diff --git a/content/agent/changelog.md b/content/agent/changelog.md index b0f79ce37..607f5a25f 100644 --- a/content/agent/changelog.md +++ b/content/agent/changelog.md @@ -2,7 +2,7 @@ title: "Changelog" weight: 1200 toc: true -docs: "DOCS-1093" +nd-docs: "DOCS-1093" --- {{< note >}}You can find the full changelog, contributor list and assets for NGINX Agent in the [GitHub repository](https://github.com/nginx/agent/releases).{{< /note >}} diff --git a/content/agent/configuration/configuration-overview.md b/content/agent/configuration/configuration-overview.md index 51e724fa2..d82ffec91 100644 --- a/content/agent/configuration/configuration-overview.md +++ b/content/agent/configuration/configuration-overview.md @@ -3,7 +3,7 @@ title: Basic configuration draft: false weight: 100 toc: true -docs: DOCS-1229 +nd-docs: DOCS-1229 type: - how-to --- @@ -50,7 +50,7 @@ server: # host of the control plane host: grpcPort: 443 - backoff: # note: default values are prepopulated + backoff: # note: default values are prepopulated initial_interval: 100ms # Add the appropriate duration value here, for example, "100ms" for 100 milliseconds, "5s" for 5 seconds, "1m" for 1 minute, "1h" for 1 hour randomization_factor: 0.10 # Add the appropriate float value here, for example, 0.10 multiplier: 1.5 # Add the appropriate float value here, for example, 1.5 @@ -88,7 +88,7 @@ metrics: report_interval: 1m collection_interval: 15s mode: aggregated - backoff: # note: default values are prepopulated + backoff: # note: default values are prepopulated initial_interval: 100ms # Add the appropriate duration value here, for example, "100ms" for 100 milliseconds, "5s" for 5 seconds, "1m" for 1 minute, "1h" for 1 hour randomization_factor: 0.10 # Add the appropriate float value here, for example, 0.10 multiplier: 1.5 # Add the appropriate float value here, for example, 1.5 @@ -170,9 +170,9 @@ nginx-agent ### CLI Flags and Environment Variables -{{< warning >}} +{{< warning >}} -Before version 2.35.0, the environment variables were prefixed with `NMS_` instead of `NGINX_AGENT_`. +Before version 2.35.0, the environment variables were prefixed with `NMS_` instead of `NGINX_AGENT_`. If you are upgrading from an older version, update your configuration accordingly. @@ -220,9 +220,9 @@ If you are upgrading from an older version, update your configuration accordingl
{{}} -Use the `--config-dirs` command-line option, or the `config_dirs` key in the `nginx-agent.conf` file, to identify the directories NGINX Agent can read from or write to. This setting also defines the location to which you can upload config files when using a control plane. +Use the `--config-dirs` command-line option, or the `config_dirs` key in the `nginx-agent.conf` file, to identify the directories NGINX Agent can read from or write to. This setting also defines the location to which you can upload config files when using a control plane. -NGINX Agent cannot write to directories outside the specified location when updating a config and cannot upload files to directories outside of the configured location. +NGINX Agent cannot write to directories outside the specified location when updating a config and cannot upload files to directories outside of the configured location. NGINX Agent follows NGINX configuration directives to file paths outside the designated directories and reads certificates' metadata. NGINX Agent uses the following directives: diff --git a/content/agent/configuration/configure-nginx-agent-features.md b/content/agent/configuration/configure-nginx-agent-features.md index 486059eb4..4bf5b1b24 100644 --- a/content/agent/configuration/configure-nginx-agent-features.md +++ b/content/agent/configuration/configure-nginx-agent-features.md @@ -5,7 +5,7 @@ weight: 150 toc: true type: - how-to -docs: DOCS-1678 +nd-docs: DOCS-1678 --- ## Overview diff --git a/content/agent/configuration/configure-nginx-agent-group.md b/content/agent/configuration/configure-nginx-agent-group.md index 47e6f15e0..772922178 100644 --- a/content/agent/configuration/configure-nginx-agent-group.md +++ b/content/agent/configuration/configure-nginx-agent-group.md @@ -3,7 +3,7 @@ title: Add NGINX users to nginx-agent Group draft: false weight: 300 toc: true -docs: DOCS-933 +nd-docs: DOCS-933 type: - how-to --- diff --git a/content/agent/configuration/encrypt-communication.md b/content/agent/configuration/encrypt-communication.md index a7cf75134..6a1503cf6 100644 --- a/content/agent/configuration/encrypt-communication.md +++ b/content/agent/configuration/encrypt-communication.md @@ -2,7 +2,7 @@ title: Encrypt communication toc: true weight: 200 -docs: DOCS-802 +nd-docs: DOCS-802 --- ## Overview diff --git a/content/agent/configuration/health-checks.md b/content/agent/configuration/health-checks.md index 16a9bf53d..104311a9e 100644 --- a/content/agent/configuration/health-checks.md +++ b/content/agent/configuration/health-checks.md @@ -5,7 +5,7 @@ weight: 400 toc: true type: - how-to -docs: DOCS-1677 +nd-docs: DOCS-1677 --- ## Overview diff --git a/content/agent/contribute/community.md b/content/agent/contribute/community.md index da54b13b0..80af280bf 100644 --- a/content/agent/contribute/community.md +++ b/content/agent/contribute/community.md @@ -3,7 +3,7 @@ title: Community and contribution draft: false weight: 100 toc: true -docs: DOCS-1087 +nd-docs: DOCS-1087 type: - how-to --- diff --git a/content/agent/contribute/dev-environment-setup.md b/content/agent/contribute/dev-environment-setup.md index 7f75df9d8..b854af4c5 100644 --- a/content/agent/contribute/dev-environment-setup.md +++ b/content/agent/contribute/dev-environment-setup.md @@ -3,7 +3,7 @@ title: Development environment setup draft: false weight: 200 toc: true -docs: DOCS-1088 +nd-docs: DOCS-1088 type: - how-to --- diff --git a/content/agent/installation-upgrade/container-environments/docker-images.md b/content/agent/installation-upgrade/container-environments/docker-images.md index d12f94e5e..2302bed3c 100644 --- a/content/agent/installation-upgrade/container-environments/docker-images.md +++ b/content/agent/installation-upgrade/container-environments/docker-images.md @@ -3,7 +3,7 @@ title: Build container images draft: false weight: 100 toc: true -docs: DOCS-1410 +nd-docs: DOCS-1410 type: - how-to --- diff --git a/content/agent/installation-upgrade/container-environments/docker-support.md b/content/agent/installation-upgrade/container-environments/docker-support.md index 2f9c5eafc..d1d624799 100644 --- a/content/agent/installation-upgrade/container-environments/docker-support.md +++ b/content/agent/installation-upgrade/container-environments/docker-support.md @@ -3,7 +3,7 @@ title: Container support and troubleshooting draft: false toc: true weight: 200 -docs: DOCS-909 +nd-docs: DOCS-909 type: - task --- diff --git a/content/agent/installation-upgrade/getting-started.md b/content/agent/installation-upgrade/getting-started.md index e3dc9f3a2..b8cbdb783 100644 --- a/content/agent/installation-upgrade/getting-started.md +++ b/content/agent/installation-upgrade/getting-started.md @@ -3,7 +3,7 @@ title: Getting started draft: false weight: 100 toc: true -docs: DOCS-1089 +nd-docs: DOCS-1089 type: - how-to --- diff --git a/content/agent/installation-upgrade/installation-github.md b/content/agent/installation-upgrade/installation-github.md index 282f1e8d9..f2452d56c 100644 --- a/content/agent/installation-upgrade/installation-github.md +++ b/content/agent/installation-upgrade/installation-github.md @@ -3,7 +3,7 @@ title: Installation from GitHub release draft: false weight: 200 toc: true -docs: DOCS-1090 +nd-docs: DOCS-1090 type: - how-to --- diff --git a/content/agent/installation-upgrade/installation-oss.md b/content/agent/installation-upgrade/installation-oss.md index 92c3a3306..251627629 100644 --- a/content/agent/installation-upgrade/installation-oss.md +++ b/content/agent/installation-upgrade/installation-oss.md @@ -3,7 +3,7 @@ title: Installation from NGINX repository draft: false weight: 300 toc: true -docs: DOCS-1216 +nd-docs: DOCS-1216 type: - how-to --- diff --git a/content/agent/installation-upgrade/installation-plus.md b/content/agent/installation-upgrade/installation-plus.md index 6ee2482d4..c0d5fdf9f 100644 --- a/content/agent/installation-upgrade/installation-plus.md +++ b/content/agent/installation-upgrade/installation-plus.md @@ -3,7 +3,7 @@ title: Installation from NGINX Plus repository draft: false weight: 400 toc: true -docs: DOCS-1217 +nd-docs: DOCS-1217 type: - how-to --- diff --git a/content/agent/installation-upgrade/installation-unprivileged.md b/content/agent/installation-upgrade/installation-unprivileged.md index 6f90985e8..1324bc27c 100644 --- a/content/agent/installation-upgrade/installation-unprivileged.md +++ b/content/agent/installation-upgrade/installation-unprivileged.md @@ -4,7 +4,7 @@ weight: 450 toc: true type: how-to product: Agent -docs: DOCS-1781 +nd-docs: DOCS-1781 --- ## Overview diff --git a/content/agent/installation-upgrade/uninstall.md b/content/agent/installation-upgrade/uninstall.md index 2f783dbb6..dc356c2f5 100644 --- a/content/agent/installation-upgrade/uninstall.md +++ b/content/agent/installation-upgrade/uninstall.md @@ -3,7 +3,7 @@ title: Uninstall NGINX Agent package draft: false weight: 700 toc: true -docs: DOCS-1230 +nd-docs: DOCS-1230 type: - how-to --- diff --git a/content/agent/installation-upgrade/upgrade.md b/content/agent/installation-upgrade/upgrade.md index cd11db359..e62fe59e4 100644 --- a/content/agent/installation-upgrade/upgrade.md +++ b/content/agent/installation-upgrade/upgrade.md @@ -3,7 +3,7 @@ title: Upgrade NGINX Agent package draft: false weight: 600 toc: true -docs: DOCS-1227 +nd-docs: DOCS-1227 type: - how-to --- @@ -39,48 +39,48 @@ To upgrade NGINX Agent, follow these steps: sudo apt-get install -y --only-upgrade nginx-agent -o Dpkg::Options::="--force-confold" ``` -## Upgrade NGINX Agent to a Specific Version +## Upgrade NGINX Agent to a Specific Version -To upgrade NGINX Agent to a specific **v2.x version**, follow these steps: +To upgrade NGINX Agent to a specific **v2.x version**, follow these steps: -#### Steps to Upgrade: +#### Steps to Upgrade: 1. Open an SSH connection to the server running NGINX Agent and log in. -1. Back up the following files and directories to ensure you can restore the environment in case of issues during the upgrade: +1. Back up the following files and directories to ensure you can restore the environment in case of issues during the upgrade: - `/etc/nginx-agent` - Any `config_dirs` directory specified in `/etc/nginx-agent/nginx-agent.conf`. -1. Perform the version-controlled upgrade. +1. Perform the version-controlled upgrade. - Debian, Ubuntu, Deb-Based - + ```shell sudo apt-get update sudo apt-get install -y nginx-agent= -o Dpkg::Options::="--force-confold" ``` - - Example (to upgrade to version 2.41.1~noble): - + + Example (to upgrade to version 2.41.1~noble): + ```shell sudo apt-get install -y nginx-agent=2.41.1~noble -o Dpkg::Options::="--force-confold" ``` - - CentOS, RHEL, RPM-Based - + - CentOS, RHEL, RPM-Based + ```shell sudo yum install -y nginx-agent- ``` - - Example (to upgrade to version `2.41.1`): - + + Example (to upgrade to version `2.41.1`): + ```shell sudo yum install -y nginx-agent-2.41.1 ``` -1. Verify the installed version: - +1. Verify the installed version: + ```shell sudo nginx-agent --version ``` diff --git a/content/agent/overview.md b/content/agent/overview.md index 289b6ebab..c6103489c 100644 --- a/content/agent/overview.md +++ b/content/agent/overview.md @@ -3,7 +3,7 @@ title: Overview draft: false weight: 100 toc: true -docs: DOCS-1091 +nd-docs: DOCS-1091 type: - how-to --- diff --git a/content/agent/technical-specifications.md b/content/agent/technical-specifications.md index 149b08df9..63561ed94 100644 --- a/content/agent/technical-specifications.md +++ b/content/agent/technical-specifications.md @@ -3,7 +3,7 @@ title: Technical specifications draft: false weight: 200 toc: true -docs: DOCS-1092 +nd-docs: DOCS-1092 type: - how-to --- @@ -12,12 +12,12 @@ type: This document provides technical specifications for NGINX Agent. It includes information on supported distributions, deployment environments, NGINX versions, sizing recommendations, and logging. -## NGINX Agent v3.0 Compatibility +## NGINX Agent v3.0 Compatibility {{< bootstrap-table "table table-striped table-bordered" >}} | NGINX Product | Agent Version | |------------------------------|----------------| | **NGINX One Console** | 2.x | -| **NGINX Gateway Fabric** | 3.x | +| **NGINX Gateway Fabric** | 3.x | | **NGINX Plus** | 2.x, 3.x | | **NGINX Ingress Controller** | 2.x | | **NGINX Instance Manager** | 2.x | diff --git a/content/amplify/additional-resources.md b/content/amplify/additional-resources.md index 554e6c8b3..f794475ce 100644 --- a/content/amplify/additional-resources.md +++ b/content/amplify/additional-resources.md @@ -2,7 +2,7 @@ title: Other NGINX Amplify Resources weight: 899 toc: true -docs: DOCS-977 +nd-docs: DOCS-977 --- If you are interested in learning more about F5 NGINX Amplify, visit the [NGINX Amplify Resources Page](https://amplify.nginx.com/docs/), where you will find links to: diff --git a/content/amplify/changelog.md b/content/amplify/changelog.md index d965086f0..b39e69e95 100644 --- a/content/amplify/changelog.md +++ b/content/amplify/changelog.md @@ -3,7 +3,7 @@ title: Changelog description: These release notes list and describe the new features, enhancements, and resolved issues in F5 NGINX Amplify weight: 900 toc: true -docs: DOCS-1691 +nd-docs: DOCS-1691 --- ## Sept 21, 2023 diff --git a/content/amplify/faq/general.md b/content/amplify/faq/general.md index 5aab8c8f2..53d0775bd 100644 --- a/content/amplify/faq/general.md +++ b/content/amplify/faq/general.md @@ -3,7 +3,7 @@ title: General description: General questions about F5 NGINX Amplify weight: 10 toc: true -docs: DOCS-956 +nd-docs: DOCS-956 --- ### What Is F5 NGINX Amplify? diff --git a/content/amplify/faq/metrics-and-metadata.md b/content/amplify/faq/metrics-and-metadata.md index ea7820bd5..f91ae8dd8 100644 --- a/content/amplify/faq/metrics-and-metadata.md +++ b/content/amplify/faq/metrics-and-metadata.md @@ -3,7 +3,7 @@ title: NGINX Amplify Metrics and Metadata description: Questions about F5 NGINX Amplify's Metrics and Metadata weight: 40 toc: true -docs: DOCS-957 +nd-docs: DOCS-957 --- ### What Data Does F5 NGINX Amplify Agent Gather? diff --git a/content/amplify/faq/nginx-amplify-agent.md b/content/amplify/faq/nginx-amplify-agent.md index f6965a94b..eec52dc82 100644 --- a/content/amplify/faq/nginx-amplify-agent.md +++ b/content/amplify/faq/nginx-amplify-agent.md @@ -3,7 +3,7 @@ title: NGINX Amplify Agent description: Questions about F5 NGINX Amplify Agent weight: 20 toc: true -docs: DOCS-958 +nd-docs: DOCS-958 --- ### What Operating Systems are Supported? diff --git a/content/amplify/faq/user-interface.md b/content/amplify/faq/user-interface.md index 26277afee..5bad6022b 100644 --- a/content/amplify/faq/user-interface.md +++ b/content/amplify/faq/user-interface.md @@ -3,7 +3,7 @@ title: NGINX Amplify User Interface description: Questions about F5 NGINX Amplify's User Interface weight: 30 toc: true -docs: DOCS-959 +nd-docs: DOCS-959 --- ### What Browsers are Supported? diff --git a/content/amplify/known-issues.md b/content/amplify/known-issues.md index bf5ea989c..38b7db320 100644 --- a/content/amplify/known-issues.md +++ b/content/amplify/known-issues.md @@ -3,7 +3,7 @@ title: Known Issues weight: 1000 description: List of known issues in the latest release of F5 NGINX Amplify toc: true -docs: DOCS-1692 +nd-docs: DOCS-1692 --- {{}} diff --git a/content/amplify/metrics-metadata/metrics-overview.md b/content/amplify/metrics-metadata/metrics-overview.md index 6a6b34f2c..8a1970ed4 100644 --- a/content/amplify/metrics-metadata/metrics-overview.md +++ b/content/amplify/metrics-metadata/metrics-overview.md @@ -3,7 +3,7 @@ title: Metrics and Metadata Overview description: Learn about the metrics and metadata F5 NGINX Amplify collects. weight: 10 toc: true -docs: DOCS-972 +nd-docs: DOCS-972 --- Most metrics are collected by F5 NGINX Amplify Agent without requiring the user to perform any additional setup. For troubleshooting, see [Troubleshooting Metrics Collection]({{< ref "/amplify/nginx-amplify-agent/troubleshooting-metrics-collection.md" >}}). diff --git a/content/amplify/metrics-metadata/nginx-metrics.md b/content/amplify/metrics-metadata/nginx-metrics.md index 34971aab6..fd0e5e61c 100644 --- a/content/amplify/metrics-metadata/nginx-metrics.md +++ b/content/amplify/metrics-metadata/nginx-metrics.md @@ -3,7 +3,7 @@ title: NGINX Metrics description: List of NGINX Metrics weight: 30 toc: true -docs: DOCS-973 +nd-docs: DOCS-973 --- ## HTTP Connections and Requests @@ -48,7 +48,7 @@ docs: DOCS-973 ``` Type: gauge, integer - Description: Number of currently active requests (reading and writing). + Description: Number of currently active requests (reading and writing). Number of requests reading headers or writing responses to clients. Source: stub_status (or NGINX Plus status API) ``` @@ -127,7 +127,7 @@ docs: DOCS-973 ``` Type: counter, integer - Description: Number of requests finalized with status code 499 which is + Description: Number of requests finalized with status code 499 which is logged when the client closes the connection. Source: access.log ``` @@ -213,7 +213,7 @@ docs: DOCS-973 ``` Type: gauge, integer - Description: Hard limit on the number of file descriptors as seen + Description: Hard limit on the number of file descriptors as seen by NGINX worker processes. ``` diff --git a/content/amplify/metrics-metadata/os-metrics.md b/content/amplify/metrics-metadata/os-metrics.md index 6a204d0df..7de32fcb0 100644 --- a/content/amplify/metrics-metadata/os-metrics.md +++ b/content/amplify/metrics-metadata/os-metrics.md @@ -3,7 +3,7 @@ title: OS Metrics description: List of OS Metrics weight: 20 toc: true -docs: DOCS-974 +nd-docs: DOCS-974 --- ## System Metrics diff --git a/content/amplify/metrics-metadata/other-metrics.md b/content/amplify/metrics-metadata/other-metrics.md index 83b583573..2241f57e4 100644 --- a/content/amplify/metrics-metadata/other-metrics.md +++ b/content/amplify/metrics-metadata/other-metrics.md @@ -3,7 +3,7 @@ title: Other Metrics description: Learn about other metrics used by F5 NGINX Amplify weight: 40 toc: true -docs: DOCS-975 +nd-docs: DOCS-975 --- {{< note >}}Monitoring PHP-FPM and MySQL metrics is only supported by F5 NGINX Amplify Agent.{{< /note >}} diff --git a/content/amplify/nginx-amplify-agent/amplify-agent-overview.md b/content/amplify/nginx-amplify-agent/amplify-agent-overview.md index 235fb15cd..51cc08ccb 100644 --- a/content/amplify/nginx-amplify-agent/amplify-agent-overview.md +++ b/content/amplify/nginx-amplify-agent/amplify-agent-overview.md @@ -3,7 +3,7 @@ title: NGINX Amplify Agent Overview description: Learn about F5 NGINX Amplify Agent. weight: 1 toc: true -docs: DOCS-960 +nd-docs: DOCS-960 --- F5 NGINX Amplify Agent is a compact application written in Python. Its role is to collect various metrics and metadata and send them securely to the backend for storage and visualization. diff --git a/content/amplify/nginx-amplify-agent/configuration-analysis.md b/content/amplify/nginx-amplify-agent/configuration-analysis.md index 0110f4a9b..0c227c3a9 100644 --- a/content/amplify/nginx-amplify-agent/configuration-analysis.md +++ b/content/amplify/nginx-amplify-agent/configuration-analysis.md @@ -3,7 +3,7 @@ title: NGINX Configuration Analysis description: Learn about F5 NGINX Amplify Agent's configuration analysis feature. weight: 600 toc: true -docs: DOCS-961 +nd-docs: DOCS-961 --- F5 NGINX Amplify Agent can automatically find all relevant NGINX configuration files, parse them, extract their logical structure, and send the associated JSON data to the Amplify backend for further analysis and reporting. For more information on configuration analysis, please see the [Analyzer]({{< ref "/amplify/user-interface/analyzer.md" >}})) documentation. diff --git a/content/amplify/nginx-amplify-agent/configuring-metric-collection.md b/content/amplify/nginx-amplify-agent/configuring-metric-collection.md index b3bf29981..311967d69 100644 --- a/content/amplify/nginx-amplify-agent/configuring-metric-collection.md +++ b/content/amplify/nginx-amplify-agent/configuring-metric-collection.md @@ -3,7 +3,7 @@ title: Configuring NGINX for Metric Collection description: Learn how to configure NGINX Instances to collect data. weight: 400 toc: true -docs: DOCS-963 +nd-docs: DOCS-963 --- To monitor an NGINX instance, F5 NGINX Amplify Agent must [find the relevant NGINX master process]({{< ref "/amplify/nginx-amplify-agent/detecting-monitoring-instances" >}}) and determine its key characteristics. diff --git a/content/amplify/nginx-amplify-agent/detecting-monitoring-instances.md b/content/amplify/nginx-amplify-agent/detecting-monitoring-instances.md index 1df04cd92..85508a998 100644 --- a/content/amplify/nginx-amplify-agent/detecting-monitoring-instances.md +++ b/content/amplify/nginx-amplify-agent/detecting-monitoring-instances.md @@ -3,7 +3,7 @@ title: Detecting and Monitoring NGINX Instances description: Learn how F5 NGINX Amplify Agent detects NGINX Instances. weight: 300 toc: true -docs: DOCS-962 +nd-docs: DOCS-962 --- F5 NGINX Amplify Agent is capable of detecting several types of NGINX instances: diff --git a/content/amplify/nginx-amplify-agent/install/configuring-amplify-agent.md b/content/amplify/nginx-amplify-agent/install/configuring-amplify-agent.md index b8d5e3f41..572725403 100644 --- a/content/amplify/nginx-amplify-agent/install/configuring-amplify-agent.md +++ b/content/amplify/nginx-amplify-agent/install/configuring-amplify-agent.md @@ -3,7 +3,7 @@ title: Configuring NGINX Amplify Agent description: Learn how to configure F5 NGINX Amplify Agent. weight: 300 toc: true -docs: DOCS-967 +nd-docs: DOCS-967 --- F5 NGINX Amplify Agent keeps its configuration in `/etc/amplify-agent/agent.conf`. The NGINX Amplify Agent configuration is a text-based file. diff --git a/content/amplify/nginx-amplify-agent/install/installing-amplify-agent.md b/content/amplify/nginx-amplify-agent/install/installing-amplify-agent.md index dea514179..1dcbb9241 100644 --- a/content/amplify/nginx-amplify-agent/install/installing-amplify-agent.md +++ b/content/amplify/nginx-amplify-agent/install/installing-amplify-agent.md @@ -3,7 +3,7 @@ title: Install NGINX Amplify Agent description: Learn how to install F5 NGINX Amplify Agent. weight: 100 toc: true -docs: DOCS-968 +nd-docs: DOCS-968 --- To use F5 NGINX Amplify to monitor your infrastructure, you need to install NGINX Amplify Agent on each system you wish to monitor. diff --git a/content/amplify/nginx-amplify-agent/install/uninstalling-amplify-agent.md b/content/amplify/nginx-amplify-agent/install/uninstalling-amplify-agent.md index 341d5d1bb..702c0ff87 100644 --- a/content/amplify/nginx-amplify-agent/install/uninstalling-amplify-agent.md +++ b/content/amplify/nginx-amplify-agent/install/uninstalling-amplify-agent.md @@ -3,7 +3,7 @@ title: Uninstall NGINX Amplify Agent description: Learn how to uninstall F5 NGINX Amplify Agent. weight: 400 toc: true -docs: DOCS-969 +nd-docs: DOCS-969 --- To completely delete a previously monitored object, perform the following steps: diff --git a/content/amplify/nginx-amplify-agent/install/updating-amplify-agent.md b/content/amplify/nginx-amplify-agent/install/updating-amplify-agent.md index a616bccdf..e7c0f2c57 100644 --- a/content/amplify/nginx-amplify-agent/install/updating-amplify-agent.md +++ b/content/amplify/nginx-amplify-agent/install/updating-amplify-agent.md @@ -3,7 +3,7 @@ title: Update NGINX Amplify Agent description: Learn how to update F5 NGINX Amplify Agent. weight: 200 toc: true -docs: DOCS-970 +nd-docs: DOCS-970 --- {{< important >}} diff --git a/content/amplify/nginx-amplify-agent/install/using-amplify-agent-docker.md b/content/amplify/nginx-amplify-agent/install/using-amplify-agent-docker.md index 6b979affb..ee91d9b50 100644 --- a/content/amplify/nginx-amplify-agent/install/using-amplify-agent-docker.md +++ b/content/amplify/nginx-amplify-agent/install/using-amplify-agent-docker.md @@ -3,7 +3,7 @@ title: Use NGINX Amplify Agent with Docker description: Learn how to use F5 NGINX Amplify Agent with Docker. weight: 500 toc: true -docs: DOCS-971 +nd-docs: DOCS-971 --- You can use F5 NGINX Amplify Agent in a Docker environment. Although it's still work-in-progress, NGINX Amplify Agent can collect most of the metrics and send them over to the Amplify backend in either "standalone" or "aggregate" mode. The standalone mode of operation is the simplest one, with a separate "host" created for each Docker container. Alternatively, the metrics from NGINX Amplify Agents running in different containers can be aggregated on a "per-image" basis — this is the aggregate mode of deploying NGINX Amplify Agent with Docker. diff --git a/content/amplify/nginx-amplify-agent/metadata-metrics-collection.md b/content/amplify/nginx-amplify-agent/metadata-metrics-collection.md index 0263c68f6..b5ea87f65 100644 --- a/content/amplify/nginx-amplify-agent/metadata-metrics-collection.md +++ b/content/amplify/nginx-amplify-agent/metadata-metrics-collection.md @@ -3,7 +3,7 @@ title: Metadata and Metrics Collection description: Learn how F5 NGINX Amplify Agent collects data. weight: 200 toc: true -docs: DOCS-964 +nd-docs: DOCS-964 --- F5 NGINX Amplify Agent collects the following types of data: diff --git a/content/amplify/nginx-amplify-agent/source-code.md b/content/amplify/nginx-amplify-agent/source-code.md index 4730d4d2c..6aa36975e 100644 --- a/content/amplify/nginx-amplify-agent/source-code.md +++ b/content/amplify/nginx-amplify-agent/source-code.md @@ -3,7 +3,7 @@ title: NGINX Amplify Agent Source Code description: Learn where to find F5 NGINX Amplify Agent's source code. weight: 700 toc: true -docs: DOCS-965 +nd-docs: DOCS-965 --- F5 NGINX Amplify Agent is an open source application. It is licensed under the [2-clause BSD license](https://github.com/nginxinc/nginx-amplify-agent/blob/master/LICENSE), and is available here: diff --git a/content/amplify/nginx-amplify-agent/troubleshooting-metrics-collection.md b/content/amplify/nginx-amplify-agent/troubleshooting-metrics-collection.md index 5501b2fbe..d15fbe0f9 100644 --- a/content/amplify/nginx-amplify-agent/troubleshooting-metrics-collection.md +++ b/content/amplify/nginx-amplify-agent/troubleshooting-metrics-collection.md @@ -3,7 +3,7 @@ title: Troubleshooting Metrics Collection description: Learn what to check if F5 NGINX Amplify Agent isn't reporting metrics. weight: 500 toc: true -docs: DOCS-966 +nd-docs: DOCS-966 --- After you [install and start]({{< ref "/amplify/nginx-amplify-agent/install/installing-amplify-agent" >}}) F5 NGINX Amplify Agent, it should start reporting right away, pushing aggregated data to the Amplify backend at regular 1 minute intervals. It'll take about a minute for a new system to appear in the Amplify web interface. diff --git a/content/amplify/overview/overview-main-components.md b/content/amplify/overview/overview-main-components.md index 3ae2416ee..ecb453b6e 100644 --- a/content/amplify/overview/overview-main-components.md +++ b/content/amplify/overview/overview-main-components.md @@ -3,7 +3,7 @@ title: Overview and Main Components description: Learn about F5 NGINX Amplify and its main components. weight: 10 toc: true -docs: DOCS-976 +nd-docs: DOCS-976 --- ## What Is F5 NGINX Amplify? diff --git a/content/amplify/user-interface/account-settings.md b/content/amplify/user-interface/account-settings.md index bef423f0b..d39312e95 100644 --- a/content/amplify/user-interface/account-settings.md +++ b/content/amplify/user-interface/account-settings.md @@ -3,7 +3,7 @@ title: Account Settings description: Learn about the Account settings for the User Interface. weight: 70 toc: true -docs: DOCS-978 +nd-docs: DOCS-978 --- The **Account** option in the user menu at the top right corner of the user interface povides access to several user settings. diff --git a/content/amplify/user-interface/alerts.md b/content/amplify/user-interface/alerts.md index f89818d48..490cc6eb7 100644 --- a/content/amplify/user-interface/alerts.md +++ b/content/amplify/user-interface/alerts.md @@ -3,7 +3,7 @@ title: Alerts description: Learn about the Alerts page of the User Interface. weight: 60 toc: false -docs: DOCS-979 +nd-docs: DOCS-979 --- The **Alerts** page describes the configuration of the alert rules used to notify you of any anomalies in the behavior of your systems. diff --git a/content/amplify/user-interface/analyzer.md b/content/amplify/user-interface/analyzer.md index 054790cdd..40ce6d0b5 100644 --- a/content/amplify/user-interface/analyzer.md +++ b/content/amplify/user-interface/analyzer.md @@ -3,7 +3,7 @@ title: Analyzer description: Learn about the Analyzer page of the User Interface. weight: 50 toc: false -docs: DOCS-980 +nd-docs: DOCS-980 --- F5 NGINX Amplify Agent parses NGINX configuration files and transmits them to the backend component for further analysis. NGINX Amplify offers configuration recommendations to help improve the performance, reliability, and security of your applications. With well-thought-out and detailed recommendations, you’ll know exactly where the problem is, why it is a problem, and how to fix it. diff --git a/content/amplify/user-interface/dashboards.md b/content/amplify/user-interface/dashboards.md index eef3fcd73..24dd0814d 100644 --- a/content/amplify/user-interface/dashboards.md +++ b/content/amplify/user-interface/dashboards.md @@ -3,7 +3,7 @@ title: Dashboards description: Learn about the Dashboards page of the User Interface. weight: 40 toc: false -docs: DOCS-981 +nd-docs: DOCS-981 --- You can create your own dashboards populated with highly customizable graphs of NGINX and system-level metrics. diff --git a/content/amplify/user-interface/graphs.md b/content/amplify/user-interface/graphs.md index 701138cb7..d33421876 100644 --- a/content/amplify/user-interface/graphs.md +++ b/content/amplify/user-interface/graphs.md @@ -3,7 +3,7 @@ title: Graphs description: Learn about the Graphs page of the User Interface. weight: 20 toc: false -docs: DOCS-982 +nd-docs: DOCS-982 --- On the **Graphs** page, you can find a collection of predefined graphs. Here you can see an overview of the key metric stats, such as CPU, memory, and disk usage for all your systems. diff --git a/content/amplify/user-interface/inventory.md b/content/amplify/user-interface/inventory.md index f57cc399a..dc7e4d198 100644 --- a/content/amplify/user-interface/inventory.md +++ b/content/amplify/user-interface/inventory.md @@ -3,7 +3,7 @@ title: Inventory description: Learn about the Inventory page of the User Interface. weight: 30 toc: false -docs: DOCS-983 +nd-docs: DOCS-983 --- You can access the inventory by selecting the first icon on the top menu. The inventory gives an overview of the systems that are being monitored. When F5 NGINX Amplify Agent is running and reporting on a new system, it's listed in the system index on the left side of the user interface and in the **Inventory** section. diff --git a/content/amplify/user-interface/overview.md b/content/amplify/user-interface/overview.md index 5fbb45d7e..02437219d 100644 --- a/content/amplify/user-interface/overview.md +++ b/content/amplify/user-interface/overview.md @@ -3,7 +3,7 @@ title: Overview description: Learn about the Overview page of the User Interface. weight: 10 toc: true -docs: DOCS-984 +nd-docs: DOCS-984 --- The Overview page is designed to provide a quick summary of the state of your NGINX infrastructure. Here you can quickly check the total sum of HTTP 5xx errors over the past 24 hours and compare it to the previous 24 hours. diff --git a/content/controller/admin-guides/backup-restore/backup-restore-cluster-config.md b/content/controller/admin-guides/backup-restore/backup-restore-cluster-config.md index 93dfdad4b..146217e3b 100644 --- a/content/controller/admin-guides/backup-restore/backup-restore-cluster-config.md +++ b/content/controller/admin-guides/backup-restore/backup-restore-cluster-config.md @@ -1,7 +1,7 @@ --- description: Learn how to back up your F5 NGINX Controller cluster configuration and encryption keys. -docs: DOCS-247 +nd-docs: DOCS-247 title: Back Up & Restore Cluster Config and Encryption Keys toc: true weight: 97 diff --git a/content/controller/admin-guides/backup-restore/backup-restore-embedded-config-db.md b/content/controller/admin-guides/backup-restore/backup-restore-embedded-config-db.md index f4cdadd2f..a1d53cf56 100644 --- a/content/controller/admin-guides/backup-restore/backup-restore-embedded-config-db.md +++ b/content/controller/admin-guides/backup-restore/backup-restore-embedded-config-db.md @@ -1,7 +1,7 @@ --- description: Learn how to back up and restore the embedded F5 NGINX Controller config database. -docs: DOCS-248 +nd-docs: DOCS-248 title: Back Up & Restore an Embedded Config Database toc: true weight: 98 diff --git a/content/controller/admin-guides/backup-restore/backup-restore-external-config-db.md b/content/controller/admin-guides/backup-restore/backup-restore-external-config-db.md index 983ec1321..bc2adbeeb 100644 --- a/content/controller/admin-guides/backup-restore/backup-restore-external-config-db.md +++ b/content/controller/admin-guides/backup-restore/backup-restore-external-config-db.md @@ -1,7 +1,7 @@ --- description: Learn how to back up and restore the external F5 NGINX Controller config database. -docs: DOCS-249 +nd-docs: DOCS-249 title: Back Up & Restore an External Config Database toc: true weight: 99 diff --git a/content/controller/admin-guides/backup-restore/backup-restore-metrics-db.md b/content/controller/admin-guides/backup-restore/backup-restore-metrics-db.md index bce77e9f2..bd372ded2 100644 --- a/content/controller/admin-guides/backup-restore/backup-restore-metrics-db.md +++ b/content/controller/admin-guides/backup-restore/backup-restore-metrics-db.md @@ -1,6 +1,6 @@ --- description: Learn how to back up and restore the F5 NGINX Controller analytics database. -docs: DOCS-250 +nd-docs: DOCS-250 title: Back Up & Restore the Analytics Database toc: true weight: 100 diff --git a/content/controller/admin-guides/config-agent/about-controller-agent.md b/content/controller/admin-guides/config-agent/about-controller-agent.md index 3976422ab..2ab44950d 100644 --- a/content/controller/admin-guides/config-agent/about-controller-agent.md +++ b/content/controller/admin-guides/config-agent/about-controller-agent.md @@ -1,6 +1,6 @@ --- description: Learn about the NGINX Controller Agent. -docs: DOCS-508 +nd-docs: DOCS-508 title: Get to Know the F5 NGINX Controller Agent toc: true weight: 100 diff --git a/content/controller/admin-guides/config-agent/configure-metrics-collection.md b/content/controller/admin-guides/config-agent/configure-metrics-collection.md index 492cbd5e1..6fadc382c 100644 --- a/content/controller/admin-guides/config-agent/configure-metrics-collection.md +++ b/content/controller/admin-guides/config-agent/configure-metrics-collection.md @@ -1,7 +1,7 @@ --- description: Contains instructions for setting up the F5 NGINX Controller Agent to collect metrics for NGINX Plus instances. -docs: DOCS-509 +nd-docs: DOCS-509 title: Set up Metrics Collection toc: true weight: 120 diff --git a/content/controller/admin-guides/config-agent/configure-the-agent.md b/content/controller/admin-guides/config-agent/configure-the-agent.md index 37a7d5c7b..468755759 100644 --- a/content/controller/admin-guides/config-agent/configure-the-agent.md +++ b/content/controller/admin-guides/config-agent/configure-the-agent.md @@ -1,6 +1,6 @@ --- description: Customize the F5 NGINX Controller Agent configuration. -docs: DOCS-510 +nd-docs: DOCS-510 title: Configure the NGINX Controller Agent toc: true weight: 110 diff --git a/content/controller/admin-guides/config-agent/use-agent-with-docker.md b/content/controller/admin-guides/config-agent/use-agent-with-docker.md index 3c5980a2b..12a1786b8 100644 --- a/content/controller/admin-guides/config-agent/use-agent-with-docker.md +++ b/content/controller/admin-guides/config-agent/use-agent-with-docker.md @@ -1,6 +1,6 @@ --- description: Learn how to use the F5 NGINX Controller Agent in a Docker environment. -docs: DOCS-511 +nd-docs: DOCS-511 title: Use the NGINX Controller Agent with Docker toc: true weight: 200 diff --git a/content/controller/admin-guides/install/agent-restart.md b/content/controller/admin-guides/install/agent-restart.md index 103b35573..acc3e9173 100644 --- a/content/controller/admin-guides/install/agent-restart.md +++ b/content/controller/admin-guides/install/agent-restart.md @@ -1,7 +1,7 @@ --- description: How to start, stop, and verify the state of the F5 NGINX Controller Agent service. -docs: DOCS-251 +nd-docs: DOCS-251 title: Manage the NGINX Controller Agent Service toc: true weight: 210 diff --git a/content/controller/admin-guides/install/get-n-plus-cert-and-key.md b/content/controller/admin-guides/install/get-n-plus-cert-and-key.md index 48a9ecef5..55a141570 100644 --- a/content/controller/admin-guides/install/get-n-plus-cert-and-key.md +++ b/content/controller/admin-guides/install/get-n-plus-cert-and-key.md @@ -1,7 +1,7 @@ --- description: How to download the F5 NGINX Plus nginx.crt and nginx.key files using the NGINX Controller API. -docs: DOCS-252 +nd-docs: DOCS-252 title: Download the NGINX Plus Cert and Key Bundle toc: true weight: 105 diff --git a/content/controller/admin-guides/install/install-agent-non-root.md b/content/controller/admin-guides/install/install-agent-non-root.md index 51934094a..7d4dd31bf 100644 --- a/content/controller/admin-guides/install/install-agent-non-root.md +++ b/content/controller/admin-guides/install/install-agent-non-root.md @@ -1,6 +1,6 @@ --- description: How to install the F5 NGINX Controller Agent to run as a non-root user. -docs: DOCS-253 +nd-docs: DOCS-253 title: Install NGINX Controller Agent for Non-root Users toc: true weight: 205 diff --git a/content/controller/admin-guides/install/install-for-controller.md b/content/controller/admin-guides/install/install-for-controller.md index b359e637d..bd104db9f 100644 --- a/content/controller/admin-guides/install/install-for-controller.md +++ b/content/controller/admin-guides/install/install-for-controller.md @@ -1,7 +1,7 @@ --- description: Take the steps in this guide to deploy F5 NGINX App Protect WAF as a datapath instance for use with NGINX Controller. -docs: DOCS-645 +nd-docs: DOCS-645 title: Using NGINX App Protect WAF with NGINX Controller toc: true weight: 500 diff --git a/content/controller/admin-guides/install/install-nginx-controller-agent.md b/content/controller/admin-guides/install/install-nginx-controller-agent.md index 594f865c1..2ee592106 100644 --- a/content/controller/admin-guides/install/install-nginx-controller-agent.md +++ b/content/controller/admin-guides/install/install-nginx-controller-agent.md @@ -1,6 +1,6 @@ --- description: How to install, upgrade, and uninstall the F5 Controller Agent. -docs: DOCS-254 +nd-docs: DOCS-254 title: Install NGINX Controller Agent toc: true weight: 150 diff --git a/content/controller/admin-guides/install/install-nginx-controller-rhel-8.md b/content/controller/admin-guides/install/install-nginx-controller-rhel-8.md index 82d4e9651..34431a5a2 100644 --- a/content/controller/admin-guides/install/install-nginx-controller-rhel-8.md +++ b/content/controller/admin-guides/install/install-nginx-controller-rhel-8.md @@ -1,7 +1,7 @@ --- description: This guide explains how to prepare your RHEL 8 system to install F5 NGINX Controller and the NGINX Controller Agent. -docs: DOCS-342 +nd-docs: DOCS-342 title: Install NGINX Controller on RHEL 8 (experimental) toc: true weight: 200 diff --git a/content/controller/admin-guides/install/install-nginx-controller.md b/content/controller/admin-guides/install/install-nginx-controller.md index d6d6eb972..0607d2240 100644 --- a/content/controller/admin-guides/install/install-nginx-controller.md +++ b/content/controller/admin-guides/install/install-nginx-controller.md @@ -1,6 +1,6 @@ --- description: This guide explains how to install and update F5 NGINX Controller. -docs: DOCS-255 +nd-docs: DOCS-255 title: Install NGINX Controller toc: true weight: 120 diff --git a/content/controller/admin-guides/install/nginx-controller-tech-specs.md b/content/controller/admin-guides/install/nginx-controller-tech-specs.md index 1940cf75d..39b8a7da6 100644 --- a/content/controller/admin-guides/install/nginx-controller-tech-specs.md +++ b/content/controller/admin-guides/install/nginx-controller-tech-specs.md @@ -1,6 +1,6 @@ --- description: Guidelines and recommendations for configuring F5 NGINX Controller. -docs: DOCS-256 +nd-docs: DOCS-256 title: NGINX Controller Tech Specs toc: true weight: 100 diff --git a/content/controller/admin-guides/install/resilient-cluster-aws.md b/content/controller/admin-guides/install/resilient-cluster-aws.md index f544492e6..240c0edc5 100644 --- a/content/controller/admin-guides/install/resilient-cluster-aws.md +++ b/content/controller/admin-guides/install/resilient-cluster-aws.md @@ -1,7 +1,7 @@ --- description: This guide explains how to deploy F5 NGINX Controller as a multi-node resilient cluster on AWS. -docs: DOCS-257 +nd-docs: DOCS-257 title: Deploy NGINX Controller as a Resilient Cluster on AWS toc: true weight: 310 diff --git a/content/controller/admin-guides/install/resilient-cluster-private-cloud.md b/content/controller/admin-guides/install/resilient-cluster-private-cloud.md index 22cc5e1db..cb2339eb0 100644 --- a/content/controller/admin-guides/install/resilient-cluster-private-cloud.md +++ b/content/controller/admin-guides/install/resilient-cluster-private-cloud.md @@ -1,7 +1,7 @@ --- description: This guide explains how to deploy F5 NGINX Controller as a multi-node resilient cluster on a private cloud. -docs: DOCS-258 +nd-docs: DOCS-258 title: Deploy NGINX Controller as a Resilient Cluster on a Private Cloud toc: true weight: 300 diff --git a/content/controller/admin-guides/install/try-nginx-controller-app-sec.md b/content/controller/admin-guides/install/try-nginx-controller-app-sec.md index 74b41240b..ecba8d0f9 100644 --- a/content/controller/admin-guides/install/try-nginx-controller-app-sec.md +++ b/content/controller/admin-guides/install/try-nginx-controller-app-sec.md @@ -1,7 +1,7 @@ --- description: This quick-start tutorial shows you how to get started using F5 NGINX Controller with the Application Security Add-on. -docs: DOCS-259 +nd-docs: DOCS-259 title: Trial NGINX Controller with App Security toc: true weight: 115 diff --git a/content/controller/admin-guides/install/try-nginx-controller.md b/content/controller/admin-guides/install/try-nginx-controller.md index c5565c412..dd2883d56 100644 --- a/content/controller/admin-guides/install/try-nginx-controller.md +++ b/content/controller/admin-guides/install/try-nginx-controller.md @@ -1,7 +1,7 @@ --- description: This quick-start tutorial shows you how to get started using F5 NGINX Controller with NGINX Plus. -docs: DOCS-260 +nd-docs: DOCS-260 title: Trial NGINX Controller with NGINX Plus toc: true weight: 110 diff --git a/content/controller/admin-guides/install/using-helper-script.md b/content/controller/admin-guides/install/using-helper-script.md index 2a880d7ce..382332f63 100644 --- a/content/controller/admin-guides/install/using-helper-script.md +++ b/content/controller/admin-guides/install/using-helper-script.md @@ -1,7 +1,7 @@ --- description: Learn how to update F5 NGINX Controller installation settings and manage the NGINX Controller service using the helper.sh script. -docs: DOCS-261 +nd-docs: DOCS-261 title: Update NGINX Controller Settings with helper.sh toc: true weight: 200 diff --git a/content/controller/analytics/alerts/about-alerts.md b/content/controller/analytics/alerts/about-alerts.md index c870c9a75..af1813eba 100644 --- a/content/controller/analytics/alerts/about-alerts.md +++ b/content/controller/analytics/alerts/about-alerts.md @@ -1,6 +1,6 @@ --- description: Learn about NGINX Controller Alerts and Notifications. -docs: DOCS-520 +nd-docs: DOCS-520 title: About Alerts toc: true weight: 100 diff --git a/content/controller/analytics/alerts/manage-alerts.md b/content/controller/analytics/alerts/manage-alerts.md index de167234f..839506968 100644 --- a/content/controller/analytics/alerts/manage-alerts.md +++ b/content/controller/analytics/alerts/manage-alerts.md @@ -1,6 +1,6 @@ --- description: Learn how to view, add, mute, and delete Alerts. -docs: DOCS-521 +nd-docs: DOCS-521 title: Manage Alerts toc: true weight: 200 diff --git a/content/controller/analytics/alerts/manage-registered-emails.md b/content/controller/analytics/alerts/manage-registered-emails.md index 81131b9da..6a0bb6bbf 100644 --- a/content/controller/analytics/alerts/manage-registered-emails.md +++ b/content/controller/analytics/alerts/manage-registered-emails.md @@ -1,7 +1,7 @@ --- description: Learn how to manage the email addresses that receive automatic alert notifications. -docs: DOCS-522 +nd-docs: DOCS-522 title: Manage Registered Email Addresses toc: true weight: 310 diff --git a/content/controller/analytics/alerts/service-now-notifications.md b/content/controller/analytics/alerts/service-now-notifications.md index 8e857b14e..fe4ca3c43 100644 --- a/content/controller/analytics/alerts/service-now-notifications.md +++ b/content/controller/analytics/alerts/service-now-notifications.md @@ -1,6 +1,6 @@ --- description: Set up Alerts Integration with ServiceNow. Deprecated in v3.13. -docs: DOCS-523 +nd-docs: DOCS-523 title: ServiceNow Alerts Integration toc: true weight: 600 diff --git a/content/controller/analytics/catalogs/dimensions.md b/content/controller/analytics/catalogs/dimensions.md index db1629c2d..4ed5ea5b4 100644 --- a/content/controller/analytics/catalogs/dimensions.md +++ b/content/controller/analytics/catalogs/dimensions.md @@ -1,7 +1,7 @@ --- description: Information about all of the Dimensions collected by F5 NGINX Controller Agent. -docs: DOCS-524 +nd-docs: DOCS-524 title: NGINX Controller Dimensions Catalog toc: false weight: 20 diff --git a/content/controller/analytics/catalogs/metrics.md b/content/controller/analytics/catalogs/metrics.md index 3e457a0a9..ff4c9b25b 100644 --- a/content/controller/analytics/catalogs/metrics.md +++ b/content/controller/analytics/catalogs/metrics.md @@ -1,7 +1,7 @@ --- description: Information about all of the Metrics collected by F5 NGINX Controller Agent. -docs: DOCS-525 +nd-docs: DOCS-525 title: NGINX Controller Metrics Catalog toc: false weight: 20 diff --git a/content/controller/analytics/dashboards/application-health-score.md b/content/controller/analytics/dashboards/application-health-score.md index 5ec0bd4f0..1a4940ffd 100644 --- a/content/controller/analytics/dashboards/application-health-score.md +++ b/content/controller/analytics/dashboards/application-health-score.md @@ -1,6 +1,6 @@ --- description: View and understand the Application Health Score for your application. -docs: DOCS-526 +nd-docs: DOCS-526 title: Understanding the Application Health Score toc: true weight: 20 diff --git a/content/controller/analytics/dashboards/custom-dashboards.md b/content/controller/analytics/dashboards/custom-dashboards.md index 8a4913194..a7593369d 100644 --- a/content/controller/analytics/dashboards/custom-dashboards.md +++ b/content/controller/analytics/dashboards/custom-dashboards.md @@ -1,6 +1,6 @@ --- description: Create custom dashboards to view custom graphs. -docs: DOCS-527 +nd-docs: DOCS-527 title: Create Custom Dashboards toc: true weight: 20 diff --git a/content/controller/analytics/dashboards/overview-dashboard.md b/content/controller/analytics/dashboards/overview-dashboard.md index c16a87cc3..e3c9c2073 100644 --- a/content/controller/analytics/dashboards/overview-dashboard.md +++ b/content/controller/analytics/dashboards/overview-dashboard.md @@ -1,7 +1,7 @@ --- description: Learn about the Dashboards that displays cumulative metrics for your NGINX Instances. -docs: DOCS-528 +nd-docs: DOCS-528 title: Analytics Overview toc: true weight: 10 diff --git a/content/controller/analytics/data-explorer/how-to-use.md b/content/controller/analytics/data-explorer/how-to-use.md index 2d9129225..2efebdc8a 100644 --- a/content/controller/analytics/data-explorer/how-to-use.md +++ b/content/controller/analytics/data-explorer/how-to-use.md @@ -1,7 +1,7 @@ --- description: Use the Data Explorer to examine the metrics that F5 NGINX Controller collects. -docs: DOCS-529 +nd-docs: DOCS-529 title: How To Use the Data Explorer toc: true weight: 20 diff --git a/content/controller/analytics/events/view-events.md b/content/controller/analytics/events/view-events.md index 39babcac8..a2baabfbe 100644 --- a/content/controller/analytics/events/view-events.md +++ b/content/controller/analytics/events/view-events.md @@ -1,6 +1,6 @@ --- description: View the audit log of system and user actions. -docs: DOCS-530 +nd-docs: DOCS-530 title: View Events toc: true weight: 20 diff --git a/content/controller/analytics/forwarders/forward-analytics-to-datadog.md b/content/controller/analytics/forwarders/forward-analytics-to-datadog.md index 93527425e..852b44b7b 100644 --- a/content/controller/analytics/forwarders/forward-analytics-to-datadog.md +++ b/content/controller/analytics/forwarders/forward-analytics-to-datadog.md @@ -1,6 +1,6 @@ --- description: How to forward Analytics data to Datadog. -docs: DOCS-531 +nd-docs: DOCS-531 title: Forward Analytics Data to Datadog toc: true weight: 100 diff --git a/content/controller/analytics/forwarders/forward-analytics-to-otlp.md b/content/controller/analytics/forwarders/forward-analytics-to-otlp.md index ea705f2d9..838073a53 100644 --- a/content/controller/analytics/forwarders/forward-analytics-to-otlp.md +++ b/content/controller/analytics/forwarders/forward-analytics-to-otlp.md @@ -1,6 +1,6 @@ --- description: How to forward Analytics Metrics to OpenTelemetry Collector. -docs: DOCS-532 +nd-docs: DOCS-532 title: Forward Analytics Metrics to OpenTelemetry Collector toc: true weight: 201 diff --git a/content/controller/analytics/forwarders/forward-analytics-to-splunk.md b/content/controller/analytics/forwarders/forward-analytics-to-splunk.md index 81d2cfcd2..5c48c0e73 100644 --- a/content/controller/analytics/forwarders/forward-analytics-to-splunk.md +++ b/content/controller/analytics/forwarders/forward-analytics-to-splunk.md @@ -1,6 +1,6 @@ --- description: How to forward Analytics data to Splunk. -docs: DOCS-533 +nd-docs: DOCS-533 title: Forward Analytics Data to Splunk toc: true weight: 200 diff --git a/content/controller/analytics/forwarders/forward-analytics-to-syslog.md b/content/controller/analytics/forwarders/forward-analytics-to-syslog.md index 669046a4d..f135c3322 100644 --- a/content/controller/analytics/forwarders/forward-analytics-to-syslog.md +++ b/content/controller/analytics/forwarders/forward-analytics-to-syslog.md @@ -1,6 +1,6 @@ --- description: How to forward Analytics Events to Syslog. -docs: DOCS-534 +nd-docs: DOCS-534 title: Forward Analytics Events to Syslog toc: true weight: 201 diff --git a/content/controller/analytics/metrics/metrics-api.md b/content/controller/analytics/metrics/metrics-api.md index 29f5cef7b..867c62308 100644 --- a/content/controller/analytics/metrics/metrics-api.md +++ b/content/controller/analytics/metrics/metrics-api.md @@ -1,7 +1,7 @@ --- description: Tips and tricks for using the Metrics API query parameters to refine your data. -docs: DOCS-535 +nd-docs: DOCS-535 title: Using the Metrics API toc: true weight: 50 diff --git a/content/controller/analytics/metrics/overview-metrics-metadata.md b/content/controller/analytics/metrics/overview-metrics-metadata.md index cec6969a1..72e0382a6 100644 --- a/content/controller/analytics/metrics/overview-metrics-metadata.md +++ b/content/controller/analytics/metrics/overview-metrics-metadata.md @@ -1,7 +1,7 @@ --- description: Understanding how the F5 NGINX Controller Agent collects and reports metrics and metadata. -docs: DOCS-536 +nd-docs: DOCS-536 title: 'Overview: Metrics and Metadata' toc: true weight: 20 diff --git a/content/controller/analytics/metrics/overview-traffic-metrics.md b/content/controller/analytics/metrics/overview-traffic-metrics.md index b1d871a6d..7df193b20 100644 --- a/content/controller/analytics/metrics/overview-traffic-metrics.md +++ b/content/controller/analytics/metrics/overview-traffic-metrics.md @@ -1,6 +1,6 @@ --- description: Understanding how traffic metrics