agent.connect.nginx.com`). Ensure that any firewall rules you have in place for your NGINX hosts allows network traffic to port `443` for all of the following IP address ranges:
 
-- `3.135.72.139`
-- `3.133.232.50`
-- `52.14.85.249`
+- `3.135.72.139/32`
+- `3.133.232.50/32`
+- `52.14.85.249/32`
+- `2600:1f16:19c8:d400::/62`
 {{</call-out>}}
 
 To install NGINX Agent on an NGINX instance:

content/nginx-one/getting-started.md

@@ -1,6 +1,6 @@
 ---
 title: Disaster recovery
-weight: 750
+weight: 650
 toc: true
 url: /nginxaas/azure/disaster-recovery/
 type:

content/nginxaas-azure/disaster-recovery.md

@@ -7,111 +7,52 @@ url: /nginxaas/azure/module-changelog/
 
 Learn about the modules supported by the latest versions of F5 NGINXaaS for Azure.
 
-## September 18, 2025 
-
-### Preview
-
- {{<bootstrap-table "table table-bordered table-striped table-responsive table-sm">}}
-
-| Name                                     | Version                  | Description                                                            |
-|------------------------------------------|--------------------------|------------------------------------------------------------------------|
-| nginx-plus                               | 1.29.0 (nginx-plus-r35)    | NGINX Plus, provided by Nginx, Inc.                          |
-| nginx-agent                              | 1.20.16-2026591880  | NGINX Agent - Management for NGINXaaS                                  |
-| Operating System                         | Ubuntu 22.04.5      | Jammy Jellyfish, provided by Canonical Ltd.                            |
-| nginx-plus-module-geoip2                 | 35+3.4-1            | NGINX Plus 3rd-party GeoIP2 dynamic modules                            |
-| nginx-plus-module-headers-more           | 35+0.37-1           | NGINX Plus 3rd-party headers-more dynamic module                       |
-| nginx-plus-module-image-filter           | 35-1                | NGINX Plus image filter dynamic module                                 |
-| nginx-plus-module-lua                    | 35+0.10.28-1        | NGINX Plus 3rd-party Lua dynamic modules                               |
-| nginx-plus-module-ndk                    | 35+0.3.3-1          | NGINX Plus 3rd-party NDK dynamic module                                |
-| nginx-plus-module-njs                    | 35+0.9.1-1          | NGINX Plus njs dynamic modules                                         |
-| nginx-plus-module-otel                   | 35+0.1.2-1          | NGINX Plus OpenTelemetry dynamic module                                |
-| nginx-plus-module-xslt                   | 35-1                | NGINX Plus xslt dynamic module                                         |
-| nginx-plus-module-appprotect             | 35+5.498.0-1        | NGINX Plus app protect dynamic module version 5.498.0                  |
-| app-protect-module-plus                  | 35+5.498.0-1        | App-Protect package for Nginx Plus, includes all of the default files and examples. NGINX App Protect provides web application firewall (WAF) security protection for your web applications, including OWASP Top 10 attacks. |
-| app-protect-plugin                       | 6.20.0-1            | NGINX App Protect plugin |
-{{</bootstrap-table>}}
-
 ## Access module versions using data plane API:
 
-To access available module versions from the data plane API, follow these steps:
-- View Your API Endpoints and Create an API Key
-  - Follow the [NGINXaaS data plane API endpoint]({{< ref "/nginxaas-azure/loadbalancer-kubernetes.md#nginxaas-data-plane-api-endpoint" >}}) and [Create an NGINXaaS data plane API key]({{< ref "/nginxaas-azure/loadbalancer-kubernetes.md#create-an-nginxaas-data-plane-api-key" >}}) to locate your dataplane API endpoint and create an API key.
+To view the version of the NGINX Plus modules that are part of your deployment, follow these steps:
+- Retrieve your [data plane API endpoint]({{< ref "/nginxaas-azure/loadbalancer-kubernetes.md#nginxaas-data-plane-api-endpoint" >}}).
 
-- Construct the Request URL
-    - Add `/packages` to your data plane API endpoint, for example `https://<your-endpoint>/packages`.
+- Create an [API key]({{< ref "/nginxaas-azure/loadbalancer-kubernetes.md#create-an-nginxaas-data-plane-api-key" >}}) if you do not already have one.
 
-- Authenticate API requests
-   - Encode your API key to Base64 and add the prefix `ApiKey` to the encoded string.
-   - Set the `Authorization` HTTP header to:  
-     `ApiKey <your_hashed_api_key>`
+- Construct the package request URL.
+    - Add **/packages** to your data plane API endpoint.
+    - For example: `https://my-deployment-b7e43dfb7e26.eastus.nginxaas.net/packages`
 
+- Authenticate the API requests using the **Authorization** HTTP header.
+   - Encode your API key to **base64** and add the prefix **ApiKey** to the encoded string.
+   - For example: 
+      - Authorization: ApiKey ZjkzY2ZlYWItZjAxNS01MDAwLTgyM2UtNjBmNjY5ZTUwOWF2
 
+Request Example:
 ```shell
-   curl -H "Authorization: ApiKey <your_hashed_api_key>" https://<your-endpoint>/packages
+   curl -H "Authorization: ApiKey <your_base64_api_key>" https://<your-dataplane-api-endpoint>/packages
 ```
 