are collected, aggregated, and reported. -docs: DOCS-537 +nd-docs: DOCS-537 title: 'Overview: Traffic Metrics' toc: true weight: 100 diff --git a/content/controller/analytics/metrics/view-traffic-metrics.md b/content/controller/analytics/metrics/view-traffic-metrics.md index b63268ff9..055658de3 100644 --- a/content/controller/analytics/metrics/view-traffic-metrics.md +++ b/content/controller/analytics/metrics/view-traffic-metrics.md @@ -1,6 +1,6 @@ --- description: How to view the traffic metrics gathered by NGINX Controller Analytics. -docs: DOCS-538 +nd-docs: DOCS-538 title: View Traffic Metrics toc: true weight: 150 diff --git a/content/controller/analytics/view-app-security-analytics.md b/content/controller/analytics/view-app-security-analytics.md index c26533250..2d9407d5b 100644 --- a/content/controller/analytics/view-app-security-analytics.md +++ b/content/controller/analytics/view-app-security-analytics.md @@ -1,6 +1,6 @@ --- description: How to view App Security Analytics. -docs: DOCS-539 +nd-docs: DOCS-539 title: View App Security Analytics toc: true weight: 500 diff --git a/content/controller/api-management/manage-apis.md b/content/controller/api-management/manage-apis.md index a16e213ac..1ee149fb0 100644 --- a/content/controller/api-management/manage-apis.md +++ b/content/controller/api-management/manage-apis.md @@ -1,7 +1,7 @@ --- description: Use the F5 NGINX Controller API Manager to add APIs and control how your APIs are exposed and consumed. -docs: DOCS-569 +nd-docs: DOCS-569 title: Manage Your APIs toc: true weight: 110 diff --git a/content/controller/api-management/manage-dev-portals.md b/content/controller/api-management/manage-dev-portals.md index 3caa8b685..6bf5fdc68 100644 --- a/content/controller/api-management/manage-dev-portals.md +++ b/content/controller/api-management/manage-dev-portals.md @@ -1,6 +1,6 @@ --- description: Learn how to create and manage Developer Portals for your API documentation. -docs: DOCS-570 +nd-docs: DOCS-570 title: Manage Developer Portals toc: true weight: 120 diff --git a/content/controller/api/overview.md b/content/controller/api/overview.md index c5812a63e..1610f6021 100644 --- a/content/controller/api/overview.md +++ b/content/controller/api/overview.md @@ -1,6 +1,6 @@ --- description: Provides information about the F5 NGINX Controller API. -docs: DOCS-343 +nd-docs: DOCS-343 layout: docs title: API Overview toc: true diff --git a/content/controller/api/reference/ctlr-adc-api.md b/content/controller/api/reference/ctlr-adc-api.md index 4683b5e48..e1226fa0f 100644 --- a/content/controller/api/reference/ctlr-adc-api.md +++ b/content/controller/api/reference/ctlr-adc-api.md @@ -1,7 +1,7 @@ --- description: Represents the state of the F5 NGINX Controller Application Delivery REST API. -docs: DOCS-1280 +nd-docs: DOCS-1280 type: - reference doctypes: diff --git a/content/controller/api/reference/ctlr-analytics-api.md b/content/controller/api/reference/ctlr-analytics-api.md index b01f0fdbf..b1d69e9bb 100644 --- a/content/controller/api/reference/ctlr-analytics-api.md +++ b/content/controller/api/reference/ctlr-analytics-api.md @@ -1,6 +1,6 @@ --- description: Represents the state of the F5 NGINX Controller Analytics REST API. -docs: DOCS-1279 +nd-docs: DOCS-1279 type: - reference doctypes: diff --git a/content/controller/api/reference/ctlr-apim-api.md b/content/controller/api/reference/ctlr-apim-api.md index b4dfa40ce..0b673cb8d 100644 --- a/content/controller/api/reference/ctlr-apim-api.md +++ b/content/controller/api/reference/ctlr-apim-api.md @@ -1,6 +1,6 @@ --- description: Represents the state of the F5 NGINX Controller API Management REST API. -docs: DOCS-1281 +nd-docs: DOCS-1281 type: - reference doctypes: diff --git a/content/controller/api/reference/ctlr-platform-api.md b/content/controller/api/reference/ctlr-platform-api.md index c999e18d1..d64ad61f5 100644 --- a/content/controller/api/reference/ctlr-platform-api.md +++ b/content/controller/api/reference/ctlr-platform-api.md @@ -1,6 +1,6 @@ --- description: Represents the state of the F5 NGINX Controller Platform REST API. -docs: DOCS-1278 +nd-docs: DOCS-1278 doctypes: - reference type: redoc diff --git a/content/controller/app-delivery/about-app-delivery.md b/content/controller/app-delivery/about-app-delivery.md index e63b24722..81e50b6fb 100644 --- a/content/controller/app-delivery/about-app-delivery.md +++ b/content/controller/app-delivery/about-app-delivery.md @@ -1,6 +1,6 @@ --- description: Learn about F5 NGINX Controller Application Delivery concepts. -docs: DOCS-474 +nd-docs: DOCS-474 title: About Application Delivery toc: true weight: 100 diff --git a/content/controller/app-delivery/about-caching.md b/content/controller/app-delivery/about-caching.md index e4b39ef17..3a58056ad 100644 --- a/content/controller/app-delivery/about-caching.md +++ b/content/controller/app-delivery/about-caching.md @@ -1,7 +1,7 @@ --- description: Learn how F5 NGINX Controller handles caching configurations and what NGINX cache directives are supported. -docs: DOCS-339 +nd-docs: DOCS-339 title: About Caching toc: true weight: 200 diff --git a/content/controller/app-delivery/about-snippets.md b/content/controller/app-delivery/about-snippets.md index 8afb6b974..21eb1e83b 100644 --- a/content/controller/app-delivery/about-snippets.md +++ b/content/controller/app-delivery/about-snippets.md @@ -1,5 +1,5 @@ --- -docs: DOCS-340 +nd-docs: DOCS-340 title: About Snippets toc: true weight: 300 diff --git a/content/controller/app-delivery/deploy-simple-app.md b/content/controller/app-delivery/deploy-simple-app.md index 999742480..37e36fe58 100644 --- a/content/controller/app-delivery/deploy-simple-app.md +++ b/content/controller/app-delivery/deploy-simple-app.md @@ -1,6 +1,6 @@ --- description: Overview of the steps required to deploy a simple App. -docs: DOCS-477 +nd-docs: DOCS-477 title: Deploy a Simple Application toc: true weight: 400 diff --git a/content/controller/app-delivery/manage-apps.md b/content/controller/app-delivery/manage-apps.md index da56c055d..1462c8f25 100644 --- a/content/controller/app-delivery/manage-apps.md +++ b/content/controller/app-delivery/manage-apps.md @@ -1,6 +1,6 @@ --- description: Create, view, and edit Apps and Components. -docs: DOCS-478 +nd-docs: DOCS-478 title: Manage Apps & Components toc: true weight: 300 diff --git a/content/controller/app-delivery/security/concepts/app-sec-default-policy-original.md b/content/controller/app-delivery/security/concepts/app-sec-default-policy-original.md index 12105faae..f701a423d 100644 --- a/content/controller/app-delivery/security/concepts/app-sec-default-policy-original.md +++ b/content/controller/app-delivery/security/concepts/app-sec-default-policy-original.md @@ -1,7 +1,7 @@ --- description: Learn about the default protections provided by F5 NGINX Controller App Security. -docs: DOCS-479 +nd-docs: DOCS-479 title: Default WAF Policy toc: true weight: 200 diff --git a/content/controller/app-delivery/security/concepts/app-sec-metrics.md b/content/controller/app-delivery/security/concepts/app-sec-metrics.md index 99ce76f41..fe7798b33 100644 --- a/content/controller/app-delivery/security/concepts/app-sec-metrics.md +++ b/content/controller/app-delivery/security/concepts/app-sec-metrics.md @@ -1,7 +1,7 @@ --- description: Learn about the F5 NGINX Controller Application Security metrics and events. -docs: DOCS-480 +nd-docs: DOCS-480 title: App Security Metrics toc: true weight: 400 diff --git a/content/controller/app-delivery/security/concepts/bring-your-own-policy.md b/content/controller/app-delivery/security/concepts/bring-your-own-policy.md index 2441867ff..f14497b08 100644 --- a/content/controller/app-delivery/security/concepts/bring-your-own-policy.md +++ b/content/controller/app-delivery/security/concepts/bring-your-own-policy.md @@ -1,7 +1,7 @@ --- description: Learn how to use your own F5 NGINX App Protect WAF policies with NGINX Controller. -docs: DOCS-481 +nd-docs: DOCS-481 title: Bring Your Own WAF Policy toc: true weight: 300 diff --git a/content/controller/app-delivery/security/concepts/extend-app-security-snippets.md b/content/controller/app-delivery/security/concepts/extend-app-security-snippets.md index 761e2f779..9933ec89a 100644 --- a/content/controller/app-delivery/security/concepts/extend-app-security-snippets.md +++ b/content/controller/app-delivery/security/concepts/extend-app-security-snippets.md @@ -1,7 +1,7 @@ --- description: Learn how to extend your App Security configurations using F5 NGINX Controller Snippets. -docs: DOCS-338 +nd-docs: DOCS-338 title: Extend App Security with Snippets toc: true weight: 400 diff --git a/content/controller/app-delivery/security/concepts/what-is-waf.md b/content/controller/app-delivery/security/concepts/what-is-waf.md index 51e8214ae..3aede1a1a 100644 --- a/content/controller/app-delivery/security/concepts/what-is-waf.md +++ b/content/controller/app-delivery/security/concepts/what-is-waf.md @@ -1,6 +1,6 @@ --- description: Overview of the App Security module's WAF feature. -docs: DOCS-483 +nd-docs: DOCS-483 title: About App Security toc: true weight: 100 diff --git a/content/controller/app-delivery/security/tutorials/add-app-security-with-waf.md b/content/controller/app-delivery/security/tutorials/add-app-security-with-waf.md index e2b31f6e4..29fbc7280 100644 --- a/content/controller/app-delivery/security/tutorials/add-app-security-with-waf.md +++ b/content/controller/app-delivery/security/tutorials/add-app-security-with-waf.md @@ -1,6 +1,6 @@ --- description: How to add F5 NGINX Controller App Security to your applications. -docs: DOCS-484 +nd-docs: DOCS-484 title: Manage App Security toc: true weight: 100 diff --git a/content/controller/app-delivery/security/tutorials/set-waf-monitor-mode.md b/content/controller/app-delivery/security/tutorials/set-waf-monitor-mode.md index aa4788632..616aa7070 100644 --- a/content/controller/app-delivery/security/tutorials/set-waf-monitor-mode.md +++ b/content/controller/app-delivery/security/tutorials/set-waf-monitor-mode.md @@ -1,7 +1,7 @@ --- description: How to use F5 NGINX Controller App Security to monitor or block security violations. -docs: DOCS-485 +nd-docs: DOCS-485 title: Set Up App Security Monitor Mode toc: true weight: 200 diff --git a/content/controller/app-delivery/security/tutorials/tune-waf-for-app.md b/content/controller/app-delivery/security/tutorials/tune-waf-for-app.md index 87de7192e..0a28a751e 100644 --- a/content/controller/app-delivery/security/tutorials/tune-waf-for-app.md +++ b/content/controller/app-delivery/security/tutorials/tune-waf-for-app.md @@ -1,6 +1,6 @@ --- description: How to tune WAF for your App. -docs: DOCS-486 +nd-docs: DOCS-486 title: Manage WAF Tuning for App Components toc: true weight: 300 diff --git a/content/controller/app-delivery/security/tutorials/using-rbac-with-app-security.md b/content/controller/app-delivery/security/tutorials/using-rbac-with-app-security.md index dc043934d..6249fe5b9 100644 --- a/content/controller/app-delivery/security/tutorials/using-rbac-with-app-security.md +++ b/content/controller/app-delivery/security/tutorials/using-rbac-with-app-security.md @@ -1,6 +1,6 @@ --- description: How to use Role Based Access Control with App Security. -docs: DOCS-845 +nd-docs: DOCS-845 title: Using RBAC with the App Security Add-On toc: true weight: 400 diff --git a/content/controller/app-delivery/security/tutorials/view-app-security-analytics.md b/content/controller/app-delivery/security/tutorials/view-app-security-analytics.md index ae20f8d92..2bdafffd0 100644 --- a/content/controller/app-delivery/security/tutorials/view-app-security-analytics.md +++ b/content/controller/app-delivery/security/tutorials/view-app-security-analytics.md @@ -1,6 +1,6 @@ --- description: How to view App Security Analytics. -docs: DOCS-487 +nd-docs: DOCS-487 title: View App Security Analytics toc: true weight: 500 diff --git a/content/controller/infrastructure/instances/add-aws-instance.md b/content/controller/infrastructure/instances/add-aws-instance.md index 1f558cc5a..fc8dacba6 100644 --- a/content/controller/infrastructure/instances/add-aws-instance.md +++ b/content/controller/infrastructure/instances/add-aws-instance.md @@ -1,6 +1,6 @@ --- description: Learn how to deploy an AWS F5 NGINX instance using NGINX Controller. -docs: DOCS-768 +nd-docs: DOCS-768 title: Add an AWS NGINX Instance toc: true weight: 30 diff --git a/content/controller/infrastructure/instances/add-azure-instance.md b/content/controller/infrastructure/instances/add-azure-instance.md index a537cee78..c5b222733 100644 --- a/content/controller/infrastructure/instances/add-azure-instance.md +++ b/content/controller/infrastructure/instances/add-azure-instance.md @@ -1,6 +1,6 @@ --- description: Learn how to deploy an Azure NGINX instance using F5 NGINX Controller. -docs: DOCS-769 +nd-docs: DOCS-769 title: Add an Azure NGINX Instance toc: true weight: 35 diff --git a/content/controller/infrastructure/instances/add-nap-instance.md b/content/controller/infrastructure/instances/add-nap-instance.md index 6a18eb991..9d6c5f63f 100644 --- a/content/controller/infrastructure/instances/add-nap-instance.md +++ b/content/controller/infrastructure/instances/add-nap-instance.md @@ -1,7 +1,7 @@ --- description: Learn how to register an F5 NGINX App Protect instance with NGINX Controller for use with the ADC module. -docs: DOCS-770 +nd-docs: DOCS-770 title: Add an NGINX App Protect Instance toc: true weight: 20 diff --git a/content/controller/infrastructure/instances/add-vsphere-instance.md b/content/controller/infrastructure/instances/add-vsphere-instance.md index 1a2ae31eb..30ec206ed 100644 --- a/content/controller/infrastructure/instances/add-vsphere-instance.md +++ b/content/controller/infrastructure/instances/add-vsphere-instance.md @@ -1,6 +1,6 @@ --- description: Learn how to deploy a vSphere NGINX instance using F5 NGINX Controller. -docs: DOCS-771 +nd-docs: DOCS-771 title: Add a vSphere NGINX Instance toc: true weight: 35 diff --git a/content/controller/infrastructure/instances/analyzer.md b/content/controller/infrastructure/instances/analyzer.md index 2afeaf0e3..b98aecdc4 100644 --- a/content/controller/infrastructure/instances/analyzer.md +++ b/content/controller/infrastructure/instances/analyzer.md @@ -1,6 +1,6 @@ --- description: View graphs and system reports for your Instances. -docs: DOCS-772 +nd-docs: DOCS-772 title: View Performance Reports for Your Instances toc: true weight: 60 diff --git a/content/controller/infrastructure/instances/graphs.md b/content/controller/infrastructure/instances/graphs.md index 96d4e7440..a2d43805c 100644 --- a/content/controller/infrastructure/instances/graphs.md +++ b/content/controller/infrastructure/instances/graphs.md @@ -1,6 +1,6 @@ --- description: View key metrics for all of your monitored systems. -docs: DOCS-773 +nd-docs: DOCS-773 title: View System Metrics Graphs toc: true weight: 70 diff --git a/content/controller/infrastructure/instances/ha-data-plane.md b/content/controller/infrastructure/instances/ha-data-plane.md index 7420a7e59..2d7c1e757 100644 --- a/content/controller/infrastructure/instances/ha-data-plane.md +++ b/content/controller/infrastructure/instances/ha-data-plane.md @@ -1,7 +1,7 @@ --- description: Learn how to configure a high-availability data plane for your apps in on-premises deployments using F5 NGINX Controller, NGINX Plus, and keepalived. -docs: DOCS-774 +nd-docs: DOCS-774 title: Set Up Data Plane High Availability toc: true weight: 40 diff --git a/content/controller/infrastructure/instances/manage-containerized-instances.md b/content/controller/infrastructure/instances/manage-containerized-instances.md index 83329e067..68a4796be 100644 --- a/content/controller/infrastructure/instances/manage-containerized-instances.md +++ b/content/controller/infrastructure/instances/manage-containerized-instances.md @@ -1,7 +1,7 @@ --- description: How to set up Kubernetes-native API Gateways using Instance Groups (requires the API Management module). -docs: DOCS-775 +nd-docs: DOCS-775 title: Manage Containerized Instances toc: true weight: 15 diff --git a/content/controller/infrastructure/instances/manage-instance-templates.md b/content/controller/infrastructure/instances/manage-instance-templates.md index cb55716d2..5af936c72 100644 --- a/content/controller/infrastructure/instances/manage-instance-templates.md +++ b/content/controller/infrastructure/instances/manage-instance-templates.md @@ -1,6 +1,6 @@ --- description: Create and manage templates for your F5 NGINX Plus instances. -docs: DOCS-776 +nd-docs: DOCS-776 title: Manage Your Instance Templates toc: true weight: 50 diff --git a/content/controller/infrastructure/instances/manage-instances.md b/content/controller/infrastructure/instances/manage-instances.md index 402215ce1..9042b12c5 100644 --- a/content/controller/infrastructure/instances/manage-instances.md +++ b/content/controller/infrastructure/instances/manage-instances.md @@ -1,6 +1,6 @@ --- description: Use the Instance Overview page to view and manage your F5 NGINX Instances. -docs: DOCS-777 +nd-docs: DOCS-777 title: Manage Your NGINX Instances toc: true weight: 10 diff --git a/content/controller/infrastructure/locations/manage-locations.md b/content/controller/infrastructure/locations/manage-locations.md index e9bfa813d..d9dbd175c 100644 --- a/content/controller/infrastructure/locations/manage-locations.md +++ b/content/controller/infrastructure/locations/manage-locations.md @@ -1,6 +1,6 @@ --- description: Create and manage Locations for your F5 NGINX Instances. -docs: DOCS-778 +nd-docs: DOCS-778 title: Manage Locations toc: true weight: 10 diff --git a/content/controller/platform/about/get-controller-version.md b/content/controller/platform/about/get-controller-version.md index 32df5daf1..39cd5840c 100644 --- a/content/controller/platform/about/get-controller-version.md +++ b/content/controller/platform/about/get-controller-version.md @@ -1,6 +1,6 @@ --- description: How to look up the version details for F5 NGINX Controller and its components. -docs: DOCS-780 +nd-docs: DOCS-780 title: Look Up Version Information toc: true weight: 130 diff --git a/content/controller/platform/about/what-is-controller.md b/content/controller/platform/about/what-is-controller.md index 8f3089c4b..fa5ee4c8e 100644 --- a/content/controller/platform/about/what-is-controller.md +++ b/content/controller/platform/about/what-is-controller.md @@ -1,6 +1,6 @@ --- description: Overview of F5 NGINX Controller. -docs: DOCS-781 +nd-docs: DOCS-781 title: Get to Know NGINX Controller toc: true weight: 100 diff --git a/content/controller/platform/access-management/manage-active-directory-auth-provider.md b/content/controller/platform/access-management/manage-active-directory-auth-provider.md index b5ef6a79d..8eeedb348 100644 --- a/content/controller/platform/access-management/manage-active-directory-auth-provider.md +++ b/content/controller/platform/access-management/manage-active-directory-auth-provider.md @@ -1,7 +1,7 @@ --- description: Set up Active Directory authentication for F5 NGINX Controller using OIDC with Microsoft Entra or LDAP, LDAPs, and StartTLS with Windows Active Directory. -docs: DOCS-782 +nd-docs: DOCS-782 title: Configure Active Directory Integration toc: true weight: 10 diff --git a/content/controller/platform/access-management/manage-roles.md b/content/controller/platform/access-management/manage-roles.md index bffb8654e..166fb8e77 100644 --- a/content/controller/platform/access-management/manage-roles.md +++ b/content/controller/platform/access-management/manage-roles.md @@ -1,6 +1,6 @@ --- description: Create and manage Roles and Role Groups. -docs: DOCS-783 +nd-docs: DOCS-783 title: Manage Roles and Role Groups toc: true weight: 30 diff --git a/content/controller/platform/access-management/manage-users.md b/content/controller/platform/access-management/manage-users.md index fa3f8b087..4ff0d6fd0 100644 --- a/content/controller/platform/access-management/manage-users.md +++ b/content/controller/platform/access-management/manage-users.md @@ -1,6 +1,6 @@ --- description: Create and manage User resources. -docs: DOCS-784 +nd-docs: DOCS-784 title: Manage Users toc: true weight: 20 diff --git a/content/controller/platform/integrations/aws-integration.md b/content/controller/platform/integrations/aws-integration.md index 9d4a2e0e9..98f44a9eb 100644 --- a/content/controller/platform/integrations/aws-integration.md +++ b/content/controller/platform/integrations/aws-integration.md @@ -1,6 +1,6 @@ --- description: Integrate F5 NGINX Controller with Amazon Web Services. -docs: DOCS-785 +nd-docs: DOCS-785 title: AWS Integration toc: true weight: 20 diff --git a/content/controller/platform/integrations/big-ip-self-service.md b/content/controller/platform/integrations/big-ip-self-service.md index adb9e1d0b..66acd46c5 100644 --- a/content/controller/platform/integrations/big-ip-self-service.md +++ b/content/controller/platform/integrations/big-ip-self-service.md @@ -1,6 +1,6 @@ --- description: Integrate F5 NGINX Controller with a BIG-IP cluster. -docs: DOCS-786 +nd-docs: DOCS-786 title: BIG-IP Integration toc: true weight: 20 diff --git a/content/controller/platform/integrations/datadog-integration.md b/content/controller/platform/integrations/datadog-integration.md index 18f41e82b..47ceb8bc8 100644 --- a/content/controller/platform/integrations/datadog-integration.md +++ b/content/controller/platform/integrations/datadog-integration.md @@ -1,6 +1,6 @@ --- description: Create a Datadog Integration for F5 NGINX Controller. -docs: DOCS-564 +nd-docs: DOCS-564 title: Datadog Integration weight: 30 --- diff --git a/content/controller/platform/integrations/otlp-integration.md b/content/controller/platform/integrations/otlp-integration.md index 95f66b7a0..4f898317e 100644 --- a/content/controller/platform/integrations/otlp-integration.md +++ b/content/controller/platform/integrations/otlp-integration.md @@ -1,6 +1,6 @@ --- description: Create an OpenTelemetry Protocol (OTLP) Integration for F5 NGINX Controller. -docs: DOCS-565 +nd-docs: DOCS-565 title: OTLP Integration weight: 30 --- diff --git a/content/controller/platform/integrations/splunk-integration.md b/content/controller/platform/integrations/splunk-integration.md index 81bcdd06a..5ae9b7b8f 100644 --- a/content/controller/platform/integrations/splunk-integration.md +++ b/content/controller/platform/integrations/splunk-integration.md @@ -1,5 +1,5 @@ --- -docs: DOCS-566 +nd-docs: DOCS-566 title: Splunk Integration weight: 40 --- diff --git a/content/controller/platform/integrations/syslog-integration.md b/content/controller/platform/integrations/syslog-integration.md index 939dff7c2..00f5787ce 100644 --- a/content/controller/platform/integrations/syslog-integration.md +++ b/content/controller/platform/integrations/syslog-integration.md @@ -1,5 +1,5 @@ --- -docs: DOCS-567 +nd-docs: DOCS-567 title: Syslog Integration weight: 30 --- diff --git a/content/controller/platform/licensing-controller.md b/content/controller/platform/licensing-controller.md index d302723bd..a1b5c8602 100644 --- a/content/controller/platform/licensing-controller.md +++ b/content/controller/platform/licensing-controller.md @@ -1,6 +1,6 @@ --- description: Follow these steps to license your F5 NGINX Controller. -docs: DOCS-787 +nd-docs: DOCS-787 title: License NGINX Controller toc: true weight: 120 diff --git a/content/controller/platform/maintenance/changing-ip-address.md b/content/controller/platform/maintenance/changing-ip-address.md index 5377f8752..8d4cf28a2 100644 --- a/content/controller/platform/maintenance/changing-ip-address.md +++ b/content/controller/platform/maintenance/changing-ip-address.md @@ -1,6 +1,6 @@ --- description: Learn how to safely change the management IP of F5 NGINX Controller. -docs: DOCS-779 +nd-docs: DOCS-779 title: Changing the IP address toc: true weight: 135 diff --git a/content/controller/platform/manage-cluster.md b/content/controller/platform/manage-cluster.md index c187e0c3e..b5e2bf6ef 100644 --- a/content/controller/platform/manage-cluster.md +++ b/content/controller/platform/manage-cluster.md @@ -1,7 +1,7 @@ --- description: Learn how to add and manage additional F5 NGINX Controller nodes to create a resilient cluster. -docs: DOCS-788 +nd-docs: DOCS-788 title: Manage Your Cluster toc: true weight: 140 diff --git a/content/controller/releases/adc/adc-release-notes-3.20.1.md b/content/controller/releases/adc/adc-release-notes-3.20.1.md index 3d3d02852..d9ee49128 100644 --- a/content/controller/releases/adc/adc-release-notes-3.20.1.md +++ b/content/controller/releases/adc/adc-release-notes-3.20.1.md @@ -1,7 +1,7 @@ --- description: These release notes contain information about new features, improvements, known issues, and bug fixes in the NGINX Controller Application Delivery Module. -docs: DOCS-362 +nd-docs: DOCS-362 title: Release Notes 3.20.1 toc: true weight: 99 diff --git a/content/controller/releases/adc/adc-release-notes-3.20.md b/content/controller/releases/adc/adc-release-notes-3.20.md index eeb4b45ac..9c446f0af 100644 --- a/content/controller/releases/adc/adc-release-notes-3.20.md +++ b/content/controller/releases/adc/adc-release-notes-3.20.md @@ -1,7 +1,7 @@ --- description: These release notes contain information about new features, improvements, known issues, and bug fixes in the NGINX Controller Application Delivery Module. -docs: DOCS-363 +nd-docs: DOCS-363 title: Release Notes 3.20.0 toc: true weight: 100 diff --git a/content/controller/releases/adc/adc-release-notes-3.21.md b/content/controller/releases/adc/adc-release-notes-3.21.md index 1f8fdacc4..6356e2b1b 100644 --- a/content/controller/releases/adc/adc-release-notes-3.21.md +++ b/content/controller/releases/adc/adc-release-notes-3.21.md @@ -1,7 +1,7 @@ --- description: These release notes contain information about new features, improvements, known issues, and bug fixes in the NGINX Controller Application Delivery Module. -docs: DOCS-364 +nd-docs: DOCS-364 title: Release Notes 3.21.0 toc: true weight: 98 diff --git a/content/controller/releases/adc/adc-release-notes-3.22.1.md b/content/controller/releases/adc/adc-release-notes-3.22.1.md index be4725b06..1edfce2a2 100644 --- a/content/controller/releases/adc/adc-release-notes-3.22.1.md +++ b/content/controller/releases/adc/adc-release-notes-3.22.1.md @@ -1,7 +1,7 @@ --- description: These release notes contain information about new features, improvements, known issues, and bug fixes in the NGINX Controller Application Delivery Module. -docs: DOCS-834 +nd-docs: DOCS-834 title: Release Notes 3.22.1 toc: true weight: 96 diff --git a/content/controller/releases/adc/adc-release-notes-3.22.2.md b/content/controller/releases/adc/adc-release-notes-3.22.2.md index 5c34ef08d..be60921c1 100644 --- a/content/controller/releases/adc/adc-release-notes-3.22.2.md +++ b/content/controller/releases/adc/adc-release-notes-3.22.2.md @@ -1,7 +1,7 @@ --- description: These release notes contain information about new features, improvements, known issues, and bug fixes in the NGINX Controller Application Delivery Module. -docs: DOCS-844 +nd-docs: DOCS-844 title: Release Notes 3.22.2 toc: true weight: 95 diff --git a/content/controller/releases/adc/adc-release-notes-3.22.3.md b/content/controller/releases/adc/adc-release-notes-3.22.3.md index 2e5b929a0..f2cd355dd 100644 --- a/content/controller/releases/adc/adc-release-notes-3.22.3.md +++ b/content/controller/releases/adc/adc-release-notes-3.22.3.md @@ -1,7 +1,7 @@ --- description: These release notes contain information about new features, improvements, known issues, and bug fixes in the NGINX Controller Application Delivery Module. -docs: DOCS-903 +nd-docs: DOCS-903 title: Release Notes 3.22.3 toc: true weight: 94 diff --git a/content/controller/releases/adc/adc-release-notes-3.22.4.md b/content/controller/releases/adc/adc-release-notes-3.22.4.md index d9a643241..b3e57e438 100644 --- a/content/controller/releases/adc/adc-release-notes-3.22.4.md +++ b/content/controller/releases/adc/adc-release-notes-3.22.4.md @@ -1,7 +1,7 @@ --- description: These release notes contain information about new features, improvements, known issues, and bug fixes in the NGINX Controller Application Delivery Module. -docs: DOCS-904 +nd-docs: DOCS-904 title: Release Notes 3.22.4 toc: true weight: 93 diff --git a/content/controller/releases/adc/adc-release-notes-3.22.5.md b/content/controller/releases/adc/adc-release-notes-3.22.5.md index 1a2d67d64..62d7320f4 100644 --- a/content/controller/releases/adc/adc-release-notes-3.22.5.md +++ b/content/controller/releases/adc/adc-release-notes-3.22.5.md @@ -1,7 +1,7 @@ --- description: These release notes contain information about new features, improvements, known issues, and bug fixes in the NGINX Controller Application Delivery Module. -docs: DOCS-945 +nd-docs: DOCS-945 title: Release Notes 3.22.5 toc: true weight: 92 diff --git a/content/controller/releases/adc/adc-release-notes-3.22.6.md b/content/controller/releases/adc/adc-release-notes-3.22.6.md index 75d6bd8ac..ccc955ea1 100644 --- a/content/controller/releases/adc/adc-release-notes-3.22.6.md +++ b/content/controller/releases/adc/adc-release-notes-3.22.6.md @@ -1,7 +1,7 @@ --- description: These release notes contain information about new features, improvements, known issues, and bug fixes in the NGINX Controller Application Delivery Module. -docs: DOCS-1086 +nd-docs: DOCS-1086 title: Release Notes 3.22.6 toc: true weight: 91 diff --git a/content/controller/releases/adc/adc-release-notes-3.22.7.md b/content/controller/releases/adc/adc-release-notes-3.22.7.md index a1883fb55..4c6c304d9 100644 --- a/content/controller/releases/adc/adc-release-notes-3.22.7.md +++ b/content/controller/releases/adc/adc-release-notes-3.22.7.md @@ -1,7 +1,7 @@ --- description: These release notes contain information about new features, improvements, known issues, and bug fixes in the NGINX Controller Application Delivery Module. -docs: DOCS-1388 +nd-docs: DOCS-1388 title: Release Notes 3.22.7 toc: true weight: 90 diff --git a/content/controller/releases/adc/adc-release-notes-3.22.8.md b/content/controller/releases/adc/adc-release-notes-3.22.8.md index 43d27fea1..2b5615851 100644 --- a/content/controller/releases/adc/adc-release-notes-3.22.8.md +++ b/content/controller/releases/adc/adc-release-notes-3.22.8.md @@ -1,7 +1,7 @@ --- description: These release notes contain information about new features, improvements, known issues, and bug fixes in the NGINX Controller Application Delivery Module. -docs: DOCS-1128 +nd-docs: DOCS-1128 title: Release Notes 3.22.8 toc: true weight: 89 diff --git a/content/controller/releases/adc/adc-release-notes-3.22.9.md b/content/controller/releases/adc/adc-release-notes-3.22.9.md index 7a073233a..dc2273c0a 100644 --- a/content/controller/releases/adc/adc-release-notes-3.22.9.md +++ b/content/controller/releases/adc/adc-release-notes-3.22.9.md @@ -1,7 +1,7 @@ --- description: These release notes contain information about new features, improvements, known issues, and bug fixes in the NGINX Controller Application Delivery Module. -docs: DOCS-1341 +nd-docs: DOCS-1341 title: Release Notes 3.22.9 toc: true weight: 88 diff --git a/content/controller/releases/adc/adc-release-notes-3.22.md b/content/controller/releases/adc/adc-release-notes-3.22.md index 3aa65aa56..c6766cdb9 100644 --- a/content/controller/releases/adc/adc-release-notes-3.22.md +++ b/content/controller/releases/adc/adc-release-notes-3.22.md @@ -1,7 +1,7 @@ --- description: These release notes contain information about new features, improvements, known issues, and bug fixes in the NGINX Controller Application Delivery Module. -docs: DOCS-833 +nd-docs: DOCS-833 title: Release Notes 3.22.0 toc: true weight: 97 diff --git a/content/controller/releases/apim/apim-release-notes-3.18.1.md b/content/controller/releases/apim/apim-release-notes-3.18.1.md index daa7f82d4..95a88a006 100644 --- a/content/controller/releases/apim/apim-release-notes-3.18.1.md +++ b/content/controller/releases/apim/apim-release-notes-3.18.1.md @@ -1,7 +1,7 @@ --- description: These release notes contain information about new features, improvements, known issues, and bug fixes in the NGINX Controller API Management Module. -docs: DOCS-365 +nd-docs: DOCS-365 title: Release Notes 3.18.1 toc: true weight: 99 diff --git a/content/controller/releases/apim/apim-release-notes-3.18.md b/content/controller/releases/apim/apim-release-notes-3.18.md index 4e165a625..c76b7d9ab 100644 --- a/content/controller/releases/apim/apim-release-notes-3.18.md +++ b/content/controller/releases/apim/apim-release-notes-3.18.md @@ -1,7 +1,7 @@ --- description: These release notes contain information about new features, improvements, known issues, and bug fixes in the NGINX Controller API Management Module. -docs: DOCS-366 +nd-docs: DOCS-366 title: Release Notes 3.18.0 toc: true weight: 100 diff --git a/content/controller/releases/apim/apim-release-notes-3.19.1.md b/content/controller/releases/apim/apim-release-notes-3.19.1.md index 6bb063f3e..a1861b9f2 100644 --- a/content/controller/releases/apim/apim-release-notes-3.19.1.md +++ b/content/controller/releases/apim/apim-release-notes-3.19.1.md @@ -1,7 +1,7 @@ --- description: These release notes contain information about new features, improvements, known issues, and bug fixes in the NGINX Controller API Management Module. -docs: DOCS-367 +nd-docs: DOCS-367 title: Release Notes 3.19.1 toc: true weight: 96 diff --git a/content/controller/releases/apim/apim-release-notes-3.19.2.md b/content/controller/releases/apim/apim-release-notes-3.19.2.md index 8767ed6f3..02d25e6f8 100644 --- a/content/controller/releases/apim/apim-release-notes-3.19.2.md +++ b/content/controller/releases/apim/apim-release-notes-3.19.2.md @@ -1,7 +1,7 @@ --- description: These release notes contain information about new features, improvements, known issues, and bug fixes in the NGINX Controller API Management Module. -docs: DOCS-368 +nd-docs: DOCS-368 title: Release Notes 3.19.2 toc: true weight: 95 diff --git a/content/controller/releases/apim/apim-release-notes-3.19.3.md b/content/controller/releases/apim/apim-release-notes-3.19.3.md index 111d667e4..58766df89 100644 --- a/content/controller/releases/apim/apim-release-notes-3.19.3.md +++ b/content/controller/releases/apim/apim-release-notes-3.19.3.md @@ -1,7 +1,7 @@ --- description: These release notes contain information about new features, improvements, known issues, and bug fixes in the NGINX Controller API Management Module. -docs: DOCS-887 +nd-docs: DOCS-887 title: Release Notes 3.19.3 toc: true weight: 94 diff --git a/content/controller/releases/apim/apim-release-notes-3.19.4.md b/content/controller/releases/apim/apim-release-notes-3.19.4.md index a836bb66f..6ac037e35 100644 --- a/content/controller/releases/apim/apim-release-notes-3.19.4.md +++ b/content/controller/releases/apim/apim-release-notes-3.19.4.md @@ -1,7 +1,7 @@ --- description: These release notes contain information about new features, improvements, known issues, and bug fixes in the NGINX Controller API Management Module. -docs: DOCS-888 +nd-docs: DOCS-888 title: Release Notes 3.19.4 toc: true weight: 93 diff --git a/content/controller/releases/apim/apim-release-notes-3.19.5.md b/content/controller/releases/apim/apim-release-notes-3.19.5.md index 2a8d44b63..f426e942b 100644 --- a/content/controller/releases/apim/apim-release-notes-3.19.5.md +++ b/content/controller/releases/apim/apim-release-notes-3.19.5.md @@ -1,7 +1,7 @@ --- description: These release notes contain information about new features, improvements, known issues, and bug fixes in the NGINX Controller API Management Module. -docs: DOCS-1113 +nd-docs: DOCS-1113 title: Release Notes 3.19.5 toc: true weight: 92 diff --git a/content/controller/releases/apim/apim-release-notes-3.19.6.md b/content/controller/releases/apim/apim-release-notes-3.19.6.md index caa74a837..cc69889cd 100644 --- a/content/controller/releases/apim/apim-release-notes-3.19.6.md +++ b/content/controller/releases/apim/apim-release-notes-3.19.6.md @@ -1,7 +1,7 @@ --- description: These release notes contain information about new features, improvements, known issues, and bug fixes in the NGINX Controller API Management Module. -docs: DOCS-1282 +nd-docs: DOCS-1282 title: Release Notes 3.19.6 toc: true weight: 91 diff --git a/content/controller/releases/apim/apim-release-notes-3.19.md b/content/controller/releases/apim/apim-release-notes-3.19.md index d443b7f00..fb1077f9b 100644 --- a/content/controller/releases/apim/apim-release-notes-3.19.md +++ b/content/controller/releases/apim/apim-release-notes-3.19.md @@ -1,7 +1,7 @@ --- description: These release notes contain information about new features, improvements, known issues, and bug fixes in the NGINX Controller API Management Module. -docs: DOCS-369 +nd-docs: DOCS-369 title: Release Notes 3.19.0 toc: true weight: 97 diff --git a/content/controller/releases/release-notes.md b/content/controller/releases/release-notes.md index f5d74c780..139e644d2 100644 --- a/content/controller/releases/release-notes.md +++ b/content/controller/releases/release-notes.md @@ -1,7 +1,7 @@ --- description: Learn about the new features, enhancements, resolved issues, and known issues in F5 NGINX Controller. -docs: DOCS-370 +nd-docs: DOCS-370 title: NGINX Controller v3.0.0–3.18.3 toc: true weight: 10 diff --git a/content/controller/services/available-policies.md b/content/controller/services/available-policies.md index e8d81dbea..17b49ec6f 100644 --- a/content/controller/services/available-policies.md +++ b/content/controller/services/available-policies.md @@ -1,6 +1,6 @@ --- description: Learn about the policies available for use in the F5 NGINX Controller. -docs: DOCS-568 +nd-docs: DOCS-568 title: Learn About Policies toc: true weight: 130 diff --git a/content/controller/services/manage-certs.md b/content/controller/services/manage-certs.md index 32fcf9bc1..d87d72aab 100644 --- a/content/controller/services/manage-certs.md +++ b/content/controller/services/manage-certs.md @@ -1,6 +1,6 @@ --- description: Create, apply, and mange Certs to use with your environments. -docs: DOCS-371 +nd-docs: DOCS-371 title: Manage Certs toc: true weight: 120 diff --git a/content/controller/services/manage-environments.md b/content/controller/services/manage-environments.md index c381c88b6..5ffa5a3f6 100644 --- a/content/controller/services/manage-environments.md +++ b/content/controller/services/manage-environments.md @@ -1,6 +1,6 @@ --- description: Create and manage environments to use with your apps, gateways, and certs. -docs: DOCS-372 +nd-docs: DOCS-372 title: Manage Environments toc: true weight: 100 diff --git a/content/controller/services/manage-gateways.md b/content/controller/services/manage-gateways.md index 2eb87b8ec..e99d66ae9 100644 --- a/content/controller/services/manage-gateways.md +++ b/content/controller/services/manage-gateways.md @@ -1,6 +1,6 @@ --- description: Create, view, and edit Gateways. -docs: DOCS-373 +nd-docs: DOCS-373 title: Manage Gateways toc: true weight: 120 diff --git a/content/controller/services/manage-identity-providers.md b/content/controller/services/manage-identity-providers.md index 3df64f6d7..e234ca0e5 100644 --- a/content/controller/services/manage-identity-providers.md +++ b/content/controller/services/manage-identity-providers.md @@ -1,6 +1,6 @@ --- description: Create and Manage Identity Providers. -docs: DOCS-571 +nd-docs: DOCS-571 title: Manage Identity Providers toc: true weight: 140 diff --git a/content/controller/services/overview.md b/content/controller/services/overview.md index a073c6a04..caf809da7 100644 --- a/content/controller/services/overview.md +++ b/content/controller/services/overview.md @@ -1,7 +1,7 @@ --- description: Learn about the common tasks and resources that are required to deploy and manage Services using F5 NGINX Controller. -docs: DOCS-374 +nd-docs: DOCS-374 title: Set Up NGINX Controller Services toc: true weight: 10 diff --git a/content/controller/support/contact-support.md b/content/controller/support/contact-support.md index c526b6fed..f440bac71 100644 --- a/content/controller/support/contact-support.md +++ b/content/controller/support/contact-support.md @@ -1,6 +1,6 @@ --- description: Contact information and knowledge resources for F5 NGINX Support. -docs: DOCS-375 +nd-docs: DOCS-375 title: Where to Go for Support toc: true weight: 10 diff --git a/content/controller/support/troubleshooting-controller.md b/content/controller/support/troubleshooting-controller.md index 09cf2eac5..3f0c11e05 100644 --- a/content/controller/support/troubleshooting-controller.md +++ b/content/controller/support/troubleshooting-controller.md @@ -1,7 +1,7 @@ --- description: Steps to take to investigate and fix issues with F5 NGINX Controller and the Controller Agent. -docs: DOCS-376 +nd-docs: DOCS-376 title: Troubleshoot NGINX Controller and the Controller Agent toc: true weight: 100 diff --git a/content/controller/support/troubleshooting-forwarders.md b/content/controller/support/troubleshooting-forwarders.md index ce2ae120f..235579408 100644 --- a/content/controller/support/troubleshooting-forwarders.md +++ b/content/controller/support/troubleshooting-forwarders.md @@ -1,6 +1,6 @@ --- description: Steps to take to investigate and fix issues with data forwarders. -docs: DOCS-377 +nd-docs: DOCS-377 title: Troubleshoot Data Forwarders toc: true weight: 200 diff --git a/content/includes/acm/about/global-policies.md b/content/includes/acm/about/global-policies.md index 6d4e66500..5c5c47df3 100644 --- a/content/includes/acm/about/global-policies.md +++ b/content/includes/acm/about/global-policies.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1283 +nd-docs: DOCS-1283 --- The following table shows the available Global Policies you can use when creating a new cluster. diff --git a/content/includes/acm/how-to/policies-proxy-cluster-intro.md b/content/includes/acm/how-to/policies-proxy-cluster-intro.md index 066e5d1bf..d109bfcf3 100644 --- a/content/includes/acm/how-to/policies-proxy-cluster-intro.md +++ b/content/includes/acm/how-to/policies-proxy-cluster-intro.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1285 +nd-docs: DOCS-1285 --- In API Connectivity Manager, you can apply cluster policies to API Gateways and Developer Portals to further enhance their configuration to meet your requirements. A proxy cluster is a group of instances configured as API Gateways or Developer Portals. Any cluster policy will apply to all instances in a group. diff --git a/content/includes/acm/how-to/policies-proxy-intro.md b/content/includes/acm/how-to/policies-proxy-intro.md index 79053568f..63f57ba84 100644 --- a/content/includes/acm/how-to/policies-proxy-intro.md +++ b/content/includes/acm/how-to/policies-proxy-intro.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1286 +nd-docs: DOCS-1286 --- In API Connectivity Manager, you can apply policies to an API Gateway to further enhance their configuration to meet your requirements. diff --git a/content/includes/acm/openapi-support.md b/content/includes/acm/openapi-support.md index 382b55d4e..1d4393653 100644 --- a/content/includes/acm/openapi-support.md +++ b/content/includes/acm/openapi-support.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1188 +nd-docs: DOCS-1188 --- {{< note >}}API Connectivity Manager supports the [OpenAPI Specification version 3.0 and 3.1](https://swagger.io/specification/). If your spec uses the 2.0 standard, you must convert it before uploading it.{{< /note >}} diff --git a/content/includes/acm/webui-acm-login.md b/content/includes/acm/webui-acm-login.md index ce33502dc..bd38ca740 100644 --- a/content/includes/acm/webui-acm-login.md +++ b/content/includes/acm/webui-acm-login.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1189 +nd-docs: DOCS-1189 --- In a web browser, go to the FQDN for your NGINX Instance Manager host and log in. Then, from the Launchpad menu, select **API Connectivity Manager**. diff --git a/content/includes/agent/installation/install-agent-api.md b/content/includes/agent/installation/install-agent-api.md index 15009d21f..5474f995b 100644 --- a/content/includes/agent/installation/install-agent-api.md +++ b/content/includes/agent/installation/install-agent-api.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1031 +nd-docs: DOCS-1031 files: - content/nim/nginx-app-protect/setup-waf-config-management.md --- diff --git a/content/includes/controller/apim-rn-preamble.md b/content/includes/controller/apim-rn-preamble.md index fbd0ea643..85429019e 100644 --- a/content/includes/controller/apim-rn-preamble.md +++ b/content/includes/controller/apim-rn-preamble.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1306 +nd-docs: DOCS-1306 --- We encourage you to install the latest version of the NGINX Controller APIM module to take advantage of the newest features and updates. diff --git a/content/includes/installation/access-web-ui.md b/content/includes/installation/access-web-ui.md index 4f0199cc7..d51fe6f73 100644 --- a/content/includes/installation/access-web-ui.md +++ b/content/includes/installation/access-web-ui.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1241 +nd-docs: DOCS-1241 --- To access the NGINX Instance Manager web interface, open a web browser and go to `https://`, replacing `` with the Fully Qualified Domain Name of your NGINX Instance Manager host. diff --git a/content/includes/installation/add-nms-repo.md b/content/includes/installation/add-nms-repo.md index eac86faa7..05639f135 100644 --- a/content/includes/installation/add-nms-repo.md +++ b/content/includes/installation/add-nms-repo.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1243 +nd-docs: DOCS-1243 --- Select the tab matching your Linux distribution, then follow the instructions to add the NGINX Instance Manager repository. @@ -41,7 +41,7 @@ Add the NGINX Instance Manager repository: ```shell wget -qO - https://cs.nginx.com/static/keys/nginx_signing.key \ | gpg --dearmor \ - | sudo tee /usr/share/keyrings/nginx-archive-keyring.gpg >/dev/null + | sudo tee /usr/share/keyrings/nginx-archive-keyring.gpg >/dev/null ``` 2. Add the NGINX Instance Manager repository: diff --git a/content/includes/installation/agent-selinux.md b/content/includes/installation/agent-selinux.md index 4a8cf0741..f8bdfe4d0 100644 --- a/content/includes/installation/agent-selinux.md +++ b/content/includes/installation/agent-selinux.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1403 +nd-docs: DOCS-1403 --- ```bash diff --git a/content/includes/installation/helm/acm/dev-portal-helm-configurations/configuration-options.md b/content/includes/installation/helm/acm/dev-portal-helm-configurations/configuration-options.md index e2b41be4c..6cea14a5c 100644 --- a/content/includes/installation/helm/acm/dev-portal-helm-configurations/configuration-options.md +++ b/content/includes/installation/helm/acm/dev-portal-helm-configurations/configuration-options.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1308 +nd-docs: DOCS-1308 --- The `values.yaml` file within the `nginx-devportal` Helm chart contains the deployment configuration for the Developer Portal. diff --git a/content/includes/installation/helm/acm/dev-portal-helm-configurations/configure-devportal-helm-api-mtls.md b/content/includes/installation/helm/acm/dev-portal-helm-configurations/configure-devportal-helm-api-mtls.md index a7f7d99ac..1d7358f1e 100644 --- a/content/includes/installation/helm/acm/dev-portal-helm-configurations/configure-devportal-helm-api-mtls.md +++ b/content/includes/installation/helm/acm/dev-portal-helm-configurations/configure-devportal-helm-api-mtls.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1309 +nd-docs: DOCS-1309 --- When deploying the Developer Portal using a helm chart, you can configure TLS to secure communication between the NGINX API Gateway and backend API service. diff --git a/content/includes/installation/helm/acm/dev-portal-helm-configurations/configure-devportal-helm-embedded-postgres.md b/content/includes/installation/helm/acm/dev-portal-helm-configurations/configure-devportal-helm-embedded-postgres.md index 694a88c1d..b14932a4e 100644 --- a/content/includes/installation/helm/acm/dev-portal-helm-configurations/configure-devportal-helm-embedded-postgres.md +++ b/content/includes/installation/helm/acm/dev-portal-helm-configurations/configure-devportal-helm-embedded-postgres.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1311 +nd-docs: DOCS-1311 --- You can use an embedded PostgreSQL database for backend API service storage when deploying the Developer Portal from a Helm chart. This configuration uses a [PersistentVolumeClaim (PVC)](https://kubernetes.io/docs/concepts/storage/persistent-volumes/) for storage of the the PostgreSQL data files. Access between the backend API service and the database is secured using auto-generated client TLS certificates. diff --git a/content/includes/installation/helm/acm/dev-portal-helm-configurations/configure-devportal-helm-external-postgres.md b/content/includes/installation/helm/acm/dev-portal-helm-configurations/configure-devportal-helm-external-postgres.md index a2acc97df..54bdc7396 100644 --- a/content/includes/installation/helm/acm/dev-portal-helm-configurations/configure-devportal-helm-external-postgres.md +++ b/content/includes/installation/helm/acm/dev-portal-helm-configurations/configure-devportal-helm-external-postgres.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1307 +nd-docs: DOCS-1307 --- You can use an external PostgreSQL database for backend API service storage when deploying the Developer Portal from a Helm chart. Access between the backend API service and the database can be secured using TLS server certificates and optional client TLS certificates. diff --git a/content/includes/installation/helm/acm/dev-portal-helm-configurations/configure-helm-devportal-sqlite.md b/content/includes/installation/helm/acm/dev-portal-helm-configurations/configure-helm-devportal-sqlite.md index 2edd94094..d1a4b970a 100644 --- a/content/includes/installation/helm/acm/dev-portal-helm-configurations/configure-helm-devportal-sqlite.md +++ b/content/includes/installation/helm/acm/dev-portal-helm-configurations/configure-helm-devportal-sqlite.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1312 +nd-docs: DOCS-1312 --- You can use an SQLite database for backend API service storage when deploying the Developer Portal from a Helm chart. This configuration uses a [PersistentVolumeClaim (PVC)](https://kubernetes.io/docs/concepts/storage/persistent-volumes/) for storage of the SQLite data files. diff --git a/content/includes/installation/nms-prerequisites.md b/content/includes/installation/nms-prerequisites.md index da6a17fd7..db01872ea 100644 --- a/content/includes/installation/nms-prerequisites.md +++ b/content/includes/installation/nms-prerequisites.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1242 +nd-docs: DOCS-1242 --- {{< important >}} diff --git a/content/includes/installation/optional-installation-steps.md b/content/includes/installation/optional-installation-steps.md index d8051f7d3..71674e85b 100644 --- a/content/includes/installation/optional-installation-steps.md +++ b/content/includes/installation/optional-installation-steps.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1030 +nd-docs: DOCS-1030 --- The following steps may be necessary depending on your installation configuration. diff --git a/content/includes/installation/secure-installation.md b/content/includes/installation/secure-installation.md index 35a08c963..509d72e65 100644 --- a/content/includes/installation/secure-installation.md +++ b/content/includes/installation/secure-installation.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1405 +nd-docs: DOCS-1405 --- To ensure that your NGINX Instance Manager deployment remains secure, follow the recommendations in this section: diff --git a/content/includes/nap-waf/build-from-official-nginx-image.md b/content/includes/nap-waf/build-from-official-nginx-image.md index 9946fefd5..e6b0e4c8d 100644 --- a/content/includes/nap-waf/build-from-official-nginx-image.md +++ b/content/includes/nap-waf/build-from-official-nginx-image.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1509" +nd-docs: "DOCS-1509" --- {{< note >}} diff --git a/content/includes/nap-waf/build-nginx-image-cmd.md b/content/includes/nap-waf/build-nginx-image-cmd.md index fcb89d363..4e7e2387f 100644 --- a/content/includes/nap-waf/build-nginx-image-cmd.md +++ b/content/includes/nap-waf/build-nginx-image-cmd.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1512" +nd-docs: "DOCS-1512" --- {{< note >}} diff --git a/content/includes/nap-waf/bundles-volume-mount.md b/content/includes/nap-waf/bundles-volume-mount.md index c42242fee..c65050849 100644 --- a/content/includes/nap-waf/bundles-volume-mount.md +++ b/content/includes/nap-waf/bundles-volume-mount.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1511" +nd-docs: "DOCS-1511" --- To work with custom policy and logging profile bundles, these files must be accessible to the `waf-config-mgr` container. diff --git a/content/includes/nap-waf/concept/apreload.md b/content/includes/nap-waf/concept/apreload.md index cfd5f6fd0..2da2e366c 100644 --- a/content/includes/nap-waf/concept/apreload.md +++ b/content/includes/nap-waf/concept/apreload.md @@ -1,5 +1,5 @@ --- -docs: DOCS-000 +nd-docs: DOCS-000 --- apreload is a tool that can update that can update the NGINX App Protect WAF configuration without having to reload NGINX if only the App Protect configuration is changed and the `nginx.conf` file remains unchanged. apreload does not affect the existing NGINX reload process and it functions in the same manner as before. diff --git a/content/includes/nap-waf/concept/attack-signatures.md b/content/includes/nap-waf/concept/attack-signatures.md index dbdf294b7..1b56c1a9b 100644 --- a/content/includes/nap-waf/concept/attack-signatures.md +++ b/content/includes/nap-waf/concept/attack-signatures.md @@ -1,5 +1,5 @@ --- -docs: DOCS-000 +nd-docs: DOCS-000 --- Attack signatures are rules or patterns that identify attack sequences or classes of attacks on a web application and its components. You can apply attack signatures to both requests and responses. App Protect includes predefined attack signatures to protect your application against all attack types identified by the system. \ No newline at end of file diff --git a/content/includes/nap-waf/concept/basic-config-default-policy.md b/content/includes/nap-waf/concept/basic-config-default-policy.md index fc56a65c7..3854b5a45 100644 --- a/content/includes/nap-waf/concept/basic-config-default-policy.md +++ b/content/includes/nap-waf/concept/basic-config-default-policy.md @@ -1,5 +1,5 @@ --- -docs: DOCS-000 +nd-docs: DOCS-000 --- The base template is the common starting point to any policy you write. The default policy just reflects that template without any further modifications, thus we use the terms **base template** and **default policy** interchangeably. The default policy appears as follows diff --git a/content/includes/nap-waf/concept/external-references.md b/content/includes/nap-waf/concept/external-references.md index 5de006331..d0c2cdf31 100644 --- a/content/includes/nap-waf/concept/external-references.md +++ b/content/includes/nap-waf/concept/external-references.md @@ -1,5 +1,5 @@ --- -docs: DOCS-000 +nd-docs: DOCS-000 --- External references in policy are defined as any code blocks that can be used as part of the policy without being explicitly pasted within the policy file. This means that you can have a set of pre-defined configurations for parts of the policy, and you can incorporate them as part of the policy by simply referencing them. This would save a lot of overhead having to concentrate everything into a single policy file. diff --git a/content/includes/nap-waf/concept/global-directives.md b/content/includes/nap-waf/concept/global-directives.md index 46dd8852c..d3b998312 100644 --- a/content/includes/nap-waf/concept/global-directives.md +++ b/content/includes/nap-waf/concept/global-directives.md @@ -1,5 +1,5 @@ --- -docs: DOCS-000 +nd-docs: DOCS-000 --- Global configuration consists of a series of `nginx.conf` directives at the `http` context controlling aspects that are not specific to a specific application. diff --git a/content/includes/nap-waf/concept/graphql-profile.md b/content/includes/nap-waf/concept/graphql-profile.md index da2e0bc23..c23175f8d 100644 --- a/content/includes/nap-waf/concept/graphql-profile.md +++ b/content/includes/nap-waf/concept/graphql-profile.md @@ -1,5 +1,5 @@ --- -docs: DOCS-000 +nd-docs: DOCS-000 --- The GraphQL Profile defines the GraphQL properties that are enforced by the security policy. diff --git a/content/includes/nap-waf/concept/grpc-logging.md b/content/includes/nap-waf/concept/grpc-logging.md index b4c7c826d..bcce1d690 100644 --- a/content/includes/nap-waf/concept/grpc-logging.md +++ b/content/includes/nap-waf/concept/grpc-logging.md @@ -1,5 +1,5 @@ --- -docs: DOCS-000 +nd-docs: DOCS-000 --- Security log for gRPC requests has unique fields: `uri`, `grpc_method`, and `grpc_service`. Also, since the content of gRPC requests is binary (Protocol Buffers), it is better transferred in Base64 encoding. Hence, it is recommended to use the `headers` and `request_body_base64` fields instead of the `request` field. A new predefined log format called `grpc` should be used in all gRPC locations that also use policies with gRPC Content Profiles. diff --git a/content/includes/nap-waf/config/common/additional-config-options.md b/content/includes/nap-waf/config/common/additional-config-options.md index 80e253d6c..d9bdd6b10 100644 --- a/content/includes/nap-waf/config/common/additional-config-options.md +++ b/content/includes/nap-waf/config/common/additional-config-options.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1552" +nd-docs: "DOCS-1552" --- #### XFF Headers and Trust diff --git a/content/includes/nap-waf/config/common/additional-policy-features.md b/content/includes/nap-waf/config/common/additional-policy-features.md index 190c24a06..ce5395a0e 100644 --- a/content/includes/nap-waf/config/common/additional-policy-features.md +++ b/content/includes/nap-waf/config/common/additional-policy-features.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1592" +nd-docs: "DOCS-1592" --- {{}} diff --git a/content/includes/nap-waf/config/common/anti-automation.md b/content/includes/nap-waf/config/common/anti-automation.md index 229037e39..93459aaba 100644 --- a/content/includes/nap-waf/config/common/anti-automation.md +++ b/content/includes/nap-waf/config/common/anti-automation.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1575" +nd-docs: "DOCS-1575" --- Anti Automation provides basic bot protection by detecting bot signatures and clients that falsely claim to be browsers or search engines. The `bot-defense` section in the policy is enabled by default. Anti Automation encompasses both Bot Signatures and Header Anomalies, each of which can be disabled separately. diff --git a/content/includes/nap-waf/config/common/associating-graphql-profiles.md b/content/includes/nap-waf/config/common/associating-graphql-profiles.md index 60b86bfa8..6956777bc 100644 --- a/content/includes/nap-waf/config/common/associating-graphql-profiles.md +++ b/content/includes/nap-waf/config/common/associating-graphql-profiles.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1607" +nd-docs: "DOCS-1607" --- The last step is to associate the GraphQL profiles with the URLs. As with JSON and XML profiles, in order for a GraphQL Profile to become effective, it has to be associated with a URL that represents the service. Add the GraphQL profile name which you defined previously under the GraphQL profiles in the name field. For example, here we have defined two GraphQL profiles with the "name": "Default" and "My Custom Profile" under the urlContentProfiles. Later we also associated these profiles in "graphql-profiles". diff --git a/content/includes/nap-waf/config/common/associating-profiles-urls.md b/content/includes/nap-waf/config/common/associating-profiles-urls.md index 4afe9e486..32759a008 100644 --- a/content/includes/nap-waf/config/common/associating-profiles-urls.md +++ b/content/includes/nap-waf/config/common/associating-profiles-urls.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1555" +nd-docs: "DOCS-1555" --- As with JSON and XML profiles, in order for a gRPC Content Profile to become effective, it has to be associated with a URL that represents the service. However, in the sample policy above, the profile was apparently not associated with any URL and yet the profile is active. How did this happen? By setting `associateUrls` with `true`, App Protect **implicitly** creates the URL based on the package and service name as defined in the IDL file and associates the profile with that URL. In this example, the URL is `/myorg.services.photo_album/*`. Note it is a wildcard URL so that all methods in this service match it in its suffix; for example `/myorg.services.photo_album/get_photos` represents the `get_photos` RPC method. diff --git a/content/includes/nap-waf/config/common/attack-types.md b/content/includes/nap-waf/config/common/attack-types.md index fff386874..520850bd6 100644 --- a/content/includes/nap-waf/config/common/attack-types.md +++ b/content/includes/nap-waf/config/common/attack-types.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1570" +nd-docs: "DOCS-1570" --- Each signature, factory or user-defined, and violation has an **Attack Type**, the attack vector it protects from. When you create a user-defined signature you associate it with the most appropriate attack type from the list below. If you do not find an Attack Type that matches the threat for which your signature was written, use `Other Application Activity` Attack Type. Attach Types are also useful as part of the filter in user-defined signature **sets**. diff --git a/content/includes/nap-waf/config/common/basic-signature-sets-included-in-app-protect.md b/content/includes/nap-waf/config/common/basic-signature-sets-included-in-app-protect.md index ebdf79117..43d69be2d 100644 --- a/content/includes/nap-waf/config/common/basic-signature-sets-included-in-app-protect.md +++ b/content/includes/nap-waf/config/common/basic-signature-sets-included-in-app-protect.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1568" +nd-docs: "DOCS-1568" --- These signatures sets are included but are not part of the default template. diff --git a/content/includes/nap-waf/config/common/bidirectional-streaming-overview.md b/content/includes/nap-waf/config/common/bidirectional-streaming-overview.md index 950cf9c7b..f55ad2820 100644 --- a/content/includes/nap-waf/config/common/bidirectional-streaming-overview.md +++ b/content/includes/nap-waf/config/common/bidirectional-streaming-overview.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1565" +nd-docs: "DOCS-1565" --- A gRPC service can have a stream of messages on each side: client, server, or both. Bidirectional Streaming leverages HTTP/2 streaming capability, namely the ability to send multiple gRPC messages from either side ended by the message having the `END_STREAM` flag set to 1. diff --git a/content/includes/nap-waf/config/common/clickjacking-protection.md b/content/includes/nap-waf/config/common/clickjacking-protection.md index 3bde2ddca..c73c94b8e 100644 --- a/content/includes/nap-waf/config/common/clickjacking-protection.md +++ b/content/includes/nap-waf/config/common/clickjacking-protection.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1611" +nd-docs: "DOCS-1611" --- Clickjacking refers to a technique used by malicious actors to embed remote website content into their malicious websites, tricking the end users to click on the embedded frames triggering actions the users were not aware of, such as liking a certain Facebook page or giving a restaurant a 5 star rating. To protect against such attacks, NGINX App Protect WAF uses the `X-Frame-Options` header capabilities. The `X-Frame-Options` header is injected by NGINX App Protect WAF to indicate to the browser whether it should embed the content or not. Please note that this additional layer of security is available only in browsers that support the `X-Frame-Options` headers. diff --git a/content/includes/nap-waf/config/common/configure-client-authorization.md b/content/includes/nap-waf/config/common/configure-client-authorization.md index 1fdd8cf30..81388383d 100644 --- a/content/includes/nap-waf/config/common/configure-client-authorization.md +++ b/content/includes/nap-waf/config/common/configure-client-authorization.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1571" +nd-docs: "DOCS-1571" --- ```nginx diff --git a/content/includes/nap-waf/config/common/configure-nginx-mirror.md b/content/includes/nap-waf/config/common/configure-nginx-mirror.md index a50e33357..1a5f75833 100644 --- a/content/includes/nap-waf/config/common/configure-nginx-mirror.md +++ b/content/includes/nap-waf/config/common/configure-nginx-mirror.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1561" +nd-docs: "DOCS-1561" --- ```nginx diff --git a/content/includes/nap-waf/config/common/configure-njs.md b/content/includes/nap-waf/config/common/configure-njs.md index 8e5949b18..266180b6a 100644 --- a/content/includes/nap-waf/config/common/configure-njs.md +++ b/content/includes/nap-waf/config/common/configure-njs.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1579" +nd-docs: "DOCS-1579" --- ```nginx diff --git a/content/includes/nap-waf/config/common/configure-ranges.md b/content/includes/nap-waf/config/common/configure-ranges.md index 73f5773cd..1e13c9e84 100644 --- a/content/includes/nap-waf/config/common/configure-ranges.md +++ b/content/includes/nap-waf/config/common/configure-ranges.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1544" +nd-docs: "DOCS-1544" --- ```nginx diff --git a/content/includes/nap-waf/config/common/configure-slice.md b/content/includes/nap-waf/config/common/configure-slice.md index 07b4f0ab2..413a113bf 100644 --- a/content/includes/nap-waf/config/common/configure-slice.md +++ b/content/includes/nap-waf/config/common/configure-slice.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1613" +nd-docs: "DOCS-1613" --- ```nginx diff --git a/content/includes/nap-waf/config/common/configure-static-location.md b/content/includes/nap-waf/config/common/configure-static-location.md index a1f4d39e6..750905c70 100644 --- a/content/includes/nap-waf/config/common/configure-static-location.md +++ b/content/includes/nap-waf/config/common/configure-static-location.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1581" +nd-docs: "DOCS-1581" --- ```nginx diff --git a/content/includes/nap-waf/config/common/csrf-protection.md b/content/includes/nap-waf/config/common/csrf-protection.md index 9720eaada..f17fd9dd0 100644 --- a/content/includes/nap-waf/config/common/csrf-protection.md +++ b/content/includes/nap-waf/config/common/csrf-protection.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1590" +nd-docs: "DOCS-1590" --- CSRF (Cross-Site Request Forgery) is an attack vector in which the victim user that visits a sensitive site such as a bank account, is lured to click on a malicious link attempting a fraudulent operation on that sensitive site. The link may be sent over email or in a hidden frame in another site. NGINX App Protect WAF provides protection against CSRF attacks by validating the Origin header for AJAX POST requests (default configuration). diff --git a/content/includes/nap-waf/config/common/custom-log-configuration.md b/content/includes/nap-waf/config/common/custom-log-configuration.md index e24115d26..59a231191 100644 --- a/content/includes/nap-waf/config/common/custom-log-configuration.md +++ b/content/includes/nap-waf/config/common/custom-log-configuration.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1585" +nd-docs: "DOCS-1585" --- A new directive `app_protect_custom_log_attribute` will be added to the `nginx.conf` file. You can set this directive at all scopes: http, server and location. The setting at the location scope overrides the setting in the server and/or http scopes and the server scope overrides the http scope. The `app_protect_custom_log_attribute` directive syntax will consist of a **name/value** or **key/value** pair i.e. "app_protect_custom_log_attribute ". diff --git a/content/includes/nap-waf/config/common/custom-log-errors-warnings.md b/content/includes/nap-waf/config/common/custom-log-errors-warnings.md index c0a0f521d..b9684fee0 100644 --- a/content/includes/nap-waf/config/common/custom-log-errors-warnings.md +++ b/content/includes/nap-waf/config/common/custom-log-errors-warnings.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1560" +nd-docs: "DOCS-1560" --- An error message "`app_protect_custom_log_attribute` directive is invalid" will be displayed in the Security Log if the below conditions are met: diff --git a/content/includes/nap-waf/config/common/custom-log-logging-reporting.md b/content/includes/nap-waf/config/common/custom-log-logging-reporting.md index 3497a3ccb..0e2ba3e01 100644 --- a/content/includes/nap-waf/config/common/custom-log-logging-reporting.md +++ b/content/includes/nap-waf/config/common/custom-log-logging-reporting.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1609" +nd-docs: "DOCS-1609" --- When `app_protect_custom_log_attribute` is assigned to a particular location/server/http context, it will appear in the `json_log` field as a new JSON property called "customLogAttributes" at the top level. The property will not appear if no `app_protect_custom_log_attribute` directive was assigned. diff --git a/content/includes/nap-waf/config/common/custom-log-overview.md b/content/includes/nap-waf/config/common/custom-log-overview.md index 20015b968..3ae13b711 100644 --- a/content/includes/nap-waf/config/common/custom-log-overview.md +++ b/content/includes/nap-waf/config/common/custom-log-overview.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1614" +nd-docs: "DOCS-1614" --- Custom dimensions log entries feature refers to the new configuration in NGINX App Protect WAF, where the new directive called `app_protect_custom_log_attribute` is assigned to a particular location or server or http level in the `nginx.conf` file. The need is to be able to add custom identifiers to the respective location and/or server and identify requests in the Security Log by those identifiers. diff --git a/content/includes/nap-waf/config/common/custom-log-things-to-remember.md b/content/includes/nap-waf/config/common/custom-log-things-to-remember.md index 46a472e88..97e18eae5 100644 --- a/content/includes/nap-waf/config/common/custom-log-things-to-remember.md +++ b/content/includes/nap-waf/config/common/custom-log-things-to-remember.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1589" +nd-docs: "DOCS-1589" --- The `app_protect_custom_log_attribute` directive has a few limitations which should be kept in mind while configuring this directive: diff --git a/content/includes/nap-waf/config/common/deny-allow-never-log-lists.md b/content/includes/nap-waf/config/common/deny-allow-never-log-lists.md index 4e5d8398e..7c7e7a847 100644 --- a/content/includes/nap-waf/config/common/deny-allow-never-log-lists.md +++ b/content/includes/nap-waf/config/common/deny-allow-never-log-lists.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1604" +nd-docs: "DOCS-1604" --- It is possible to define IP addresses or ranges for which the traffic will always be allowed or denied or never logged despite the rest of the configuration settings in the policy. diff --git a/content/includes/nap-waf/config/common/detect-base64-string-values.md b/content/includes/nap-waf/config/common/detect-base64-string-values.md index 7ab9b1e2a..56e58f6a7 100644 --- a/content/includes/nap-waf/config/common/detect-base64-string-values.md +++ b/content/includes/nap-waf/config/common/detect-base64-string-values.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1563" +nd-docs: "DOCS-1563" --- The Detect Base64 feature allows NGINX App Protect WAF to detect whether values in string fields in gRPC payload are Base64 encoded. When a value is detected as Base64 encoded NGINX App Protect WAF will enforce the configured signatures on the decoded value __and__ on the original value. diff --git a/content/includes/nap-waf/config/common/detect-base64.md b/content/includes/nap-waf/config/common/detect-base64.md index 28a89ba16..c80861c63 100644 --- a/content/includes/nap-waf/config/common/detect-base64.md +++ b/content/includes/nap-waf/config/common/detect-base64.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1593" +nd-docs: "DOCS-1593" --- The Detect Base64 feature allows NGINX App Protect WAF to detect whether values in headers, cookies, and parameters are Base64 encoded. When an entity is detected as Base64 encoded NGINX App Protect WAF will enforce the configured signatures on the decoded value, instead of on the original value. diff --git a/content/includes/nap-waf/config/common/disallow-application-use-geolocation.md b/content/includes/nap-waf/config/common/disallow-application-use-geolocation.md index 6ba14cc0d..9d605a922 100644 --- a/content/includes/nap-waf/config/common/disallow-application-use-geolocation.md +++ b/content/includes/nap-waf/config/common/disallow-application-use-geolocation.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1547" +nd-docs: "DOCS-1547" --- For applications protected by app protect, you can use Geolocation enforcement to restrict or allow application use in specific countries. You can adjust the lists of which countries or locations are allowed or disallowed in a app protect security policy. If the user tries to access the web application from a location that is not allowed, the `VIOL_GEOLOCATION` violation will be triggered. By default, all locations are allowed, and the alarm and block flags are enabled. diff --git a/content/includes/nap-waf/config/common/disallowed-file-types.md b/content/includes/nap-waf/config/common/disallowed-file-types.md index f253018dd..a2466410d 100644 --- a/content/includes/nap-waf/config/common/disallowed-file-types.md +++ b/content/includes/nap-waf/config/common/disallowed-file-types.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1556" +nd-docs: "DOCS-1556" --- The following file types are disallowed by default: diff --git a/content/includes/nap-waf/config/common/do-nothing-and-user-defined-parameters.md b/content/includes/nap-waf/config/common/do-nothing-and-user-defined-parameters.md index 570801a7d..5627e1b85 100644 --- a/content/includes/nap-waf/config/common/do-nothing-and-user-defined-parameters.md +++ b/content/includes/nap-waf/config/common/do-nothing-and-user-defined-parameters.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1586" +nd-docs: "DOCS-1586" --- The do-nothing in urlContentProfiles allows the user to avoid inspecting or parsing the content in a policy, and instead handle the request's header according to the specifications outlined in the security policy. diff --git a/content/includes/nap-waf/config/common/enforcer-cookie-settings.md b/content/includes/nap-waf/config/common/enforcer-cookie-settings.md index 27e5857a5..0b66474af 100644 --- a/content/includes/nap-waf/config/common/enforcer-cookie-settings.md +++ b/content/includes/nap-waf/config/common/enforcer-cookie-settings.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1608" +nd-docs: "DOCS-1608" --- NGINX App Protect WAF generates its own cookies and adds them on top of the application cookies. diff --git a/content/includes/nap-waf/config/common/evasion-techniques-subviolations.md b/content/includes/nap-waf/config/common/evasion-techniques-subviolations.md index bcdb34373..f485fcb9a 100644 --- a/content/includes/nap-waf/config/common/evasion-techniques-subviolations.md +++ b/content/includes/nap-waf/config/common/evasion-techniques-subviolations.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1542" +nd-docs: "DOCS-1542" --- The following table specifies the Evasion Techniques sub-violation settings. All are supported in NGINX App Protect WAF. diff --git a/content/includes/nap-waf/config/common/filetypes-and-responses.md b/content/includes/nap-waf/config/common/filetypes-and-responses.md index 51624683c..c65c0aa33 100644 --- a/content/includes/nap-waf/config/common/filetypes-and-responses.md +++ b/content/includes/nap-waf/config/common/filetypes-and-responses.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1617" +nd-docs: "DOCS-1617" --- A user can enable/disable specific file types in the policy. diff --git a/content/includes/nap-waf/config/common/first-match-principle.md b/content/includes/nap-waf/config/common/first-match-principle.md index 309f7dd2e..60caf2f69 100644 --- a/content/includes/nap-waf/config/common/first-match-principle.md +++ b/content/includes/nap-waf/config/common/first-match-principle.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1572" +nd-docs: "DOCS-1572" --- The policy enforcement operates on the **first match** principle. This principle is applied when multiple conditions match or are similar, indicating that any incoming requests that match the first condition will be processed. In the following example, the "override_rules_example2" policy uses two override rules: "this_rule_will_match" and "non_matching_rule". Since both conditions match, the first match principle will be applied, and requests with "api" in the URI will be processed. It will reference an external policy file named "NginxStrictPolicy.json" to override the current policy. . diff --git a/content/includes/nap-waf/config/common/geolocation-override-rules.md b/content/includes/nap-waf/config/common/geolocation-override-rules.md index d35f33d28..56394ded4 100644 --- a/content/includes/nap-waf/config/common/geolocation-override-rules.md +++ b/content/includes/nap-waf/config/common/geolocation-override-rules.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1567" +nd-docs: "DOCS-1567" --- The below example represents a security policy for a web application. The policy named as "override_rule_example" is based on a template called "POLICY_TEMPLATE_NGINX_BASE." The policy is set to operate in "blocking" mode, which means it will prevent certain activities. diff --git a/content/includes/nap-waf/config/common/geolocation-overview.md b/content/includes/nap-waf/config/common/geolocation-overview.md index 44c0b29a6..4cf2e1833 100644 --- a/content/includes/nap-waf/config/common/geolocation-overview.md +++ b/content/includes/nap-waf/config/common/geolocation-overview.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1615" +nd-docs: "DOCS-1615" --- Geolocation refers to the process of assessing or determining the geographic location of an object. This feature helps in identifying the geographic location of a client or web application user. diff --git a/content/includes/nap-waf/config/common/graphql-advanced-config.md b/content/includes/nap-waf/config/common/graphql-advanced-config.md index 51e62e079..30221b397 100644 --- a/content/includes/nap-waf/config/common/graphql-advanced-config.md +++ b/content/includes/nap-waf/config/common/graphql-advanced-config.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1551" +nd-docs: "DOCS-1551" --- The below sections provides details about enabling GraphQL with advanced configuration. diff --git a/content/includes/nap-waf/config/common/graphql-define-url-settings.md b/content/includes/nap-waf/config/common/graphql-define-url-settings.md index 76541f335..9a4e59b5b 100644 --- a/content/includes/nap-waf/config/common/graphql-define-url-settings.md +++ b/content/includes/nap-waf/config/common/graphql-define-url-settings.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1588" +nd-docs: "DOCS-1588" --- The second step to configure GraphQL is to define the URL settings. Set the values for "isAllowed": **true**, "name": **/graphql** in the URLs section, which means URLs with **/graphql** name are permitted. This path will be used for all GraphQL API requests. diff --git a/content/includes/nap-waf/config/common/graphql-overview.md b/content/includes/nap-waf/config/common/graphql-overview.md index db60fb1cd..f06189e83 100644 --- a/content/includes/nap-waf/config/common/graphql-overview.md +++ b/content/includes/nap-waf/config/common/graphql-overview.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1595" +nd-docs: "DOCS-1595" --- GraphQL is an API technology that has grown rapidly in recent years and is continuing to gain traction. GraphQL is a query language designed for APIs to use in the development of client applications that access large data sets with intricate relations among themselves. It provides an intuitive application and flexible syntax for describing data requirements.
diff --git a/content/includes/nap-waf/config/common/graphql-response-pages.md b/content/includes/nap-waf/config/common/graphql-response-pages.md index 511058ef9..73ed50f16 100644 --- a/content/includes/nap-waf/config/common/graphql-response-pages.md +++ b/content/includes/nap-waf/config/common/graphql-response-pages.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1557" +nd-docs: "DOCS-1557" --- A GraphQL error response page is returned when a request is blocked. This GraphQL response page, like other blocking response pages, can be customized, but the GraphQL JSON syntax must be preserved for them to be displayed correctly. The default page returns the GraphQL status code Blocking Response Page (BRP) and a short JSON error message which includes the support ID. diff --git a/content/includes/nap-waf/config/common/graphql-security.md b/content/includes/nap-waf/config/common/graphql-security.md index 2342ca0f9..067eb4833 100644 --- a/content/includes/nap-waf/config/common/graphql-security.md +++ b/content/includes/nap-waf/config/common/graphql-security.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1566" +nd-docs: "DOCS-1566" --- Securing GraphQL APIs with NGINX App Protect WAF involves using WAF to monitor and protect against security threats and attacks. GraphQL, like REST, is usually [served over HTTP](http://graphql.org/learn/serving-over-http/), using GET and POST requests and a proprietary [query language](https://graphql.org/learn/schema/#the-query-and-mutation-types). It is prone to the typical Web APIs security vulnerabilities, such as injection attacks, Denial of Service (DoS) attacks and abuse of flawed authorization. diff --git a/content/includes/nap-waf/config/common/graphql-violations.md b/content/includes/nap-waf/config/common/graphql-violations.md index 0045ec2c1..288fa29a4 100644 --- a/content/includes/nap-waf/config/common/graphql-violations.md +++ b/content/includes/nap-waf/config/common/graphql-violations.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1578" +nd-docs: "DOCS-1578" --- NGINX App Protect WAF introduces four new violations specific to GraphQL: `VIOL_GRAPHQL_FORMAT`, `VIOL_GRAPHQL_MALFORMED`, `VIOL_GRAPHQL_INTROSPECTION_QUERY` and `VIOL_GRAPHQL_ERROR_RESPONSE`.
diff --git a/content/includes/nap-waf/config/common/grpc-bidirectional-stream-enforcement.md b/content/includes/nap-waf/config/common/grpc-bidirectional-stream-enforcement.md index d8d14d0f6..468da8b55 100644 --- a/content/includes/nap-waf/config/common/grpc-bidirectional-stream-enforcement.md +++ b/content/includes/nap-waf/config/common/grpc-bidirectional-stream-enforcement.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1606" +nd-docs: "DOCS-1606" --- #### Client Request Flow diff --git a/content/includes/nap-waf/config/common/grpc-content-profiles.md b/content/includes/nap-waf/config/common/grpc-content-profiles.md index 2f5ec344c..dbdffe203 100644 --- a/content/includes/nap-waf/config/common/grpc-content-profiles.md +++ b/content/includes/nap-waf/config/common/grpc-content-profiles.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1616" +nd-docs: "DOCS-1616" --- The gRPC Content Profile contains all the definitions for protecting a gRPC service. It is similar in nature to the **JSON and XML profiles** handling JSON and XML traffic respectively. Roughly it includes: diff --git a/content/includes/nap-waf/config/common/grpc-handling-slow-post-attacks.md b/content/includes/nap-waf/config/common/grpc-handling-slow-post-attacks.md index 1a7189010..78c430827 100644 --- a/content/includes/nap-waf/config/common/grpc-handling-slow-post-attacks.md +++ b/content/includes/nap-waf/config/common/grpc-handling-slow-post-attacks.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1599" +nd-docs: "DOCS-1599" --- Slow POST attack mitigation - A client sending messages very slowly for a long time may be cut off by resetting the connection. diff --git a/content/includes/nap-waf/config/common/grpc-message-compression.md b/content/includes/nap-waf/config/common/grpc-message-compression.md index 7fdf1b923..ff28c8674 100644 --- a/content/includes/nap-waf/config/common/grpc-message-compression.md +++ b/content/includes/nap-waf/config/common/grpc-message-compression.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1574" +nd-docs: "DOCS-1574" --- Currently, Message Compression is not supported. Therefore, a violation `VIOL_GRPC_MALFORMED` will be raised and the connection will be blocked if a compressed message is sent. \ No newline at end of file diff --git a/content/includes/nap-waf/config/common/grpc-protection-unary-traffic.md b/content/includes/nap-waf/config/common/grpc-protection-unary-traffic.md index a9de83d0e..dac89ee48 100644 --- a/content/includes/nap-waf/config/common/grpc-protection-unary-traffic.md +++ b/content/includes/nap-waf/config/common/grpc-protection-unary-traffic.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1558" +nd-docs: "DOCS-1558" --- gRPC is a remote API standard and is an alternative to OpenAPI. If your applications expose gRPC APIs, NGINX App Protect WAF can protect them by parsing the messages; making sure they comply with the API definition; and enforcing security restrictions - such as size limits, detecting attack signatures, threat campaigns, and suspicious metacharacters in message string field values. diff --git a/content/includes/nap-waf/config/common/grpc-response-pages.md b/content/includes/nap-waf/config/common/grpc-response-pages.md index 14529e719..11f7efc51 100644 --- a/content/includes/nap-waf/config/common/grpc-response-pages.md +++ b/content/includes/nap-waf/config/common/grpc-response-pages.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1597" +nd-docs: "DOCS-1597" --- A gRPC error response page is returned when a request is blocked. The default page returns gRPC status code `UNKNOWN` (numeric value of 2) and a short textual message that includes the support ID. You can customize any of these two by configuring a custom gRPC response page in your policy. diff --git a/content/includes/nap-waf/config/common/grpc-server-reflection.md b/content/includes/nap-waf/config/common/grpc-server-reflection.md index 0d27f1f8e..e8cab8f9e 100644 --- a/content/includes/nap-waf/config/common/grpc-server-reflection.md +++ b/content/includes/nap-waf/config/common/grpc-server-reflection.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1610" +nd-docs: "DOCS-1610" --- [gRPC Server Reflection](https://grpc.github.io/grpc/core/md_doc_server_reflection_tutorial.html) provides information about publicly-accessible gRPC services on a server, and assists clients at runtime to construct RPC requests and responses without precompiled service information. gRPC Server reflection is not currently supported in App Protect. If Server Reflection support is required, App Protect must be disabled on the reflection URIs by adding a location block such as this: diff --git a/content/includes/nap-waf/config/common/grpc-size-limits.md b/content/includes/nap-waf/config/common/grpc-size-limits.md index bb9439081..407f6cb2c 100644 --- a/content/includes/nap-waf/config/common/grpc-size-limits.md +++ b/content/includes/nap-waf/config/common/grpc-size-limits.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1619" +nd-docs: "DOCS-1619" --- The maximum total request size is applied to each message on its own, rather than to the total stream messages. By default, the maximum gRPC message size is 4MB. diff --git a/content/includes/nap-waf/config/common/grpc-slow-post-attacks.md b/content/includes/nap-waf/config/common/grpc-slow-post-attacks.md index 744878c1c..55dc41ed9 100644 --- a/content/includes/nap-waf/config/common/grpc-slow-post-attacks.md +++ b/content/includes/nap-waf/config/common/grpc-slow-post-attacks.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1637" +nd-docs: "DOCS-1637" --- A Slow POST attack or Slow HTTP POST attack is a type of denial of service attack. The attacker sends a legitimate HTTP POST request with the header Content-Length specified. The attacker then proceeds to send this content slowly. The server establishes a connection to the client and keeps it open to receive the request that it thinks is legitimate. diff --git a/content/includes/nap-waf/config/common/grpc-violations.md b/content/includes/nap-waf/config/common/grpc-violations.md index 9eb2d75bf..e93bac516 100644 --- a/content/includes/nap-waf/config/common/grpc-violations.md +++ b/content/includes/nap-waf/config/common/grpc-violations.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1562" +nd-docs: "DOCS-1562" --- There are three violations that are specific to gRPC. They are all enabled in the default policy. See also the [Violations](#violations) section. diff --git a/content/includes/nap-waf/config/common/handling-xml-and-json-content.md b/content/includes/nap-waf/config/common/handling-xml-and-json-content.md index 32285a4e2..a8a54c409 100644 --- a/content/includes/nap-waf/config/common/handling-xml-and-json-content.md +++ b/content/includes/nap-waf/config/common/handling-xml-and-json-content.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1545" +nd-docs: "DOCS-1545" --- #### XML and JSON Content Profiles diff --git a/content/includes/nap-waf/config/common/http-compliance-subviolations.md b/content/includes/nap-waf/config/common/http-compliance-subviolations.md index 77f6f144d..c9482ea62 100644 --- a/content/includes/nap-waf/config/common/http-compliance-subviolations.md +++ b/content/includes/nap-waf/config/common/http-compliance-subviolations.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1576" +nd-docs: "DOCS-1576" --- The following table specifies the HTTP Compliance sub-violation settings. All are supported in NGINX App Protect WAF, but not all are enabled in the default App Protect security template. The table specifies which. Some of the checks are enforced by NGINX Plus and App Protect only gets a notification. **Note:** In this case, the request is **always** blocked regardless of the App Protect policy. diff --git a/content/includes/nap-waf/config/common/important-things-override-rules.md b/content/includes/nap-waf/config/common/important-things-override-rules.md index dd17232f5..c065639cb 100644 --- a/content/includes/nap-waf/config/common/important-things-override-rules.md +++ b/content/includes/nap-waf/config/common/important-things-override-rules.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1549" +nd-docs: "DOCS-1549" --- Here are some key points to remember regarding the Override Rules feature: diff --git a/content/includes/nap-waf/config/common/json-web-token-overview.md b/content/includes/nap-waf/config/common/json-web-token-overview.md index 9e5ee5741..76cf116ba 100644 --- a/content/includes/nap-waf/config/common/json-web-token-overview.md +++ b/content/includes/nap-waf/config/common/json-web-token-overview.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1550" +nd-docs: "DOCS-1550" --- JSON Web Token (JWT) is a compact and self-contained way to represent information between two parties in a JSON (JavaScript Object Notation) format and is commonly used for authentication and authorization. With NGINX App Protect now it is possible to control access to its application using JWT validation. NGINX App Protect WAF validates the authenticity and well-formedness of JWTs coming from a client, denying access to the service exclusively when the validation process fails. JWT is mainly used for API access. diff --git a/content/includes/nap-waf/config/common/json-web-tokens-attack-sigs.md b/content/includes/nap-waf/config/common/json-web-tokens-attack-sigs.md index 76e8255a2..4ad55d12e 100644 --- a/content/includes/nap-waf/config/common/json-web-tokens-attack-sigs.md +++ b/content/includes/nap-waf/config/common/json-web-tokens-attack-sigs.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1602" +nd-docs: "DOCS-1602" --- Attack signatures are detected within the JSON values of the token, i.e. the header and claims parts, but not on the digital signature part of the token. The detection of signatures, and specifically which signatures are recognized, depends on the configuration entity within the Policy. Typically, this configuration entity is the Authorization HTTP header or else, the header or parameter entity configured as the location of the token in the access profile. diff --git a/content/includes/nap-waf/config/common/json-web-tokens-other-references.md b/content/includes/nap-waf/config/common/json-web-tokens-other-references.md index e07b94a20..c79eb0dd0 100644 --- a/content/includes/nap-waf/config/common/json-web-tokens-other-references.md +++ b/content/includes/nap-waf/config/common/json-web-tokens-other-references.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1573" +nd-docs: "DOCS-1573" --- For more information about JSON Web Token (JWT) see below reference links: diff --git a/content/includes/nap-waf/config/common/json-web-tokens-violation-rating.md b/content/includes/nap-waf/config/common/json-web-tokens-violation-rating.md index f0ef872b8..67875b1b9 100644 --- a/content/includes/nap-waf/config/common/json-web-tokens-violation-rating.md +++ b/content/includes/nap-waf/config/common/json-web-tokens-violation-rating.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1584" +nd-docs: "DOCS-1584" --- The default violation rating is set to the level of **5** regardless of any violation. Any changes to these violation settings here will override the default settings. The details regarding logs will be recorded in the security log. All violations will be disabled on upgrade. diff --git a/content/includes/nap-waf/config/common/json-web-tokens-violations.md b/content/includes/nap-waf/config/common/json-web-tokens-violations.md index c161e93b4..b04d82780 100644 --- a/content/includes/nap-waf/config/common/json-web-tokens-violations.md +++ b/content/includes/nap-waf/config/common/json-web-tokens-violations.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1594" +nd-docs: "DOCS-1594" --- NGINX App Protect WAF introduces three new violations specific to JWT: `VIOL_ACCESS_INVALID`, `VIOL_ACCESS_MISSING` and `VIOL_ACCESS_MALFORMED`. diff --git a/content/includes/nap-waf/config/common/modifying-configurations.md b/content/includes/nap-waf/config/common/modifying-configurations.md index 41341a7ad..557d97eae 100644 --- a/content/includes/nap-waf/config/common/modifying-configurations.md +++ b/content/includes/nap-waf/config/common/modifying-configurations.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1591" +nd-docs: "DOCS-1591" --- What we have been seeing so far has been related to making changes by actually overriding specific configuration values. What would happen in the case we wanted to remove a specific configuration entity from the policy. For example, let's say we have added file types "aaa", "bbb", and "ccc", and now we wish to remove "bbb" from the list of disallowed file types. Deleting this entity from the declarative configuration file will simply mean that this entity will be left intact when the policy is rebuilt, meaning that the entity is still in the disallowed file types list. To resolve such situations, we have a `modifications` section where we can force modification where otherwise it is not possible using direct declarative configuration. diff --git a/content/includes/nap-waf/config/common/nginx-app-protect-waf-terminology.md b/content/includes/nap-waf/config/common/nginx-app-protect-waf-terminology.md index 54db35538..f1f28bb0c 100644 --- a/content/includes/nap-waf/config/common/nginx-app-protect-waf-terminology.md +++ b/content/includes/nap-waf/config/common/nginx-app-protect-waf-terminology.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1605" +nd-docs: "DOCS-1605" --- This guide assumes that you have some familiarity with various Layer 7 (L7) Hypertext Transfer Protocol (HTTP) concepts, such as Uniform Resource Identifier (URI)/Uniform Resource Locator (URL), method, header, cookie, status code, request, response, and parameters. diff --git a/content/includes/nap-waf/config/common/override-rules-errors-warnings.md b/content/includes/nap-waf/config/common/override-rules-errors-warnings.md index d0795f339..cea216022 100644 --- a/content/includes/nap-waf/config/common/override-rules-errors-warnings.md +++ b/content/includes/nap-waf/config/common/override-rules-errors-warnings.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1600" +nd-docs: "DOCS-1600" --- #### Missing Policy Name diff --git a/content/includes/nap-waf/config/common/override-rules-logging-reporting.md b/content/includes/nap-waf/config/common/override-rules-logging-reporting.md index 814d95b17..250065b66 100644 --- a/content/includes/nap-waf/config/common/override-rules-logging-reporting.md +++ b/content/includes/nap-waf/config/common/override-rules-logging-reporting.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1583" +nd-docs: "DOCS-1583" --- If a request matches an override rule, the `json_log` field will include a new block named 'overrideRule'. However, if no rules match the request, the log will not contain any related information. When the 'actionType' flag is set to "replace-policy", the 'originalPolicyName' field in the log will reflect the name of the original policy name (the one that contains override rules), and the `policy_name` field will reflect the policy that was enforced. diff --git a/content/includes/nap-waf/config/common/override-rules-overview.md b/content/includes/nap-waf/config/common/override-rules-overview.md index d67e14240..59d547719 100644 --- a/content/includes/nap-waf/config/common/override-rules-overview.md +++ b/content/includes/nap-waf/config/common/override-rules-overview.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1553" +nd-docs: "DOCS-1553" --- The **Override Rules** feature allows overriding of the **default policy** settings. Each override rule consists of a condition followed by changes to the original policy applied to requests that meet the respective condition. This feature provides the ability to include the override rules within a declarative policy such that all incoming requests are verified against those rules. diff --git a/content/includes/nap-waf/config/common/parameters-and-user-defined-urls.md b/content/includes/nap-waf/config/common/parameters-and-user-defined-urls.md index de4214a29..53aa7f98d 100644 --- a/content/includes/nap-waf/config/common/parameters-and-user-defined-urls.md +++ b/content/includes/nap-waf/config/common/parameters-and-user-defined-urls.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1618" +nd-docs: "DOCS-1618" --- When configuring handling of parameters, it is a bit different from other configurations we have dealt with earlier, where we enable a violation and configure its details. With parameters, there are a number of independent violations that need to be enabled on their own, as well as a parameter section to define further customization. The full list of parameter violations can be extracted from the above violation list. diff --git a/content/includes/nap-waf/config/common/partial-masking-of-data.md b/content/includes/nap-waf/config/common/partial-masking-of-data.md index 207e04921..86769895e 100644 --- a/content/includes/nap-waf/config/common/partial-masking-of-data.md +++ b/content/includes/nap-waf/config/common/partial-masking-of-data.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1559" +nd-docs: "DOCS-1559" --- Here is an example showing partial masking on custom patterns. Custom patterns are specified in `customPatternsList`, number of unmasked leading and trailing characters are defined in `firstCustomCharactersToExpose` and `lastCustomCharactersToExpose` parameters. diff --git a/content/includes/nap-waf/config/common/policy-authoring-and-tuning.md b/content/includes/nap-waf/config/common/policy-authoring-and-tuning.md index ca16dc85f..59d7b39cb 100644 --- a/content/includes/nap-waf/config/common/policy-authoring-and-tuning.md +++ b/content/includes/nap-waf/config/common/policy-authoring-and-tuning.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1564" +nd-docs: "DOCS-1564" --- The policy JSON file specifies the settings that are different from the base template, such as enabling more signatures, disabling some violations, adding server technologies, etc. These will be shown in the next sections. diff --git a/content/includes/nap-waf/config/common/policy-configuration.md b/content/includes/nap-waf/config/common/policy-configuration.md index 9ef118bdc..a58c4464e 100644 --- a/content/includes/nap-waf/config/common/policy-configuration.md +++ b/content/includes/nap-waf/config/common/policy-configuration.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1548" +nd-docs: "DOCS-1548" --- The NGINX App Protect WAF ships with two reference policies, both with a default enforcement mode set to Blocking: diff --git a/content/includes/nap-waf/config/common/protocol-buffers-supported-version.md b/content/includes/nap-waf/config/common/protocol-buffers-supported-version.md index c71632671..1e17edc7d 100644 --- a/content/includes/nap-waf/config/common/protocol-buffers-supported-version.md +++ b/content/includes/nap-waf/config/common/protocol-buffers-supported-version.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1598" +nd-docs: "DOCS-1598" --- The supported Protocol Buffer version is 3 i.e. only proto3 is supported. Version 2 is not supported. Hence any obsolete feature of version 2, such as message extensions in the IDL files, will be rejected. IDL files that have the `syntax = "proto2";` statement is also rejected. \ No newline at end of file diff --git a/content/includes/nap-waf/config/common/signature-sets-in-default-policy.md b/content/includes/nap-waf/config/common/signature-sets-in-default-policy.md index 0beb9f005..39fe22e09 100644 --- a/content/includes/nap-waf/config/common/signature-sets-in-default-policy.md +++ b/content/includes/nap-waf/config/common/signature-sets-in-default-policy.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1587" +nd-docs: "DOCS-1587" --- The following signature sets are included in the default policy. Most of the sets are defined by the Attack Type they protect from. In all sets the **Alarm** flag is enabled and **Block** disabled except High Accuracy Signatures, which are set to **blocked** (`block` parameter is enabled). diff --git a/content/includes/nap-waf/config/common/signature-sets.md b/content/includes/nap-waf/config/common/signature-sets.md index 4afb8fe65..fb07dca5e 100644 --- a/content/includes/nap-waf/config/common/signature-sets.md +++ b/content/includes/nap-waf/config/common/signature-sets.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1580" +nd-docs: "DOCS-1580" --- The default and strict policies include and enable common signature sets, which are categorized groups of [signatures](#attack-signatures-overview) applied to the policy. However, you may wish to modify the list of signature sets and their logging and enforcement settings via the `signature-sets` array property. There are several ways to configure the enforced signature sets. diff --git a/content/includes/nap-waf/config/common/signature-settings.md b/content/includes/nap-waf/config/common/signature-settings.md index 9f2121af7..39fff1ce4 100644 --- a/content/includes/nap-waf/config/common/signature-settings.md +++ b/content/includes/nap-waf/config/common/signature-settings.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1554" +nd-docs: "DOCS-1554" --- {{}} diff --git a/content/includes/nap-waf/config/common/supported-violations.md b/content/includes/nap-waf/config/common/supported-violations.md index bf1b4c882..7fcf200b5 100644 --- a/content/includes/nap-waf/config/common/supported-violations.md +++ b/content/includes/nap-waf/config/common/supported-violations.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1582" +nd-docs: "DOCS-1582" --- The following violations are supported and can be enabled by turning on the **alarm** and/or **block** flags. @@ -31,39 +31,39 @@ The following violations are supported and can be enabled by turning on the **al |VIOL_GRAPHQL_FORMAT | GraphQL format data does not comply with format settings | Alarm & Block | This violation will be issued when the GraphQL profile settings are not satisfied, for example the length is too long, depth is too deep, a specific value is too long or too many batched queries.