 Response Example:
 ```json
 {
   "packages": [
     {
-      "name": "nginx-plus-module-headers-more",
-      "version":"35+0.37-1~jammy"
+      "name": "nginx-plus",
+      "version": "33-4~jammy"
+    },
+    {
+      "name": "nginx-agent",
+      "version": "1.20.15-2010533110"
+    },
+    {
+      "name": "nginx-plus-module-appprotect",
+      "version": "33+5.264.0-1~jammy"
+    },
+    {
+      "name": "nginx-plus-module-ndk",
+      "version": "33+0.3.3-1~jammy"
     },
     {
-      "name": "nginx-plus-module-otel",
-      "version": "35+0.1.2-1~jammy"
+      "name": "nginx-plus-module-njs",
+      "version": "33+0.8.9-1~jammy"
     },
     ...
   ]
 }
 ```
-
-
-## July 03, 2025 
-
-### Stable
-
- {{< table >}}
-
-| Name                                     | Version                  | Description                                                            |
-|------------------------------------------|--------------------------|------------------------------------------------------------------------|
-| nginx-plus                               | 1.27.2 (nginx-plus-r33-p2)    | NGINX Plus, provided by Nginx, Inc.                          |
-| nginx-agent                              | 1.19.15-1795423089  | NGINX Agent - Management for NGINXaaS                                  |
-| Operating System                         | Ubuntu 22.04.5      | Jammy Jellyfish, provided by Canonical Ltd.                            |
-| nginx-plus-module-geoip2                 | 33+3.4-1            | NGINX Plus 3rd-party GeoIP2 dynamic modules                            |
-| nginx-plus-module-headers-more           | 33+0.37-1           | NGINX Plus 3rd-party headers-more dynamic module                       |
-| nginx-plus-module-image-filter           | 33-1                | NGINX Plus image filter dynamic module                                 |
-| nginx-plus-module-lua                    | 33+0.10.27-1        | NGINX Plus 3rd-party Lua dynamic modules                               |
-| nginx-plus-module-ndk                    | 33+0.3.3-1          | NGINX Plus 3rd-party NDK dynamic module                                |
-| nginx-plus-module-njs                    | 33+0.8.9-1          | NGINX Plus njs dynamic modules                                         |
-| nginx-plus-module-otel                   | 33+0.1.0-1          | NGINX Plus OpenTelemetry dynamic module                                |
-| nginx-plus-module-xslt                   | 33-1                | NGINX Plus xslt dynamic module                                         |
-| nginx-plus-module-appprotect             | 33+5.264.0-1        | NGINX Plus app protect dynamic module version 5.264.0                  |
-| app-protect-module-plus                  | 33+5.264.0-1        | App-Protect package for Nginx Plus, includes all of the default files and examples. NGINX App Protect provides web application firewall (WAF) security protection for your web applications, including OWASP Top 10 attacks. |
-| app-protect-plugin                       | 6.9.0-1             | NGINX App Protect plugin |
-{{< /table >}}
-
-
-
-### Preview
-
- {{< table >}}
-
-| Name                                     | Version                  | Description                                                            |
-|------------------------------------------|--------------------------|------------------------------------------------------------------------|
-| nginx-plus                               | 1.27.2 (nginx-plus-r33-p2)    | NGINX Plus, provided by Nginx, Inc.                          |
-| nginx-agent                              | 1.19.15-1795423089  | NGINX Agent - Management for NGINXaaS                                  |
-| Operating System                         | Ubuntu 22.04.5      | Jammy Jellyfish, provided by Canonical Ltd.                            |
-| nginx-plus-module-geoip2                 | 33+3.4-1            | NGINX Plus 3rd-party GeoIP2 dynamic modules                            |
-| nginx-plus-module-headers-more           | 33+0.37-1           | NGINX Plus 3rd-party headers-more dynamic module                       |
-| nginx-plus-module-image-filter           | 33-1                | NGINX Plus image filter dynamic module                                 |
-| nginx-plus-module-lua                    | 33+0.10.27-1        | NGINX Plus 3rd-party Lua dynamic modules                               |
-| nginx-plus-module-ndk                    | 33+0.3.3-1          | NGINX Plus 3rd-party NDK dynamic module                                |
-| nginx-plus-module-njs                    | 33+0.8.9-1          | NGINX Plus njs dynamic modules                                         |
-| nginx-plus-module-otel                   | 33+0.1.0-1          | NGINX Plus OpenTelemetry dynamic module                                |
-| nginx-plus-module-xslt                   | 33-1                | NGINX Plus xslt dynamic module                                         |
-| nginx-plus-module-appprotect             | 33+5.264.0-1        | NGINX Plus app protect dynamic module version 5.264.0                  |
-| app-protect-module-plus                  | 33+5.264.0-1        | App-Protect package for Nginx Plus, includes all of the default files and examples. NGINX App Protect provides web application firewall (WAF) security protection for your web applications, including OWASP Top 10 attacks. |
-| app-protect-plugin                       | 6.9.0-1             | NGINX App Protect plugin |
-{{< /table >}}

content/nginxaas-azure/module-changelog.md

@@ -0,0 +1,12 @@
+---
+title: Service status
+weight: 710
+toc: true
+url: /nginxaas/azure/service-status/
+type:
+- how-to
+---
+
+You can monitor the health status of the F5 NGINXaaS service at the [F5 Cloud Status page](https://www.f5cloudstatus.com/history?filter=88pmy2nlbd01). The status page provides information related to service degradation and unscheduled downtime. When appropriate, we provide mitigations to minimize the impact to your deployments.
+
+You may also subscribe to receive emails, webhooks, and RSS feeds when an incident related to NGINXaaS is created, updated, or resolved.