The violation details will note what happened and the found length, depth or which value is too long and by what.
The depth violation is not learnable. The reason is that we don't know the actual depth of the query - we stop parsing at the max depth.
Note that the values will be used on the variables JSON part as well as the query. In a way, we can see these values as a JSON profile attributes just for the variables. | | |VIOL_GRAPHQL_INTROSPECTION_QUERY| GraphQL introspection Query | Alarm & Block | This violation will be issued when an introspection query was seen. | | |VIOL_GRAPHQL_ERROR_RESPONSE | GraphQL Error Response | Alarm & Block | GraphQL disallowed pattern in response. | | -|VIOL_GRPC_FORMAT | gRPC data does not comply with format settings | Alarm | The system checks that the request contains gRPC content and complies with the various request limits within the defense configuration in the security policy's gRPC Content Profile. Enforces valid gRPC requests and protects the server from Protocol Buffers parser attacks. This violation is generated when a gRPC request does not meet restrictive conditions in the gRPC Content Profile, such as the message length or existence of unknown fields. | | -|VIOL_GRPC_MALFORMED | Malformed gRPC data | Alarm & Block | The system checks that the request contains gRPC content that is well-formed. Enforces parsable gRPC requests. | | -|VIOL_GRPC_METHOD | Illegal gRPC method | Alarm | The system checks that the gRPC service method invoked matches one of the methods defined in the IDL file. The violation is triggered if the method does not appear there. | | -|VIOL_HEADER_LENGTH | Illegal header length | Alarm | The system checks that the request includes a total HTTP header length that does not exceed the length specified in the security policy. | The actual size in default policy is 4 KB | -|VIOL_HEADER_METACHAR | Illegal meta character in header | Alarm | The system checks that the values of all headers within the request only contain meta characters defined as allowed in the security policy. | | -|VIOL_HTTP_PROTOCOL | HTTP protocol compliance failed | Alarm | This category contains a list of validation checks that the system performs on HTTP requests to ensure that the requests are formatted properly. | | -|VIOL_HTTP_RESPONSE_STATUS | Illegal HTTP response status | Alarm | The server response contains an HTTP status code that is not defined as valid in the security policy. | | -|VIOL_JSON_FORMAT | JSON data does not comply with format settings | Alarm | The system checks that the request contains JSON content and complies with the various request limits within the defense configuration in the security policy's JSON profile. Enforces valid JSON requests and protects the server from JSON parser attacks. This violation is generated when a problem is detected in a JSON request, generally checking the message according to boundaries such as the message's size and meta characters in parameter value. | Controlled from the default JSON profile. | -|VIOL_JSON_MALFORMED | Malformed JSON data | Alarm & Block | The system checks that the request contains JSON content that is well-formed. Enforces parsable JSON requests. | | -|VIOL_JSON_SCHEMA | JSON data does not comply with JSON schema | Alarm | The system checks that the incoming request contains JSON data that matches the schema file that is part of a JSON profile configured in the security policy. Enforces proper JSON requests defined by the schema. | | -|VIOL_MANDATORY_PARAMETER | Mandatory parameter is missing | Alarm | The system checks that parameter marked as mandatory exists in the request. | | -|VIOL_MANDATORY_REQUEST_BODY | Mandatory request body is missing | Alarm | The system checks that the body exists in the request | | -|VIOL_METHOD | Illegal method | Alarm | The system checks that the request references an HTTP request method that is found in the security policy. Enforces desired HTTP methods; GET and POST are always allowed. | These HTTP methods are supported:
  • GET
  • HEAD
  • POST
  • PUT
  • PATCH
  • DELETE
  • OPTIONS
| -|VIOL_PARAMETER | Illegal parameter | Alarm | The system checks that every parameter in the request is defined in the security policy. | | -|VIOL_PARAMETER_ARRAY_VALUE | Illegal parameter array value | Alarm | The value of an item in an array parameter is not according to the defined data type. | | -|VIOL_PARAMETER_DATA_TYPE | Illegal parameter data type | Alarm | The system checks that the request contains a parameter whose data type matches the data type defined in the security policy. The data types that this violation applies to are integer, email, and phone. | | -|VIOL_PARAMETER_EMPTY_VALUE | Illegal empty parameter value | Alarm | The system checks that the request contains a parameter whose value is not empty when it must contain a value. | | -|VIOL_PARAMETER_LOCATION | Illegal parameter location | Alarm | The parameter was found in a different location than it was configured in the policy. | | -|VIOL_PARAMETER_MULTIPART_NULL_VALUE | Null in multi-part parameter value | Disabled | The system checks that the multi-part request has a parameter value that does not contain the NULL character (0x00). If a multipart parameter with binary content type contains NULL in its value, the Enforcer issues this violation. The exceptions to this are:
  • If that parameter is configured in the policy as `Ignore value`.
  • If that parameter is configured in the security policy as `user-input file-upload`.
  • If the parameter has a content-type that contains the string 'XML' and the parameter value contains a valid UTF16 encoded XML document (the encoding is valid). In this case NULL is allowed as it is part of the UTF16 encoding.
| | -|VIOL_PARAMETER_NAME_METACHAR | Illegal meta character in parameter name | Alarm | The system checks that all parameter names within the incoming request only contain meta characters defined as allowed in the security policy. | | -|VIOL_PARAMETER_NUMERIC_VALUE | Illegal parameter numeric value | Alarm | The system checks that the incoming request contains a parameter whose value is in the range of decimal or integer values defined in the security policy. | | -|VIOL_PARAMETER_REPEATED | Illegal repeated parameter name | Alarm | Detected multiple parameters of the same name in a single HTTP request. | | -|VIOL_PARAMETER_STATIC_VALUE | Illegal static parameter value | Alarm | The system checks that the request contains a static parameter whose value is defined in the security policy. Prevents static parameter change. NGINX App Protect WAF can be configured to block parameter values that are not in a predefined list. Parameters can be defined on each of the following levels: file type, URL, and flow. Each parameter can be one of the following types: explicit or wildcard. | | -|VIOL_PARAMETER_VALUE_BASE64 | Illegal Base64 value | Alarm | The system checks that the value is a valid Base64 string. If the value is indeed Base64, the system decodes this value and continues with its security checks. | | -|VIOL_PARAMETER_VALUE_LENGTH | Illegal parameter value length | Alarm | The system checks that the request contains a parameter whose value length (in bytes) matches the value length defined in the security policy. | | -|VIOL_PARAMETER_VALUE_METACHAR | Illegal meta character in value | Alarm | The system checks that all parameter values, XML element/attribute values, or JSON values within the request only contain meta characters defined as allowed in the security policy. Enforces proper input values. In case of a violation, the reported value represents the decimal ASCII value (metachar_index), or, in case of using "json_log" the hexadecimal ASCII value (metachar) of the violating character. | | -|VIOL_PARAMETER_VALUE_REGEXP | Parameter value does not comply with regular expression | Alarm | The system checks that the request contains an alphanumeric parameter value that matches the expected pattern specified by the regular-expression field for that parameter. Prevents HTTP requests which do not comply with a defined pattern. NGINX App Protect WAF lets you set up a regular expression to block requests where a parameter value does not match the regular expression. | | -|VIOL_POST_DATA_LENGTH | Illegal POST data length | Alarm | The system checks that the request contains POST data whose length does not exceed the acceptable length specified in the security policy. | In * file type entity. This check is disabled by default. | -|VIOL_QUERY_STRING_LENGTH | Illegal query string length | Alarm | The system checks that the request contains a query string whose length does not exceed the acceptable length specified in the security policy. | In * file type entity. Actual size is 2 KB. | -|VIOL_RATING_THREAT | Request is likely a threat | Alarm & Block | The combination of violations in this request determined that the request is likely to be a threat. | For VR = 4 or 5 | -|VIOL_RATING_NEED_EXAMINATION | Request needs further examination | Disabled | The combination of violations could not determine whether the request is a threat or violations are false positives thus requiring more examination. | For VR = 3 | -|VIOL_REQUEST_LENGTH | Illegal request length | Alarm | The system checks that the request length does not exceed the acceptable length specified in the security policy per the requested file type. | In * file type entity. This check is disabled by default. | -|VIOL_REQUEST_MAX_LENGTH | Request length exceeds defined buffer size | Alarm & Block| The system checks that the request length is not larger than the maximum memory buffer size. Note that this protects NGINX App Protect WAF from consuming too much memory across all security policies which are active on the device. | Default is 10MB | +|VIOL_GRPC_FORMAT | gRPC data does not comply with format settings | Alarm | The system checks that the request contains gRPC content and complies with the various request limits within the defense configuration in the security policy's gRPC Content Profile. Enforces valid gRPC requests and protects the server from Protocol Buffers parser attacks. This violation is generated when a gRPC request does not meet restrictive conditions in the gRPC Content Profile, such as the message length or existence of unknown fields. | | +|VIOL_GRPC_MALFORMED | Malformed gRPC data | Alarm & Block | The system checks that the request contains gRPC content that is well-formed. Enforces parsable gRPC requests. | | +|VIOL_GRPC_METHOD | Illegal gRPC method | Alarm | The system checks that the gRPC service method invoked matches one of the methods defined in the IDL file. The violation is triggered if the method does not appear there. | | +|VIOL_HEADER_LENGTH | Illegal header length | Alarm | The system checks that the request includes a total HTTP header length that does not exceed the length specified in the security policy. | The actual size in default policy is 4 KB | +|VIOL_HEADER_METACHAR | Illegal meta character in header | Alarm | The system checks that the values of all headers within the request only contain meta characters defined as allowed in the security policy. | | +|VIOL_HTTP_PROTOCOL | HTTP protocol compliance failed | Alarm | This category contains a list of validation checks that the system performs on HTTP requests to ensure that the requests are formatted properly. | | +|VIOL_HTTP_RESPONSE_STATUS | Illegal HTTP response status | Alarm | The server response contains an HTTP status code that is not defined as valid in the security policy. | | +|VIOL_JSON_FORMAT | JSON data does not comply with format settings | Alarm | The system checks that the request contains JSON content and complies with the various request limits within the defense configuration in the security policy's JSON profile. Enforces valid JSON requests and protects the server from JSON parser attacks. This violation is generated when a problem is detected in a JSON request, generally checking the message according to boundaries such as the message's size and meta characters in parameter value. | Controlled from the default JSON profile. | +|VIOL_JSON_MALFORMED | Malformed JSON data | Alarm & Block | The system checks that the request contains JSON content that is well-formed. Enforces parsable JSON requests. | | +|VIOL_JSON_SCHEMA | JSON data does not comply with JSON schema | Alarm | The system checks that the incoming request contains JSON data that matches the schema file that is part of a JSON profile configured in the security policy. Enforces proper JSON requests defined by the schema. | | +|VIOL_MANDATORY_PARAMETER | Mandatory parameter is missing | Alarm | The system checks that parameter marked as mandatory exists in the request. | | +|VIOL_MANDATORY_REQUEST_BODY | Mandatory request body is missing | Alarm | The system checks that the body exists in the request | | +|VIOL_METHOD | Illegal method | Alarm | The system checks that the request references an HTTP request method that is found in the security policy. Enforces desired HTTP methods; GET and POST are always allowed. | These HTTP methods are supported:
  • GET
  • HEAD
  • POST
  • PUT
  • PATCH
  • DELETE
  • OPTIONS
| +|VIOL_PARAMETER | Illegal parameter | Alarm | The system checks that every parameter in the request is defined in the security policy. | | +|VIOL_PARAMETER_ARRAY_VALUE | Illegal parameter array value | Alarm | The value of an item in an array parameter is not according to the defined data type. | | +|VIOL_PARAMETER_DATA_TYPE | Illegal parameter data type | Alarm | The system checks that the request contains a parameter whose data type matches the data type defined in the security policy. The data types that this violation applies to are integer, email, and phone. | | +|VIOL_PARAMETER_EMPTY_VALUE | Illegal empty parameter value | Alarm | The system checks that the request contains a parameter whose value is not empty when it must contain a value. | | +|VIOL_PARAMETER_LOCATION | Illegal parameter location | Alarm | The parameter was found in a different location than it was configured in the policy. | | +|VIOL_PARAMETER_MULTIPART_NULL_VALUE | Null in multi-part parameter value | Disabled | The system checks that the multi-part request has a parameter value that does not contain the NULL character (0x00). If a multipart parameter with binary content type contains NULL in its value, the Enforcer issues this violation. The exceptions to this are:
  • If that parameter is configured in the policy as `Ignore value`.
  • If that parameter is configured in the security policy as `user-input file-upload`.
  • If the parameter has a content-type that contains the string 'XML' and the parameter value contains a valid UTF16 encoded XML document (the encoding is valid). In this case NULL is allowed as it is part of the UTF16 encoding.
| | +|VIOL_PARAMETER_NAME_METACHAR | Illegal meta character in parameter name | Alarm | The system checks that all parameter names within the incoming request only contain meta characters defined as allowed in the security policy. | | +|VIOL_PARAMETER_NUMERIC_VALUE | Illegal parameter numeric value | Alarm | The system checks that the incoming request contains a parameter whose value is in the range of decimal or integer values defined in the security policy. | | +|VIOL_PARAMETER_REPEATED | Illegal repeated parameter name | Alarm | Detected multiple parameters of the same name in a single HTTP request. | | +|VIOL_PARAMETER_STATIC_VALUE | Illegal static parameter value | Alarm | The system checks that the request contains a static parameter whose value is defined in the security policy. Prevents static parameter change. NGINX App Protect WAF can be configured to block parameter values that are not in a predefined list. Parameters can be defined on each of the following levels: file type, URL, and flow. Each parameter can be one of the following types: explicit or wildcard. | | +|VIOL_PARAMETER_VALUE_BASE64 | Illegal Base64 value | Alarm | The system checks that the value is a valid Base64 string. If the value is indeed Base64, the system decodes this value and continues with its security checks. | | +|VIOL_PARAMETER_VALUE_LENGTH | Illegal parameter value length | Alarm | The system checks that the request contains a parameter whose value length (in bytes) matches the value length defined in the security policy. | | +|VIOL_PARAMETER_VALUE_METACHAR | Illegal meta character in value | Alarm | The system checks that all parameter values, XML element/attribute values, or JSON values within the request only contain meta characters defined as allowed in the security policy. Enforces proper input values. In case of a violation, the reported value represents the decimal ASCII value (metachar_index), or, in case of using "json_log" the hexadecimal ASCII value (metachar) of the violating character. | | +|VIOL_PARAMETER_VALUE_REGEXP | Parameter value does not comply with regular expression | Alarm | The system checks that the request contains an alphanumeric parameter value that matches the expected pattern specified by the regular-expression field for that parameter. Prevents HTTP requests which do not comply with a defined pattern. NGINX App Protect WAF lets you set up a regular expression to block requests where a parameter value does not match the regular expression. | | +|VIOL_POST_DATA_LENGTH | Illegal POST data length | Alarm | The system checks that the request contains POST data whose length does not exceed the acceptable length specified in the security policy. | In * file type entity. This check is disabled by default. | +|VIOL_QUERY_STRING_LENGTH | Illegal query string length | Alarm | The system checks that the request contains a query string whose length does not exceed the acceptable length specified in the security policy. | In * file type entity. Actual size is 2 KB. | +|VIOL_RATING_THREAT | Request is likely a threat | Alarm & Block | The combination of violations in this request determined that the request is likely to be a threat. | For VR = 4 or 5 | +|VIOL_RATING_NEED_EXAMINATION | Request needs further examination | Disabled | The combination of violations could not determine whether the request is a threat or violations are false positives thus requiring more examination. | For VR = 3 | +|VIOL_REQUEST_LENGTH | Illegal request length | Alarm | The system checks that the request length does not exceed the acceptable length specified in the security policy per the requested file type. | In * file type entity. This check is disabled by default. | +|VIOL_REQUEST_MAX_LENGTH | Request length exceeds defined buffer size | Alarm & Block| The system checks that the request length is not larger than the maximum memory buffer size. Note that this protects NGINX App Protect WAF from consuming too much memory across all security policies which are active on the device. | Default is 10MB | |VIOL_RULE | Actionable override rule was triggered. | Disabled |A policy override rule with an action was triggered.| | |VIOL_THREAT_CAMPAIGN | Threat Campaign detected | Alarm & Block | The system examines the HTTP message for known threat campaigns by matching it against known attack patterns. | | |VIOL_URL | Illegal URL | Alarm | The system checks that the requested URL is configured as a valid URL, or not configured as an invalid URL, within the security policy. | | diff --git a/content/includes/nap-waf/config/common/time-based-sig-config.md b/content/includes/nap-waf/config/common/time-based-sig-config.md index 1c636970c..6c5427e39 100644 --- a/content/includes/nap-waf/config/common/time-based-sig-config.md +++ b/content/includes/nap-waf/config/common/time-based-sig-config.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1491 +nd-docs: DOCS-1491 --- A new property known as `stagingCertificationDatetime` is added to `signature-settings` section. All signatures that were created or modified in a signature update that is later than that time are in staging while all the rest are enforced and not in staging. diff --git a/content/includes/nap-waf/config/common/time-based-sig-enforce-mod-sig.md b/content/includes/nap-waf/config/common/time-based-sig-enforce-mod-sig.md index f7994084d..cfd8d0534 100644 --- a/content/includes/nap-waf/config/common/time-based-sig-enforce-mod-sig.md +++ b/content/includes/nap-waf/config/common/time-based-sig-enforce-mod-sig.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1495 +nd-docs: DOCS-1495 --- All signatures are considered to be in staging if their creation or modification time is later than the `stagingCertificationDatetime`. diff --git a/content/includes/nap-waf/config/common/time-based-sig-latest-cert-time.md b/content/includes/nap-waf/config/common/time-based-sig-latest-cert-time.md index 8e4841a36..01af06ac1 100644 --- a/content/includes/nap-waf/config/common/time-based-sig-latest-cert-time.md +++ b/content/includes/nap-waf/config/common/time-based-sig-latest-cert-time.md @@ -1,9 +1,9 @@ --- -docs: DOCS-1490 +nd-docs: DOCS-1490 --- The latest signatures certification time is the timestamp (in date-time ISO format) as the time the signatures in the policy are considered as “trusted” by the user and separates enforced signatures from signatures in staging. -When this value is not defined and the staging flag is enabled, it means that all the signatures in the policy are in staging. If the signature was added to the policy but was created and last modified before the certification date-time then it will not be in staging. +When this value is not defined and the staging flag is enabled, it means that all the signatures in the policy are in staging. If the signature was added to the policy but was created and last modified before the certification date-time then it will not be in staging. A signature is considered new if it was introduced by a recent signature update that was applied to the respective policy. Note that signatures that were added later to the policy (by adding a new signature set) are not considered new unless they were added in the recent signature update. These signatures will not be in staging. \ No newline at end of file diff --git a/content/includes/nap-waf/config/common/time-based-sig-log-report.md b/content/includes/nap-waf/config/common/time-based-sig-log-report.md index b340c819e..bd7711a9b 100644 --- a/content/includes/nap-waf/config/common/time-based-sig-log-report.md +++ b/content/includes/nap-waf/config/common/time-based-sig-log-report.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1494 +nd-docs: DOCS-1494 --- Time-based Signature will be logged and reported in the Security log without blocking the request as discussed in the above section. @@ -7,7 +7,7 @@ Time-based Signature will be logged and reported in the Security log without blo Security log will have the following new fields under the enforcementState: - The Violation Rating if there was no staging - `ratingIncludingViolationsInStaging` - The `stagingCertificationDatetime` from the policy -- The specific staging state of the signature +- The specific staging state of the signature - The `lastUpdateTime` of the signature - for the user to be able to determine why the signature was (or was not) in staging. ```json diff --git a/content/includes/nap-waf/config/common/time-based-sig-new-policy.md b/content/includes/nap-waf/config/common/time-based-sig-new-policy.md index b1ec698a5..23a19ee97 100644 --- a/content/includes/nap-waf/config/common/time-based-sig-new-policy.md +++ b/content/includes/nap-waf/config/common/time-based-sig-new-policy.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1493 +nd-docs: DOCS-1493 --- When a new policy is deployed, the user prefers to have all its signatures present in the staging environment. To facilitate this, the `performStaging` flag is configured to true at the signature settings level. \ No newline at end of file diff --git a/content/includes/nap-waf/config/common/time-based-sig-overview.md b/content/includes/nap-waf/config/common/time-based-sig-overview.md index 30970d3ba..e3b89949f 100644 --- a/content/includes/nap-waf/config/common/time-based-sig-overview.md +++ b/content/includes/nap-waf/config/common/time-based-sig-overview.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1498 +nd-docs: DOCS-1498 --- When new attack signatures are introduced in an App Protect policy, the policy is tested in a staging environment first before being promoted to production. However, in some instances where it is challenging to replicate real traffic accurately in the staging environment, the detection of genuine attacks becomes difficult. There can be false positives and expose the application to attacks. For such cases, we need to deploy the new signatures in staging environment in “staging” mode. diff --git a/content/includes/nap-waf/config/common/time-based-sig-update-sig.md b/content/includes/nap-waf/config/common/time-based-sig-update-sig.md index 557b2ec5a..191dfdc52 100644 --- a/content/includes/nap-waf/config/common/time-based-sig-update-sig.md +++ b/content/includes/nap-waf/config/common/time-based-sig-update-sig.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1492 +nd-docs: DOCS-1492 --- After applying a signature update (F5 or user-defined), and assuming the update creation time is later than the previous signature update applied to the policy (in other words, the signatures are upgraded, not downgraded), then all the signatures that were affected by the update (created or modified) are automatically put in staging. That's because their modification time is newer than the current `stagingCertificationDatetime`. Signatures that were not affected by the update will **not** be in staging. \ No newline at end of file diff --git a/content/includes/nap-waf/config/common/types-of-openapi-references.md b/content/includes/nap-waf/config/common/types-of-openapi-references.md index c04f0c2c2..8316e15fc 100644 --- a/content/includes/nap-waf/config/common/types-of-openapi-references.md +++ b/content/includes/nap-waf/config/common/types-of-openapi-references.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1636" +nd-docs: "DOCS-1636" --- There are different ways of referencing OpenAPI Specification files. The configuration is similar to [External References](#external-references). diff --git a/content/includes/nap-waf/config/common/types-of-references.md b/content/includes/nap-waf/config/common/types-of-references.md index 44c116c73..dfc5403c3 100644 --- a/content/includes/nap-waf/config/common/types-of-references.md +++ b/content/includes/nap-waf/config/common/types-of-references.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1601" +nd-docs: "DOCS-1601" --- There are different implementations based on the type of references that are being made. diff --git a/content/includes/nap-waf/config/common/unsupported-configuration.md b/content/includes/nap-waf/config/common/unsupported-configuration.md index edc358d1d..b378143df 100644 --- a/content/includes/nap-waf/config/common/unsupported-configuration.md +++ b/content/includes/nap-waf/config/common/unsupported-configuration.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1569" +nd-docs: "DOCS-1569" --- There are some NGINX features that don't work well with NGINX App Protect WAF. Modules that use subrequest do not work when calling or being called from a scope that contains `app_protect_enable on`. Other modules that expect to receive the Range header (Slice for example) are also unsupported in the same scope as `app_protect_enable on`. For example, the following configuration is unsupported, but in the examples above you can find examples of work arounds for these features. diff --git a/content/includes/nap-waf/config/common/user-defined-browser-control.md b/content/includes/nap-waf/config/common/user-defined-browser-control.md index 788ee9d8a..90ffce2c3 100644 --- a/content/includes/nap-waf/config/common/user-defined-browser-control.md +++ b/content/includes/nap-waf/config/common/user-defined-browser-control.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1543" +nd-docs: "DOCS-1543" --- The User-Defined Browser Control feature allows a user to define new custom browsers, and create a list of allowed or disallowed browsers (both user-defined and factory preset browsers) used by the client application. It mainly provides the opportunity: diff --git a/content/includes/nap-waf/config/common/user-defined-signature-sets.md b/content/includes/nap-waf/config/common/user-defined-signature-sets.md index 230bcb52f..f9c2f0a76 100644 --- a/content/includes/nap-waf/config/common/user-defined-signature-sets.md +++ b/content/includes/nap-waf/config/common/user-defined-signature-sets.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1596" +nd-docs: "DOCS-1596" --- NGINX App Protect WAF comes with pre-defined signatures and signature sets. Also, the user can create their own user-defined signatures (as we have seen above) as well as user-defined signature sets. User-defined Signature sets are suitable for organizing the sheer number of pre-defined and user-defined signatures into logical sets for better use in the policy. For pre-defined signatures, there are two ways of managing signature sets: manual addition of signatures using the signature unique IDs, or filtering signatures based on specific criteria, like request/response, risk level, accuracy level, attack type, systems, etc. For the user-defined signatures, signature IDs are automatically generated, and they cannot be used in manual addition of signatures. Therefore, only one way is possible: filtering based on tag, request/response, risk level, accuracy level, attack type, systems, etc. diff --git a/content/includes/nap-waf/config/common/user-defined-signatures.md b/content/includes/nap-waf/config/common/user-defined-signatures.md index 98c3dc4dc..f98ad16dd 100644 --- a/content/includes/nap-waf/config/common/user-defined-signatures.md +++ b/content/includes/nap-waf/config/common/user-defined-signatures.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1603" +nd-docs: "DOCS-1603" --- Another useful expansion to the customization capabilities is the ability to create user-defined signatures. This capability allows the user to define new signatures, configure how they behave in terms of enforcement, and categorize them in user-defined signature sets (using tags) for ease of management. diff --git a/content/includes/nap-waf/config/common/violations.md b/content/includes/nap-waf/config/common/violations.md index 38ddf9b57..7feaabc9d 100644 --- a/content/includes/nap-waf/config/common/violations.md +++ b/content/includes/nap-waf/config/common/violations.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1577" +nd-docs: "DOCS-1577" --- App Protect violations are rated by the App Protect algorithms to help distinguish between attacks and potential false positive alerts. A violation rating is a numerical rating that our algorithms give to requests based on the presence of violation(s). Each violation type and severity contributes to the calculation of the final rating. The final rating then defines the action taken for the specific request. As per the default policy, any violation rating of 1, 2 and 3 will not cause the request to be blocked and only a log will be generated with **alerted** status. If the violation rating is 4 or 5, the request is blocked: a blocking page is displayed and a log generated for the transaction with **blocked** status. Violation ratings are displayed in the logs by default. \ No newline at end of file diff --git a/content/includes/nap-waf/default-conf-hostname.md b/content/includes/nap-waf/default-conf-hostname.md index 406d6b92e..9dc5316fb 100644 --- a/content/includes/nap-waf/default-conf-hostname.md +++ b/content/includes/nap-waf/default-conf-hostname.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1514" +nd-docs: "DOCS-1514" --- ```nginx diff --git a/content/includes/nap-waf/default-conf-localhost.md b/content/includes/nap-waf/default-conf-localhost.md index 24d2fb837..070afb43a 100644 --- a/content/includes/nap-waf/default-conf-localhost.md +++ b/content/includes/nap-waf/default-conf-localhost.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1515" +nd-docs: "DOCS-1515" --- ```nginx diff --git a/content/includes/nap-waf/download-certificates.md b/content/includes/nap-waf/download-certificates.md index 16dd460a0..f4d83ff12 100644 --- a/content/includes/nap-waf/download-certificates.md +++ b/content/includes/nap-waf/download-certificates.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1517" +nd-docs: "DOCS-1517" --- Log in to [My F5](https://my.f5.com) and download the following two files from your active NGINX App Protect WAF subscription: diff --git a/content/includes/nap-waf/how-to/bidirectional-configuration.md b/content/includes/nap-waf/how-to/bidirectional-configuration.md index f9db4a918..8ef9c6dd6 100644 --- a/content/includes/nap-waf/how-to/bidirectional-configuration.md +++ b/content/includes/nap-waf/how-to/bidirectional-configuration.md @@ -1,5 +1,5 @@ --- -docs: DOCS-000 +nd-docs: DOCS-000 --- The only configuration related to streaming is the IDL file or more specifically the `rpc` declaration. The keyword `stream` indicates that the message on the respective side is streaming.

For example: diff --git a/content/includes/nap-waf/nginx-conf-hostname-docker.md b/content/includes/nap-waf/nginx-conf-hostname-docker.md index f4e4dea4b..301738d44 100644 --- a/content/includes/nap-waf/nginx-conf-hostname-docker.md +++ b/content/includes/nap-waf/nginx-conf-hostname-docker.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1516" +nd-docs: "DOCS-1516" --- ```nginx diff --git a/content/includes/nap-waf/nginx-conf-localhost.md b/content/includes/nap-waf/nginx-conf-localhost.md index a87a5b16a..018bcba33 100644 --- a/content/includes/nap-waf/nginx-conf-localhost.md +++ b/content/includes/nap-waf/nginx-conf-localhost.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1518" +nd-docs: "DOCS-1518" --- ```nginx diff --git a/content/includes/nap-waf/setup-docker-registry.md b/content/includes/nap-waf/setup-docker-registry.md index fc2896154..9ace0cb63 100644 --- a/content/includes/nap-waf/setup-docker-registry.md +++ b/content/includes/nap-waf/setup-docker-registry.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1508" +nd-docs: "DOCS-1508" --- Configure Docker to interact with the F5 Container Registry at `private-registry.nginx.com`: diff --git a/content/includes/nap-waf/upgrade-recompile-warning.md b/content/includes/nap-waf/upgrade-recompile-warning.md index aeb993e2a..970b58e72 100644 --- a/content/includes/nap-waf/upgrade-recompile-warning.md +++ b/content/includes/nap-waf/upgrade-recompile-warning.md @@ -1,10 +1,10 @@ --- -docs: DOCS-000 +nd-docs: DOCS-000 --- {{< warning >}} -When upgrading, you must recompile all policy and log bundles using the latest WAF compiler. +When upgrading, you must recompile all policy and log bundles using the latest WAF compiler. Older bundles will be detected and disallowed. diff --git a/content/includes/ngf/installation/delay-pod-termination/delay-pod-termination-overview.md b/content/includes/ngf/installation/delay-pod-termination/delay-pod-termination-overview.md index b22a14342..5979df586 100644 --- a/content/includes/ngf/installation/delay-pod-termination/delay-pod-termination-overview.md +++ b/content/includes/ngf/installation/delay-pod-termination/delay-pod-termination-overview.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1441" +nd-docs: "DOCS-1441" --- To avoid client service interruptions when upgrading NGINX Gateway Fabric, you can configure [`PreStop` hooks](https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/) to delay terminating the NGINX Gateway Fabric pod, allowing the pod to complete certain actions before shutting down. This ensures a smooth upgrade without any downtime, also known as a zero downtime upgrade. diff --git a/content/includes/ngf/installation/delay-pod-termination/termination-grace-period.md b/content/includes/ngf/installation/delay-pod-termination/termination-grace-period.md index 8b2b3f473..6f21d5702 100644 --- a/content/includes/ngf/installation/delay-pod-termination/termination-grace-period.md +++ b/content/includes/ngf/installation/delay-pod-termination/termination-grace-period.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1440" +nd-docs: "DOCS-1440" --- Set `terminationGracePeriodSeconds` to a value that is equal to or greater than the `sleep` duration specified in the `preStop` hook (default is `30`). This setting prevents Kubernetes from terminating the pod before before the `preStop` hook has completed running. diff --git a/content/includes/ngf/installation/expose-nginx-gateway-fabric.md b/content/includes/ngf/installation/expose-nginx-gateway-fabric.md index 9ae213ed8..7820399a0 100644 --- a/content/includes/ngf/installation/expose-nginx-gateway-fabric.md +++ b/content/includes/ngf/installation/expose-nginx-gateway-fabric.md @@ -1,7 +1,7 @@ --- title: "Expose NGINX Gateway Fabric" weight: 300 -docs: "DOCS-1427" +nd-docs: "DOCS-1427" --- There are two options for accessing NGINX Gateway Fabric depending on the type of LoadBalancer service you chose during installation: diff --git a/content/includes/ngf/installation/helm/pulling-the-chart.md b/content/includes/ngf/installation/helm/pulling-the-chart.md index b82b2f809..e42fb7f6a 100644 --- a/content/includes/ngf/installation/helm/pulling-the-chart.md +++ b/content/includes/ngf/installation/helm/pulling-the-chart.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1439" +nd-docs: "DOCS-1439" --- ```shell diff --git a/content/includes/ngf/installation/install-gateway-api-experimental-features.md b/content/includes/ngf/installation/install-gateway-api-experimental-features.md index aa95d1eb9..aec27817e 100644 --- a/content/includes/ngf/installation/install-gateway-api-experimental-features.md +++ b/content/includes/ngf/installation/install-gateway-api-experimental-features.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-000" +nd-docs: "DOCS-000" --- To use Gateway API experimental resources, the Gateway API resources from the experimental channel must be installed before deploying NGINX Gateway Fabric. Additionally, NGINX Gateway Fabric must have experimental features enabled. diff --git a/content/includes/ngf/installation/install-gateway-api-resources.md b/content/includes/ngf/installation/install-gateway-api-resources.md index 3932dad32..bab5a44bd 100644 --- a/content/includes/ngf/installation/install-gateway-api-resources.md +++ b/content/includes/ngf/installation/install-gateway-api-resources.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1438" +nd-docs: "DOCS-1438" --- {{< note >}} The [Gateway API resources](https://github.com/kubernetes-sigs/gateway-api) from the standard channel must be installed before deploying NGINX Gateway Fabric. If they are already installed in your cluster, please ensure they are the correct version as supported by the NGINX Gateway Fabric - [see the Technical Specifications](https://github.com/nginx/nginx-gateway-fabric/blob/v{{< version-ngf >}}/README.md#technical-specifications). {{}} diff --git a/content/includes/ngf/installation/jwt-password-note.md b/content/includes/ngf/installation/jwt-password-note.md index 4cfeec8b9..6cc40d962 100644 --- a/content/includes/ngf/installation/jwt-password-note.md +++ b/content/includes/ngf/installation/jwt-password-note.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-000" +nd-docs: "DOCS-000" --- {{< note >}} For security, follow these practices with JSON Web Tokens (JWTs), passwords, and shell history: diff --git a/content/includes/ngf/installation/nginx-plus/docker-registry-secret.md b/content/includes/ngf/installation/nginx-plus/docker-registry-secret.md index 0bfceec95..0ad007efa 100644 --- a/content/includes/ngf/installation/nginx-plus/docker-registry-secret.md +++ b/content/includes/ngf/installation/nginx-plus/docker-registry-secret.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-000" +nd-docs: "DOCS-000" --- {{< note >}} If you would rather pull the NGINX Plus image and push to a private registry, you can skip this specific step and instead follow [this step]({{< ref "/ngf/install/nginx-plus.md#pull-an-image-for-local-use" >}}). {{< /note >}} diff --git a/content/includes/ngf/installation/nginx-plus/download-jwt.md b/content/includes/ngf/installation/nginx-plus/download-jwt.md index d89c65a43..78ad1cbf8 100644 --- a/content/includes/ngf/installation/nginx-plus/download-jwt.md +++ b/content/includes/ngf/installation/nginx-plus/download-jwt.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-000" +nd-docs: "DOCS-000" --- 1. Log in to [MyF5](https://my.f5.com/manage/s/). diff --git a/content/includes/ngf/installation/nginx-plus/nginx-plus-secret.md b/content/includes/ngf/installation/nginx-plus/nginx-plus-secret.md index 1a5beb474..be8a0b9f4 100644 --- a/content/includes/ngf/installation/nginx-plus/nginx-plus-secret.md +++ b/content/includes/ngf/installation/nginx-plus/nginx-plus-secret.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-000" +nd-docs: "DOCS-000" --- Place the JWT in a file called `license.jwt`. Create a Kubernetes Secret using the contents of the JWT file. diff --git a/content/includes/ngf/installation/uninstall-gateway-api-resources.md b/content/includes/ngf/installation/uninstall-gateway-api-resources.md index d5631d1f5..92a857ff6 100644 --- a/content/includes/ngf/installation/uninstall-gateway-api-resources.md +++ b/content/includes/ngf/installation/uninstall-gateway-api-resources.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1436" +nd-docs: "DOCS-1436" --- {{< warning >}} This will remove all corresponding custom resources in your entire cluster, across all namespaces. Double-check to make sure you don't have any custom resources you need to keep, and confirm that there are no other Gateway API implementations active in your cluster. {{}} diff --git a/content/includes/ngf/installation/upgrade-api-resources.md b/content/includes/ngf/installation/upgrade-api-resources.md index c8ad3d706..adaed0b1a 100644 --- a/content/includes/ngf/installation/upgrade-api-resources.md +++ b/content/includes/ngf/installation/upgrade-api-resources.md @@ -1,10 +1,10 @@ --- -docs: DOCS-000 +nd-docs: DOCS-000 --- To upgrade your Gateway API resources, take the following steps: -- Use [Technical specifications]({{< ref "/ngf/reference/technical-specifications.md" >}}) to verify your Gateway API resources are compatible with your NGINX Gateway Fabric version. +- Use [Technical specifications]({{< ref "/ngf/reference/technical-specifications.md" >}}) to verify your Gateway API resources are compatible with your NGINX Gateway Fabric version. - Review the [release notes](https://github.com/kubernetes-sigs/gateway-api/releases) for any important upgrade-specific information. To upgrade the Gateway API resources, run the following command: diff --git a/content/includes/nginx-one/staged-config-overview.md b/content/includes/nginx-one/staged-config-overview.md index 9d5a6fe35..f47aec5d5 100644 --- a/content/includes/nginx-one/staged-config-overview.md +++ b/content/includes/nginx-one/staged-config-overview.md @@ -1,5 +1,5 @@ --- -docs: DOCS-000 +nd-docs: DOCS-000 files: - content/nginx-one/how-to/staged-configs/add-staged-config.md - content/nginx-one/how-to/staged-configs/edit-staged-config.md diff --git a/content/includes/nginx-plus/install/pin-to-version/pin-debian-ubuntu-R32.md b/content/includes/nginx-plus/install/pin-to-version/pin-debian-ubuntu-R32.md index 126379d99..4f082614c 100644 --- a/content/includes/nginx-plus/install/pin-to-version/pin-debian-ubuntu-R32.md +++ b/content/includes/nginx-plus/install/pin-to-version/pin-debian-ubuntu-R32.md @@ -1,5 +1,5 @@ --- -docs: DOCS-000 +nd-docs: DOCS-000 --- To pin NGINX Plus to a specific version (for example, R33): diff --git a/content/includes/nginx-plus/install/pin-to-version/pin-rhel7-R32.md b/content/includes/nginx-plus/install/pin-to-version/pin-rhel7-R32.md index 763f8f7d3..6e38a6922 100644 --- a/content/includes/nginx-plus/install/pin-to-version/pin-rhel7-R32.md +++ b/content/includes/nginx-plus/install/pin-to-version/pin-rhel7-R32.md @@ -1,11 +1,11 @@ --- -docs: DOCS-000 +nd-docs: DOCS-000 --- To pin NGINX Plus to a specific version (for example, R32): 1. Edit the `/etc/yum.repos.d/nginx-plus-7.4.repo` file. -1. Update the repository base URL to the desired version: +1. Update the repository base URL to the desired version: ```shell baseurl=https://pkgs.nginx.com/plus/R32/centos/7/$basearch/ diff --git a/content/includes/nginx-plus/install/pin-to-version/pin-rhel8-R32.md b/content/includes/nginx-plus/install/pin-to-version/pin-rhel8-R32.md index 369a9ebb9..d970d82c2 100644 --- a/content/includes/nginx-plus/install/pin-to-version/pin-rhel8-R32.md +++ b/content/includes/nginx-plus/install/pin-to-version/pin-rhel8-R32.md @@ -1,11 +1,11 @@ --- -docs: DOCS-000 +nd-docs: DOCS-000 --- To pin NGINX Plus to a specific version (for example, R33): 1. Edit the `/etc/yum.repos.d/nginx-plus-8.repo` file. -1. Update the repository base URL to the desired version: +1. Update the repository base URL to the desired version: ```shell baseurl=https://pkgs.nginx.com/plus/R33/centos/8/$basearch/ diff --git a/content/includes/nginx-plus/install/pin-to-version/pin-rhel9-R32.md b/content/includes/nginx-plus/install/pin-to-version/pin-rhel9-R32.md index 6085a8c7d..80b5571db 100644 --- a/content/includes/nginx-plus/install/pin-to-version/pin-rhel9-R32.md +++ b/content/includes/nginx-plus/install/pin-to-version/pin-rhel9-R32.md @@ -1,11 +1,11 @@ --- -docs: DOCS-000 +nd-docs: DOCS-000 --- To pin NGINX Plus to a specific version (for example, R33): 1. Edit the `/etc/yum.repos.d/plus-9.repo` file. -1. Update the repository base URL to the desired version: +1. Update the repository base URL to the desired version: ```shell baseurl=https://pkgs.nginx.com/plus/R33/centos/9/$basearch/ diff --git a/content/includes/nginx-plus/usage-tracking/agentless-reporting.md b/content/includes/nginx-plus/usage-tracking/agentless-reporting.md index 0cbdce2f4..55af846c6 100644 --- a/content/includes/nginx-plus/usage-tracking/agentless-reporting.md +++ b/content/includes/nginx-plus/usage-tracking/agentless-reporting.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1408 +nd-docs: DOCS-1408 --- Since [Release 31]({{< ref "/nginx/releases.md#nginxplusrelease-31-r31" >}}), NGINX Plus provides a built-in support for reporting of your NGINX Plus instances to NGINX Instance Manager without the need of installing NGINX Agent or tuning HTTP Health checks. If you participate in the [F5 Flex Consumption Program](https://www.f5.com/products/get-f5/flex-consumption-program), you will no longer need to manually track your NGINX Plus instances. diff --git a/content/includes/nginx-plus/usage-tracking/get-list-k8s-deployments.md b/content/includes/nginx-plus/usage-tracking/get-list-k8s-deployments.md index 41caaa2d1..2f8a092b1 100644 --- a/content/includes/nginx-plus/usage-tracking/get-list-k8s-deployments.md +++ b/content/includes/nginx-plus/usage-tracking/get-list-k8s-deployments.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1352 +nd-docs: DOCS-1352 --- To report your NGINX Ingress Controller clusters to F5, follow these steps: diff --git a/content/includes/nginx-plus/usage-tracking/http-health-check.md b/content/includes/nginx-plus/usage-tracking/http-health-check.md index 0a0e0a90d..7cf3e8cd6 100644 --- a/content/includes/nginx-plus/usage-tracking/http-health-check.md +++ b/content/includes/nginx-plus/usage-tracking/http-health-check.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1351 +nd-docs: DOCS-1351 --- You can track NGINX Plus instances using an [HTTP Health Check]({{< ref "nginx/admin-guide/load-balancer/http-health-check" >}}) without installing NGINX Agent. This involves updating the NGINX Plus configuration file. Follow these steps: diff --git a/content/includes/nginx-plus/usage-tracking/install-nginx-agent.md b/content/includes/nginx-plus/usage-tracking/install-nginx-agent.md index 9779c6c38..855a4b90d 100644 --- a/content/includes/nginx-plus/usage-tracking/install-nginx-agent.md +++ b/content/includes/nginx-plus/usage-tracking/install-nginx-agent.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1354 +nd-docs: DOCS-1354 --- When you install NGINX Agent on an NGINX Plus instance, it will establish a connection with Instance Manager and begin transmitting usage data. diff --git a/content/includes/nginx-plus/usage-tracking/install-nim.md b/content/includes/nginx-plus/usage-tracking/install-nim.md index b5d048227..cdbb7f7b4 100644 --- a/content/includes/nginx-plus/usage-tracking/install-nim.md +++ b/content/includes/nginx-plus/usage-tracking/install-nim.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1355 +nd-docs: DOCS-1355 --- {{}}A separate license for NGINX Instance Manager is not required to track your NGINX product usage.{{}} diff --git a/content/includes/nginx-plus/usage-tracking/overview.md b/content/includes/nginx-plus/usage-tracking/overview.md index 85af6fb49..d903d54a1 100644 --- a/content/includes/nginx-plus/usage-tracking/overview.md +++ b/content/includes/nginx-plus/usage-tracking/overview.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1349 +nd-docs: DOCS-1349 --- Start by installing NGINX Instance Manager on a dedicated host. Then, configure your NGINX Plus systems to report back to Instance Manager. Once connected, you can easily view and report on your NGINX Plus inventory using the NGINX Instance Manager REST API or web interface. You can send these reports to your F5 contact as needed. diff --git a/content/includes/nginx-plus/usage-tracking/view-nginx-plus-count.md b/content/includes/nginx-plus/usage-tracking/view-nginx-plus-count.md index 9ddc0a2ef..4b63bbdfd 100644 --- a/content/includes/nginx-plus/usage-tracking/view-nginx-plus-count.md +++ b/content/includes/nginx-plus/usage-tracking/view-nginx-plus-count.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1350 +nd-docs: DOCS-1350 --- Follow these steps to view and export the list of NGINX Plus instances that have successfully registered with Instance Manager: diff --git a/content/includes/nginxaas-azure/logging-analysis-azure-storage.md b/content/includes/nginxaas-azure/logging-analysis-azure-storage.md index 67bc3f358..54e2cc824 100644 --- a/content/includes/nginxaas-azure/logging-analysis-azure-storage.md +++ b/content/includes/nginxaas-azure/logging-analysis-azure-storage.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-000" +nd-docs: "DOCS-000" --- If the diagnostic setting destination details included a storage account, logs show up in the storage container "insights-logs-nginxlogs" with the following format: `resourceID=//y=/m=/d=
/h=/PT1H.json` diff --git a/content/includes/nginxaas-azure/logging-analysis-logs-analytics.md b/content/includes/nginxaas-azure/logging-analysis-logs-analytics.md index 8809a824d..418c8edfc 100644 --- a/content/includes/nginxaas-azure/logging-analysis-logs-analytics.md +++ b/content/includes/nginxaas-azure/logging-analysis-logs-analytics.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-000" +nd-docs: "DOCS-000" --- If the diagnostic setting destination details included a Logs Analytics workspace, logs show up in the table "NGXOperationLogs" with the following non-standard attributes: diff --git a/content/includes/nginxaas-azure/logging-config-access-logs.md b/content/includes/nginxaas-azure/logging-config-access-logs.md index 01fba8215..63e7c12ec 100644 --- a/content/includes/nginxaas-azure/logging-config-access-logs.md +++ b/content/includes/nginxaas-azure/logging-config-access-logs.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-000" +nd-docs: "DOCS-000" --- NGINX access logs are disabled by default. You can enable access logs by adding **access_log** directives to your NGINX configuration to specify the location of the logs and formats. The log path should always be configured to be inside **/var/log/nginx**. diff --git a/content/includes/nginxaas-azure/logging-config-error-logs.md b/content/includes/nginxaas-azure/logging-config-error-logs.md index c27d8ace8..149a960ac 100644 --- a/content/includes/nginxaas-azure/logging-config-error-logs.md +++ b/content/includes/nginxaas-azure/logging-config-error-logs.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-000" +nd-docs: "DOCS-000" --- By default, NGINXaaS for Azure puts the error log at **/var/log/nginx/error.log**. It includes messages with severity **error** and above. diff --git a/content/includes/nginxaas-azure/logging-limitations.md b/content/includes/nginxaas-azure/logging-limitations.md index a6b636d66..8e4f9722a 100644 --- a/content/includes/nginxaas-azure/logging-limitations.md +++ b/content/includes/nginxaas-azure/logging-limitations.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-000" +nd-docs: "DOCS-000" --- 1. File-based logs must be configured to use the path **/var/log/nginx**. diff --git a/content/includes/nginxaas-azure/ncu-description.md b/content/includes/nginxaas-azure/ncu-description.md index 138b593e6..17c015e54 100644 --- a/content/includes/nginxaas-azure/ncu-description.md +++ b/content/includes/nginxaas-azure/ncu-description.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1476" +nd-docs: "DOCS-1476" --- An NGINX Capacity Unit (NCU) quantifies the capacity of an NGINX instance based on the underlying compute resources. This abstraction allows you to specify the desired capacity in NCUs without having to consider the regional hardware differences. diff --git a/content/includes/nginxaas-azure/ssl-tls-prerequisites.md b/content/includes/nginxaas-azure/ssl-tls-prerequisites.md index 1d95d498d..def7a9e97 100644 --- a/content/includes/nginxaas-azure/ssl-tls-prerequisites.md +++ b/content/includes/nginxaas-azure/ssl-tls-prerequisites.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-000" +nd-docs: "DOCS-000" --- NGINXaaS natively integrates with [Azure Key Vault (AKV)](https://azure.microsoft.com/en-us/products/key-vault), so you can bring your own certificates and manage them in a centralized location. You will need: diff --git a/content/includes/nginxaas-azure/terraform-prerequisites.md b/content/includes/nginxaas-azure/terraform-prerequisites.md index a0267168b..aafb6908f 100644 --- a/content/includes/nginxaas-azure/terraform-prerequisites.md +++ b/content/includes/nginxaas-azure/terraform-prerequisites.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-000" +nd-docs: "DOCS-000" --- - Confirm that you meet the [NGINXaaS Prerequisites]({{< ref "/nginxaas-azure/getting-started/prerequisites.md" >}}). diff --git a/content/includes/nginxaas-azure/terraform-resources.md b/content/includes/nginxaas-azure/terraform-resources.md index f45c36671..0a830ca19 100644 --- a/content/includes/nginxaas-azure/terraform-resources.md +++ b/content/includes/nginxaas-azure/terraform-resources.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-000" +nd-docs: "DOCS-000" --- - [NGINXaaS Managed Identity Documentation]({{< ref "/nginxaas-azure/getting-started/managed-identity-portal.md" >}}) diff --git a/content/includes/nic/configuration/access-control.md b/content/includes/nic/configuration/access-control.md index fade2941c..769bfbabf 100644 --- a/content/includes/nic/configuration/access-control.md +++ b/content/includes/nic/configuration/access-control.md @@ -2,7 +2,7 @@ title: Deploy a Policy for access control weight: 900 toc: true -docs: DOCS-000 +nd-docs: DOCS-000 --- This topic describes how to use F5 NGINX Ingress Controller to apply and update a Policy for access control. It demonstrates it using an example application and a [VirtualServer custom resource]({{< ref "/configuration/virtualserver-and-virtualserverroute-resources.md" >}}). diff --git a/content/includes/nic/configuration/configuration-examples.md b/content/includes/nic/configuration/configuration-examples.md index 0a0e6e3bb..c49c0790e 100644 --- a/content/includes/nic/configuration/configuration-examples.md +++ b/content/includes/nic/configuration/configuration-examples.md @@ -1,5 +1,5 @@ --- -docs: DOCS-584 +nd-docs: DOCS-584 doctypes: - '' title: Configuration examples diff --git a/content/includes/nic/configuration/global-configuration/command-line-arguments.md b/content/includes/nic/configuration/global-configuration/command-line-arguments.md index 230345052..552bba1be 100644 --- a/content/includes/nic/configuration/global-configuration/command-line-arguments.md +++ b/content/includes/nic/configuration/global-configuration/command-line-arguments.md @@ -1,5 +1,5 @@ --- -docs: DOCS-585 +nd-docs: DOCS-585 doctypes: - '' title: Command-line arguments diff --git a/content/includes/nic/configuration/global-configuration/configmap-resource.md b/content/includes/nic/configuration/global-configuration/configmap-resource.md index afa0bcf17..28296e291 100644 --- a/content/includes/nic/configuration/global-configuration/configmap-resource.md +++ b/content/includes/nic/configuration/global-configuration/configmap-resource.md @@ -4,7 +4,7 @@ weight: 300 toc: true type: how-to product: NIC -docs: DOCS-586 +nd-docs: DOCS-586 --- When using F5 NGINX Ingress Controller, you can customize or fine tune NGINX behavior using ConfigMap resources. Examples include setting the number of worker processes or customizing the access log format. @@ -184,12 +184,12 @@ For more information, view the [VirtualServer and VirtualServerRoute resources]( Zone Sync enables the [ngx_stream_zone_sync_module](https://nginx.org/en/docs/stream/ngx_stream_zone_sync_module.html) in NGINX Ingress Controller when NGINX Plus is used. Multiple replicas are required to effectively utililise this functionality. More information is available in the [How NGINX Plus Performs Zone Synchronization](https://docs.nginx.com/nginx/admin-guide/high-availability/zone_sync_details/) topic. -Zone synchronization with TLS for NGINX Ingress Controller is not yet available with ConfigMap. If you would like to enable Zone Sync with TLS, please remove `zone-sync` from ConfigMap and add Zone Sync parameters via [`stream-snippets`]({{< ref "/configuration/ingress-resources/advanced-configuration-with-snippets.md" >}}) similar to [this example](https://github.com/nginx/kubernetes-ingress/blob/v4.0.1/examples/custom-resources/oidc/nginx-config.yaml) and adding the [zone_sync_ssl directive](https://nginx.org/en/docs/stream/ngx_stream_zone_sync_module.html#zone_sync_ssl) along with any other TLS parameters to the `stream-snippets`. +Zone synchronization with TLS for NGINX Ingress Controller is not yet available with ConfigMap. If you would like to enable Zone Sync with TLS, please remove `zone-sync` from ConfigMap and add Zone Sync parameters via [`stream-snippets`]({{< ref "/configuration/ingress-resources/advanced-configuration-with-snippets.md" >}}) similar to [this example](https://github.com/nginx/kubernetes-ingress/blob/v4.0.1/examples/custom-resources/oidc/nginx-config.yaml) and adding the [zone_sync_ssl directive](https://nginx.org/en/docs/stream/ngx_stream_zone_sync_module.html#zone_sync_ssl) along with any other TLS parameters to the `stream-snippets`. You will also need to manually add the headless service, such as in [this example](https://github.com/nginx/kubernetes-ingress/blob/v4.0.1/examples/custom-resources/oidc/nginx-ingress-headless.yaml). -{{< caution >}} -If you previously installed OIDC or used the `zone_sync` directive with `stream-snippets` in [v4.0.1](https://github.com/nginx/kubernetes-ingress/tree/v4.0.1) or earlier, and you plan to enable the `zone-sync` ConfigMap key, the `zone_sync` directive should be removed from `stream-snippets`. +{{< caution >}} +If you previously installed OIDC or used the `zone_sync` directive with `stream-snippets` in [v4.0.1](https://github.com/nginx/kubernetes-ingress/tree/v4.0.1) or earlier, and you plan to enable the `zone-sync` ConfigMap key, the `zone_sync` directive should be removed from `stream-snippets`. If you encounter the error `error [emerg] 13#13: "zone_sync" directive is duplicate in /etc/nginx/nginx.conf:164` it is likely due to `zone_sync` being enabled in both `stream-snippets` and the ConfigMap. Once upgraded, remove the [old headless service](https://github.com/nginx/kubernetes-ingress/blob/v4.0.1/examples/custom-resources/oidc/nginx-ingress-headless.yaml) deployed for OIDC. {{< /caution >}} diff --git a/content/includes/nic/configuration/global-configuration/custom-templates.md b/content/includes/nic/configuration/global-configuration/custom-templates.md index 589ce5951..6bb99f87f 100644 --- a/content/includes/nic/configuration/global-configuration/custom-templates.md +++ b/content/includes/nic/configuration/global-configuration/custom-templates.md @@ -1,5 +1,5 @@ --- -docs: DOCS-587 +nd-docs: DOCS-587 doctypes: - '' title: Custom templates diff --git a/content/includes/nic/configuration/global-configuration/globalconfiguration-resource.md b/content/includes/nic/configuration/global-configuration/globalconfiguration-resource.md index 605ab301f..b5f88b689 100644 --- a/content/includes/nic/configuration/global-configuration/globalconfiguration-resource.md +++ b/content/includes/nic/configuration/global-configuration/globalconfiguration-resource.md @@ -1,5 +1,5 @@ --- -docs: DOCS-588 +nd-docs: DOCS-588 doctypes: - '' title: GlobalConfiguration resource diff --git a/content/includes/nic/configuration/global-configuration/mgmt-configmap-resource.md b/content/includes/nic/configuration/global-configuration/mgmt-configmap-resource.md index e1d9a120c..e291de510 100644 --- a/content/includes/nic/configuration/global-configuration/mgmt-configmap-resource.md +++ b/content/includes/nic/configuration/global-configuration/mgmt-configmap-resource.md @@ -1,5 +1,5 @@ --- -docs: DOCS-586 +nd-docs: DOCS-586 doctypes: - '' title: Management ConfigMap resource @@ -7,7 +7,7 @@ toc: true weight: 300 --- -When using F5 NGINX Ingress Controller with NGINX Plus, it is required to pass a [command line argument]({{< ref "/nic/configuration/global-configuration/command-line-arguments" >}}) to NGINX Ingress Controller, `--mgmt-configmap=` which specifies the ConfigMap to use. The minimal required ConfigMap must have a `license-token-secret-name` key. Helm users will not need to create this map or pass the argument, it will be created with a Helm install. +When using F5 NGINX Ingress Controller with NGINX Plus, it is required to pass a [command line argument]({{< ref "/nic/configuration/global-configuration/command-line-arguments" >}}) to NGINX Ingress Controller, `--mgmt-configmap=` which specifies the ConfigMap to use. The minimal required ConfigMap must have a `license-token-secret-name` key. Helm users will not need to create this map or pass the argument, it will be created with a Helm install. --- diff --git a/content/includes/nic/configuration/global-configuration/reporting-resources-status.md b/content/includes/nic/configuration/global-configuration/reporting-resources-status.md index 8e36733eb..f2e72fb03 100644 --- a/content/includes/nic/configuration/global-configuration/reporting-resources-status.md +++ b/content/includes/nic/configuration/global-configuration/reporting-resources-status.md @@ -1,5 +1,5 @@ --- -docs: DOCS-589 +nd-docs: DOCS-589 doctypes: - '' title: Reporting resource status diff --git a/content/includes/nic/configuration/host-and-listener-collisions.md b/content/includes/nic/configuration/host-and-listener-collisions.md index 502ef830c..3336bb21e 100644 --- a/content/includes/nic/configuration/host-and-listener-collisions.md +++ b/content/includes/nic/configuration/host-and-listener-collisions.md @@ -2,7 +2,7 @@ title: Host and Listener collisions toc: true weight: 800 -docs: DOCS-590 +nd-docs: DOCS-590 --- This document explains how F5 NGINX Ingress Controller handles host and listener collisions between resources. diff --git a/content/includes/nic/configuration/ingress-resources/advanced-configuration-with-annotations.md b/content/includes/nic/configuration/ingress-resources/advanced-configuration-with-annotations.md index ecc12435f..952b8ebb1 100644 --- a/content/includes/nic/configuration/ingress-resources/advanced-configuration-with-annotations.md +++ b/content/includes/nic/configuration/ingress-resources/advanced-configuration-with-annotations.md @@ -1,5 +1,5 @@ --- -docs: DOCS-591 +nd-docs: DOCS-591 doctypes: - '' title: Advanced configuration with Annotations diff --git a/content/includes/nic/configuration/ingress-resources/advanced-configuration-with-snippets.md b/content/includes/nic/configuration/ingress-resources/advanced-configuration-with-snippets.md index 642d041ae..f31e7057b 100644 --- a/content/includes/nic/configuration/ingress-resources/advanced-configuration-with-snippets.md +++ b/content/includes/nic/configuration/ingress-resources/advanced-configuration-with-snippets.md @@ -1,5 +1,5 @@ --- -docs: DOCS-592 +nd-docs: DOCS-592 doctypes: - '' title: Advanced configuration with Snippets @@ -7,9 +7,9 @@ toc: true weight: 400 --- -Snippets allow you to insert raw NGINX config into different contexts of the NGINX configurations that F5 NGINX Ingress Controller generates. +Snippets allow you to insert raw NGINX config into different contexts of the NGINX configurations that F5 NGINX Ingress Controller generates. -Snippets are intended for advanced NGINX users who need more control over the generated NGINX configuration, and can be used in cases where Annotations and ConfigMap entries would not apply. +Snippets are intended for advanced NGINX users who need more control over the generated NGINX configuration, and can be used in cases where Annotations and ConfigMap entries would not apply. @@ -27,7 +27,7 @@ Snippets have the following disadvantages: - *Decreased robustness*. An incorrect snippet can invalidate NGINX configuration, causing reload failures. Until the snippet is fixed, it will prevent any new configuration updates, including updates for the other Ingress resources. - *Security implications*. Snippets give access to NGINX configuration primitives, which are not validated by NGINX Ingress Controller. For example, a snippet can configure NGINX to serve the TLS certificates and keys used for TLS termination for Ingress resources. -{{< note >}} If the NGINX configuration includes an invalid snippet, NGINX will continue to operate with the last valid configuration. {{< /note >}} +{{< note >}} If the NGINX configuration includes an invalid snippet, NGINX will continue to operate with the last valid configuration. {{< /note >}} ## Using snippets @@ -68,7 +68,7 @@ spec: These snippets generate the following NGINX configuration: -{{< note >}} The example is shortened for conciseness. {{< /note >}} +{{< note >}} The example is shortened for conciseness. {{< /note >}} ```nginx server { diff --git a/content/includes/nic/configuration/ingress-resources/basic-configuration.md b/content/includes/nic/configuration/ingress-resources/basic-configuration.md index bd2c10d26..6884e42b5 100644 --- a/content/includes/nic/configuration/ingress-resources/basic-configuration.md +++ b/content/includes/nic/configuration/ingress-resources/basic-configuration.md @@ -4,7 +4,7 @@ weight: 100 toc: true type: reference product: NIC -docs: DOCS-593 +nd-docs: DOCS-593 --- This document shows a basic Ingress resource definition for F5 NGINX Ingress Controller. It load balances requests for two services as part of a single application. @@ -93,9 +93,9 @@ NGINX Ingress Controller imposes the following restrictions on Ingress resources ## Advanced configuration -NGINX Ingress Controller generates NGINX configuration by executing a template file that contains the configuration options. +NGINX Ingress Controller generates NGINX configuration by executing a template file that contains the configuration options. -These options are set with the Ingress resource and NGINX Ingress Controller's ConfigMap. +These options are set with the Ingress resource and NGINX Ingress Controller's ConfigMap. The Ingress resource only allows you to use basic NGINX features: host and path-based routing and TLS termination. diff --git a/content/includes/nic/configuration/ingress-resources/cross-namespace-configuration.md b/content/includes/nic/configuration/ingress-resources/cross-namespace-configuration.md index 3e92b6403..e877c906a 100644 --- a/content/includes/nic/configuration/ingress-resources/cross-namespace-configuration.md +++ b/content/includes/nic/configuration/ingress-resources/cross-namespace-configuration.md @@ -1,5 +1,5 @@ --- -docs: DOCS-594 +nd-docs: DOCS-594 doctypes: - '' title: Cross-namespace configuration diff --git a/content/includes/nic/configuration/ingress-resources/custom-annotations.md b/content/includes/nic/configuration/ingress-resources/custom-annotations.md index 8bbd136b0..9cd6621de 100644 --- a/content/includes/nic/configuration/ingress-resources/custom-annotations.md +++ b/content/includes/nic/configuration/ingress-resources/custom-annotations.md @@ -1,5 +1,5 @@ --- -docs: DOCS-595 +nd-docs: DOCS-595 doctypes: - '' title: Custom annotations diff --git a/content/includes/nic/configuration/policy-resource.md b/content/includes/nic/configuration/policy-resource.md index 6ea2c8121..5de80b1c1 100644 --- a/content/includes/nic/configuration/policy-resource.md +++ b/content/includes/nic/configuration/policy-resource.md @@ -4,7 +4,7 @@ weight: 500 toc: true type: how-to product: NIC -docs: DOCS-596 +nd-docs: DOCS-596 --- The Policy resource allows you to configure features like access control and rate-limiting, which you can add to your [VirtualServer and VirtualServerRoute resources](/nginx-ingress-controller/configuration/virtualserver-and-virtualserverroute-resources/). @@ -201,7 +201,7 @@ The rate limit policy will only apply to requests that contain a JWT with the sp { "user_details": { "level": "premium" - }, + }, "sub": "client1" } ``` diff --git a/content/includes/nic/configuration/security.md b/content/includes/nic/configuration/security.md index ae2f9648f..7267eaa01 100644 --- a/content/includes/nic/configuration/security.md +++ b/content/includes/nic/configuration/security.md @@ -1,5 +1,5 @@ --- -docs: DOCS-597 +nd-docs: DOCS-597 doctypes: - '' title: Security recommendations diff --git a/content/includes/nic/configuration/transportserver-resource.md b/content/includes/nic/configuration/transportserver-resource.md index b725ea2e6..ea2f3c688 100644 --- a/content/includes/nic/configuration/transportserver-resource.md +++ b/content/includes/nic/configuration/transportserver-resource.md @@ -2,7 +2,7 @@ title: TransportServer resources toc: true weight: 600 -docs: DOCS-598 +nd-docs: DOCS-598 --- This document is reference material for the TransportServer resource used by F5 NGINX Ingress Controller. diff --git a/content/includes/nic/configuration/virtualserver-and-virtualserverroute-resources.md b/content/includes/nic/configuration/virtualserver-and-virtualserverroute-resources.md index 1acd05b02..a129629ed 100644 --- a/content/includes/nic/configuration/virtualserver-and-virtualserverroute-resources.md +++ b/content/includes/nic/configuration/virtualserver-and-virtualserverroute-resources.md @@ -2,7 +2,7 @@ title: VirtualServer and VirtualServerRoute resources toc: true weight: 700 -docs: DOCS-599 +nd-docs: DOCS-599 --- This document is reference material for the VirtualServer and VirtualServerRoute resources used by F5 NGINX Ingress Controller. diff --git a/content/includes/nic/installation/create-common-resources.md b/content/includes/nic/installation/create-common-resources.md index 7cfe90e48..db3ef05ea 100644 --- a/content/includes/nic/installation/create-common-resources.md +++ b/content/includes/nic/installation/create-common-resources.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1464 +nd-docs: DOCS-1464 --- In this section, you'll create resources that most NGINX Ingress Controller installations require: diff --git a/content/includes/nic/installation/create-custom-resources.md b/content/includes/nic/installation/create-custom-resources.md index d7ad9ec27..dbdbf6065 100644 --- a/content/includes/nic/installation/create-custom-resources.md +++ b/content/includes/nic/installation/create-custom-resources.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1463 +nd-docs: DOCS-1463 --- To make sure your NGINX Ingress Controller pods reach the `Ready` state, you'll need to create custom resource definitions (CRDs) for various components. diff --git a/content/includes/nic/installation/deploy-controller.md b/content/includes/nic/installation/deploy-controller.md index 5723c73ae..7dcec97bd 100644 --- a/content/includes/nic/installation/deploy-controller.md +++ b/content/includes/nic/installation/deploy-controller.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1462 +nd-docs: DOCS-1462 --- You have two options for deploying NGINX Ingress Controller: diff --git a/content/includes/nic/installation/download-jwt.md b/content/includes/nic/installation/download-jwt.md index d89c65a43..78ad1cbf8 100644 --- a/content/includes/nic/installation/download-jwt.md +++ b/content/includes/nic/installation/download-jwt.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-000" +nd-docs: "DOCS-000" --- 1. Log in to [MyF5](https://my.f5.com/manage/s/). diff --git a/content/includes/nic/installation/jwt-password-note.md b/content/includes/nic/installation/jwt-password-note.md index 147c67af3..040a3e142 100644 --- a/content/includes/nic/installation/jwt-password-note.md +++ b/content/includes/nic/installation/jwt-password-note.md @@ -1,5 +1,5 @@ --- -docs: +nd-docs: --- {{< note >}} For security, follow these practices with JSON Web Tokens (JWTs), passwords, and shell history: diff --git a/content/includes/nic/installation/manifests/daemonset.md b/content/includes/nic/installation/manifests/daemonset.md index c19376eb2..ff9cb072b 100644 --- a/content/includes/nic/installation/manifests/daemonset.md +++ b/content/includes/nic/installation/manifests/daemonset.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1465 +nd-docs: DOCS-1465 --- For additional context on managing containers using Kubernetes DaemonSets, refer to the official Kubernetes [DaemonSets](https://kubernetes.io/docs/concepts/workloads/controllers/daemonset/) documentation. diff --git a/content/includes/nic/installation/manifests/deployment.md b/content/includes/nic/installation/manifests/deployment.md index 3786a2256..1c0f4932f 100644 --- a/content/includes/nic/installation/manifests/deployment.md +++ b/content/includes/nic/installation/manifests/deployment.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1467 +nd-docs: DOCS-1467 --- For additional context on managing containers using Kubernetes Deployments, refer to the official Kubernetes [Deployments](https://kubernetes.io/docs/concepts/workloads/controllers/deployment/) documentation. diff --git a/content/includes/nic/installation/manifests/verify-pods-are-running.md b/content/includes/nic/installation/manifests/verify-pods-are-running.md index 9f11fa7b0..79976859f 100644 --- a/content/includes/nic/installation/manifests/verify-pods-are-running.md +++ b/content/includes/nic/installation/manifests/verify-pods-are-running.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1466 +nd-docs: DOCS-1466 --- diff --git a/content/includes/nic/rbac/set-up-rbac.md b/content/includes/nic/rbac/set-up-rbac.md index a8bd5a176..eaf9a6c6f 100644 --- a/content/includes/nic/rbac/set-up-rbac.md +++ b/content/includes/nic/rbac/set-up-rbac.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1468 +nd-docs: DOCS-1468 --- {{}}To complete these steps you need admin access to your cluster. Refer to to your Kubernetes platform's documentation to set up admin access. For Google Kubernetes Engine (GKE), you can refer to their [Role-Based Access Control guide](https://cloud.google.com/kubernetes-engine/docs/how-to/role-based-access-control).{{}} diff --git a/content/includes/nim/admin-guide/auth/basic-auth-api-requests.md b/content/includes/nim/admin-guide/auth/basic-auth-api-requests.md index 6e94ced35..fd850214f 100644 --- a/content/includes/nim/admin-guide/auth/basic-auth-api-requests.md +++ b/content/includes/nim/admin-guide/auth/basic-auth-api-requests.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1295 +nd-docs: DOCS-1295 --- To use basic authentication for API requests, include your base64-encoded credentials as a "Basic" token in the "Authorization" header. To create the base64-encoded credentials, run the following command: diff --git a/content/includes/nim/admin-guide/license/add-license-webui.md b/content/includes/nim/admin-guide/license/add-license-webui.md index 805615b34..709d58e38 100644 --- a/content/includes/nim/admin-guide/license/add-license-webui.md +++ b/content/includes/nim/admin-guide/license/add-license-webui.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1660" +nd-docs: "DOCS-1660" --- 1. Go to the FQDN of your NGINX Instance Manager host and log in. diff --git a/content/includes/nim/clickhouse/clickhouse-defaults.md b/content/includes/nim/clickhouse/clickhouse-defaults.md index 1848b75f7..0fcb4cfd8 100644 --- a/content/includes/nim/clickhouse/clickhouse-defaults.md +++ b/content/includes/nim/clickhouse/clickhouse-defaults.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1238 +nd-docs: DOCS-1238 files: - content/nim/system-configuration/configure-clickhouse.md - content/nim/deploy/vm-bare-metal/install-nim-manual.md diff --git a/content/includes/nim/decoupling/note-legacy-nms-references.md b/content/includes/nim/decoupling/note-legacy-nms-references.md index 2f2263f25..89c87b10e 100644 --- a/content/includes/nim/decoupling/note-legacy-nms-references.md +++ b/content/includes/nim/decoupling/note-legacy-nms-references.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1661" +nd-docs: "DOCS-1661" --- {{}}Some commands, file paths, and configuration references still use `nms` due to the ongoing transition from NGINX Management Suite (NMS) to NGINX Instance Manager (NIM). These will be updated in future releases.{{}} \ No newline at end of file diff --git a/content/includes/nim/disconnected/license-usage-offline-script.md b/content/includes/nim/disconnected/license-usage-offline-script.md index 6f3578cea..72a5e49e0 100644 --- a/content/includes/nim/disconnected/license-usage-offline-script.md +++ b/content/includes/nim/disconnected/license-usage-offline-script.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1662" +nd-docs: "DOCS-1662" ---
@@ -26,13 +26,13 @@ if [ "$1" = "-h" ] || [ "$1" = "--help" ]; then echo echo "For Licensing in Disconnected Mode:" echo "$0 -j my-jwt.jwt -i -u admin -p -o report.zip -s initial" - echo + echo echo "For Usage Reporting in Disconnected Mode:" echo "$0 -j my-jwt.jwt -i -u admin -p -o report.zip -s telemetry" - echo - echo "Note: Since NGINX Instance Manager comes with self-signed certificates by default, the --insecure flag is set in this script to run specific Curl commands." + echo + echo "Note: Since NGINX Instance Manager comes with self-signed certificates by default, the --insecure flag is set in this script to run specific Curl commands." echo "You can alter this script if you wish to change from self-signed to verified certificates in Instance Manager." - echo + echo exit 1 fi diff --git a/content/includes/nim/disconnected/set-mode-of-operation-disconnected.md b/content/includes/nim/disconnected/set-mode-of-operation-disconnected.md index 327fd7f18..066afb1b8 100644 --- a/content/includes/nim/disconnected/set-mode-of-operation-disconnected.md +++ b/content/includes/nim/disconnected/set-mode-of-operation-disconnected.md @@ -1,5 +1,5 @@ --- -docs: "DOCS-1663" +nd-docs: "DOCS-1663" --- 1. Open the `/etc/nms/nms.conf` file and add the following in the `integrations:license` section: diff --git a/content/includes/nim/docker/docker-registry-login.md b/content/includes/nim/docker/docker-registry-login.md index 05de77a8a..961380426 100644 --- a/content/includes/nim/docker/docker-registry-login.md +++ b/content/includes/nim/docker/docker-registry-login.md @@ -1,12 +1,12 @@ --- -docs: "DOCS-1666" +nd-docs: "DOCS-1666" --- 1. Download your NGINX Instance Manager subscription's JSON Web Token from MyF5. You can use the same JSON Web Token as NGINX Plus in your MyF5 portal. {{< include "licensing-and-reporting/download-jwt-from-myf5.md" >}} -1. Open the JSON Web Token file you downloaded from [MyF5](https://my.f5.com/manage/s/subscriptions) and copy its contents. +1. Open the JSON Web Token file you downloaded from [MyF5](https://my.f5.com/manage/s/subscriptions) and copy its contents. {{}} Make sure there are **no extra characters or spaces** when copying the contents of the JWT token: they can invalidate the token and cause 401 errors during authentication.{{}} diff --git a/content/includes/nim/how-to-access-api-docs.md b/content/includes/nim/how-to-access-api-docs.md index 26a1e6d8a..4375880e2 100644 --- a/content/includes/nim/how-to-access-api-docs.md +++ b/content/includes/nim/how-to-access-api-docs.md @@ -1,5 +1,5 @@ --- -docs: DOCS-991 +nd-docs: DOCS-991 --- You can access the NGINX Instance Manager API documentation from the web interface: diff --git a/content/includes/nim/how-to-access-nim-api.md b/content/includes/nim/how-to-access-nim-api.md index d5af8cac6..66cea5c68 100644 --- a/content/includes/nim/how-to-access-nim-api.md +++ b/content/includes/nim/how-to-access-nim-api.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1050 +nd-docs: DOCS-1050 --- You can use tools like `curl` or [Postman](https://www.postman.com) to interact with the NGINX Instance Manager REST API. The API URL is `https:///api/[nim|platform]/`, and each request requires authentication. For more details on authentication options, see the [API Overview]({{< ref "/nim/fundamentals/api-overview.md" >}}). diff --git a/content/includes/nim/kubernetes/access-webui-helm.md b/content/includes/nim/kubernetes/access-webui-helm.md index 90c02e86c..76e22288e 100644 --- a/content/includes/nim/kubernetes/access-webui-helm.md +++ b/content/includes/nim/kubernetes/access-webui-helm.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1323 +nd-docs: DOCS-1323 --- You can access the NGINX Instance Manager web interface using the external IP address for the API Gateway. diff --git a/content/includes/nim/kubernetes/nms-chart-supported-module-versions.md b/content/includes/nim/kubernetes/nms-chart-supported-module-versions.md index 238bc2f31..ab9779cf4 100644 --- a/content/includes/nim/kubernetes/nms-chart-supported-module-versions.md +++ b/content/includes/nim/kubernetes/nms-chart-supported-module-versions.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1324 +nd-docs: DOCS-1324 --- {{}} diff --git a/content/includes/nim/nap-waf/restart-nms-integrations.md b/content/includes/nim/nap-waf/restart-nms-integrations.md index bca3636f9..e0e0a7f64 100644 --- a/content/includes/nim/nap-waf/restart-nms-integrations.md +++ b/content/includes/nim/nap-waf/restart-nms-integrations.md @@ -1,5 +1,5 @@ --- -docs: DOCS-000 +nd-docs: DOCS-000 files: - content/nim/nginx-app-protect/setup-waf-config-management.md --- diff --git a/content/includes/nim/rbac/assign-roles-to-user-groups.md b/content/includes/nim/rbac/assign-roles-to-user-groups.md index 961de496a..9c3b03292 100644 --- a/content/includes/nim/rbac/assign-roles-to-user-groups.md +++ b/content/includes/nim/rbac/assign-roles-to-user-groups.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1301 +nd-docs: DOCS-1301 --- {{< call-out "important" "User groups require an OIDC identity provider" >}}User groups require an external identity provider configured for OpenID Connect (OIDC) authentication, as described in [Getting started with OIDC]({{< ref "/nim/admin-guide/authentication/oidc/getting-started.md" >}}). Users from an external identity provider cannot be assigned roles directly in NGINX Instance Manager. Instead, they inherit roles based on their group membership.{{< /call-out >}} diff --git a/content/includes/nim/rbac/assign-roles-to-users.md b/content/includes/nim/rbac/assign-roles-to-users.md index 4c50bb72c..040a4cf52 100644 --- a/content/includes/nim/rbac/assign-roles-to-users.md +++ b/content/includes/nim/rbac/assign-roles-to-users.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1025 +nd-docs: DOCS-1025 --- To assign roles to a user in NGINX Instance Manager, follow these steps: diff --git a/content/includes/nim/rbac/create-roles.md b/content/includes/nim/rbac/create-roles.md index 174ed3057..1fd1d37f8 100644 --- a/content/includes/nim/rbac/create-roles.md +++ b/content/includes/nim/rbac/create-roles.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1028 +nd-docs: DOCS-1028 --- Roles in NGINX Instance Manager are a critical part of [role-based access control (RBAC)]({{< ref "/nim/admin-guide/rbac/overview-rbac.md" >}}). By creating roles, you define the access levels and permissions for different user groups that correspond to groups in your Identity Provider (IdP). diff --git a/content/includes/nim/rbac/create-user-groups.md b/content/includes/nim/rbac/create-user-groups.md index 2504af468..9c9c1db12 100644 --- a/content/includes/nim/rbac/create-user-groups.md +++ b/content/includes/nim/rbac/create-user-groups.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1027 +nd-docs: DOCS-1027 --- {{< call-out "important" "Group names must match with your IdP" >}}To ensure that NGINX Instance Manager and your IdP work together seamlessly, group names must exactly match between the two systems. If the group names don’t match, the OIDC integration will fail, preventing users from accessing NGINX Instance Manager. For example, if you have a group called "app-developers" in your IdP, you must create a user group called "app-developers" in NGINX Instance Manager. The group claim must also be part of the token your IdP generates. Refer to your IdP's documentation for guidance on adding group claims.{{}} diff --git a/content/includes/nim/rbac/what-is-rbac.md b/content/includes/nim/rbac/what-is-rbac.md index c30034a9f..93fb5b72c 100644 --- a/content/includes/nim/rbac/what-is-rbac.md +++ b/content/includes/nim/rbac/what-is-rbac.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1179 +nd-docs: DOCS-1179 --- RBAC (Role-Based Access Control) is a security framework that provides access control based on roles assigned to users or user groups. This framework defines the roles and responsibilities of users within the system and restricts access to resources according to the user’s role. RBAC ensures only authorized users have access to specific resources and prevents unauthorized access. diff --git a/content/includes/nim/tech-specs/nim-app-protect-support.md b/content/includes/nim/tech-specs/nim-app-protect-support.md index cf6a03365..fda626499 100644 --- a/content/includes/nim/tech-specs/nim-app-protect-support.md +++ b/content/includes/nim/tech-specs/nim-app-protect-support.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1068 +nd-docs: DOCS-1068 --- NGINX Instance Manager supports the following versions of [NGINX App Protect WAF](https://docs.nginx.com/nginx-app-protect/): diff --git a/content/includes/nim/tech-specs/supported-distros.md b/content/includes/nim/tech-specs/supported-distros.md index 632059861..7ede72fc3 100644 --- a/content/includes/nim/tech-specs/supported-distros.md +++ b/content/includes/nim/tech-specs/supported-distros.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1071 +nd-docs: DOCS-1071 files: - content/nim/fundamentals/tech-specs.md --- diff --git a/content/includes/nim/tech-specs/supported-nginx-versions.md b/content/includes/nim/tech-specs/supported-nginx-versions.md index ddabfd9b2..9e13fa2ef 100644 --- a/content/includes/nim/tech-specs/supported-nginx-versions.md +++ b/content/includes/nim/tech-specs/supported-nginx-versions.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1075 +nd-docs: DOCS-1075 files: - content/nim/fundamentals/tech-specs.md --- diff --git a/content/includes/nim/templates/additional-templating-resources.md b/content/includes/nim/templates/additional-templating-resources.md index cd21b7d82..9eae64a38 100644 --- a/content/includes/nim/templates/additional-templating-resources.md +++ b/content/includes/nim/templates/additional-templating-resources.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1500 +nd-docs: DOCS-1500 ---
diff --git a/content/includes/nim/webui-nim-login.md b/content/includes/nim/webui-nim-login.md index 65b5bfd19..85bbf101d 100644 --- a/content/includes/nim/webui-nim-login.md +++ b/content/includes/nim/webui-nim-login.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1334 +nd-docs: DOCS-1334 --- In a web browser, go to the FQDN for your NGINX Instance Manager host and log in. Then, select **Instance Manager** from the Launchpad menu. diff --git a/content/includes/nms/services/platform-services.md b/content/includes/nms/services/platform-services.md index 33224eeea..4c9a58d6a 100644 --- a/content/includes/nms/services/platform-services.md +++ b/content/includes/nms/services/platform-services.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1186 +nd-docs: DOCS-1186 --- {{}} diff --git a/content/includes/security/jwt-password-note.md b/content/includes/security/jwt-password-note.md index d7c1640a3..69a32ad80 100644 --- a/content/includes/security/jwt-password-note.md +++ b/content/includes/security/jwt-password-note.md @@ -1,12 +1,12 @@ --- -docs: +nd-docs: --- {{}} To protect your system and data, follow these security practices: - + 1. **JWTs:** Treat JSON Web Tokens (JWTs) as sensitive data. Store them securely and delete them after use to prevent unauthorized access. - + 2. **Shell history:** Commands with JWTs or passwords are saved in plain text in your shell history. After running such commands, clear the history to protect credentials. For example: - Edit your shell history file (such as ~/.bash_history or ~/.zsh_history) to remove specific commands. - Use `history -c` to clear all shell history in bash or zsh. diff --git a/content/includes/security/rbac-intro.md b/content/includes/security/rbac-intro.md index 7122c1110..e45dce9c5 100644 --- a/content/includes/security/rbac-intro.md +++ b/content/includes/security/rbac-intro.md @@ -2,7 +2,7 @@ files: - content/nginx-one/rbac/overview.md - content/nim/admin-guide/rbac/overview-rbac.md -docs: DOCS-000 +nd-docs: DOCS-000 --- Role-based access control (RBAC) is a security system that governs access to resources within a software application. By assigning specific roles to users or groups, RBAC ensures that only authorized individuals have the ability to perform certain actions or access particular areas. diff --git a/content/includes/support/how-to-get-support.md b/content/includes/support/how-to-get-support.md index e03f3a791..570d29774 100644 --- a/content/includes/support/how-to-get-support.md +++ b/content/includes/support/how-to-get-support.md @@ -1,5 +1,5 @@ --- -docs: DOCS-1225 +nd-docs: DOCS-1225 --- If you need additional assistance, refer to the following topics for guidance on how to contact Support and create a Support Package: diff --git a/content/mesh/about/architecture.md b/content/mesh/about/architecture.md index c5db8f34f..1d0fb6fc1 100644 --- a/content/mesh/about/architecture.md +++ b/content/mesh/about/architecture.md @@ -3,7 +3,7 @@ title: Architecture weight: 200 description: Learn about F5 NGINX Service Mesh Architecture. toc: true -docs: DOCS-676 +nd-docs: DOCS-676 type: - concept - reference diff --git a/content/mesh/about/mesh-tech-specs.md b/content/mesh/about/mesh-tech-specs.md index 737a6b493..7bcc87d8a 100644 --- a/content/mesh/about/mesh-tech-specs.md +++ b/content/mesh/about/mesh-tech-specs.md @@ -3,7 +3,7 @@ title: Technical Specifications weight: 110 description: Cluster requirements and F5 NGINX Service Mesh footprint. toc: true -docs: DOCS-677 +nd-docs: DOCS-677 type: - reference --- diff --git a/content/mesh/about/what-is-nsm.md b/content/mesh/about/what-is-nsm.md index 1b212f4e0..1ae385795 100644 --- a/content/mesh/about/what-is-nsm.md +++ b/content/mesh/about/what-is-nsm.md @@ -3,7 +3,7 @@ title: What is NGINX Service Mesh? weight: 100 description: Learn about F5 NGINX Service Mesh fundamentals. toc: true -docs: DOCS-678 +nd-docs: DOCS-678 type: - concept --- diff --git a/content/mesh/get-started/install/configuration.md b/content/mesh/get-started/install/configuration.md index 4c801a585..7d8605389 100644 --- a/content/mesh/get-started/install/configuration.md +++ b/content/mesh/get-started/install/configuration.md @@ -3,7 +3,7 @@ title: Configuration Options weight: 100 description: Learn about F5 NGINX Service Mesh features and deployment options. toc: true -docs: DOCS-679 +nd-docs: DOCS-679 type: - concept --- diff --git a/content/mesh/get-started/install/install-with-helm.md b/content/mesh/get-started/install/install-with-helm.md index d3c8154bc..e11f34b93 100644 --- a/content/mesh/get-started/install/install-with-helm.md +++ b/content/mesh/get-started/install/install-with-helm.md @@ -4,7 +4,7 @@ draft: false toc: true description: This guide explains how to install F5 NGINX Service Mesh using Helm. weight: 300 -docs: DOCS-680 +nd-docs: DOCS-680 type: - how-to --- diff --git a/content/mesh/get-started/install/install.md b/content/mesh/get-started/install/install.md index 4d6a4a5d4..a58a337e7 100644 --- a/content/mesh/get-started/install/install.md +++ b/content/mesh/get-started/install/install.md @@ -3,7 +3,7 @@ title: Install with nginx-meshctl draft: false toc: true weight: 200 -docs: DOCS-681 +nd-docs: DOCS-681 type: - how-to --- diff --git a/content/mesh/get-started/platform-setup/gke.md b/content/mesh/get-started/platform-setup/gke.md index 5ee197288..fd6e977c9 100644 --- a/content/mesh/get-started/platform-setup/gke.md +++ b/content/mesh/get-started/platform-setup/gke.md @@ -3,7 +3,7 @@ title: Google Kubernetes Engine description: Learn how to set up Google Kubernetes Engine (GKE) for use with F5 NGINX Service Mesh. toc: true -docs: DOCS-683 +nd-docs: DOCS-683 type: - how-to --- diff --git a/content/mesh/get-started/platform-setup/kubeadm.md b/content/mesh/get-started/platform-setup/kubeadm.md index 971db529a..6f892b73c 100644 --- a/content/mesh/get-started/platform-setup/kubeadm.md +++ b/content/mesh/get-started/platform-setup/kubeadm.md @@ -2,7 +2,7 @@ title: Kubeadm description: Learn how to set up Kubeadm for use with F5 NGINX Service Mesh. toc: true -docs: DOCS-684 +nd-docs: DOCS-684 type: - how-to --- diff --git a/content/mesh/get-started/platform-setup/kubespray.md b/content/mesh/get-started/platform-setup/kubespray.md index ee99ce369..24f49fead 100644 --- a/content/mesh/get-started/platform-setup/kubespray.md +++ b/content/mesh/get-started/platform-setup/kubespray.md @@ -2,7 +2,7 @@ title: Kubespray description: Learn how to set up Kubespray for use with F5 NGINX Service Mesh. toc: true -docs: DOCS-685 +nd-docs: DOCS-685 type: - how-to --- diff --git a/content/mesh/get-started/platform-setup/openshift.md b/content/mesh/get-started/platform-setup/openshift.md index b2cc39ce9..ba5bfb5c6 100644 --- a/content/mesh/get-started/platform-setup/openshift.md +++ b/content/mesh/get-started/platform-setup/openshift.md @@ -3,7 +3,7 @@ title: OpenShift description: Learn what is different in OpenShift, and the considerations a user must make. toc: true -docs: DOCS-689 +nd-docs: DOCS-689 type: - how-to --- diff --git a/content/mesh/get-started/platform-setup/persistent-storage.md b/content/mesh/get-started/platform-setup/persistent-storage.md index 06051f8ca..aa6310f39 100644 --- a/content/mesh/get-started/platform-setup/persistent-storage.md +++ b/content/mesh/get-started/platform-setup/persistent-storage.md @@ -4,7 +4,7 @@ description: Learn how to set up persistent storage for use with F5 NGINX Servic Mesh. weight: 101 toc: true -docs: DOCS-686 +nd-docs: DOCS-686 type: - how-to --- diff --git a/content/mesh/get-started/platform-setup/rke.md b/content/mesh/get-started/platform-setup/rke.md index 2e4bd98e0..f67b55d94 100644 --- a/content/mesh/get-started/platform-setup/rke.md +++ b/content/mesh/get-started/platform-setup/rke.md @@ -3,7 +3,7 @@ title: Rancher Kubernetes Engine description: Learn how to set up Rancher Kubernetes Engine (RKE) for use with F5 NGINX Service Mesh. toc: true -docs: DOCS-687 +nd-docs: DOCS-687 type: - how-to --- diff --git a/content/mesh/get-started/platform-setup/supported-platforms.md b/content/mesh/get-started/platform-setup/supported-platforms.md index 67f5b13a6..d5966a1d2 100644 --- a/content/mesh/get-started/platform-setup/supported-platforms.md +++ b/content/mesh/get-started/platform-setup/supported-platforms.md @@ -4,7 +4,7 @@ description: Find out which platforms are supported for use with F5 NGINX Servic Mesh. weight: 100 toc: true -docs: DOCS-688 +nd-docs: DOCS-688 --- ## Kubernetes diff --git a/content/mesh/get-started/uninstall/uninstall-with-helm.md b/content/mesh/get-started/uninstall/uninstall-with-helm.md index b2b2af62d..5df1a2085 100644 --- a/content/mesh/get-started/uninstall/uninstall-with-helm.md +++ b/content/mesh/get-started/uninstall/uninstall-with-helm.md @@ -4,7 +4,7 @@ draft: false toc: true description: This topic explains how to uninstall F5 NGINX Service Mesh using Helm. weight: 300 -docs: DOCS-699 +nd-docs: DOCS-699 type: - how-to --- diff --git a/content/mesh/get-started/uninstall/uninstall.md b/content/mesh/get-started/uninstall/uninstall.md index 32ae4838e..59c7f8149 100644 --- a/content/mesh/get-started/uninstall/uninstall.md +++ b/content/mesh/get-started/uninstall/uninstall.md @@ -3,7 +3,7 @@ title: Uninstall with nginx-meshctl draft: false toc: true weight: 200 -docs: DOCS-1481 +nd-docs: DOCS-1481 type: - how-to --- diff --git a/content/mesh/get-started/upgrade/upgrade-with-helm.md b/content/mesh/get-started/upgrade/upgrade-with-helm.md index 5519d9446..ad8cf6c73 100644 --- a/content/mesh/get-started/upgrade/upgrade-with-helm.md +++ b/content/mesh/get-started/upgrade/upgrade-with-helm.md @@ -4,7 +4,7 @@ draft: false toc: true description: This guide explains how to upgrade F5 NGINX Service Mesh using Helm. weight: 300 -docs: DOCS-700 +nd-docs: DOCS-700 type: - how-to --- diff --git a/content/mesh/get-started/upgrade/upgrade.md b/content/mesh/get-started/upgrade/upgrade.md index 5d1ac3e68..744974dec 100644 --- a/content/mesh/get-started/upgrade/upgrade.md +++ b/content/mesh/get-started/upgrade/upgrade.md @@ -4,7 +4,7 @@ draft: false toc: true description: This guide explains how to upgrade F5 NGINX Service Mesh using nginx-meshctl. weight: 200 -docs: DOCS-1482 +nd-docs: DOCS-1482 type: - how-to --- diff --git a/content/mesh/guides/inject-sidecar-proxy.md b/content/mesh/guides/inject-sidecar-proxy.md index 9ddd2d3bf..99f1d6a77 100644 --- a/content/mesh/guides/inject-sidecar-proxy.md +++ b/content/mesh/guides/inject-sidecar-proxy.md @@ -4,7 +4,7 @@ toc: true description: Learn about the configuration options for F5 NGINX Service Mesh sidecar proxy injection. weight: 10 -docs: DOCS-692 +nd-docs: DOCS-692 type: - how-to --- diff --git a/content/mesh/guides/monitoring-and-tracing.md b/content/mesh/guides/monitoring-and-tracing.md index dec5da3c0..b2ce80d04 100644 --- a/content/mesh/guides/monitoring-and-tracing.md +++ b/content/mesh/guides/monitoring-and-tracing.md @@ -4,7 +4,7 @@ toc: true description: Learn about the monitoring and tracing features available in F5 NGINX Service Mesh. weight: 20 -docs: DOCS-693 +nd-docs: DOCS-693 type: - how-to --- diff --git a/content/mesh/guides/private-registry.md b/content/mesh/guides/private-registry.md index 8d97f4565..821f86b43 100644 --- a/content/mesh/guides/private-registry.md +++ b/content/mesh/guides/private-registry.md @@ -3,7 +3,7 @@ title: Private Registry description: How to set up access to a private registry weight: 70 toc: true -docs: DOCS-694 +nd-docs: DOCS-694 type: - how-to --- diff --git a/content/mesh/guides/production-tuning.md b/content/mesh/guides/production-tuning.md index 15be7ee28..4dc90023d 100644 --- a/content/mesh/guides/production-tuning.md +++ b/content/mesh/guides/production-tuning.md @@ -2,7 +2,7 @@ title: Production Tuning weight: 80 toc: true -docs: DOCS-695 +nd-docs: DOCS-695 type: - how-to --- diff --git a/content/mesh/guides/prometheus-metrics.md b/content/mesh/guides/prometheus-metrics.md index 84a829ddf..2574e480d 100644 --- a/content/mesh/guides/prometheus-metrics.md +++ b/content/mesh/guides/prometheus-metrics.md @@ -3,7 +3,7 @@ title: Prometheus Metrics description: How to set up and view prometheus metrics for valuable workload insights weight: 40 toc: true -docs: DOCS-840 +nd-docs: DOCS-840 type: - how-to --- diff --git a/content/mesh/guides/secure-traffic-mtls.md b/content/mesh/guides/secure-traffic-mtls.md index 2bd7b30c9..ba6ca46fd 100644 --- a/content/mesh/guides/secure-traffic-mtls.md +++ b/content/mesh/guides/secure-traffic-mtls.md @@ -3,7 +3,7 @@ title: Secure Mesh Traffic using mTLS toc: true description: Learn about the mTLS options available in F5 NGINX Service Mesh. weight: 30 -docs: DOCS-696 +nd-docs: DOCS-696 type: - how-to --- diff --git a/content/mesh/guides/smi-traffic-metrics.md b/content/mesh/guides/smi-traffic-metrics.md index 6421adbcb..9c07ed559 100644 --- a/content/mesh/guides/smi-traffic-metrics.md +++ b/content/mesh/guides/smi-traffic-metrics.md @@ -3,7 +3,7 @@ title: SMI Traffic Metrics description: How to set up and view SMI traffic metrics weight: 50 toc: true -docs: DOCS-697 +nd-docs: DOCS-697 type: - how-to --- diff --git a/content/mesh/guides/smi-traffic-policies.md b/content/mesh/guides/smi-traffic-policies.md index 16bf93a3f..8053f5d9b 100644 --- a/content/mesh/guides/smi-traffic-policies.md +++ b/content/mesh/guides/smi-traffic-policies.md @@ -4,7 +4,7 @@ toc: true description: Learn about the traffic policies supported by F5 NGINX Service Mesh and how to configure them. weight: 60 -docs: DOCS-698 +nd-docs: DOCS-698 type: - how-to --- diff --git a/content/mesh/guides/v1alpha1-ratelimit.md b/content/mesh/guides/v1alpha1-ratelimit.md index 38735b6a3..dfc4e0d62 100644 --- a/content/mesh/guides/v1alpha1-ratelimit.md +++ b/content/mesh/guides/v1alpha1-ratelimit.md @@ -1,6 +1,6 @@ --- title: v1alpha1 RateLimit Documentation -docs: DOCS-701 +nd-docs: DOCS-701 description: v1alpha1 RateLimit documentation. --- @@ -53,10 +53,10 @@ The rate limit spec contains the following fields: Each Pod in the destination accepts the total rate defined in a rate limit policy. If a policy has a rate of 100 r/m, and the destination consists of 3 Pods, each Pod accepts 100 r/m. - + If a single rate limit policy contains multiple sources, the rate divides evenly amongst them. For example, a policy defined with - + ```yaml destination: name: destService @@ -65,7 +65,7 @@ The rate limit spec contains the following fields: - name: source2 rate: 100 r/m ``` - + would result in `destService` accepting 50 requests per minute from `source1`, and 50 requests per minute from `source2`, for a total rate of 100 requests per minute. If two separate policies are defined for the same destination, then the rate is not divided amongst the sources. diff --git a/content/mesh/reference/api-usage.md b/content/mesh/reference/api-usage.md index c68955b8e..558a693e8 100644 --- a/content/mesh/reference/api-usage.md +++ b/content/mesh/reference/api-usage.md @@ -3,7 +3,7 @@ title: NGINX Service Mesh API description: Instructions for interacting with the F5 NGINX Service Mesh API. toc: true weight: 200 -docs: DOCS-702 +nd-docs: DOCS-702 type: - reference --- diff --git a/content/mesh/reference/nginx-meshctl.md b/content/mesh/reference/nginx-meshctl.md index cf6f21812..46a68e55d 100644 --- a/content/mesh/reference/nginx-meshctl.md +++ b/content/mesh/reference/nginx-meshctl.md @@ -4,7 +4,7 @@ description: Man page and instructions for using the F5 NGINX Service Mesh CLI draft: false weight: 300 toc: true -docs: DOCS-704 +nd-docs: DOCS-704 type: - reference --- diff --git a/content/mesh/reference/permissions.md b/content/mesh/reference/permissions.md index ee54c919b..b4e9af739 100644 --- a/content/mesh/reference/permissions.md +++ b/content/mesh/reference/permissions.md @@ -3,7 +3,7 @@ title: NGINX Service Mesh Permissions weight: 100 draft: false toc: true -docs: DOCS-883 +nd-docs: DOCS-883 type: - reference --- diff --git a/content/mesh/releases/release-notes-0.5.0.md b/content/mesh/releases/release-notes-0.5.0.md index 4a1f859df..b1428bf96 100644 --- a/content/mesh/releases/release-notes-0.5.0.md +++ b/content/mesh/releases/release-notes-0.5.0.md @@ -7,7 +7,7 @@ description: Release information for F5 NGINX Service Mesh, a configurable, low communication among application infrastructure services using application programming interfaces (APIs). Lists of new features and known issues are provided. weight: -500 -docs: DOCS-705 +nd-docs: DOCS-705 type: - reference --- diff --git a/content/mesh/releases/release-notes-0.6.0.md b/content/mesh/releases/release-notes-0.6.0.md index e5cdabf49..015ae0ef6 100644 --- a/content/mesh/releases/release-notes-0.6.0.md +++ b/content/mesh/releases/release-notes-0.6.0.md @@ -7,7 +7,7 @@ description: Release information for F5 NGINX Service Mesh, a configurable, low communication among application infrastructure services using application programming interfaces (APIs). Lists of new features and known issues are provided. weight: -600 -docs: DOCS-706 +nd-docs: DOCS-706 type: - reference --- diff --git a/content/mesh/releases/release-notes-0.7.0.md b/content/mesh/releases/release-notes-0.7.0.md index 82314c63d..4f09ce78f 100644 --- a/content/mesh/releases/release-notes-0.7.0.md +++ b/content/mesh/releases/release-notes-0.7.0.md @@ -7,7 +7,7 @@ description: Release information for F5 NGINX Service Mesh, a configurable, low communication among application infrastructure services using application programming interfaces (APIs). Lists of new features and known issues are provided. weight: -700 -docs: DOCS-707 +nd-docs: DOCS-707 type: - reference --- diff --git a/content/mesh/releases/release-notes-0.8.0.md b/content/mesh/releases/release-notes-0.8.0.md index a7e25c1eb..e42c5934c 100644 --- a/content/mesh/releases/release-notes-0.8.0.md +++ b/content/mesh/releases/release-notes-0.8.0.md @@ -7,7 +7,7 @@ description: Release information for F5 NGINX Service Mesh, a configurable, low communication among application infrastructure services using application programming interfaces (APIs). Lists of new features and known issues are provided. weight: -800 -docs: DOCS-708 +nd-docs: DOCS-708 type: - reference --- diff --git a/content/mesh/releases/release-notes-0.9.0.md b/content/mesh/releases/release-notes-0.9.0.md index 15e672b6e..e288cf92f 100644 --- a/content/mesh/releases/release-notes-0.9.0.md +++ b/content/mesh/releases/release-notes-0.9.0.md @@ -7,7 +7,7 @@ description: Release information for F5 GINX Service Mesh, a configurable, low communication among application infrastructure services using application programming interfaces (APIs). Lists of new features and known issues are provided. weight: -900 -docs: DOCS-709 +nd-docs: DOCS-709 type: - reference --- diff --git a/content/mesh/releases/release-notes-0.9.1.md b/content/mesh/releases/release-notes-0.9.1.md index 64f893130..c16f5f20e 100644 --- a/content/mesh/releases/release-notes-0.9.1.md +++ b/content/mesh/releases/release-notes-0.9.1.md @@ -7,7 +7,7 @@ description: Release information for F5 NGINX Service Mesh, a configurable, low communication among application infrastructure services using application programming interfaces (APIs). Lists of new features and known issues are provided. weight: -901 -docs: DOCS-710 +nd-docs: DOCS-710 type: - reference --- diff --git a/content/mesh/releases/release-notes-1.0.0.md b/content/mesh/releases/release-notes-1.0.0.md index bb042d2dc..c6b7d211c 100644 --- a/content/mesh/releases/release-notes-1.0.0.md +++ b/content/mesh/releases/release-notes-1.0.0.md @@ -7,7 +7,7 @@ description: Release information for F5 NGINX Service Mesh, a configurable, low communication among application infrastructure services using application programming interfaces (APIs). Lists of new features and known issues are provided. weight: -1000 -docs: DOCS-711 +nd-docs: DOCS-711 type: - reference --- diff --git a/content/mesh/releases/release-notes-1.0.1.md b/content/mesh/releases/release-notes-1.0.1.md index 3a34c347a..4075f2ffe 100644 --- a/content/mesh/releases/release-notes-1.0.1.md +++ b/content/mesh/releases/release-notes-1.0.1.md @@ -7,7 +7,7 @@ description: Release information for F5 NGINX Service Mesh, a configurable, low communication among application infrastructure services using application programming interfaces (APIs). Lists of new features and known issues are provided. weight: -1001 -docs: DOCS-712 +nd-docs: DOCS-712 type: - reference --- diff --git a/content/mesh/releases/release-notes-1.1.0.md b/content/mesh/releases/release-notes-1.1.0.md index 5eb066f52..52a5075b9 100644 --- a/content/mesh/releases/release-notes-1.1.0.md +++ b/content/mesh/releases/release-notes-1.1.0.md @@ -7,7 +7,7 @@ description: Release information for F5 NGINX Service Mesh, a configurable, low communication among application infrastructure services using application programming interfaces (APIs). Lists of new features and known issues are provided. weight: -1100 -docs: DOCS-713 +nd-docs: DOCS-713 type: - reference --- diff --git a/content/mesh/releases/release-notes-1.2.0.md b/content/mesh/releases/release-notes-1.2.0.md index b1cfbb9b0..d94655a4f 100644 --- a/content/mesh/releases/release-notes-1.2.0.md +++ b/content/mesh/releases/release-notes-1.2.0.md @@ -7,7 +7,7 @@ description: Release information for F5 NGINX Service Mesh, a configurable, low communication among application infrastructure services using application programming interfaces (APIs). Lists of new features and known issues are provided. weight: -1200 -docs: DOCS-714 +nd-docs: DOCS-714 type: - reference --- diff --git a/content/mesh/releases/release-notes-1.2.1.md b/content/mesh/releases/release-notes-1.2.1.md index 1515a829d..8ebe77cb5 100644 --- a/content/mesh/releases/release-notes-1.2.1.md +++ b/content/mesh/releases/release-notes-1.2.1.md @@ -7,7 +7,7 @@ description: Release information for F5 NGINX Service Mesh, a configurable, low communication among application infrastructure services using application programming interfaces (APIs). Lists of new features and known issues are provided. weight: -1201 -docs: DOCS-715 +nd-docs: DOCS-715 type: - reference --- diff --git a/content/mesh/releases/release-notes-1.3.0.md b/content/mesh/releases/release-notes-1.3.0.md index 94fd659fd..e4af48714 100644 --- a/content/mesh/releases/release-notes-1.3.0.md +++ b/content/mesh/releases/release-notes-1.3.0.md @@ -7,7 +7,7 @@ description: Release information for F5 NGINX Service Mesh, a configurable, low communication among application infrastructure services using application programming interfaces (APIs). Lists of new features and known issues are provided. weight: -1300 -docs: DOCS-716 +nd-docs: DOCS-716 type: - reference --- diff --git a/content/mesh/releases/release-notes-1.3.1.md b/content/mesh/releases/release-notes-1.3.1.md index b44e30f8a..561253f38 100644 --- a/content/mesh/releases/release-notes-1.3.1.md +++ b/content/mesh/releases/release-notes-1.3.1.md @@ -7,7 +7,7 @@ description: Release information for F5 NGINX Service Mesh, a configurable, low communication among application infrastructure services using application programming interfaces (APIs). Lists of new features and known issues are provided. weight: -1301 -docs: DOCS-717 +nd-docs: DOCS-717 type: - reference --- diff --git a/content/mesh/releases/release-notes-1.4.0.md b/content/mesh/releases/release-notes-1.4.0.md index f34791b3c..bfca72bfe 100644 --- a/content/mesh/releases/release-notes-1.4.0.md +++ b/content/mesh/releases/release-notes-1.4.0.md @@ -7,7 +7,7 @@ description: Release information for F5 NGINX Service Mesh, a configurable, low communication among application infrastructure services using application programming interfaces (APIs). Lists of new features and known issues are provided. weight: -1400 -docs: DOCS-1488 +nd-docs: DOCS-1488 type: - reference --- diff --git a/content/mesh/releases/release-notes-1.4.1.md b/content/mesh/releases/release-notes-1.4.1.md index 89cbbaaae..dc220dea2 100644 --- a/content/mesh/releases/release-notes-1.4.1.md +++ b/content/mesh/releases/release-notes-1.4.1.md @@ -7,7 +7,7 @@ description: Release information for F5 NGINX Service Mesh, a configurable, low communication among application infrastructure services using application programming interfaces (APIs). Lists of new features and known issues are provided. weight: -1401 -docs: DOCS-1484 +nd-docs: DOCS-1484 type: - reference --- diff --git a/content/mesh/releases/release-notes-1.5.0.md b/content/mesh/releases/release-notes-1.5.0.md index a203ae1d2..a17a2b63f 100644 --- a/content/mesh/releases/release-notes-1.5.0.md +++ b/content/mesh/releases/release-notes-1.5.0.md @@ -7,7 +7,7 @@ description: Release information for F5 NGINX Service Mesh, a configurable, low communication among application infrastructure services using application programming interfaces (APIs). Lists of new features and known issues are provided. weight: -1500 -docs: DOCS-1487 +nd-docs: DOCS-1487 type: - reference --- diff --git a/content/mesh/releases/release-notes-1.6.0.md b/content/mesh/releases/release-notes-1.6.0.md index 78269f6ca..77e9d4c4d 100644 --- a/content/mesh/releases/release-notes-1.6.0.md +++ b/content/mesh/releases/release-notes-1.6.0.md @@ -7,7 +7,7 @@ description: Release information for F5 NGINX Service Mesh, a configurable, low communication among application infrastructure services using application programming interfaces (APIs). Lists of new features and known issues are provided. weight: -1600 -docs: DOCS-1486 +nd-docs: DOCS-1486 type: - reference --- diff --git a/content/mesh/releases/release-notes-1.7.0.md b/content/mesh/releases/release-notes-1.7.0.md index 83dad0860..d28676239 100644 --- a/content/mesh/releases/release-notes-1.7.0.md +++ b/content/mesh/releases/release-notes-1.7.0.md @@ -7,7 +7,7 @@ description: Release information for F5 NGINX Service Mesh, a configurable, low communication among application infrastructure services using application programming interfaces (APIs). Lists of new features and known issues are provided. weight: -1700 -docs: DOCS-1483 +nd-docs: DOCS-1483 type: - reference --- diff --git a/content/mesh/releases/release-notes-2.0.0.md b/content/mesh/releases/release-notes-2.0.0.md index d9273f36d..64a49211d 100644 --- a/content/mesh/releases/release-notes-2.0.0.md +++ b/content/mesh/releases/release-notes-2.0.0.md @@ -7,7 +7,7 @@ description: Release information for F5 NGINX Service Mesh, a configurable, low communication among application infrastructure services using application programming interfaces (APIs). Lists of new features and known issues are provided. weight: -1800 -docs: DOCS-1485 +nd-docs: DOCS-1485 type: - reference --- diff --git a/content/mesh/support/contact-support.md b/content/mesh/support/contact-support.md index 132facbc9..17e6e5772 100644 --- a/content/mesh/support/contact-support.md +++ b/content/mesh/support/contact-support.md @@ -4,7 +4,7 @@ weight: 100 description: Learn where to go for F5 NGINX Service Mesh support. toc: true draft: false -docs: DOCS-718 +nd-docs: DOCS-718 type: - task --- diff --git a/content/mesh/tutorials/accesscontrol-walkthrough.md b/content/mesh/tutorials/accesscontrol-walkthrough.md index 8672082c8..0ea9af63e 100644 --- a/content/mesh/tutorials/accesscontrol-walkthrough.md +++ b/content/mesh/tutorials/accesscontrol-walkthrough.md @@ -3,7 +3,7 @@ title: "Services using Access Control" description: "This article provides a guide for using access control between services." weight: 130 toc: true -docs: "DOCS-719" +nd-docs: "DOCS-719" --- ## Overview diff --git a/content/mesh/tutorials/deploy-example-app.md b/content/mesh/tutorials/deploy-example-app.md index 771bdd8c4..bbe048c50 100644 --- a/content/mesh/tutorials/deploy-example-app.md +++ b/content/mesh/tutorials/deploy-example-app.md @@ -5,7 +5,7 @@ toc: true description: This topic provides a walkthrough of deploying an App with F5 NGINX Service Mesh. weight: 100 -docs: DOCS-720 +nd-docs: DOCS-720 type: - tutorial --- diff --git a/content/mesh/tutorials/kic/deploy-with-kic.md b/content/mesh/tutorials/kic/deploy-with-kic.md index 1176823f1..2d79bb40b 100644 --- a/content/mesh/tutorials/kic/deploy-with-kic.md +++ b/content/mesh/tutorials/kic/deploy-with-kic.md @@ -5,7 +5,7 @@ description: This topic describes how to install and use F5 NGINX Ingress Contro weight: 200 draft: false toc: true -docs: DOCS-721 +nd-docs: DOCS-721 type: - tutorial --- diff --git a/content/mesh/tutorials/kic/egress-walkthrough.md b/content/mesh/tutorials/kic/egress-walkthrough.md index e245e7d91..fda82ee11 100644 --- a/content/mesh/tutorials/kic/egress-walkthrough.md +++ b/content/mesh/tutorials/kic/egress-walkthrough.md @@ -4,7 +4,7 @@ description: This topic provides a walkthrough of how to securely route egress t through F5 NGINX Ingress Controller for Kubernetes with NGINX Service Mesh. weight: 210 toc: true -docs: DOCS-722 +nd-docs: DOCS-722 type: - tutorial --- diff --git a/content/mesh/tutorials/kic/ingress-udp-walkthrough.md b/content/mesh/tutorials/kic/ingress-udp-walkthrough.md index 303bcc959..4470a9f91 100644 --- a/content/mesh/tutorials/kic/ingress-udp-walkthrough.md +++ b/content/mesh/tutorials/kic/ingress-udp-walkthrough.md @@ -4,7 +4,7 @@ description: This topic describes the steps to deploy F5 NGINX Ingress Controlle for Kubernetes, to expose a UDP application within NGINX Service Mesh. weight: 230 toc: true -docs: DOCS-841 +nd-docs: DOCS-841 type: - tutorial --- diff --git a/content/mesh/tutorials/kic/ingress-walkthrough.md b/content/mesh/tutorials/kic/ingress-walkthrough.md index 3360add08..578095f64 100644 --- a/content/mesh/tutorials/kic/ingress-walkthrough.md +++ b/content/mesh/tutorials/kic/ingress-walkthrough.md @@ -4,7 +4,7 @@ description: This topic provides a walkthrough of deploying F5 NGINX Ingress Con for Kubernetes to expose an application within NGINX Service Mesh. weight: 220 toc: true -docs: DOCS-723 +nd-docs: DOCS-723 type: - tutorial --- diff --git a/content/mesh/tutorials/observability.md b/content/mesh/tutorials/observability.md index 7bc39dfbd..e555409ed 100644 --- a/content/mesh/tutorials/observability.md +++ b/content/mesh/tutorials/observability.md @@ -5,7 +5,7 @@ toc: true description: This topic provides a walkthrough of deploying F5 NGINX Service Mesh with basic observability components. weight: 90 -docs: DOCS-886 +nd-docs: DOCS-886 type: - tutorial --- diff --git a/content/mesh/tutorials/ratelimit-walkthrough.md b/content/mesh/tutorials/ratelimit-walkthrough.md index 812903586..9d8488846 100644 --- a/content/mesh/tutorials/ratelimit-walkthrough.md +++ b/content/mesh/tutorials/ratelimit-walkthrough.md @@ -4,7 +4,7 @@ description: Learn how to configure rate limiting between workloads. draft: false toc: true weight: 140 -docs: DOCS-724 +nd-docs: DOCS-724 type: - tutorial --- diff --git a/content/mesh/tutorials/trafficsplit-deployments.md b/content/mesh/tutorials/trafficsplit-deployments.md index b578c79e3..1a2a5018e 100644 --- a/content/mesh/tutorials/trafficsplit-deployments.md +++ b/content/mesh/tutorials/trafficsplit-deployments.md @@ -4,7 +4,7 @@ description: This topic provides a guide for using traffic splits with different strategies. weight: 110 toc: true -docs: DOCS-725 +nd-docs: DOCS-725 type: - tutorial --- diff --git a/content/modsec-waf/admin-guide/nginx-plus-modsecurity-waf-installation-logging.md b/content/modsec-waf/admin-guide/nginx-plus-modsecurity-waf-installation-logging.md index 0c0e49a45..bf7cffa0d 100644 --- a/content/modsec-waf/admin-guide/nginx-plus-modsecurity-waf-installation-logging.md +++ b/content/modsec-waf/admin-guide/nginx-plus-modsecurity-waf-installation-logging.md @@ -1,5 +1,5 @@ --- -docs: DOCS-726 +nd-docs: DOCS-726 title: Installing the NGINX ModSecurity WAF toc: true weight: 100 diff --git a/content/modsec-waf/admin-guide/nginx-plus-modsecurity-waf-owasp-crs.md b/content/modsec-waf/admin-guide/nginx-plus-modsecurity-waf-owasp-crs.md index 9a688eb53..224acea09 100644 --- a/content/modsec-waf/admin-guide/nginx-plus-modsecurity-waf-owasp-crs.md +++ b/content/modsec-waf/admin-guide/nginx-plus-modsecurity-waf-owasp-crs.md @@ -1,5 +1,5 @@ --- -docs: DOCS-727 +nd-docs: DOCS-727 title: Using the OWASP CRS with the NGINX ModSecurity WAF toc: true weight: 200 diff --git a/content/modsec-waf/admin-guide/nginx-plus-modsecurity-waf-trustwave-spiderlabs-rules.md b/content/modsec-waf/admin-guide/nginx-plus-modsecurity-waf-trustwave-spiderlabs-rules.md index 3f29fa1de..2be3c5cef 100644 --- a/content/modsec-waf/admin-guide/nginx-plus-modsecurity-waf-trustwave-spiderlabs-rules.md +++ b/content/modsec-waf/admin-guide/nginx-plus-modsecurity-waf-trustwave-spiderlabs-rules.md @@ -1,5 +1,5 @@ --- -docs: DOCS-728 +nd-docs: DOCS-728 title: Using the ModSecurity Rules from Trustwave SpiderLabs with the NGINX ModSecurity WAF toc: true diff --git a/content/modsec-waf/technical-specs.md b/content/modsec-waf/technical-specs.md index 6342fde0e..47266a3d6 100644 --- a/content/modsec-waf/technical-specs.md +++ b/content/modsec-waf/technical-specs.md @@ -1,5 +1,5 @@ --- -docs: DOCS-729 +nd-docs: DOCS-729 title: Technical Specifications toc: true weight: 300 diff --git a/content/nap-dos/deployment-guide/installing-nginx-plus-with-dos-and-waf-on-amazon-web-services.md b/content/nap-dos/deployment-guide/installing-nginx-plus-with-dos-and-waf-on-amazon-web-services.md index 694beb930..a3eae476c 100644 --- a/content/nap-dos/deployment-guide/installing-nginx-plus-with-dos-and-waf-on-amazon-web-services.md +++ b/content/nap-dos/deployment-guide/installing-nginx-plus-with-dos-and-waf-on-amazon-web-services.md @@ -3,7 +3,7 @@ description: Install F5 NGINX Plus, NGINX App Protect WAF + DoS on Amazon Web Se (AWS), to provide sophisticated Layer 7 load balancing, Modern app security solution, behavioral DoS detection and mitigation that works seamlessly in DevOps environments for your apps running on CentOS, RHEL, Debian and Ubuntu Linux OS. -docs: DOCS-1204 +nd-docs: DOCS-1204 title: NGINX App Protect WAF + DoS AMIs on Amazon EC2 toc: true weight: 110 diff --git a/content/nap-dos/deployment-guide/learn-about-deployment.md b/content/nap-dos/deployment-guide/learn-about-deployment.md index 430fd9e2e..8fe7c9059 100644 --- a/content/nap-dos/deployment-guide/learn-about-deployment.md +++ b/content/nap-dos/deployment-guide/learn-about-deployment.md @@ -1,6 +1,6 @@ --- description: Learn about F5 NGINX App Protect DoS Deployment. -docs: DOCS-666 +nd-docs: DOCS-666 title: NGINX App Protect DoS Deployment toc: true weight: 100 @@ -33,7 +33,7 @@ NGINX App Protect DoS supports the following operating systems: - [Ubuntu 22.04 (Jammy)](#debian--ubuntu-installation) - [Ubuntu 24.04 (Noble)](#debian--ubuntu-installation) - [Alpine 3.15](#alpine-315x--317x--319x-installation) - (Deprecated starting from NGINX Plus R30) -- [Alpine 3.17](#alpine-315x--317x--319x-installation) - (Deprecated starting from NGINX Plus R34) +- [Alpine 3.17](#alpine-315x--317x--319x-installation) - (Deprecated starting from NGINX Plus R34) - [Alpine 3.19](#alpine-315x--317x--319x-installation) - [AmazonLinux 2023](#amazonlinux-linux-2023-installation) @@ -402,7 +402,7 @@ When deploying App Protect DoS on NGINX Plus take the following precautions to s ``` 1. {{< include "nginx-plus/install/create-dir-for-crt-key.md" >}} - + 1. {{< include "nginx-plus/install/create-dir-for-jwt.md" >}} 1. {{< include "licensing-and-reporting/download-jwt-crt-from-myf5.md" >}} @@ -2621,7 +2621,7 @@ ${DIR}/appprotect-dos-arb/install_appprotect-dos-arb.sh ## App Protect DoS eBPF manager ### Overview -The eBPF Manager is a powerful and efficient tool designed to simplify and secure the deployment of eBPF (Extended Berkeley Packet Filter) programs for advanced networking use cases. +The eBPF Manager is a powerful and efficient tool designed to simplify and secure the deployment of eBPF (Extended Berkeley Packet Filter) programs for advanced networking use cases. Its primary responsibilities include program installation and managing client interactions to enable real-time packet processing and mitigation solutions. ### CLI Options for Flexible Configuration @@ -2632,4 +2632,4 @@ The eBPF Manager comes with configurable command-line flags for ease of use and * gRPC UDS Ownership: * -u, --user : Set the user ownership for the gRPC Unix Domain Socket (UDS). Defaults to nginx. * -g, --group : Set the group ownership for the gRPC Unix Domain Socket (UDS). Defaults to nginx. - + diff --git a/content/nap-dos/directives-and-policy/learn-about-directives-and-policy.md b/content/nap-dos/directives-and-policy/learn-about-directives-and-policy.md index 2d018750a..f1cca1a75 100644 --- a/content/nap-dos/directives-and-policy/learn-about-directives-and-policy.md +++ b/content/nap-dos/directives-and-policy/learn-about-directives-and-policy.md @@ -2,7 +2,7 @@ title: NGINX App Protect DoS Directives and Policy toc: true weight: 120 -docs: DOCS-667 +nd-docs: DOCS-667 --- ## Introduction diff --git a/content/nap-dos/monitoring/access-log.md b/content/nap-dos/monitoring/access-log.md index 61ef69359..296155491 100644 --- a/content/nap-dos/monitoring/access-log.md +++ b/content/nap-dos/monitoring/access-log.md @@ -1,6 +1,6 @@ --- description: Learn about the F5 NGINX App Protect DoS Request Log Mechanism. -docs: DOCS-668 +nd-docs: DOCS-668 title: NGINX App Protect DoS Access Log Request Mechanism toc: true weight: 160 diff --git a/content/nap-dos/monitoring/live-activity-monitoring.md b/content/nap-dos/monitoring/live-activity-monitoring.md index bd9df7724..e28fb571b 100644 --- a/content/nap-dos/monitoring/live-activity-monitoring.md +++ b/content/nap-dos/monitoring/live-activity-monitoring.md @@ -1,6 +1,6 @@ --- description: Learn about the F5 NGINX App Protect DoS Live Activity Monitoring. -docs: DOCS-1389 +nd-docs: DOCS-1389 title: NGINX App Protect DoS Live Activity Monitoring toc: true weight: 140 diff --git a/content/nap-dos/monitoring/operation-log.md b/content/nap-dos/monitoring/operation-log.md index 8439995da..2a12d5eaf 100644 --- a/content/nap-dos/monitoring/operation-log.md +++ b/content/nap-dos/monitoring/operation-log.md @@ -1,6 +1,6 @@ --- description: Learn about the F5 NGINX App Protect DoS Operation Log. -docs: DOCS-669 +nd-docs: DOCS-669 title: NGINX App Protect DoS Operation Log toc: true weight: 180 diff --git a/content/nap-dos/monitoring/security-log.md b/content/nap-dos/monitoring/security-log.md index 6d2f3ce1a..642cde34e 100644 --- a/content/nap-dos/monitoring/security-log.md +++ b/content/nap-dos/monitoring/security-log.md @@ -1,6 +1,6 @@ --- description: Learn about the F5 NGINX App Protect DoS Security Log. -docs: DOCS-670 +nd-docs: DOCS-670 title: NGINX App Protect DoS Security Log toc: true weight: 140 diff --git a/content/nap-dos/monitoring/types-of-logs.md b/content/nap-dos/monitoring/types-of-logs.md index ed0345d8b..0d6cc61ea 100644 --- a/content/nap-dos/monitoring/types-of-logs.md +++ b/content/nap-dos/monitoring/types-of-logs.md @@ -1,6 +1,6 @@ --- description: Learn about the F5 NGINX App Protect DoS Logs Overview. -docs: DOCS-671 +nd-docs: DOCS-671 title: NGINX App Protect DoS Logs Overview toc: true weight: 130 diff --git a/content/nap-dos/releases/about-1.0.md b/content/nap-dos/releases/about-1.0.md index f4534665d..b3741d126 100644 --- a/content/nap-dos/releases/about-1.0.md +++ b/content/nap-dos/releases/about-1.0.md @@ -2,7 +2,7 @@ title: NGINX App Protect 1.0 toc: true weight: 260 -docs: DOCS-672 +nd-docs: DOCS-672 --- Here you can find the release information for F5 NGINX App Protect DoS v1. NGINX App Protect DoS provides behavioral protection against Denial of Service (DoS) for your web applications. diff --git a/content/nap-dos/releases/about-1.1.0.md b/content/nap-dos/releases/about-1.1.0.md index 8fc5bff2a..f853f5843 100644 --- a/content/nap-dos/releases/about-1.1.0.md +++ b/content/nap-dos/releases/about-1.1.0.md @@ -2,7 +2,7 @@ title: NGINX App Protect DoS Arbitrator 1.1.0 toc: true weight: 220 -docs: DOCS-673 +nd-docs: DOCS-673 --- Here you can find the release information for F5 NGINX App Protect DoS Arbitrator v1.1.0. diff --git a/content/nap-dos/releases/about-1.1.1.md b/content/nap-dos/releases/about-1.1.1.md index c9f90779e..173b8e1cd 100644 --- a/content/nap-dos/releases/about-1.1.1.md +++ b/content/nap-dos/releases/about-1.1.1.md @@ -2,7 +2,7 @@ title: NGINX App Protect DoS Arbitrator 1.1.1 toc: true weight: 115 -docs: DOCS-1205 +nd-docs: DOCS-1205 --- Here you can find the release information for F5 NGINX App Protect DoS Arbitrator v1.1.1. diff --git a/content/nap-dos/releases/about-1.2.0.md b/content/nap-dos/releases/about-1.2.0.md index a9ed25646..ed606e4e0 100644 --- a/content/nap-dos/releases/about-1.2.0.md +++ b/content/nap-dos/releases/about-1.2.0.md @@ -2,7 +2,7 @@ title: NGINX App Protect DoS Arbitrator 1.2.0 toc: true weight: 61 -docs: DOCS-1782 +nd-docs: DOCS-1782 --- Here you can find the release information for F5 NGINX App Protect DoS Arbitrator v1.2.0 diff --git a/content/nap-dos/releases/about-2.0.md b/content/nap-dos/releases/about-2.0.md index 76d9385e5..7fb5b9005 100644 --- a/content/nap-dos/releases/about-2.0.md +++ b/content/nap-dos/releases/about-2.0.md @@ -2,7 +2,7 @@ title: NGINX App Protect DoS 2.0 toc: true weight: 220 -docs: DOCS-674 +nd-docs: DOCS-674 --- Here you can find the release information for F5 NGINX App Protect DoS v2.0. NGINX App Protect DoS provides behavioral protection against Denial of Service (DoS) for your web applications. diff --git a/content/nap-dos/releases/about-2.1.md b/content/nap-dos/releases/about-2.1.md index 0590e9624..462ba2bbe 100644 --- a/content/nap-dos/releases/about-2.1.md +++ b/content/nap-dos/releases/about-2.1.md @@ -2,7 +2,7 @@ title: NGINX App Protect DoS 2.1 toc: true weight: 200 -docs: DOCS-831 +nd-docs: DOCS-831 --- Here you can find the release information for F5 NGINX App Protect DoS v2.1. NGINX App Protect DoS provides behavioral protection against Denial of Service (DoS) for your web applications. diff --git a/content/nap-dos/releases/about-2.2.md b/content/nap-dos/releases/about-2.2.md index d18e23956..147cd6f51 100644 --- a/content/nap-dos/releases/about-2.2.md +++ b/content/nap-dos/releases/about-2.2.md @@ -2,7 +2,7 @@ title: NGINX App Protect DoS 2.2 toc: true weight: 180 -docs: DOCS-839 +nd-docs: DOCS-839 --- Here you can find the release information for F5 NGINX App Protect DoS v2.2. NGINX App Protect DoS provides behavioral protection against Denial of Service (DoS) for your web applications. diff --git a/content/nap-dos/releases/about-2.3.md b/content/nap-dos/releases/about-2.3.md index 39e5ceb90..c98c7be28 100644 --- a/content/nap-dos/releases/about-2.3.md +++ b/content/nap-dos/releases/about-2.3.md @@ -2,7 +2,7 @@ title: NGINX App Protect DoS 2.3 toc: true weight: 170 -docs: DOCS-856 +nd-docs: DOCS-856 --- Here you can find the release information for F5 NGINX App Protect DoS v2.3. NGINX App Protect DoS provides behavioral protection against Denial of Service (DoS) for your web applications. diff --git a/content/nap-dos/releases/about-2.4.md b/content/nap-dos/releases/about-2.4.md index a594409bd..bf8502638 100644 --- a/content/nap-dos/releases/about-2.4.md +++ b/content/nap-dos/releases/about-2.4.md @@ -2,7 +2,7 @@ title: NGINX App Protect DoS 2.4 toc: true weight: 160 -docs: DOCS-890 +nd-docs: DOCS-890 --- Here you can find the release information for F5 NGINX App Protect DoS v2.4. NGINX App Protect DoS provides behavioral protection against Denial of Service (DoS) for your web applications. diff --git a/content/nap-dos/releases/about-3.0.md b/content/nap-dos/releases/about-3.0.md index c36756554..9310fa583 100644 --- a/content/nap-dos/releases/about-3.0.md +++ b/content/nap-dos/releases/about-3.0.md @@ -2,7 +2,7 @@ title: NGINX App Protect DoS 3.0 toc: true weight: 150 -docs: DOCS-946 +nd-docs: DOCS-946 --- Here you can find the release information for F5 NGINX App Protect DoS v3.0. NGINX App Protect DoS provides behavioral protection against Denial of Service (DoS) for your web applications. diff --git a/content/nap-dos/releases/about-3.1.md b/content/nap-dos/releases/about-3.1.md index e3e7c6842..6c2311330 100644 --- a/content/nap-dos/releases/about-3.1.md +++ b/content/nap-dos/releases/about-3.1.md @@ -2,7 +2,7 @@ title: NGINX App Protect DoS 3.1 toc: true weight: 140 -docs: DOCS-995 +nd-docs: DOCS-995 --- Here you can find the release information for F5 NGINX App Protect DoS v3.1. NGINX App Protect DoS provides behavioral protection against Denial of Service (DoS) for your web applications. diff --git a/content/nap-dos/releases/about-4.0.md b/content/nap-dos/releases/about-4.0.md index 0616d3350..5dab6acfd 100644 --- a/content/nap-dos/releases/about-4.0.md +++ b/content/nap-dos/releases/about-4.0.md @@ -2,7 +2,7 @@ title: NGINX App Protect DoS 4.0 toc: true weight: 120 -docs: DOCS-1115 +nd-docs: DOCS-1115 --- Here you can find the release information for F5 NGINX App Protect DoS v4.0. NGINX App Protect DoS provides behavioral protection against Denial of Service (DoS) for your web applications. diff --git a/content/nap-dos/releases/about-4.1.md b/content/nap-dos/releases/about-4.1.md index b14bcbd77..442e20563 100644 --- a/content/nap-dos/releases/about-4.1.md +++ b/content/nap-dos/releases/about-4.1.md @@ -2,7 +2,7 @@ title: NGINX App Protect DoS 4.1 toc: true weight: 110 -docs: DOCS-1203 +nd-docs: DOCS-1203 --- Here you can find the release information for F5 NGINX App Protect DoS v4.1. NGINX App Protect DoS provides behavioral protection against Denial of Service (DoS) for your web applications. diff --git a/content/nap-dos/releases/about-4.2.md b/content/nap-dos/releases/about-4.2.md index be4ee293b..03152db74 100644 --- a/content/nap-dos/releases/about-4.2.md +++ b/content/nap-dos/releases/about-4.2.md @@ -2,7 +2,7 @@ title: NGINX App Protect DoS 4.2 toc: true weight: 100 -docs: DOCS-1254 +nd-docs: DOCS-1254 --- Here you can find the release information for F5 NGINX App Protect DoS v4.2. NGINX App Protect DoS provides behavioral protection against Denial of Service (DoS) for your web applications. diff --git a/content/nap-dos/releases/about-4.3.md b/content/nap-dos/releases/about-4.3.md index f571b0f47..5ae85ca28 100644 --- a/content/nap-dos/releases/about-4.3.md +++ b/content/nap-dos/releases/about-4.3.md @@ -2,7 +2,7 @@ title: NGINX App Protect DoS 4.3 toc: true weight: 90 -docs: DOCS-1361 +nd-docs: DOCS-1361 --- Here you can find the release information for F5 NGINX App Protect DoS v4.3. NGINX App Protect DoS provides behavioral protection against Denial of Service (DoS) for your web applications. diff --git a/content/nap-dos/releases/about-4.4.md b/content/nap-dos/releases/about-4.4.md index dd41bb6a9..9bd7ac240 100644 --- a/content/nap-dos/releases/about-4.4.md +++ b/content/nap-dos/releases/about-4.4.md @@ -2,7 +2,7 @@ title: NGINX App Protect DoS 4.4 toc: true weight: 80 -docs: DOCS-1785 +nd-docs: DOCS-1785 --- Here you can find the release information for F5 NGINX App Protect DoS v4.4. NGINX App Protect DoS provides behavioral protection against Denial of Service (DoS) for your web applications. diff --git a/content/nap-dos/releases/about-4.5.md b/content/nap-dos/releases/about-4.5.md index cc9b71833..969d4e6b1 100644 --- a/content/nap-dos/releases/about-4.5.md +++ b/content/nap-dos/releases/about-4.5.md @@ -2,10 +2,10 @@ title: NGINX App Protect DoS 4.5 toc: true weight: 70 -docs: DOCS-1784 +nd-docs: DOCS-1784 --- -Here you can find the release information for F5 NGINX App Protect DoS v4.5 +Here you can find the release information for F5 NGINX App Protect DoS v4.5 NGINX App Protect DoS provides behavioral protection against Denial of Service (DoS) for your web applications. @@ -24,8 +24,8 @@ NGINX App Protect DoS 4.5 adds support for NGINX Plus R33. - Support for NGINX Plus R33 - Add support for Alpine 3.19 - Add support for Ubuntu 24.04 -- Remove support for CentOS 7 / RHEL 7 -- *eBPF Manager - Privileged Process for Secure Command Handling* +- Remove support for CentOS 7 / RHEL 7 +- *eBPF Manager - Privileged Process for Secure Command Handling* This feature introduces the eBPF Manager, a process that securely handles eBPF commands on behalf of other processes. By allowing certain processes to operate without elevated privileges, it enhances system security. As part of this enhancement, NGINX now runs under a non-root user account, which is required for deploying specific security solutions. --- diff --git a/content/nap-dos/releases/about-4.6.md b/content/nap-dos/releases/about-4.6.md index 3cf384d4f..b45af1e0d 100644 --- a/content/nap-dos/releases/about-4.6.md +++ b/content/nap-dos/releases/about-4.6.md @@ -2,10 +2,10 @@ title: NGINX App Protect DoS 4.6 toc: true weight: 60 -docs: DOCS-1783 +nd-docs: DOCS-1783 --- -Here you can find the release information for F5 NGINX App Protect DoS v4.6 +Here you can find the release information for F5 NGINX App Protect DoS v4.6 NGINX App Protect DoS provides behavioral protection against Denial of Service (DoS) for your web applications. @@ -21,7 +21,7 @@ April 1, 2025 - Support for NGINX Plus R34 - Add support for AmazonLinux 2023 -- Remove support for Alpine 3.17 +- Remove support for Alpine 3.17 - Bug fixes --- @@ -31,7 +31,7 @@ April 1, 2025 | Distribution name | Package file | |--------------------------|------------------------------------------------------| | Alpine 3.19 | _app-protect-dos-34+4.6.1-r1.apk_ | -| Amazon Linux 2023 | _app-protect-dos-34+4.6.1-1.amzn2023.ngx.x86_64.rpm_ | +| Amazon Linux 2023 | _app-protect-dos-34+4.6.1-1.amzn2023.ngx.x86_64.rpm_ | | RHEL 8 and Rocky Linux 8 | _app-protect-dos-34+4.6.1-1.el8.ngx.x86_64.rpm_ | | RHEL 9 | _app-protect-dos-34+4.6.1-1.el9.ngx.x86_64.rpm_ | | Debian 11 | _app-protect-dos_34+4.6.1-1\~bullseye_amd64.deb_ | diff --git a/content/nap-dos/troubleshooting-guide/how-to-troubleshoot.md b/content/nap-dos/troubleshooting-guide/how-to-troubleshoot.md index ed5b89c44..7ac06a6a7 100644 --- a/content/nap-dos/troubleshooting-guide/how-to-troubleshoot.md +++ b/content/nap-dos/troubleshooting-guide/how-to-troubleshoot.md @@ -1,6 +1,6 @@ --- description: Learn about the F5 NGINX App Protect DoS Troubleshooting Guide. -docs: DOCS-675 +nd-docs: DOCS-675 title: NGINX App Protect DoS Troubleshooting Guide toc: true weight: 200 diff --git a/content/nap-waf/v4/admin-guide/install-nms.md b/content/nap-waf/v4/admin-guide/install-nms.md index ce95fd9e0..63b341b37 100644 --- a/content/nap-waf/v4/admin-guide/install-nms.md +++ b/content/nap-waf/v4/admin-guide/install-nms.md @@ -1,7 +1,7 @@ --- description: Learn how to get more from F5 NGINX App Protect WAF with the NGINX Management Suite Security Monitoring and Instance Manager modules. -docs: DOCS-1126 +nd-docs: DOCS-1126 title: Using NGINX App Protect WAF with NGINX Management Suite toc: true weight: 100 diff --git a/content/nap-waf/v4/admin-guide/install.md b/content/nap-waf/v4/admin-guide/install.md index d0781d810..67cfa0518 100644 --- a/content/nap-waf/v4/admin-guide/install.md +++ b/content/nap-waf/v4/admin-guide/install.md @@ -4,7 +4,7 @@ weight: 100 toc: true type: how-to product: NAP-WAF -docs: DOCS-646 +nd-docs: DOCS-646 --- @@ -17,7 +17,7 @@ This guide explains how to deploy NGINX App Protect WAF as well as upgrade App P ### Using NGINX App Protect with NGINX Instance Manager NGINX Instance Manager provides centralized configuration management and visibility for your NGINX App Protect WAF fleet. -After completing the NGINX App Protect WAF installation, refer to the [NGINX Instance Manager Installation Guide](https://docs.nginx.com/nginx-instance-manager/deploy/) for the deployment instructions. +After completing the NGINX App Protect WAF installation, refer to the [NGINX Instance Manager Installation Guide](https://docs.nginx.com/nginx-instance-manager/deploy/) for the deployment instructions. ## Prerequisites @@ -237,8 +237,8 @@ If a user other than **nginx** is to be used, note the following: Update your policy to include the new configuration, then run [apreload]({{< ref "/nap-waf/v4/configuration-guide/configuration.md#apreload" >}}) command to make changes take effect {{< note >}} For this capability to function properly, please follow the guidelines listed in the [configuration guide]({{< ref "/nap-waf/v4/configuration-guide/configuration.md#ip-intelligence-configuration" >}}){{< /note >}} - - + + --- @@ -365,7 +365,7 @@ If a user other than **nginx** is to be used, note the following: ```shell /opt/app_protect/bin/iprepd /etc/app_protect/tools/iprepd.cfg > ipi.log 2>&1 & ``` - + Verify the client is populating the database: ```shell @@ -375,7 +375,7 @@ If a user other than **nginx** is to be used, note the following: Update your policy to include the new configuration, then run [apreload]({{< ref "/nap-waf/v4/configuration-guide/configuration.md#apreload" >}}) command to make changes take effect {{< note >}} For this capability to function properly, please follow the guidelines listed in the [configuration guide]({{< ref "/nap-waf/v4/configuration-guide/configuration.md#ip-intelligence-configuration" >}}){{< /note >}} - + ## Debian Installation 1. If you already have NGINX packages in your system, back up your configs and logs: @@ -522,11 +522,11 @@ If a user other than **nginx** is to be used, note the following: ``` After installing the package, run the client: - + ```shell /opt/app_protect/bin/iprepd /etc/app_protect/tools/iprepd.cfg > ipi.log 2>&1 & ``` - + Verify the client is populating the database: ```shell @@ -536,7 +536,7 @@ If a user other than **nginx** is to be used, note the following: Update your policy to include the new configuration, then run [apreload]({{< ref "/nap-waf/v4/configuration-guide/configuration.md#apreload" >}}) command to make changes take effect {{< note >}} For this capability to function properly, please follow the guidelines listed in the [configuration guide]({{< ref "/nap-waf/v4/configuration-guide/configuration.md#ip-intelligence-configuration" >}}){{< /note >}} - + {{< warning >}} Debian enables **AppArmor** by default, but NGINX App Protect WAF will run in unconfined mode after being installed as it is shipped with no AppArmor profile. To benefit from AppArmor access control capabilities for NGINX App Protect WAF, you will have to write your own AppArmor profile for NGINX App Protect WAF executables found in `/opt/app_protect/bin` such that it best suits your environment. {{< /warning >}} @@ -665,11 +665,11 @@ If a user other than **nginx** is to be used, note the following: ``` After installing the package, run the client: - + ```shell /opt/app_protect/bin/iprepd /etc/app_protect/tools/iprepd.cfg > ipi.log 2>&1 & ``` - + Verify the client is populating the database: ```shell @@ -807,7 +807,7 @@ If a user other than **nginx** is to be used, note the following: ``` After installing the package, run the client: - + ```shell /opt/app_protect/bin/iprepd /etc/app_protect/tools/iprepd.cfg > ipi.log 2>&1 & ``` @@ -964,7 +964,7 @@ If a user other than **nginx** is to be used, note the following: ``` After installing the package, run the client: - + ```shell /opt/app_protect/bin/iprepd /etc/app_protect/tools/iprepd.cfg > ipi.log 2>&1 & ``` @@ -978,7 +978,7 @@ If a user other than **nginx** is to be used, note the following: Update your policy to include the new configuration, then run [apreload]({{< ref "/nap-waf/v4/configuration-guide/configuration.md#apreload" >}}) command to make changes take effect {{< note >}} For this capability to function properly, please follow the guidelines listed in the [configuration guide]({{< ref "/nap-waf/v4/configuration-guide/configuration.md#ip-intelligence-configuration" >}}){{< /note >}} - + {{< note >}} Ubuntu 20.04 / Ubuntu 22.04 / Ubuntu 24.04 activates **AppArmor** by default, but NGINX App Protect WAF will run in unconfined mode after being installed as it is shipped with no AppArmor profile. To benefit from AppArmor access control capabilities for NGINX App Protect WAF, you will have to write your own AppArmor profile for NGINX App Protect WAF executables found in `/opt/app_protect/bin` such that it best suits your environment. {{< /note >}} @@ -1069,13 +1069,13 @@ If a user other than **nginx** is to be used, note the following: /bin/su -s /bin/sh -c "/usr/share/ts/bin/bd-socket-plugin tmm_count 4 proc_cpuinfo_cpu_mhz 2000000 total_xml_memory 307200000 total_umu_max_size 3129344 sys_max_account_id 1024 no_static_config 2>&1 >> /var/log/app_protect/bd-socket-plugin.log &" nginx /usr/sbin/nginx -g 'daemon off;' ``` - + If you want to use IP intelligence feature (Available from versions 4.15.0 and above), add this additional line to your `entrypoint.sh` file: ```shell /opt/app_protect/bin/iprepd /etc/app_protect/tools/iprepd.cfg > ipi.log 2>&1 & ``` - + 7. Create a Docker image: - For Oracle Linux/Debian/Ubuntu/Alpine/Amazon Linux: @@ -1706,7 +1706,7 @@ RUN --mount=type=secret,id=nginx-crt,dst=/etc/ssl/nginx/nginx-repo.crt,mode=0644 dnf install -y app-protect-compiler \ && dnf clean all \ && rm -rf /var/cache/dnf -``` +``` ### Oracle Linux 8 Converter Docker Deployment Example @@ -1925,7 +1925,7 @@ On a host with access to the NGINX App Protect WAF repository: apt-get update for i in $(apt-cache depends --recurse --no-recommends --no-suggests --no-conflicts --no-breaks --no-replaces --no-enhances app-protect | grep "^\w" | sort -u); do apt-get download $i 2>>errors.txt; done ``` - + Only use if you want to install and use the IP intelligence feature: ```shell @@ -2815,7 +2815,7 @@ app-protect=27+3.1088.2-1~[OS_CODENAME] ## Upgrading App Protect to the latest version -### RHEL 8.1+ / RHEL 9+ / Oracle Linux 8.1+ +### RHEL 8.1+ / RHEL 9+ / Oracle Linux 8.1+ Upgrade the NGINX App Protect WAF to the latest 4.x version: diff --git a/content/nap-waf/v4/admin-guide/upgrade-nap-waf.md b/content/nap-waf/v4/admin-guide/upgrade-nap-waf.md index c29b4b765..43e115650 100644 --- a/content/nap-waf/v4/admin-guide/upgrade-nap-waf.md +++ b/content/nap-waf/v4/admin-guide/upgrade-nap-waf.md @@ -3,7 +3,7 @@ title: Upgrade NGINX App Protect WAF on Managed Instances description: How to Upgrade F5 NGINX App Protect WAF on managed NGINX instances weight: 300 toc: true -docs: DOCS-1198 +nd-docs: DOCS-1198 --- ## Overview diff --git a/content/nap-waf/v4/configuration-guide/configuration.md b/content/nap-waf/v4/configuration-guide/configuration.md index 6b3a9c2c0..a98931787 100644 --- a/content/nap-waf/v4/configuration-guide/configuration.md +++ b/content/nap-waf/v4/configuration-guide/configuration.md @@ -1,6 +1,6 @@ --- description: F5 NGINX App Protect WAF security features. -docs: DOCS-647 +nd-docs: DOCS-647 title: NGINX App Protect WAF Configuration Guide toc: true weight: 200 @@ -679,7 +679,7 @@ systematic, username/password combinations to discover legitimate authentication To prevent brute force attacks, NGINX App Protect WAF monitors IP addresses, usernames, and the number of failed login attempts beyond a maximum threshold. When brute force patterns are detected, the NGINX App Protect WAF policy either trigger an alarm or block the attack if the failed login attempts reached a maximum threshold for a specific username or coming from a specific IP address. -In order to create a brute force configuration for a specific URL in NGINX App Protect you must first create a User-Defined URL, then a Login Page and finally define the URL element in the Brute Force configuration section. +In order to create a brute force configuration for a specific URL in NGINX App Protect you must first create a User-Defined URL, then a Login Page and finally define the URL element in the Brute Force configuration section. --- ### The User-Defined URL example diff --git a/content/nap-waf/v4/declarative-policy/policy.md b/content/nap-waf/v4/declarative-policy/policy.md index b5c71b808..10d28c6f1 100644 --- a/content/nap-waf/v4/declarative-policy/policy.md +++ b/content/nap-waf/v4/declarative-policy/policy.md @@ -2,7 +2,7 @@ title: NGINX App Protect WAF Declarative Policy toc: true weight: 300 -docs: DOCS-648 +nd-docs: DOCS-648 --- {{< include "nap-waf/policy.html" >}} diff --git a/content/nap-waf/v4/logging-overview/access-log.md b/content/nap-waf/v4/logging-overview/access-log.md index eaff647a6..bc9125538 100644 --- a/content/nap-waf/v4/logging-overview/access-log.md +++ b/content/nap-waf/v4/logging-overview/access-log.md @@ -1,6 +1,6 @@ --- description: Learn about the F5 NGINX App Protect WAF Access Log Request Mechanism. -docs: DOCS-910 +nd-docs: DOCS-910 title: NGINX App Protect WAF Access Log toc: true weight: 550 diff --git a/content/nap-waf/v4/logging-overview/debug-logs.md b/content/nap-waf/v4/logging-overview/debug-logs.md index 154d95b5f..ef14ba848 100644 --- a/content/nap-waf/v4/logging-overview/debug-logs.md +++ b/content/nap-waf/v4/logging-overview/debug-logs.md @@ -1,6 +1,6 @@ --- description: Learn about the NGINX App Protect WAF Debug Log. -docs: DOCS-913 +nd-docs: DOCS-913 title: NGINX App Protect WAF Debug Log toc: true weight: 540 diff --git a/content/nap-waf/v4/logging-overview/logs-overview.md b/content/nap-waf/v4/logging-overview/logs-overview.md index 9e6ebdc5c..1ad2fd13d 100644 --- a/content/nap-waf/v4/logging-overview/logs-overview.md +++ b/content/nap-waf/v4/logging-overview/logs-overview.md @@ -1,6 +1,6 @@ --- description: Learn about the F5 NGINX App Protect WAF Logs Overview. -docs: DOCS-911 +nd-docs: DOCS-911 title: NGINX App Protect WAF Logs Overview toc: true weight: 510 diff --git a/content/nap-waf/v4/logging-overview/operation-logs.md b/content/nap-waf/v4/logging-overview/operation-logs.md index bc51c423e..e84052974 100644 --- a/content/nap-waf/v4/logging-overview/operation-logs.md +++ b/content/nap-waf/v4/logging-overview/operation-logs.md @@ -1,6 +1,6 @@ --- description: Learn about the F5 NGINX App Protect WAF Operation Log. -docs: DOCS-912 +nd-docs: DOCS-912 title: NGINX App Protect WAF Operation Log toc: true weight: 530 diff --git a/content/nap-waf/v4/logging-overview/security-log.md b/content/nap-waf/v4/logging-overview/security-log.md index d0211d06a..870950b77 100644 --- a/content/nap-waf/v4/logging-overview/security-log.md +++ b/content/nap-waf/v4/logging-overview/security-log.md @@ -1,6 +1,6 @@ --- description: Learn about the F5 NGINX App Protect WAF Security Log. -docs: DOCS-915 +nd-docs: DOCS-915 title: NGINX App Protect WAF Security Log toc: true weight: 520 diff --git a/content/nap-waf/v4/releases/about-1.0.md b/content/nap-waf/v4/releases/about-1.0.md index a92eb466c..0d7ad81e4 100644 --- a/content/nap-waf/v4/releases/about-1.0.md +++ b/content/nap-waf/v4/releases/about-1.0.md @@ -4,7 +4,7 @@ weight: 1060 toc: true type: reference product: NAP-WAF -docs: DOCS-649 +nd-docs: DOCS-649 --- May 19, 2020 diff --git a/content/nap-waf/v4/releases/about-1.1.md b/content/nap-waf/v4/releases/about-1.1.md index 658adcae8..4799b4da9 100644 --- a/content/nap-waf/v4/releases/about-1.1.md +++ b/content/nap-waf/v4/releases/about-1.1.md @@ -4,7 +4,7 @@ weight: 1040 toc: true type: reference product: NAP-WAF -docs: DOCS-650 +nd-docs: DOCS-650 --- June 9, 2020 diff --git a/content/nap-waf/v4/releases/about-1.2.md b/content/nap-waf/v4/releases/about-1.2.md index 8a9a348e1..483b108a3 100644 --- a/content/nap-waf/v4/releases/about-1.2.md +++ b/content/nap-waf/v4/releases/about-1.2.md @@ -4,7 +4,7 @@ weight: 1020 toc: true type: reference product: NAP-WAF -docs: DOCS-1791 +nd-docs: DOCS-1791 --- June 30, 2020 diff --git a/content/nap-waf/v4/releases/about-1.3.md b/content/nap-waf/v4/releases/about-1.3.md index 949b826f0..9dc5f8788 100644 --- a/content/nap-waf/v4/releases/about-1.3.md +++ b/content/nap-waf/v4/releases/about-1.3.md @@ -4,7 +4,7 @@ weight: 1000 toc: true type: reference product: NAP-WAF -docs: DOCS-652 +nd-docs: DOCS-652 --- July 21, 2020 diff --git a/content/nap-waf/v4/releases/about-2.0.md b/content/nap-waf/v4/releases/about-2.0.md index 41d7edf01..af8deb50e 100644 --- a/content/nap-waf/v4/releases/about-2.0.md +++ b/content/nap-waf/v4/releases/about-2.0.md @@ -4,7 +4,7 @@ weight: 980 toc: true type: reference product: NAP-WAF -docs: DOCS-653 +nd-docs: DOCS-653 --- September 08, 2020 diff --git a/content/nap-waf/v4/releases/about-2.1.md b/content/nap-waf/v4/releases/about-2.1.md index 1043a365c..b06400d96 100644 --- a/content/nap-waf/v4/releases/about-2.1.md +++ b/content/nap-waf/v4/releases/about-2.1.md @@ -4,7 +4,7 @@ weight: 960 toc: true type: reference product: NAP-WAF -docs: DOCS-654 +nd-docs: DOCS-654 --- October 28, 2020 diff --git a/content/nap-waf/v4/releases/about-2.2.md b/content/nap-waf/v4/releases/about-2.2.md index b62160c1f..25664110f 100644 --- a/content/nap-waf/v4/releases/about-2.2.md +++ b/content/nap-waf/v4/releases/about-2.2.md @@ -4,7 +4,7 @@ weight: 940 toc: true type: reference product: NAP-WAF -docs: DOCS-655 +nd-docs: DOCS-655 --- December 09, 2020 diff --git a/content/nap-waf/v4/releases/about-2.3.md b/content/nap-waf/v4/releases/about-2.3.md index a3b527394..0b77716f3 100644 --- a/content/nap-waf/v4/releases/about-2.3.md +++ b/content/nap-waf/v4/releases/about-2.3.md @@ -4,7 +4,7 @@ weight: 920 toc: true type: reference product: NAP-WAF -docs: DOCS-656 +nd-docs: DOCS-656 --- December 30, 2020 diff --git a/content/nap-waf/v4/releases/about-3.0.md b/content/nap-waf/v4/releases/about-3.0.md index d8cb52787..d1a728e27 100644 --- a/content/nap-waf/v4/releases/about-3.0.md +++ b/content/nap-waf/v4/releases/about-3.0.md @@ -4,7 +4,7 @@ weight: 800 toc: true type: reference product: NAP-WAF -docs: DOCS-657 +nd-docs: DOCS-657 --- January 29, 2021 diff --git a/content/nap-waf/v4/releases/about-3.1.md b/content/nap-waf/v4/releases/about-3.1.md index 543004cba..ac627cc31 100644 --- a/content/nap-waf/v4/releases/about-3.1.md +++ b/content/nap-waf/v4/releases/about-3.1.md @@ -4,7 +4,7 @@ weight: 790 toc: true type: reference product: NAP-WAF -docs: DOCS-658 +nd-docs: DOCS-658 --- March 31, 2021 diff --git a/content/nap-waf/v4/releases/about-3.10.md b/content/nap-waf/v4/releases/about-3.10.md index 76bd2d094..b4ce69183 100644 --- a/content/nap-waf/v4/releases/about-3.10.md +++ b/content/nap-waf/v4/releases/about-3.10.md @@ -4,7 +4,7 @@ weight: 680 toc: true type: reference product: NAP-WAF -docs: DOCS-846 +nd-docs: DOCS-846 --- May 25, 2022 diff --git a/content/nap-waf/v4/releases/about-3.11.md b/content/nap-waf/v4/releases/about-3.11.md index fd7e40baf..72015ea43 100644 --- a/content/nap-waf/v4/releases/about-3.11.md +++ b/content/nap-waf/v4/releases/about-3.11.md @@ -4,7 +4,7 @@ weight: 660 toc: true type: reference product: NAP-WAF -docs: DOCS-891 +nd-docs: DOCS-891 --- June 28, 2022 diff --git a/content/nap-waf/v4/releases/about-3.12.2.md b/content/nap-waf/v4/releases/about-3.12.2.md index 579b98006..915e68336 100644 --- a/content/nap-waf/v4/releases/about-3.12.2.md +++ b/content/nap-waf/v4/releases/about-3.12.2.md @@ -4,7 +4,7 @@ weight: 620 toc: true type: reference product: NAP-WAF -docs: DOCS-988 +nd-docs: DOCS-988 --- November 17, 2022 diff --git a/content/nap-waf/v4/releases/about-3.12.md b/content/nap-waf/v4/releases/about-3.12.md index 80d60f15e..81ee0c65c 100644 --- a/content/nap-waf/v4/releases/about-3.12.md +++ b/content/nap-waf/v4/releases/about-3.12.md @@ -4,7 +4,7 @@ weight: 640 toc: true type: reference product: NAP-WAF -docs: DOCS-943 +nd-docs: DOCS-943 --- September 21, 2022 diff --git a/content/nap-waf/v4/releases/about-3.2.md b/content/nap-waf/v4/releases/about-3.2.md index 216030019..5abd54264 100644 --- a/content/nap-waf/v4/releases/about-3.2.md +++ b/content/nap-waf/v4/releases/about-3.2.md @@ -4,7 +4,7 @@ weight: 780 toc: true type: reference product: NAP-WAF -docs: DOCS-659 +nd-docs: DOCS-659 --- April 28, 2021 diff --git a/content/nap-waf/v4/releases/about-3.3.md b/content/nap-waf/v4/releases/about-3.3.md index 1321cf141..4ce5ac26b 100644 --- a/content/nap-waf/v4/releases/about-3.3.md +++ b/content/nap-waf/v4/releases/about-3.3.md @@ -4,7 +4,7 @@ weight: 770 toc: true type: reference product: NAP-WAF -docs: DOCS-660 +nd-docs: DOCS-660 --- July 7, 2021 diff --git a/content/nap-waf/v4/releases/about-3.4.md b/content/nap-waf/v4/releases/about-3.4.md index ae3880eed..1c2027f08 100644 --- a/content/nap-waf/v4/releases/about-3.4.md +++ b/content/nap-waf/v4/releases/about-3.4.md @@ -4,7 +4,7 @@ weight: 760 toc: true type: reference product: NAP-WAF -docs: DOCS-661 +nd-docs: DOCS-661 --- August 10, 2021 diff --git a/content/nap-waf/v4/releases/about-3.5.md b/content/nap-waf/v4/releases/about-3.5.md index 895f68c39..a21285446 100644 --- a/content/nap-waf/v4/releases/about-3.5.md +++ b/content/nap-waf/v4/releases/about-3.5.md @@ -4,7 +4,7 @@ weight: 750 toc: true type: reference product: NAP-WAF -docs: DOCS-662 +nd-docs: DOCS-662 --- September 6, 2021 diff --git a/content/nap-waf/v4/releases/about-3.6.md b/content/nap-waf/v4/releases/about-3.6.md index aff52b5b5..ba4d35512 100644 --- a/content/nap-waf/v4/releases/about-3.6.md +++ b/content/nap-waf/v4/releases/about-3.6.md @@ -4,7 +4,7 @@ weight: 740 toc: true type: reference product: NAP-WAF -docs: DOCS-663 +nd-docs: DOCS-663 --- October 13, 2021 diff --git a/content/nap-waf/v4/releases/about-3.7.md b/content/nap-waf/v4/releases/about-3.7.md index a9e4e2886..304d869c7 100644 --- a/content/nap-waf/v4/releases/about-3.7.md +++ b/content/nap-waf/v4/releases/about-3.7.md @@ -4,7 +4,7 @@ weight: 730 toc: true type: reference product: NAP-WAF -docs: DOCS-664 +nd-docs: DOCS-664 --- December 15, 2021 diff --git a/content/nap-waf/v4/releases/about-3.8.md b/content/nap-waf/v4/releases/about-3.8.md index 0511b6708..94acc1198 100644 --- a/content/nap-waf/v4/releases/about-3.8.md +++ b/content/nap-waf/v4/releases/about-3.8.md @@ -4,7 +4,7 @@ weight: 720 toc: true type: reference product: NAP-WAF -docs: DOCS-832 +nd-docs: DOCS-832 --- January 18, 2022 diff --git a/content/nap-waf/v4/releases/about-3.9.1.md b/content/nap-waf/v4/releases/about-3.9.1.md index e3356ba9f..7185041b9 100644 --- a/content/nap-waf/v4/releases/about-3.9.1.md +++ b/content/nap-waf/v4/releases/about-3.9.1.md @@ -4,7 +4,7 @@ weight: 700 toc: true type: reference product: NAP-WAF -docs: DOCS-842 +nd-docs: DOCS-842 --- March 9, 2022 diff --git a/content/nap-waf/v4/releases/about-3.9.md b/content/nap-waf/v4/releases/about-3.9.md index ffede02ad..73bd50c6c 100644 --- a/content/nap-waf/v4/releases/about-3.9.md +++ b/content/nap-waf/v4/releases/about-3.9.md @@ -4,7 +4,7 @@ weight: 710 toc: true type: reference product: NAP-WAF -docs: DOCS-838 +nd-docs: DOCS-838 --- February 15, 2022 diff --git a/content/nap-waf/v4/releases/about-4.0.md b/content/nap-waf/v4/releases/about-4.0.md index 61411fd29..e4c985f0d 100644 --- a/content/nap-waf/v4/releases/about-4.0.md +++ b/content/nap-waf/v4/releases/about-4.0.md @@ -4,7 +4,7 @@ weight: 410 toc: true type: reference product: NAP-WAF -docs: DOCS-994 +nd-docs: DOCS-994 --- November 29, 2022 diff --git a/content/nap-waf/v4/releases/about-4.1.md b/content/nap-waf/v4/releases/about-4.1.md index 63b806c94..e993f2425 100644 --- a/content/nap-waf/v4/releases/about-4.1.md +++ b/content/nap-waf/v4/releases/about-4.1.md @@ -4,7 +4,7 @@ weight: 400 toc: true type: reference product: NAP-WAF -docs: DOCS-1116 +nd-docs: DOCS-1116 --- January 31, 2023 diff --git a/content/nap-waf/v4/releases/about-4.10.md b/content/nap-waf/v4/releases/about-4.10.md index 9762bd8f2..7bdd5c45c 100644 --- a/content/nap-waf/v4/releases/about-4.10.md +++ b/content/nap-waf/v4/releases/about-4.10.md @@ -4,7 +4,7 @@ weight: 130 toc: true type: reference product: NAP-WAF -docs: DOCS-1787 +nd-docs: DOCS-1787 --- May 29, 2024 @@ -23,7 +23,7 @@ In this release, NGINX App Protect WAF supports NGINX Plus R32. #### App Protect -##### Alpine Linux 3.16 +##### Alpine Linux 3.16 - app-protect-32.5.48.0-r1.apk @@ -47,7 +47,7 @@ In this release, NGINX App Protect WAF supports NGINX Plus R32. - app-protect-32+5.48.0-1.el8.ngx.x86_64.rpm -##### RHEL 8.1+ +##### RHEL 8.1+ - app-protect-32+5.48.0-1.el8.ngx.x86_64.rpm diff --git a/content/nap-waf/v4/releases/about-4.11.md b/content/nap-waf/v4/releases/about-4.11.md index b92e89ae1..daf3c93ad 100644 --- a/content/nap-waf/v4/releases/about-4.11.md +++ b/content/nap-waf/v4/releases/about-4.11.md @@ -4,7 +4,7 @@ weight: 120 toc: true type: reference product: NAP-WAF -docs: DOCS-1786 +nd-docs: DOCS-1786 --- September 25, 2024 diff --git a/content/nap-waf/v4/releases/about-4.12.md b/content/nap-waf/v4/releases/about-4.12.md index ae55a7ee8..61e77bb4c 100644 --- a/content/nap-waf/v4/releases/about-4.12.md +++ b/content/nap-waf/v4/releases/about-4.12.md @@ -4,7 +4,7 @@ weight: 110 toc: true type: reference product: NAP-WAF -docs: DOCS-1788 +nd-docs: DOCS-1788 --- November 19th, 2024 diff --git a/content/nap-waf/v4/releases/about-4.13.md b/content/nap-waf/v4/releases/about-4.13.md index ed2ca037c..e664466d3 100644 --- a/content/nap-waf/v4/releases/about-4.13.md +++ b/content/nap-waf/v4/releases/about-4.13.md @@ -4,7 +4,7 @@ weight: 100 toc: true type: reference product: NAP-WAF -docs: DOCS-1790 +nd-docs: DOCS-1790 --- January 30th, 2025 diff --git a/content/nap-waf/v4/releases/about-4.14.md b/content/nap-waf/v4/releases/about-4.14.md index 6c2187fe9..ef20b99f6 100644 --- a/content/nap-waf/v4/releases/about-4.14.md +++ b/content/nap-waf/v4/releases/about-4.14.md @@ -4,7 +4,7 @@ weight: 90 toc: true type: reference product: NAP-WAF -docs: DOCS-1792 +nd-docs: DOCS-1792 --- April 1st, 2025 diff --git a/content/nap-waf/v4/releases/about-4.15.md b/content/nap-waf/v4/releases/about-4.15.md index cb004174f..1dba23851 100644 --- a/content/nap-waf/v4/releases/about-4.15.md +++ b/content/nap-waf/v4/releases/about-4.15.md @@ -4,7 +4,7 @@ weight: 80 toc: true nd-content-type: reference nd-product: NAP-WAF -docs: DOCS-1789 +nd-docs: DOCS-1789 --- June 24th, 2025 @@ -12,7 +12,7 @@ June 24th, 2025 ## New features - Added support for [IP Intelligence]({{< ref "/nap-waf/v4/configuration-guide/configuration.md#ip-intelligence-configuration" >}}) -- Added support for Rocky Linux 9 +- Added support for Rocky Linux 9 - Added support for Override rules for [IP Address Lists]({{< ref "/nap-waf/v4/configuration-guide/configuration.md#ip-address-lists" >}}) ## Important notes @@ -26,7 +26,7 @@ June 24th, 2025 - 12527 - Remove CPAN - installed certs and source files - 11112 - Remove systemd/init.d leftovers in NAP WAF v5 pkgs - 12400 - Cookie attributes are not added to a TS cookie when there is more than one TS cookie -- 12498 - Undefined behavior when using huge XFF +- 12498 - Undefined behavior when using huge XFF - 12731 - Multiple clean_resp_reset internal error messages in logs when loading NAP ## Supported packages @@ -37,7 +37,7 @@ June 24th, 2025 | Amazon Linux 2023 | _app-protect-34+5.442.0-1.amzn2023.ngx.x86_64.rpm_ | | Debian 11 | _app-protect_34+5.442.0-1\~bullseye_amd64.deb_ | | Debian 12 | _app-protect_34+5.442.0-1\~bookworm_amd64.deb_ | -| Oracle Linux 8.1 | _app-protect-34+5.442.0-1.el8.ngx.x86_64.rpm_ | +| Oracle Linux 8.1 | _app-protect-34+5.442.0-1.el8.ngx.x86_64.rpm_ | | Ubuntu 22.04 | _app-protect_34+5.442.0-1\~jammy_amd64.deb_ | | Ubuntu 24.04 | _app-protect_34+5.442.0-1\~noble_amd64.deb_ | | RHEL 8 and Rocky Linux 8 | _app-protect-34+5.442.0-1.el8.ngx.x86_64.rpm_ | diff --git a/content/nap-waf/v4/releases/about-4.2.md b/content/nap-waf/v4/releases/about-4.2.md index ef9503d21..73d5d0f38 100644 --- a/content/nap-waf/v4/releases/about-4.2.md +++ b/content/nap-waf/v4/releases/about-4.2.md @@ -4,7 +4,7 @@ weight: 310 toc: true type: reference product: NAP-WAF -docs: DOCS-1172 +nd-docs: DOCS-1172 --- March 29, 2023 diff --git a/content/nap-waf/v4/releases/about-4.3.md b/content/nap-waf/v4/releases/about-4.3.md index d5f160777..a7820e169 100644 --- a/content/nap-waf/v4/releases/about-4.3.md +++ b/content/nap-waf/v4/releases/about-4.3.md @@ -4,7 +4,7 @@ weight: 210 toc: true type: reference product: NAP-WAF -docs: DOCS-1202 +nd-docs: DOCS-1202 --- May 2, 2023 diff --git a/content/nap-waf/v4/releases/about-4.4.md b/content/nap-waf/v4/releases/about-4.4.md index 47c0d4e34..98065a6d6 100644 --- a/content/nap-waf/v4/releases/about-4.4.md +++ b/content/nap-waf/v4/releases/about-4.4.md @@ -4,7 +4,7 @@ weight: 200 toc: true type: reference product: NAP-WAF -docs: DOCS-1252 +nd-docs: DOCS-1252 --- July 5, 2023 diff --git a/content/nap-waf/v4/releases/about-4.5.md b/content/nap-waf/v4/releases/about-4.5.md index 4ac361f74..752812849 100644 --- a/content/nap-waf/v4/releases/about-4.5.md +++ b/content/nap-waf/v4/releases/about-4.5.md @@ -4,7 +4,7 @@ weight: 190 toc: true type: reference product: NAP-WAF -docs: DOCS-1253 +nd-docs: DOCS-1253 --- August 15, 2023 diff --git a/content/nap-waf/v4/releases/about-4.6.md b/content/nap-waf/v4/releases/about-4.6.md index 100e4059f..9b71d7b58 100644 --- a/content/nap-waf/v4/releases/about-4.6.md +++ b/content/nap-waf/v4/releases/about-4.6.md @@ -4,7 +4,7 @@ weight: 180 toc: true type: reference product: NAP-WAF -docs: DOCS-1347 +nd-docs: DOCS-1347 --- October 17, 2023 diff --git a/content/nap-waf/v4/releases/about-4.7.md b/content/nap-waf/v4/releases/about-4.7.md index 62181c049..447cbb919 100644 --- a/content/nap-waf/v4/releases/about-4.7.md +++ b/content/nap-waf/v4/releases/about-4.7.md @@ -4,7 +4,7 @@ weight: 170 toc: true type: reference product: NAP-WAF -docs: DOCS-1360 +nd-docs: DOCS-1360 --- December 19, 2023 diff --git a/content/nap-waf/v4/releases/about-4.8.1.md b/content/nap-waf/v4/releases/about-4.8.1.md index ed85394d9..8a978fe6e 100644 --- a/content/nap-waf/v4/releases/about-4.8.1.md +++ b/content/nap-waf/v4/releases/about-4.8.1.md @@ -4,7 +4,7 @@ weight: 150 toc: true type: reference product: NAP-WAF -docs: DOCS-1477 +nd-docs: DOCS-1477 --- March 6, 2024 diff --git a/content/nap-waf/v4/releases/about-4.8.md b/content/nap-waf/v4/releases/about-4.8.md index 37efe6ae7..268dcd877 100644 --- a/content/nap-waf/v4/releases/about-4.8.md +++ b/content/nap-waf/v4/releases/about-4.8.md @@ -4,7 +4,7 @@ weight: 160 toc: true type: reference product: NAP-WAF -docs: DOCS-1391 +nd-docs: DOCS-1391 --- February 6, 2024 diff --git a/content/nap-waf/v4/releases/about-4.9.md b/content/nap-waf/v4/releases/about-4.9.md index 17b2af609..aeb44e88d 100644 --- a/content/nap-waf/v4/releases/about-4.9.md +++ b/content/nap-waf/v4/releases/about-4.9.md @@ -4,7 +4,7 @@ weight: 140 toc: true type: reference product: NAP-WAF -docs: DOCS-1478 +nd-docs: DOCS-1478 --- April 18, 2024 diff --git a/content/nap-waf/v4/troubleshooting-guide/troubleshooting.md b/content/nap-waf/v4/troubleshooting-guide/troubleshooting.md index f4971a732..cd5da81be 100644 --- a/content/nap-waf/v4/troubleshooting-guide/troubleshooting.md +++ b/content/nap-waf/v4/troubleshooting-guide/troubleshooting.md @@ -1,6 +1,6 @@ --- description: Learn about the F5 NGINX App Protect WAF Troubleshooting Guide. -docs: DOCS-665 +nd-docs: DOCS-665 title: NGINX App Protect WAF Troubleshooting Guide toc: true weight: 400 diff --git a/content/nap-waf/v5/admin-guide/compiler.md b/content/nap-waf/v5/admin-guide/compiler.md index ea0f28500..0e1a3564c 100644 --- a/content/nap-waf/v5/admin-guide/compiler.md +++ b/content/nap-waf/v5/admin-guide/compiler.md @@ -4,7 +4,7 @@ weight: 500 toc: true type: how-to product: NAP-WAF -docs: DOCS-1367 +nd-docs: DOCS-1367 --- ## Overview diff --git a/content/nap-waf/v5/admin-guide/deploy-on-docker.md b/content/nap-waf/v5/admin-guide/deploy-on-docker.md index a2f0e3821..a135e5a5f 100644 --- a/content/nap-waf/v5/admin-guide/deploy-on-docker.md +++ b/content/nap-waf/v5/admin-guide/deploy-on-docker.md @@ -4,7 +4,7 @@ weight: 500 toc: true type: how-to product: NAP-WAF -docs: DOCS-1365 +nd-docs: DOCS-1365 --- ## Prerequisites diff --git a/content/nap-waf/v5/admin-guide/deploy-with-helm.md b/content/nap-waf/v5/admin-guide/deploy-with-helm.md index 677334d42..3d2c81e9e 100644 --- a/content/nap-waf/v5/admin-guide/deploy-with-helm.md +++ b/content/nap-waf/v5/admin-guide/deploy-with-helm.md @@ -4,7 +4,7 @@ weight: 300 toc: true type: how-to product: NAP-WAF -docs: DOCS-1793 +nd-docs: DOCS-1793 --- ## Overview @@ -39,7 +39,7 @@ Next, create a `Dockerfile` using one of the examples provided below. {{}} {{%tab name="Alpine Linux"%}} - + {{< include "nap-waf/config/v5/build-nginx-image-oss/build-alpine.md" >}} {{%/tab%}} @@ -86,7 +86,7 @@ You are ready to [Build the image](#build-image). {{}} {{%tab name="Alpine Linux"%}} - + {{< include "nap-waf/config/v5/build-nginx-image-plus/build-alpine.md" >}} {{%/tab%}} @@ -133,7 +133,7 @@ You are ready to [Build the image](#build-image). Next, push it to your private image repository, ensuring it's accessible to your Kubernetes cluster. ---- +--- ## Pull the chart diff --git a/content/nap-waf/v5/admin-guide/deploy-with-manifests.md b/content/nap-waf/v5/admin-guide/deploy-with-manifests.md index ded07b037..751c778c8 100644 --- a/content/nap-waf/v5/admin-guide/deploy-with-manifests.md +++ b/content/nap-waf/v5/admin-guide/deploy-with-manifests.md @@ -4,7 +4,7 @@ weight: 400 toc: true type: how-to product: NAP-WAF -docs: DOCS-1366 +nd-docs: DOCS-1366 --- ## Prerequisites @@ -457,8 +457,8 @@ spec: {{< include "/nap-waf/nap-k8s-readonly-paths.md" >}} ---- - +--- + ### Possible issues {{< include "/nap-waf/nap-k8s-readonly-issues.md" >}} diff --git a/content/nap-waf/v5/admin-guide/install.md b/content/nap-waf/v5/admin-guide/install.md index 7e1f05355..b6263a507 100644 --- a/content/nap-waf/v5/admin-guide/install.md +++ b/content/nap-waf/v5/admin-guide/install.md @@ -4,7 +4,7 @@ weight: 200 toc: true type: how-to product: NAP-WAF -docs: DOCS-1363 +nd-docs: DOCS-1363 --- ## Prerequisites @@ -39,7 +39,7 @@ Please follow these steps before you install either NGINX Open Source or NGINX P {{}} {{%tab name="Alpine Linux"%}} - + {{< include "nap-waf/config/v5/host-based-nginx-instructions/common-steps-with-alpine" >}} {{%/tab%}} diff --git a/content/nap-waf/v5/admin-guide/overview.md b/content/nap-waf/v5/admin-guide/overview.md index 127e600e2..4470b987b 100644 --- a/content/nap-waf/v5/admin-guide/overview.md +++ b/content/nap-waf/v5/admin-guide/overview.md @@ -4,7 +4,7 @@ weight: 100 toc: true type: how-to product: NAP-WAF -docs: DOCS-1362 +nd-docs: DOCS-1362 --- ## Introduction diff --git a/content/nap-waf/v5/admin-guide/upgrade-nap-waf.md b/content/nap-waf/v5/admin-guide/upgrade-nap-waf.md index c5d688a9c..c7e1e6496 100644 --- a/content/nap-waf/v5/admin-guide/upgrade-nap-waf.md +++ b/content/nap-waf/v5/admin-guide/upgrade-nap-waf.md @@ -4,7 +4,7 @@ weight: 600 toc: true type: how-to product: NAP-WAF -docs: DOCS-1640 +nd-docs: DOCS-1640 --- ## Overview diff --git a/content/nap-waf/v5/configuration-guide/configuration.md b/content/nap-waf/v5/configuration-guide/configuration.md index f654d70ee..df837908e 100644 --- a/content/nap-waf/v5/configuration-guide/configuration.md +++ b/content/nap-waf/v5/configuration-guide/configuration.md @@ -1,7 +1,7 @@ --- description: This guide explains the F5 NGINX App Protect WAF security features and how to use them. -docs: DOCS-1368 +nd-docs: DOCS-1368 title: NGINX App Protect WAF Configuration Guide toc: true weight: 200 diff --git a/content/nap-waf/v5/declarative-policy/policy.md b/content/nap-waf/v5/declarative-policy/policy.md index 7b038b1f0..5ecdbefbb 100644 --- a/content/nap-waf/v5/declarative-policy/policy.md +++ b/content/nap-waf/v5/declarative-policy/policy.md @@ -3,7 +3,7 @@ description: '' title: NGINX App Protect WAF Declarative Policy toc: false weight: 300 -docs: DOCS-1644 +nd-docs: DOCS-1644 type: - reference --- diff --git a/content/nap-waf/v5/logging-overview/access-log.md b/content/nap-waf/v5/logging-overview/access-log.md index 5c7f0de2c..198a3c2ac 100644 --- a/content/nap-waf/v5/logging-overview/access-log.md +++ b/content/nap-waf/v5/logging-overview/access-log.md @@ -3,7 +3,7 @@ description: Learn about the F5 NGINX App Protect WAF Access Log Request Mechani title: NGINX App Protect WAF Access Log toc: true weight: 550 -docs: DOCS-1641 +nd-docs: DOCS-1641 type: - concept --- diff --git a/content/nap-waf/v5/logging-overview/logs-overview.md b/content/nap-waf/v5/logging-overview/logs-overview.md index 4b4c7b590..6c30a6e80 100644 --- a/content/nap-waf/v5/logging-overview/logs-overview.md +++ b/content/nap-waf/v5/logging-overview/logs-overview.md @@ -1,6 +1,6 @@ --- description: Learn the types of logs available in F5 NGINX App Protect WAF v5. -docs: DOCS-1374 +nd-docs: DOCS-1374 title: NGINX App Protect WAF Logs Overview toc: true weight: 1010 diff --git a/content/nap-waf/v5/logging-overview/security-log.md b/content/nap-waf/v5/logging-overview/security-log.md index e23f281c1..2b91b63b1 100644 --- a/content/nap-waf/v5/logging-overview/security-log.md +++ b/content/nap-waf/v5/logging-overview/security-log.md @@ -3,7 +3,7 @@ description: Learn about the F5 NGINX App Protect WAF Security Log. title: NGINX App Protect WAF Security Log toc: true weight: 520 -docs: DOCS-1642 +nd-docs: DOCS-1642 type: - concept --- diff --git a/content/nap-waf/v5/releases/about-5.0.md b/content/nap-waf/v5/releases/about-5.0.md index b27436767..fdbc765df 100644 --- a/content/nap-waf/v5/releases/about-5.0.md +++ b/content/nap-waf/v5/releases/about-5.0.md @@ -4,7 +4,7 @@ weight: 1000 toc: true type: reference product: NAP-WAF -docs: DOCS-1643 +nd-docs: DOCS-1643 --- March 19, 2024 diff --git a/content/nap-waf/v5/releases/about-5.1.md b/content/nap-waf/v5/releases/about-5.1.md index 77e5348f5..51f0e5324 100644 --- a/content/nap-waf/v5/releases/about-5.1.md +++ b/content/nap-waf/v5/releases/about-5.1.md @@ -4,7 +4,7 @@ weight: 900 toc: true type: reference product: NAP-WAF -docs: DOCS-1479 +nd-docs: DOCS-1479 --- April 18, 2024 diff --git a/content/nap-waf/v5/releases/about-5.2.md b/content/nap-waf/v5/releases/about-5.2.md index ab147a12f..670f9b4f7 100644 --- a/content/nap-waf/v5/releases/about-5.2.md +++ b/content/nap-waf/v5/releases/about-5.2.md @@ -4,7 +4,7 @@ weight: 890 toc: true type: reference product: NAP-WAF -docs: DOCS-1796 +nd-docs: DOCS-1796 --- May 29, 2024 diff --git a/content/nap-waf/v5/releases/about-5.3.md b/content/nap-waf/v5/releases/about-5.3.md index f29be731d..344f49a2b 100644 --- a/content/nap-waf/v5/releases/about-5.3.md +++ b/content/nap-waf/v5/releases/about-5.3.md @@ -4,7 +4,7 @@ weight: 880 toc: true type: reference product: NAP-WAF -docs: DOCS-1799 +nd-docs: DOCS-1799 --- September 25, 2024 diff --git a/content/nap-waf/v5/releases/about-5.4.md b/content/nap-waf/v5/releases/about-5.4.md index 88683bbec..eb7312f10 100644 --- a/content/nap-waf/v5/releases/about-5.4.md +++ b/content/nap-waf/v5/releases/about-5.4.md @@ -4,7 +4,7 @@ weight: 870 toc: true type: reference product: NAP-WAF -docs: DOCS-1798 +nd-docs: DOCS-1798 --- November 19th, 2024 diff --git a/content/nap-waf/v5/releases/about-5.5.md b/content/nap-waf/v5/releases/about-5.5.md index 78e1bfca0..2a3bf94a7 100644 --- a/content/nap-waf/v5/releases/about-5.5.md +++ b/content/nap-waf/v5/releases/about-5.5.md @@ -4,7 +4,7 @@ weight: 860 toc: true type: reference product: NAP-WAF -docs: DOCS-1795 +nd-docs: DOCS-1795 --- January 30th, 2025 diff --git a/content/nap-waf/v5/releases/about-5.6.md b/content/nap-waf/v5/releases/about-5.6.md index 79b290d5d..8c952dbaf 100644 --- a/content/nap-waf/v5/releases/about-5.6.md +++ b/content/nap-waf/v5/releases/about-5.6.md @@ -4,7 +4,7 @@ weight: 850 toc: true type: reference product: NAP-WAF -docs: DOCS-1797 +nd-docs: DOCS-1797 --- April 1st, 2025 diff --git a/content/nap-waf/v5/releases/about-5.7.md b/content/nap-waf/v5/releases/about-5.7.md index 48b48f248..050cce97e 100644 --- a/content/nap-waf/v5/releases/about-5.7.md +++ b/content/nap-waf/v5/releases/about-5.7.md @@ -4,7 +4,7 @@ weight: 840 toc: true nd-content-type: reference nd-product: NAP-WAF -docs: DOCS-1794 +nd-docs: DOCS-1794 --- June 24th, 2025 @@ -12,9 +12,9 @@ June 24th, 2025 ## New features - Added support for [IP Intelligence]({{< ref "/nap-waf/v5/configuration-guide/configuration.md#ip-intelligence-configuration" >}}) -- Added support for Rocky Linux 9 +- Added support for Rocky Linux 9 - Added support for Override rules for [IP Address Lists]({{< ref "/nap-waf/v5/configuration-guide/configuration.md#ip-address-lists" >}}) - + ## Important notes - Ubuntu 20.04 is no longer supported @@ -26,7 +26,7 @@ June 24th, 2025 - 12527 - Remove CPAN - installed certs and source files - 11112 - Remove systemd/init.d leftovers in NAP WAF v5 pkgs - 12400 - Cookie attributes are not added to a TS cookie when there is more than one TS cookie -- 12498 - Undefined behavior when using huge XFF +- 12498 - Undefined behavior when using huge XFF - 12731 - Multiple clean_resp_reset internal error messages in logs when loading NAP ## Supported packages diff --git a/content/nap-waf/v5/troubleshooting-guide/troubleshooting.md b/content/nap-waf/v5/troubleshooting-guide/troubleshooting.md index bbf4be2fb..8de5fd315 100644 --- a/content/nap-waf/v5/troubleshooting-guide/troubleshooting.md +++ b/content/nap-waf/v5/troubleshooting-guide/troubleshooting.md @@ -3,7 +3,7 @@ description: Learn about the F5 NGINX App Protect WAF Troubleshooting Guide. title: NGINX App Protect WAF Troubleshooting Guide toc: true weight: 400 -docs: DOCS-1645 +nd-docs: DOCS-1645 type: - concept --- diff --git a/content/nginx-one/about.md b/content/nginx-one/about.md index 72e06d6bb..1811cba97 100644 --- a/content/nginx-one/about.md +++ b/content/nginx-one/about.md @@ -1,6 +1,6 @@ --- description: '' -docs: DOCS-1392 +nd-docs: DOCS-1392 title: Manage your NGINX fleet toc: true weight: 10 diff --git a/content/nginx-one/api/api-reference-guide.md b/content/nginx-one/api/api-reference-guide.md index 43adf2b6a..d3034aa1e 100644 --- a/content/nginx-one/api/api-reference-guide.md +++ b/content/nginx-one/api/api-reference-guide.md @@ -1,6 +1,6 @@ --- description: '' -docs: DOCS-1398 +nd-docs: DOCS-1398 doctypes: - reference type: redoc diff --git a/content/nginx-one/api/authentication.md b/content/nginx-one/api/authentication.md index 101c0d81d..7518c3677 100644 --- a/content/nginx-one/api/authentication.md +++ b/content/nginx-one/api/authentication.md @@ -1,6 +1,6 @@ --- description: '' -docs: DOCS-1397 +nd-docs: DOCS-1397 title: Authentication toc: true weight: 10 diff --git a/content/nginx-one/changelog.md b/content/nginx-one/changelog.md index ab541049a..33da1c9d9 100644 --- a/content/nginx-one/changelog.md +++ b/content/nginx-one/changelog.md @@ -1,6 +1,6 @@ --- description: '' -docs: DOCS-1394 +nd-docs: DOCS-1394 title: Changelog toc: true weight: 99999 diff --git a/content/nginx-one/connect-instances/connect-nginx-plus-container-images-to-nginx-one.md b/content/nginx-one/connect-instances/connect-nginx-plus-container-images-to-nginx-one.md index 8545e0419..15eb1985b 100644 --- a/content/nginx-one/connect-instances/connect-nginx-plus-container-images-to-nginx-one.md +++ b/content/nginx-one/connect-instances/connect-nginx-plus-container-images-to-nginx-one.md @@ -1,6 +1,6 @@ --- description: '' -docs: null +nd-docs: null title: Connect NGINX Plus container images toc: true weight: 400 diff --git a/content/nginx-one/connect-instances/create-manage-data-plane-keys.md b/content/nginx-one/connect-instances/create-manage-data-plane-keys.md index 224b3ff51..243edd970 100644 --- a/content/nginx-one/connect-instances/create-manage-data-plane-keys.md +++ b/content/nginx-one/connect-instances/create-manage-data-plane-keys.md @@ -1,6 +1,6 @@ --- description: '' -docs: DOCS-1395 +nd-docs: DOCS-1395 title: Prepare - Create and manage data plane keys toc: true weight: 100 diff --git a/content/nginx-one/connect-instances/set-up-nginx-proxy-for-nginx-one.md b/content/nginx-one/connect-instances/set-up-nginx-proxy-for-nginx-one.md index 6c97ffccc..11ea0c245 100644 --- a/content/nginx-one/connect-instances/set-up-nginx-proxy-for-nginx-one.md +++ b/content/nginx-one/connect-instances/set-up-nginx-proxy-for-nginx-one.md @@ -1,6 +1,6 @@ --- description: '' -docs: null +nd-docs: null title: Minimize connections - Set up NGINX as a proxy toc: true weight: 300 diff --git a/content/nginx-one/getting-started.md b/content/nginx-one/getting-started.md index 6a761fa2f..72e9756b5 100644 --- a/content/nginx-one/getting-started.md +++ b/content/nginx-one/getting-started.md @@ -4,7 +4,7 @@ toc: true weight: 100 type: how-to product: NGINX One -docs: DOCS-1393 +nd-docs: DOCS-1393 --- This guide provides step-by-step instructions on how to activate and start using F5 NGINX One Console. NGINX One is a management console for monitoring and managing NGINX data plane instances. @@ -149,7 +149,7 @@ The NGINX One Console dashboard relies on APIs for NGINX Plus and NGINX Open Sou {{< include "/use-cases/monitoring/enable-nginx-oss-stub-status.md" >}} ---- +--- ## View instance metrics with the NGINX One dashboard diff --git a/content/nginx-one/glossary.md b/content/nginx-one/glossary.md index 04951c14c..4c07b2185 100644 --- a/content/nginx-one/glossary.md +++ b/content/nginx-one/glossary.md @@ -1,6 +1,6 @@ --- description: '' -docs: DOCS-1396 +nd-docs: DOCS-1396 title: Glossary toc: true weight: 800 diff --git a/content/nginx-one/nginx-configs/add-file.md b/content/nginx-one/nginx-configs/add-file.md index 574ba30e4..4a25f64ee 100644 --- a/content/nginx-one/nginx-configs/add-file.md +++ b/content/nginx-one/nginx-configs/add-file.md @@ -1,5 +1,5 @@ --- -docs: null +nd-docs: null title: Add a file to an instance toc: true weight: 300 diff --git a/content/nginx-one/nginx-configs/certificates/manage-certificates.md b/content/nginx-one/nginx-configs/certificates/manage-certificates.md index b80d52c3c..5fff39b2f 100644 --- a/content/nginx-one/nginx-configs/certificates/manage-certificates.md +++ b/content/nginx-one/nginx-configs/certificates/manage-certificates.md @@ -1,5 +1,5 @@ --- -docs: null +nd-docs: null title: Manage certificates toc: true weight: 100 diff --git a/content/nginx-one/nginx-configs/clean-up-unavailable-instances.md b/content/nginx-one/nginx-configs/clean-up-unavailable-instances.md index 9e7979e34..aec1d3b1c 100644 --- a/content/nginx-one/nginx-configs/clean-up-unavailable-instances.md +++ b/content/nginx-one/nginx-configs/clean-up-unavailable-instances.md @@ -1,6 +1,6 @@ --- description: '' -docs: null +nd-docs: null title: Clean up unavailable NGINX instances toc: true weight: 1000 diff --git a/content/nginx-one/nginx-configs/config-sync-groups/add-file-csg.md b/content/nginx-one/nginx-configs/config-sync-groups/add-file-csg.md index 147b83950..1b1f279b8 100644 --- a/content/nginx-one/nginx-configs/config-sync-groups/add-file-csg.md +++ b/content/nginx-one/nginx-configs/config-sync-groups/add-file-csg.md @@ -1,5 +1,5 @@ --- -docs: null +nd-docs: null title: Add a file to a Config Sync Group toc: true weight: 400 diff --git a/content/nginx-one/nginx-configs/config-sync-groups/manage-config-sync-groups.md b/content/nginx-one/nginx-configs/config-sync-groups/manage-config-sync-groups.md index d5811fe1a..418612d7d 100644 --- a/content/nginx-one/nginx-configs/config-sync-groups/manage-config-sync-groups.md +++ b/content/nginx-one/nginx-configs/config-sync-groups/manage-config-sync-groups.md @@ -1,5 +1,5 @@ --- -docs: null +nd-docs: null title: Manage Config Sync Groups toc: true weight: 300 diff --git a/content/nginx-one/rbac/overview.md b/content/nginx-one/rbac/overview.md index 2bcdfc17b..7282834e4 100644 --- a/content/nginx-one/rbac/overview.md +++ b/content/nginx-one/rbac/overview.md @@ -4,7 +4,7 @@ weight: 400 toc: true type: reference product: NGINX One -docs: DOCS-000 +nd-docs: DOCS-000 --- {{< include "security/rbac-intro.md" >}} diff --git a/content/nginx-one/rbac/rbac-api.md b/content/nginx-one/rbac/rbac-api.md index 11e90cfc3..4cf387018 100644 --- a/content/nginx-one/rbac/rbac-api.md +++ b/content/nginx-one/rbac/rbac-api.md @@ -4,13 +4,13 @@ weight: 500 toc: true type: reference product: NGINX One -docs: DOCS-000 +nd-docs: DOCS-000 --- Beyond the [Default roles]({{< ref "/nginx-one/rbac/roles.md" >}}) for NGINX One Console access, you can create [custom roles](https://docs.cloud.f5.com/docs-v2/administration/how-tos/user-mgmt/roles#custom-roles) with more precisely defined access permissions. You can assign custom roles to users or service accounts. -You can associate these roles with specific [namespaces](https://docs.cloud.f5.com/docs-v2/multi-cloud-app-connect/how-to/app-security/service-policy), to help facilitate the principle of least privilege across your tenant. +You can associate these roles with specific [namespaces](https://docs.cloud.f5.com/docs-v2/multi-cloud-app-connect/how-to/app-security/service-policy), to help facilitate the principle of least privilege across your tenant. For this use-case, we include a list of API groups that you can use to specify permissions for custom roles with more granular access controls to NGINX One Console APIs. ## F5 API groups for NGINX One diff --git a/content/nginx-one/rbac/roles.md b/content/nginx-one/rbac/roles.md index e2d33a15b..521bd70c5 100644 --- a/content/nginx-one/rbac/roles.md +++ b/content/nginx-one/rbac/roles.md @@ -4,7 +4,7 @@ weight: 500 toc: true type: reference product: NGINX One -docs: DOCS-000 +nd-docs: DOCS-000 --- ## Default roles @@ -13,7 +13,7 @@ We provide three default **[roles](https://docs.cloud.f5.com/docs-v2/administrat ### Admin -The Admin role, identified as `f5xc-nginx-one-standard-admin`, provides full read and write access to all endpoints and features within the NGINX One Console. +The Admin role, identified as `f5xc-nginx-one-standard-admin`, provides full read and write access to all endpoints and features within the NGINX One Console. It also supports Role-based access control for related XC services. ### User diff --git a/content/nginx/admin-guide/basic-functionality/managing-configuration-files.md b/content/nginx/admin-guide/basic-functionality/managing-configuration-files.md index a4b4c123e..4b41b5b71 100644 --- a/content/nginx/admin-guide/basic-functionality/managing-configuration-files.md +++ b/content/nginx/admin-guide/basic-functionality/managing-configuration-files.md @@ -1,7 +1,7 @@ --- description: Understand the basic elements in an NGINX or F5 NGINX Plus configuration file, including directives and contexts. -docs: DOCS-378 +nd-docs: DOCS-378 title: Create NGINX Plus and NGINX Configuration Files toc: true weight: 200 @@ -9,7 +9,7 @@ type: - how-to --- -NGINX and NGINX Plus are similar to other services in using a text‑based configuration file with a precise format. By default the file is named **nginx.conf** and for NGINX Plus is placed in the `**/etc/nginx**` directory. +NGINX and NGINX Plus are similar to other services in using a text‑based configuration file with a precise format. By default the file is named **nginx.conf** and for NGINX Plus is placed in the `**/etc/nginx**` directory. For NGINX Open Source, the location depends on the package system used to install NGINX and the operating system. It is typically one of `**/usr/local/nginx/conf**`, `**/etc/nginx**`, or `**/usr/local/etc/nginx**`. diff --git a/content/nginx/admin-guide/basic-functionality/runtime-control.md b/content/nginx/admin-guide/basic-functionality/runtime-control.md index 65414ce62..f69773bf4 100644 --- a/content/nginx/admin-guide/basic-functionality/runtime-control.md +++ b/content/nginx/admin-guide/basic-functionality/runtime-control.md @@ -1,7 +1,7 @@ --- description: Understand the NGINX processes that handle traffic, and how to control them at runtime. -docs: DOCS-379 +nd-docs: DOCS-379 title: Control NGINX Processes at Runtime toc: true weight: 100 diff --git a/content/nginx/admin-guide/content-cache/content-caching.md b/content/nginx/admin-guide/content-cache/content-caching.md index 07f00b3dd..7ebd880a9 100644 --- a/content/nginx/admin-guide/content-cache/content-caching.md +++ b/content/nginx/admin-guide/content-cache/content-caching.md @@ -1,7 +1,7 @@ --- description: Cache both static and dynamic content from your proxied web and application servers, to speed delivery to clients and reduce the load on the servers. -docs: DOCS-380 +nd-docs: DOCS-380 title: NGINX Content Caching toc: true weight: 100 diff --git a/content/nginx/admin-guide/dynamic-modules/brotli.md b/content/nginx/admin-guide/dynamic-modules/brotli.md index 66935fac6..b0ebfd3f4 100644 --- a/content/nginx/admin-guide/dynamic-modules/brotli.md +++ b/content/nginx/admin-guide/dynamic-modules/brotli.md @@ -1,6 +1,6 @@ --- description: Learn how to use the Brotli module with F5 NGINX Plus -docs: DOCS-381 +nd-docs: DOCS-381 title: Brotli toc: true weight: 100 diff --git a/content/nginx/admin-guide/dynamic-modules/cookie-flag.md b/content/nginx/admin-guide/dynamic-modules/cookie-flag.md index f83eb6c10..3a10f8f8c 100644 --- a/content/nginx/admin-guide/dynamic-modules/cookie-flag.md +++ b/content/nginx/admin-guide/dynamic-modules/cookie-flag.md @@ -2,7 +2,7 @@ description: Set `HttpOnly`, `SameSite`, and `secure` flags on cookies in `Set-Cookie` upstream response headers with the **Cookie-Flag** dynamic module, community-authored and supported by NGINX, Inc. -docs: DOCS-382 +nd-docs: DOCS-382 title: Cookie-Flag toc: true weight: 100 diff --git a/content/nginx/admin-guide/dynamic-modules/dynamic-modules.md b/content/nginx/admin-guide/dynamic-modules/dynamic-modules.md index 2edfeb89d..4307452fb 100644 --- a/content/nginx/admin-guide/dynamic-modules/dynamic-modules.md +++ b/content/nginx/admin-guide/dynamic-modules/dynamic-modules.md @@ -1,7 +1,7 @@ --- description: Load modules dynamically into F5 NGINX Plus at runtime to add specialized functionality, including features authored by third parties. -docs: DOCS-383 +nd-docs: DOCS-383 title: Dynamic Modules toc: true weight: 10 @@ -46,7 +46,7 @@ For module‑specific installation and usage instructions, select the correspond | [XSLT](https://nginx.org/en/docs/http/ngx_http_xslt_module.html) | Applies XSLT transformations to XML responses. | [`nginx-plus-module-xslt`]({{< ref "nginx/admin-guide/dynamic-modules/xslt.md" >}}) | {{< /bootstrap-table >}} -### Community Dynamic Modules +### Community Dynamic Modules Besides the modules provided in the official repository, a wide range of third-party modules is available through community-driven projects such as [Awesome NGINX GitHub project](https://github.com/agile6v/awesome-nginx#third-party-modules). Many of these modules can be [compiled as dynamic modules](https://docs.nginx.com/nginx/admin-guide/installing-nginx/installing-nginx-plus/#install_modules_oss) and used with your NGINX Plus or NGINX Open Source deployments. ### NGINX Certified Partner Dynamic Modules @@ -110,7 +110,7 @@ nginx-plus-module-njs/stable nginx-plus-module-opentracing/stable NGINX Plus 3rd-party OpenTracing dynamic module - + nginx-plus-module-otel/stable NGINX Plus OpenTelemetry dynamic module diff --git a/content/nginx/admin-guide/dynamic-modules/encrypted-session.md b/content/nginx/admin-guide/dynamic-modules/encrypted-session.md index 47dece320..fe9d482d8 100644 --- a/content/nginx/admin-guide/dynamic-modules/encrypted-session.md +++ b/content/nginx/admin-guide/dynamic-modules/encrypted-session.md @@ -1,6 +1,6 @@ --- description: '' -docs: DOCS-384 +nd-docs: DOCS-384 title: Encrypted-Session toc: true weight: 100 diff --git a/content/nginx/admin-guide/dynamic-modules/fips.md b/content/nginx/admin-guide/dynamic-modules/fips.md index 831173191..41678e25f 100644 --- a/content/nginx/admin-guide/dynamic-modules/fips.md +++ b/content/nginx/admin-guide/dynamic-modules/fips.md @@ -1,7 +1,7 @@ --- description: Verify compliance with [FIPS 140-2](https://csrc.nist.gov/publications/detail/fips/140/2/final) security requirements for cryptographic modules. -docs: DOCS-385 +nd-docs: DOCS-385 title: FIPS Status Check toc: true weight: 100 diff --git a/content/nginx/admin-guide/dynamic-modules/geoip.md b/content/nginx/admin-guide/dynamic-modules/geoip.md index 783b157aa..8aa3f53cc 100644 --- a/content/nginx/admin-guide/dynamic-modules/geoip.md +++ b/content/nginx/admin-guide/dynamic-modules/geoip.md @@ -1,7 +1,7 @@ --- description: Capture information from the client IP address in variables, using the MaxMind GeoIP databases, with the GeoIP dynamic module supported by NGINX, Inc. -docs: DOCS-386 +nd-docs: DOCS-386 title: GeoIP toc: true weight: 100 diff --git a/content/nginx/admin-guide/dynamic-modules/geoip2.md b/content/nginx/admin-guide/dynamic-modules/geoip2.md index aa06f7274..de02e575d 100644 --- a/content/nginx/admin-guide/dynamic-modules/geoip2.md +++ b/content/nginx/admin-guide/dynamic-modules/geoip2.md @@ -2,7 +2,7 @@ description: Capture information from the client IP address in variables, using the [MaxMind GeoIP2](https://www.maxmind.com/en/geoip2-databases) databases, with the GeoIP2 dynamic module supported by NGINX, Inc. -docs: DOCS-387 +nd-docs: DOCS-387 title: GeoIP2 toc: true weight: 100 diff --git a/content/nginx/admin-guide/dynamic-modules/headers-more.md b/content/nginx/admin-guide/dynamic-modules/headers-more.md index 49df24db4..e9e55f980 100644 --- a/content/nginx/admin-guide/dynamic-modules/headers-more.md +++ b/content/nginx/admin-guide/dynamic-modules/headers-more.md @@ -1,7 +1,7 @@ --- description: Set and clear input and output headers to extend the NGINX core [Headers](https://nginx.org/en/docs/http/ngx_http_headers_module.html) module, with the Headers-More dynamic module supported by NGINX, Inc. -docs: DOCS-388 +nd-docs: DOCS-388 title: Headers-More toc: true weight: 100 diff --git a/content/nginx/admin-guide/dynamic-modules/http-substitutions-filter.md b/content/nginx/admin-guide/dynamic-modules/http-substitutions-filter.md index 1707b63d1..c0f2f44a8 100644 --- a/content/nginx/admin-guide/dynamic-modules/http-substitutions-filter.md +++ b/content/nginx/admin-guide/dynamic-modules/http-substitutions-filter.md @@ -1,7 +1,7 @@ --- description: Replace text in response bodies, using regular expressions and fixed strings, with the HTTP Substitutions Filter dynamic module supported by NGINX, Inc. -docs: DOCS-389 +nd-docs: DOCS-389 title: HTTP Substitutions Filter toc: true weight: 100 diff --git a/content/nginx/admin-guide/dynamic-modules/image-filter.md b/content/nginx/admin-guide/dynamic-modules/image-filter.md index 3d4a97f93..65e6b76df 100644 --- a/content/nginx/admin-guide/dynamic-modules/image-filter.md +++ b/content/nginx/admin-guide/dynamic-modules/image-filter.md @@ -1,7 +1,7 @@ --- description: Crop, resize, rotate, and perform other transformations on GIF, JPEG, and PNG images, with the Image-Filter dynamic module supported by NGINX, Inc. -docs: DOCS-390 +nd-docs: DOCS-390 title: Image-Filter toc: true weight: 100 diff --git a/content/nginx/admin-guide/dynamic-modules/lua.md b/content/nginx/admin-guide/dynamic-modules/lua.md index 87db66b69..4b9073791 100644 --- a/content/nginx/admin-guide/dynamic-modules/lua.md +++ b/content/nginx/admin-guide/dynamic-modules/lua.md @@ -1,6 +1,6 @@ --- description: '' -docs: DOCS-391 +nd-docs: DOCS-391 title: Lua toc: true weight: 100 diff --git a/content/nginx/admin-guide/dynamic-modules/ndk.md b/content/nginx/admin-guide/dynamic-modules/ndk.md index 8f051f955..bde538b43 100644 --- a/content/nginx/admin-guide/dynamic-modules/ndk.md +++ b/content/nginx/admin-guide/dynamic-modules/ndk.md @@ -1,6 +1,6 @@ --- description: '' -docs: DOCS-392 +nd-docs: DOCS-392 title: NGINX Developer Kit toc: true weight: 100 diff --git a/content/nginx/admin-guide/dynamic-modules/nginscript.md b/content/nginx/admin-guide/dynamic-modules/nginscript.md index 36c526018..f5867c194 100644 --- a/content/nginx/admin-guide/dynamic-modules/nginscript.md +++ b/content/nginx/admin-guide/dynamic-modules/nginscript.md @@ -2,7 +2,7 @@ description: Integrate [JavaScript-like](https://nginx.org/en/docs/njs/) code into the NGINX event-processing model for HTTP or TDP/UDP, with the NGINX njs module, supported by NGINX, Inc. -docs: DOCS-393 +nd-docs: DOCS-393 title: njs Scripting Language toc: true weight: 100 diff --git a/content/nginx/admin-guide/dynamic-modules/nginx-waf.md b/content/nginx/admin-guide/dynamic-modules/nginx-waf.md index b47873cd2..88bb4bcea 100644 --- a/content/nginx/admin-guide/dynamic-modules/nginx-waf.md +++ b/content/nginx/admin-guide/dynamic-modules/nginx-waf.md @@ -1,7 +1,7 @@ --- description: Protect against Layer 7 attacks such as SQLi, XSS, CSRF, LFI, and RFI, with the F5 NGINX ModSecurity WAF dynamic module, supported by NGINX. -docs: DOCS-394 +nd-docs: DOCS-394 title: NGINX ModSecurity WAF toc: true weight: 100 diff --git a/content/nginx/admin-guide/dynamic-modules/opentelemetry.md b/content/nginx/admin-guide/dynamic-modules/opentelemetry.md index 0e3d6c3f5..23fec756a 100644 --- a/content/nginx/admin-guide/dynamic-modules/opentelemetry.md +++ b/content/nginx/admin-guide/dynamic-modules/opentelemetry.md @@ -1,7 +1,7 @@ --- description: Analyze your software performance by instrumenting, generating, collecting, and exporting telemetry data. -docs: DOCS-1207 +nd-docs: DOCS-1207 title: OpenTelemetry toc: true weight: 100 diff --git a/content/nginx/admin-guide/dynamic-modules/opentracing.md b/content/nginx/admin-guide/dynamic-modules/opentracing.md index 81c64329d..f6b64b6db 100644 --- a/content/nginx/admin-guide/dynamic-modules/opentracing.md +++ b/content/nginx/admin-guide/dynamic-modules/opentracing.md @@ -4,7 +4,7 @@ description: Instrument NGINX with OpenTracing-compliant requests for a range of module provides the framework for recording traces; you will also need to install a service-specific tracing module. This module (“tracer”) pushes traces to the collector and analyser provided by that service. -docs: DOCS-395 +nd-docs: DOCS-395 title: OpenTracing toc: true weight: 100 diff --git a/content/nginx/admin-guide/dynamic-modules/passenger-open-source.md b/content/nginx/admin-guide/dynamic-modules/passenger-open-source.md index bf1cc841f..469556ef4 100644 --- a/content/nginx/admin-guide/dynamic-modules/passenger-open-source.md +++ b/content/nginx/admin-guide/dynamic-modules/passenger-open-source.md @@ -2,7 +2,7 @@ description: Deploy and administer applications written in Node.js, Python, and Ruby with the Passenger Open Source dynamic module from Phusion, supported by NGINX, Inc. -docs: DOCS-396 +nd-docs: DOCS-396 title: Phusion Passenger Open Source toc: true weight: 100 diff --git a/content/nginx/admin-guide/dynamic-modules/perl.md b/content/nginx/admin-guide/dynamic-modules/perl.md index bc932dfc8..7ff1b43a6 100644 --- a/content/nginx/admin-guide/dynamic-modules/perl.md +++ b/content/nginx/admin-guide/dynamic-modules/perl.md @@ -2,7 +2,7 @@ description: Implement location and variable handlers in Perl and insert Perl calls into Server Side Includes (SSI), with the Perl dynamic module, supported by NGINX, Inc. -docs: DOCS-397 +nd-docs: DOCS-397 title: Perl toc: true weight: 100 diff --git a/content/nginx/admin-guide/dynamic-modules/prometheus-njs.md b/content/nginx/admin-guide/dynamic-modules/prometheus-njs.md index 297c115f0..ffdc9e209 100644 --- a/content/nginx/admin-guide/dynamic-modules/prometheus-njs.md +++ b/content/nginx/admin-guide/dynamic-modules/prometheus-njs.md @@ -1,6 +1,6 @@ --- description: Expose Prometheus metrics endpoint directly from F5 NGINX Plus. -docs: DOCS-398 +nd-docs: DOCS-398 title: Prometheus-njs toc: true weight: 100 diff --git a/content/nginx/admin-guide/dynamic-modules/rtmp.md b/content/nginx/admin-guide/dynamic-modules/rtmp.md index 800753af3..4a6b7a6e8 100644 --- a/content/nginx/admin-guide/dynamic-modules/rtmp.md +++ b/content/nginx/admin-guide/dynamic-modules/rtmp.md @@ -1,7 +1,7 @@ --- description: Stream video in multiple formats, including Real-Time Messaging Protocol (RTMP), HLS, and DASH, with the RTMP dynamic module, supported by NGINX, Inc. -docs: DOCS-399 +nd-docs: DOCS-399 title: RTMP toc: true weight: 100 diff --git a/content/nginx/admin-guide/dynamic-modules/set-misc.md b/content/nginx/admin-guide/dynamic-modules/set-misc.md index 3ee03391e..c31c8e23a 100644 --- a/content/nginx/admin-guide/dynamic-modules/set-misc.md +++ b/content/nginx/admin-guide/dynamic-modules/set-misc.md @@ -2,7 +2,7 @@ description: Implement numerous additional `set_*` directives to extend the NGINX core [Rewrite](https://nginx.org/en/docs/http/ngx_http_rewrite_module.html) module, with the Set-Misc dynamic module supported by NGINX, Inc. -docs: DOCS-400 +nd-docs: DOCS-400 title: Set-Misc toc: true weight: 100 diff --git a/content/nginx/admin-guide/dynamic-modules/spnego.md b/content/nginx/admin-guide/dynamic-modules/spnego.md index 134113063..517ee123c 100644 --- a/content/nginx/admin-guide/dynamic-modules/spnego.md +++ b/content/nginx/admin-guide/dynamic-modules/spnego.md @@ -1,7 +1,7 @@ --- description: This module adds [SPNEGO](https://tools.ietf.org/html/rfc4178) support to F5 NGINX Plus. Currently, only Kerberos authentication via GSSAPI is supported. -docs: DOCS-401 +nd-docs: DOCS-401 title: SPNEGO toc: true weight: 100 diff --git a/content/nginx/admin-guide/dynamic-modules/uninstall.md b/content/nginx/admin-guide/dynamic-modules/uninstall.md index ee504ae99..1bd838201 100644 --- a/content/nginx/admin-guide/dynamic-modules/uninstall.md +++ b/content/nginx/admin-guide/dynamic-modules/uninstall.md @@ -1,13 +1,13 @@ --- description: This section describes how to uninstall an F5 NGINX Plus dynamic module. -docs: DOCS-402 +nd-docs: DOCS-402 title: Uninstalling a dynamic module toc: true weight: 100 type: - how-to --- -You may need to uninstall a dynamic module in NGINX Plus in several scenarios: +You may need to uninstall a dynamic module in NGINX Plus in several scenarios: - The module is being replaced with a newer or alternative version. For example, the [OpenTracing]({{< ref "opentracing.md" >}}) module has been replaced by the [OpenTelemetry]({{< ref "opentelemetry.md" >}}) module. The [Cookie-Flag]({{< ref "cookie-flag.md" >}}) dynamic module has been superseded by natively supported [`proxy_cookie_flags`](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_cookie_flags) directive. diff --git a/content/nginx/admin-guide/dynamic-modules/xslt.md b/content/nginx/admin-guide/dynamic-modules/xslt.md index 0a2117ea4..9a1c2674e 100644 --- a/content/nginx/admin-guide/dynamic-modules/xslt.md +++ b/content/nginx/admin-guide/dynamic-modules/xslt.md @@ -1,7 +1,7 @@ --- description: Modify XML code in response bodies using one or more XSLT stylesheets, with the XSLT dynamic module, supported by NGINX, Inc. -docs: DOCS-403 +nd-docs: DOCS-403 title: XSLT toc: true weight: 100 diff --git a/content/nginx/admin-guide/high-availability/configuration-sharing.md b/content/nginx/admin-guide/high-availability/configuration-sharing.md index 1f89b6967..a6a9e73ed 100644 --- a/content/nginx/admin-guide/high-availability/configuration-sharing.md +++ b/content/nginx/admin-guide/high-availability/configuration-sharing.md @@ -1,7 +1,7 @@ --- description: Sychronize configuration across a cluster of F5 NGINX Plus instances. Though designed for high-availability deployments, the solution works for any cluster. -docs: DOCS-404 +nd-docs: DOCS-404 title: Synchronizing NGINX Configuration in a Cluster toc: true weight: 300 diff --git a/content/nginx/admin-guide/high-availability/ha-keepalived-nodes.md b/content/nginx/admin-guide/high-availability/ha-keepalived-nodes.md index 52465ece9..9b88cafeb 100644 --- a/content/nginx/admin-guide/high-availability/ha-keepalived-nodes.md +++ b/content/nginx/admin-guide/high-availability/ha-keepalived-nodes.md @@ -1,7 +1,7 @@ --- description: Enable high availability of F5 NGINX Plus instances in on-premises deployments, with active-active pairs and multiple passive instances. -docs: DOCS-405 +nd-docs: DOCS-405 title: Configuring Active-Active High Availability and Additional Passive Nodes with keepalived toc: true diff --git a/content/nginx/admin-guide/high-availability/ha-keepalived.md b/content/nginx/admin-guide/high-availability/ha-keepalived.md index 23aae7e4b..df12a2379 100644 --- a/content/nginx/admin-guide/high-availability/ha-keepalived.md +++ b/content/nginx/admin-guide/high-availability/ha-keepalived.md @@ -1,7 +1,7 @@ --- description: Enable high availability of F5 NGINX Plus instances in on-premises deployments, configuring an active-passive pair in a solution based on keepalived and VRRP. -docs: DOCS-406 +nd-docs: DOCS-406 title: High Availability Support for NGINX Plus in On-Premises Deployments toc: true weight: 100 diff --git a/content/nginx/admin-guide/high-availability/zone_sync.md b/content/nginx/admin-guide/high-availability/zone_sync.md index 5baeb4224..c7e0191b5 100644 --- a/content/nginx/admin-guide/high-availability/zone_sync.md +++ b/content/nginx/admin-guide/high-availability/zone_sync.md @@ -2,7 +2,7 @@ description: This article describes how to use F5 NGINX Plus to synchronize shared memory zones across NGINX cluster nodes including sticky learn session persistence, requests limiting, and key-value store data. -docs: DOCS-407 +nd-docs: DOCS-407 title: Runtime State Sharing in a Cluster toc: true weight: 400 diff --git a/content/nginx/admin-guide/high-availability/zone_sync_details.md b/content/nginx/admin-guide/high-availability/zone_sync_details.md index 8b46c0568..dfd91b2f0 100644 --- a/content/nginx/admin-guide/high-availability/zone_sync_details.md +++ b/content/nginx/admin-guide/high-availability/zone_sync_details.md @@ -1,7 +1,7 @@ --- description: Design and limitations of the zone synchronization feature that allows synchronizing data in an nginx cluster. -docs: DOCS-408 +nd-docs: DOCS-408 title: How NGINX Plus Performs Zone Synchronization toc: true weight: 500 diff --git a/content/nginx/admin-guide/installing-nginx/installing-nginx-docker.md b/content/nginx/admin-guide/installing-nginx/installing-nginx-docker.md index 2c9f4ce58..31c02eebe 100644 --- a/content/nginx/admin-guide/installing-nginx/installing-nginx-docker.md +++ b/content/nginx/admin-guide/installing-nginx/installing-nginx-docker.md @@ -1,6 +1,6 @@ --- description: Deploy NGINX and F5 NGINX Plus as the Docker container. -docs: DOCS-409 +nd-docs: DOCS-409 title: Deploying NGINX and NGINX Plus with Docker toc: true weight: 600 @@ -28,7 +28,7 @@ type: Since NGINX Plus NGINX Plus [Release 31]({{< ref "nginx/releases.md#r31" >}}) you can get an NGINX Plus image from the official NGINX Plus Docker registry and upload it to your private registry. -The NGINX Plus Docker registry is available at `https://private-registry.nginx.com/v2/`. +The NGINX Plus Docker registry is available at `https://private-registry.nginx.com/v2/`. The registry contains the following image types: diff --git a/content/nginx/admin-guide/installing-nginx/installing-nginx-open-source.md b/content/nginx/admin-guide/installing-nginx/installing-nginx-open-source.md index 0394b8053..a56510b8f 100644 --- a/content/nginx/admin-guide/installing-nginx/installing-nginx-open-source.md +++ b/content/nginx/admin-guide/installing-nginx/installing-nginx-open-source.md @@ -1,7 +1,7 @@ --- description: Install NGINX Open Source either as a prebuilt package or from source, following step-by-step instructions for all supported Linux distributions. -docs: DOCS-410 +nd-docs: DOCS-410 title: Installing NGINX Open Source toc: true weight: 200 @@ -106,7 +106,7 @@ The installation steps include updating the package repository and installing th amazon-linux-extras list | grep nginx # get package name, e.g. nginx1 sudo amazon-linux-extras install nginx1 ``` - + Check the version installed: ```shell @@ -437,7 +437,7 @@ Before installing, check if your operating system and architecture are supported | sudo tee /etc/apt/preferences.d/99nginx ``` -6. Install the `nginx` package: +6. Install the `nginx` package: ```shell sudo apt update && \ diff --git a/content/nginx/admin-guide/installing-nginx/installing-nginx-plus-amazon-web-services.md b/content/nginx/admin-guide/installing-nginx/installing-nginx-plus-amazon-web-services.md index 66a814d97..497ab477d 100644 --- a/content/nginx/admin-guide/installing-nginx/installing-nginx-plus-amazon-web-services.md +++ b/content/nginx/admin-guide/installing-nginx/installing-nginx-plus-amazon-web-services.md @@ -1,7 +1,7 @@ --- description: Install F5 NGINX Plus on Amazon Web Services (AWS), to provide sophisticated Layer 7 load balancing for your apps running on Amazon Linux, RHEL, and Ubuntu. -docs: DOCS-411 +nd-docs: DOCS-411 title: Installing NGINX Plus AMIs on Amazon EC2 toc: true weight: 300 diff --git a/content/nginx/admin-guide/installing-nginx/installing-nginx-plus-google-cloud-platform.md b/content/nginx/admin-guide/installing-nginx/installing-nginx-plus-google-cloud-platform.md index 02e88fbd8..0be740d50 100644 --- a/content/nginx/admin-guide/installing-nginx/installing-nginx-plus-google-cloud-platform.md +++ b/content/nginx/admin-guide/installing-nginx/installing-nginx-plus-google-cloud-platform.md @@ -1,7 +1,7 @@ --- description: Install F5 NGINX Plus on the Google Cloud Platform, to provide sophisticated Layer 7 load balancing for your apps running on Google Compute Engine. -docs: DOCS-412 +nd-docs: DOCS-412 title: Install NGINX Plus on the Google Cloud Platform toc: true weight: 400 diff --git a/content/nginx/admin-guide/installing-nginx/installing-nginx-plus-microsoft-azure.md b/content/nginx/admin-guide/installing-nginx/installing-nginx-plus-microsoft-azure.md index bae0f2be2..15be48b73 100644 --- a/content/nginx/admin-guide/installing-nginx/installing-nginx-plus-microsoft-azure.md +++ b/content/nginx/admin-guide/installing-nginx/installing-nginx-plus-microsoft-azure.md @@ -1,7 +1,7 @@ --- description: Install F5 NGINX Plus as a virtual machine image on Microsoft Azure, to provide sophisticated Layer 7 load balancing for your apps. -docs: DOCS-413 +nd-docs: DOCS-413 title: Installing NGINX Plus on Microsoft Azure toc: true weight: 500 diff --git a/content/nginx/admin-guide/installing-nginx/installing-nginx-plus.md b/content/nginx/admin-guide/installing-nginx/installing-nginx-plus.md index aed4c97fe..bf36ca1fb 100644 --- a/content/nginx/admin-guide/installing-nginx/installing-nginx-plus.md +++ b/content/nginx/admin-guide/installing-nginx/installing-nginx-plus.md @@ -1,7 +1,7 @@ --- description: Install and upgrade F5 NGINX Plus with step-by-step instructions for the base package and dynamic modules on all supported Linux distributions. -docs: DOCS-414 +nd-docs: DOCS-414 title: Installing NGINX Plus toc: true weight: 100 @@ -452,7 +452,7 @@ NGINX-certified community dynamic modules are popular third‑party modules test | [SPNEGO for Kerberos](https://github.com/stnoonan/spnego-http-auth-nginx-module) | Adds support for [GSS‑API based](https://www.rfc-editor.org/rfc/rfc2743) SPNEGO/Kerberos authentication. | [`nginx-plus-module-auth-spnego`]({{< ref "nginx/admin-guide/dynamic-modules/spnego.md" >}}) | {{< /bootstrap-table >}} -### Install from official repository +### Install from official repository [NGINX‑authored](#nginx-authored-dynamic-modules) and [NGINX‑certified community](#nginx-certified-community-dynamic-modules) dynamic modules can be installed as packaged binaries directly from the official `nginx-plus` repository. To install a binary package, run the command in a terminal that corresponds to your operating system, replacing `` with the actual binary package name, for example, `nginx-plus-module-njs`. @@ -679,7 +679,7 @@ For a community dynamic module to work with NGINX Plus, it must be compiled alo cp objs/ngx_http_hello_world_module.so ./ngx_http_hello_world_module_1.27.4.so ``` -1. Transfer the resulting `.so` file from your build environment to the production environment. +1. Transfer the resulting `.so` file from your build environment to the production environment. 1. In your production environment, copy the resulting `.so` file to the dynamic modules directory. The path to the directory depends on your operating system: diff --git a/content/nginx/admin-guide/load-balancer/dynamic-configuration-api.md b/content/nginx/admin-guide/load-balancer/dynamic-configuration-api.md index 742d40381..7e68e92b3 100644 --- a/content/nginx/admin-guide/load-balancer/dynamic-configuration-api.md +++ b/content/nginx/admin-guide/load-balancer/dynamic-configuration-api.md @@ -1,7 +1,7 @@ --- description: Dynamically reconfigure the servers in an F5 NGINX Plus upstream group using the NGINX Plus API, without reloading configuration or restarting processes. -docs: DOCS-415 +nd-docs: DOCS-415 title: Dynamic Configuration of Upstreams with the NGINX Plus API toc: true weight: 700 diff --git a/content/nginx/admin-guide/load-balancer/grpc-health-check.md b/content/nginx/admin-guide/load-balancer/grpc-health-check.md index cc63388bc..c345e84b6 100644 --- a/content/nginx/admin-guide/load-balancer/grpc-health-check.md +++ b/content/nginx/admin-guide/load-balancer/grpc-health-check.md @@ -1,7 +1,7 @@ --- description: Monitor the health of gRPC servers in an upstream group by sending periodic health checks. -docs: DOCS-416 +nd-docs: DOCS-416 title: gRPC Health Checks toc: true weight: 600 diff --git a/content/nginx/admin-guide/load-balancer/http-health-check.md b/content/nginx/admin-guide/load-balancer/http-health-check.md index 49dbb1b4d..468fd2989 100644 --- a/content/nginx/admin-guide/load-balancer/http-health-check.md +++ b/content/nginx/admin-guide/load-balancer/http-health-check.md @@ -1,7 +1,7 @@ --- description: Monitor the health of HTTP servers in an upstream group by sending periodic health checks, including customizable active health checks in F5 NGINX Plus. -docs: DOCS-417 +nd-docs: DOCS-417 title: HTTP Health Checks toc: true weight: 300 diff --git a/content/nginx/admin-guide/load-balancer/http-load-balancer.md b/content/nginx/admin-guide/load-balancer/http-load-balancer.md index b76578a60..4bdfa62f3 100644 --- a/content/nginx/admin-guide/load-balancer/http-load-balancer.md +++ b/content/nginx/admin-guide/load-balancer/http-load-balancer.md @@ -1,7 +1,7 @@ --- description: Load balance HTTP traffic across web or application server groups, with several algorithms and advanced features like slow-start and session persistence. -docs: DOCS-418 +nd-docs: DOCS-418 title: HTTP Load Balancing toc: true weight: 100 @@ -217,7 +217,7 @@ NGINX Plus supports three session persistence methods. The methods are set with In the example above, the `srv_id` parameter sets the name of the cookie. The optional `expires` parameter sets the time for the browser to keep the cookie (here, `1` hour). The optional `domain` parameter defines the domain for which the cookie is set, and the optional `path` parameter defines the path for which the cookie is set. -- [Sticky route](https://nginx.org/en/docs/http/ngx_http_upstream_module.html#sticky_route) – Use the [`route`](https://nginx.org/en/docs/http/ngx_http_upstream_module.html#route) parameter to the `server` directive to assign a route identifier to each server. NGINX Plus assigns one of the route identifiers to the client when it receives the client's first request. Subsequent requests then compare these route identifiers, which are either stored in a cookie or passed in the request URI. +- [Sticky route](https://nginx.org/en/docs/http/ngx_http_upstream_module.html#sticky_route) – Use the [`route`](https://nginx.org/en/docs/http/ngx_http_upstream_module.html#route) parameter to the `server` directive to assign a route identifier to each server. NGINX Plus assigns one of the route identifiers to the client when it receives the client's first request. Subsequent requests then compare these route identifiers, which are either stored in a cookie or passed in the request URI. ```nginx upstream backend { @@ -227,7 +227,7 @@ NGINX Plus supports three session persistence methods. The methods are set with } ``` In the example above, the session cookie is checked first for the route identifier. If there is none, then the URI is checked second. - + - [Sticky learn](https://nginx.org/en/docs/http/ngx_http_upstream_module.html#sticky_learn) – NGINX Plus first finds session identifiers by inspecting requests and responses. Then NGINX Plus “learns” which upstream server corresponds to which session identifier. Generally, these identifiers are passed in a HTTP cookie. If a request contains a session identifier already “learned”, NGINX Plus forwards the request to the corresponding server: ```nginx @@ -279,7 +279,7 @@ The [`max_conns`](https://nginx.org/en/docs/http/ngx_http_upstream_module.html#m The [`queue`](https://nginx.org/en/docs/http/ngx_http_upstream_module.html#queue) directive allows excess connections to be held in a queue. It requires a maxmum number for the queue and a timeout. -If the `max_conns` limit has been reached, the request is placed in a queue for further processing. If the queue limit has been reached, if no queue directive is specified, or if a client reaches the `timeout` time in queue, the client will receive an error. +If the `max_conns` limit has been reached, the request is placed in a queue for further processing. If the queue limit has been reached, if no queue directive is specified, or if a client reaches the `timeout` time in queue, the client will receive an error. ```nginx upstream backend { diff --git a/content/nginx/admin-guide/load-balancer/tcp-health-check.md b/content/nginx/admin-guide/load-balancer/tcp-health-check.md index 585cdf7da..65dff60c3 100644 --- a/content/nginx/admin-guide/load-balancer/tcp-health-check.md +++ b/content/nginx/admin-guide/load-balancer/tcp-health-check.md @@ -1,7 +1,7 @@ --- description: Monitor the health of TCP servers in an upstream group by sending periodic health checks, including customizable active health checks in F5 NGINX Plus. -docs: DOCS-419 +nd-docs: DOCS-419 title: TCP Health Checks toc: true weight: 400 diff --git a/content/nginx/admin-guide/load-balancer/tcp-udp-load-balancer.md b/content/nginx/admin-guide/load-balancer/tcp-udp-load-balancer.md index bf40c20be..a6ef398f0 100644 --- a/content/nginx/admin-guide/load-balancer/tcp-udp-load-balancer.md +++ b/content/nginx/admin-guide/load-balancer/tcp-udp-load-balancer.md @@ -1,7 +1,7 @@ --- description: This chapter describes how to use F5 NGINX Plus and NGINX Open Source to proxy and load balance TCP and UDP traffic. -docs: DOCS-420 +nd-docs: DOCS-420 title: TCP and UDP Load Balancing toc: true weight: 200 diff --git a/content/nginx/admin-guide/load-balancer/udp-health-check.md b/content/nginx/admin-guide/load-balancer/udp-health-check.md index 7885d032a..3be757218 100644 --- a/content/nginx/admin-guide/load-balancer/udp-health-check.md +++ b/content/nginx/admin-guide/load-balancer/udp-health-check.md @@ -1,7 +1,7 @@ --- description: This chapter describes how to configure different types of health checks for UDP servers in a load‑balanced upstream server group. -docs: DOCS-421 +nd-docs: DOCS-421 title: UDP Health Checks toc: true weight: 500 @@ -240,7 +240,7 @@ This is the raw DNS query of `healthcheck.example.com`, represented as one line where: {{}} -| HEX | Description | +| HEX | Description | |------------------|------------------------| | \x00\x01 | Transaction ID: 0x0001 | | \x01\x00 | Flags: Standard query, recursion desired | diff --git a/content/nginx/admin-guide/load-balancer/using-proxy-protocol.md b/content/nginx/admin-guide/load-balancer/using-proxy-protocol.md index 3ed8000be..4e42c2ce6 100644 --- a/content/nginx/admin-guide/load-balancer/using-proxy-protocol.md +++ b/content/nginx/admin-guide/load-balancer/using-proxy-protocol.md @@ -1,6 +1,6 @@ --- description: '' -docs: DOCS-422 +nd-docs: DOCS-422 title: Accepting the PROXY Protocol toc: true weight: 800 diff --git a/content/nginx/admin-guide/mail-proxy/mail-proxy.md b/content/nginx/admin-guide/mail-proxy/mail-proxy.md index a2f29c46d..8d081c6f1 100644 --- a/content/nginx/admin-guide/mail-proxy/mail-proxy.md +++ b/content/nginx/admin-guide/mail-proxy/mail-proxy.md @@ -1,7 +1,7 @@ --- description: Simplify your email service and improve its performance with NGINX or F5 NGINX Plus as a proxy for the IMAP, POP3, and SMTP protocols -docs: DOCS-423 +nd-docs: DOCS-423 title: Configure NGINX as a Mail Proxy Server toc: true weight: 100 diff --git a/content/nginx/admin-guide/monitoring/debugging.md b/content/nginx/admin-guide/monitoring/debugging.md index 91125e718..2aaf0f352 100644 --- a/content/nginx/admin-guide/monitoring/debugging.md +++ b/content/nginx/admin-guide/monitoring/debugging.md @@ -1,7 +1,7 @@ --- description: Troubleshoot problems and track down bugs in an NGINX or F5 NGINX Plus deployment, with the debugging binary, debug logging, and core dumps. -docs: DOCS-424 +nd-docs: DOCS-424 title: Debugging NGINX toc: true weight: 300 diff --git a/content/nginx/admin-guide/monitoring/diagnostic-package.md b/content/nginx/admin-guide/monitoring/diagnostic-package.md index 1960889db..a58e77b3c 100644 --- a/content/nginx/admin-guide/monitoring/diagnostic-package.md +++ b/content/nginx/admin-guide/monitoring/diagnostic-package.md @@ -1,7 +1,7 @@ --- description: This page describes how to trigger the automatic collection of data required to troubleshoot issues in a NGINX or F5 NGINX Plus deployment. -docs: DOCS-1357 +nd-docs: DOCS-1357 title: NGINX Diagnostic Package toc: true weight: 400 diff --git a/content/nginx/admin-guide/monitoring/live-activity-monitoring.md b/content/nginx/admin-guide/monitoring/live-activity-monitoring.md index cd6e9e4f5..55474230f 100644 --- a/content/nginx/admin-guide/monitoring/live-activity-monitoring.md +++ b/content/nginx/admin-guide/monitoring/live-activity-monitoring.md @@ -2,7 +2,7 @@ description: Track the performance of F5 NGINX Plus and your apps in real time, on the built-in live activity monitoring dashboard or by feeding the JSON to other tools. -docs: DOCS-425 +nd-docs: DOCS-425 title: Live Activity Monitoring toc: true weight: 100 diff --git a/content/nginx/admin-guide/monitoring/logging.md b/content/nginx/admin-guide/monitoring/logging.md index 2f075d9e7..6f1c8a048 100644 --- a/content/nginx/admin-guide/monitoring/logging.md +++ b/content/nginx/admin-guide/monitoring/logging.md @@ -1,7 +1,7 @@ --- description: Capture detailed information about errors and request processing in log files, either locally or via syslog. -docs: DOCS-426 +nd-docs: DOCS-426 title: Configuring Logging toc: true weight: 200 @@ -14,7 +14,7 @@ This article describes how to log errors and requests in NGINX Open Source and ## Set Up the Error Log -NGINX writes an error log that records encountered issues of different severity levels. The [error_log](https://nginx.org/en/docs/ngx_core_module.html#error_log) directive sets up the log location and severity level. The log location can be a particular file, `stderr`, or `syslog`. By default, the error log is located at **logs/error.log**, but the absolute path depends on the operating system and installation. The error severity level follows the `syslog` classification system. The log includes messages from all severity levels above the specified level. +NGINX writes an error log that records encountered issues of different severity levels. The [error_log](https://nginx.org/en/docs/ngx_core_module.html#error_log) directive sets up the log location and severity level. The log location can be a particular file, `stderr`, or `syslog`. By default, the error log is located at **logs/error.log**, but the absolute path depends on the operating system and installation. The error severity level follows the `syslog` classification system. The log includes messages from all severity levels above the specified level. The configuration below changes the minimal severity level of error messages to log from `error` to `warn`: @@ -81,7 +81,7 @@ When reading the resulting time values, keep the following in mind: - When a request is unable to reach an upstream server or a full header cannot be received, the variable contains `0` (zero) - In case of internal error while connecting to an upstream or when a reply is taken from the cache, the variable contains `-` (hyphen) -The log can be optimized by enabling the `buffer` and the `cache`. With the [buffer](https://nginx.org/en/docs/http/ngx_http_log_module.html#access_log) parameter enabled, messages will be stored in the buffer first. When the buffer is full (or in some other [cases](https://nginx.org/en/docs/http/ngx_http_log_module.html#access_log)), the messages will be written to the log. +The log can be optimized by enabling the `buffer` and the `cache`. With the [buffer](https://nginx.org/en/docs/http/ngx_http_log_module.html#access_log) parameter enabled, messages will be stored in the buffer first. When the buffer is full (or in some other [cases](https://nginx.org/en/docs/http/ngx_http_log_module.html#access_log)), the messages will be written to the log. To enable caching of log file descriptors, use the [open_log_file_cache](https://nginx.org/en/docs/http/ngx_http_log_module.html#open_log_file_cache) directive. Similar to the `error_log` directive, the [access_log](https://nginx.org/en/docs/http/ngx_http_log_module.html#access_log) directive defined on a particular configuration level overrides the settings from the previous levels. When processing of a request is completed, the message is written to the log that is configured on the current level, or inherited from the previous levels. If one level has multiple access log definitions, the message is written to all of them. diff --git a/content/nginx/admin-guide/monitoring/new-relic-plugin.md b/content/nginx/admin-guide/monitoring/new-relic-plugin.md index e22e19f44..5f4106696 100644 --- a/content/nginx/admin-guide/monitoring/new-relic-plugin.md +++ b/content/nginx/admin-guide/monitoring/new-relic-plugin.md @@ -1,7 +1,7 @@ --- description: Find what's new in version 2 of the NGINX and F5 NGINX Plus plug‑in for New Relic – more convenience, more metrics, richer visualization. -docs: DOCS-427 +nd-docs: DOCS-427 title: Monitoring NGINX and NGINX Plus with the New Relic Plug-In toc: true weight: 500 diff --git a/content/nginx/admin-guide/security-controls/configuring-http-basic-authentication.md b/content/nginx/admin-guide/security-controls/configuring-http-basic-authentication.md index 7474c6281..b55e58db1 100644 --- a/content/nginx/admin-guide/security-controls/configuring-http-basic-authentication.md +++ b/content/nginx/admin-guide/security-controls/configuring-http-basic-authentication.md @@ -1,7 +1,7 @@ --- description: Control access using HTTP Basic authentication, and optionally in combination with IP address-based access control. -docs: DOCS-428 +nd-docs: DOCS-428 title: Restricting Access with HTTP Basic Authentication toc: true weight: 300 diff --git a/content/nginx/admin-guide/security-controls/configuring-jwt-authentication.md b/content/nginx/admin-guide/security-controls/configuring-jwt-authentication.md index bde080030..f13bad756 100644 --- a/content/nginx/admin-guide/security-controls/configuring-jwt-authentication.md +++ b/content/nginx/admin-guide/security-controls/configuring-jwt-authentication.md @@ -1,7 +1,7 @@ --- description: This article explains how to control authentication of your web resources using JWT authentication. -docs: DOCS-429 +nd-docs: DOCS-429 title: Setting up JWT Authentication toc: true weight: 500 diff --git a/content/nginx/admin-guide/security-controls/configuring-oidc.md b/content/nginx/admin-guide/security-controls/configuring-oidc.md index 1d35bbbdc..b9281f3e7 100644 --- a/content/nginx/admin-guide/security-controls/configuring-oidc.md +++ b/content/nginx/admin-guide/security-controls/configuring-oidc.md @@ -6,10 +6,10 @@ title: Single Sign-On with OpenID Connect and Identity Providers toc: true weight: 550 product: NGINX-PLUS -docs: DOCS-1690 +nd-docs: DOCS-1690 --- -This guide explains how to enable single sign-on (SSO) for applications being proxied by F5 NGINX Plus using: +This guide explains how to enable single sign-on (SSO) for applications being proxied by F5 NGINX Plus using: - OpenID Connect as the authentication mechanism. - An external Identity Provider (IdP) such as AD FS, Auth0, Cognito, Entra ID, Keycloak, OneLogin, Okta, Ping Identity and others. - NGINX Plus as an OIDC client application that verifies user identity (Relying Party). @@ -35,7 +35,7 @@ For the target client application, OIDC authentication can be enabled with great 6. NGINX Plus validates the `id_token` and retrieves profile data for the user using the `UserInfo` endpoint. The retrieved profile data is validated and the content of the `id_token` and the profile data is used for providing access control to the client application. -7. Upon successful validation, the resource access request is sent to the client application along with the access token. +7. Upon successful validation, the resource access request is sent to the client application along with the access token. 8. The client application validates the access token and based on the token validation, the resource access request is allowed or denied. @@ -66,7 +66,7 @@ For the target client application, OIDC authentication can be enabled with great - An identity provider (IdP) set up on your network or in the cloud. You need admin access to the IdP. -- An [NGINX Plus subscription](https://www.f5.com/products/nginx/nginx-plus) and NGINX Plus [Release 34]({{< ref "nginx/releases.md#r34" >}}) or later. +- An [NGINX Plus subscription](https://www.f5.com/products/nginx/nginx-plus) and NGINX Plus [Release 34]({{< ref "nginx/releases.md#r34" >}}) or later. To install NGINX Plus, follow the steps in [Installing NGINX Plus](https://docs.nginx.com/nginx/admin-guide/installing-nginx/installing-nginx-plus/). - A domain name that points to your NGINX Plus instance (for example, `demo.example.com`). @@ -83,7 +83,7 @@ The setup steps are similar for most identity providers, but some details may di - Give the app a name. - Add the users or groups who need access. -3. Find the **Client ID** and **Client Secret** for your app. +3. Find the **Client ID** and **Client Secret** for your app. You'll need these later when you [set up NGINX Plus as the relying party](#setup-oidc-provider2). 4. Find the **issuer** value. diff --git a/content/nginx/admin-guide/security-controls/configuring-subrequest-authentication.md b/content/nginx/admin-guide/security-controls/configuring-subrequest-authentication.md index c023fee65..2ca4cb6e7 100644 --- a/content/nginx/admin-guide/security-controls/configuring-subrequest-authentication.md +++ b/content/nginx/admin-guide/security-controls/configuring-subrequest-authentication.md @@ -1,7 +1,7 @@ --- description: Authenticate clients during request processing by making a subrequest to an external authentication service, such as LDAP or OAuth. -docs: DOCS-430 +nd-docs: DOCS-430 title: Authentication Based on Subrequest Result toc: true weight: 400 diff --git a/content/nginx/admin-guide/security-controls/controlling-access-by-geoip.md b/content/nginx/admin-guide/security-controls/controlling-access-by-geoip.md index 5432bbb9e..7b8846695 100644 --- a/content/nginx/admin-guide/security-controls/controlling-access-by-geoip.md +++ b/content/nginx/admin-guide/security-controls/controlling-access-by-geoip.md @@ -1,7 +1,7 @@ --- description: Control access or forward traffic to different upstream servers based on the client's geographical location, using the GeoIP2 dynamic module. -docs: DOCS-431 +nd-docs: DOCS-431 title: Restricting Access by Geographical Location toc: true weight: 800 diff --git a/content/nginx/admin-guide/security-controls/controlling-access-proxied-http.md b/content/nginx/admin-guide/security-controls/controlling-access-proxied-http.md index a135c60cf..14ce72737 100644 --- a/content/nginx/admin-guide/security-controls/controlling-access-proxied-http.md +++ b/content/nginx/admin-guide/security-controls/controlling-access-proxied-http.md @@ -1,7 +1,7 @@ --- description: Protect your upstream web and application servers by limiting connections, rate of requests, or bandwidth, based on client IP address or other variables. -docs: DOCS-432 +nd-docs: DOCS-432 title: Limiting Access to Proxied HTTP Resources toc: true weight: 600 diff --git a/content/nginx/admin-guide/security-controls/controlling-access-proxied-tcp.md b/content/nginx/admin-guide/security-controls/controlling-access-proxied-tcp.md index bb1f2a268..714d3266d 100644 --- a/content/nginx/admin-guide/security-controls/controlling-access-proxied-tcp.md +++ b/content/nginx/admin-guide/security-controls/controlling-access-proxied-tcp.md @@ -1,7 +1,7 @@ --- description: Protect your upstream TCP application servers by limiting connections or bandwidth, based on client IP address or other variables. -docs: DOCS-433 +nd-docs: DOCS-433 title: Restricting Access to Proxied TCP Resources toc: true weight: 700 diff --git a/content/nginx/admin-guide/security-controls/denylisting-ip-addresses.md b/content/nginx/admin-guide/security-controls/denylisting-ip-addresses.md index d7e68d231..26c9d0475 100644 --- a/content/nginx/admin-guide/security-controls/denylisting-ip-addresses.md +++ b/content/nginx/admin-guide/security-controls/denylisting-ip-addresses.md @@ -1,7 +1,7 @@ --- description: Control access to your site or apps from specific client IP addresses, using dynamic denylists built with the F5 NGINX Plus key-value store and API. -docs: DOCS-434 +nd-docs: DOCS-434 title: Dynamic Denylisting of IP Addresses toc: true weight: 1100 diff --git a/content/nginx/admin-guide/security-controls/securing-http-traffic-upstream.md b/content/nginx/admin-guide/security-controls/securing-http-traffic-upstream.md index 978bab7c5..1ac632735 100644 --- a/content/nginx/admin-guide/security-controls/securing-http-traffic-upstream.md +++ b/content/nginx/admin-guide/security-controls/securing-http-traffic-upstream.md @@ -1,7 +1,7 @@ --- description: Secure HTTP traffic between NGINX or F5 NGINX Plus and upstream servers, using SSL/TLS encryption. -docs: DOCS-435 +nd-docs: DOCS-435 title: Securing HTTP Traffic to Upstream Servers toc: true weight: 900 @@ -185,5 +185,5 @@ When a secure connection is passed from NGINX to the upstream server for the fir The next time NGINX passes a connection to the upstream server, session parameters will be reused because of the [proxy_ssl_session_reuse](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_ssl_session_reuse) directive, and the secured connection is established faster. The trusted CA certificates in the file named by the [proxy_ssl_trusted_certificate](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_ssl_trusted_certificate) directive are used to verify the certificate on the upstream. -The [proxy_ssl_verify_depth](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_ssl_verify_depth) directive specifies that two certificates in the certificates chain are checked. +The [proxy_ssl_verify_depth](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_ssl_verify_depth) directive specifies that two certificates in the certificates chain are checked. The [proxy_ssl_verify](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_ssl_verify) directive verifies the validity of certificates. diff --git a/content/nginx/admin-guide/security-controls/securing-tcp-traffic-upstream.md b/content/nginx/admin-guide/security-controls/securing-tcp-traffic-upstream.md index d40ccac1b..4ac9038ee 100644 --- a/content/nginx/admin-guide/security-controls/securing-tcp-traffic-upstream.md +++ b/content/nginx/admin-guide/security-controls/securing-tcp-traffic-upstream.md @@ -1,7 +1,7 @@ --- description: Secure TCP traffic between NGINX or F5 F5 NGINX Plus and upstream servers, using SSL/TLS encryption. -docs: DOCS-436 +nd-docs: DOCS-436 title: Securing TCP Traffic to Upstream Servers toc: true weight: 1000 @@ -19,7 +19,7 @@ This article explains how to secure TCP traffic between NGINX and an upstream TC ## Obtaining SSL Server Certificates -First, obtain SSL server certificates and a private key. Obtain an SSL server certificate from a trusted certificate authority (CA). Alternatively, generate one using an SSL library such as [OpenSSL](http://www.openssl.org/). Place the server certificates and private key on each of the upstream servers. +First, obtain SSL server certificates and a private key. Obtain an SSL server certificate from a trusted certificate authority (CA). Alternatively, generate one using an SSL library such as [OpenSSL](http://www.openssl.org/). Place the server certificates and private key on each of the upstream servers. Self-signed server certificates encrypt the connection between NGINX and the upstream server. However, these connections are vulnerable to a man-in-the-middle attack. (If an imposter impersonates the upstream server, NGINX will not know it is talking to a fake server.) To lessen the risk, obtain server certificates signed by a trusted CA. (You can create your own internal CA using OpenSSL.) Afterward, configure NGINX to only trust certificates signed by that CA. This makes it much more difficult for an attacker to impersonate an upstream server. diff --git a/content/nginx/admin-guide/security-controls/terminating-ssl-http.md b/content/nginx/admin-guide/security-controls/terminating-ssl-http.md index 455e36ea6..89a89db93 100644 --- a/content/nginx/admin-guide/security-controls/terminating-ssl-http.md +++ b/content/nginx/admin-guide/security-controls/terminating-ssl-http.md @@ -1,7 +1,7 @@ --- description: Terminate HTTPS traffic from clients, relieving your upstream web and application servers of the computational load of SSL/TLS encryption. -docs: DOCS-437 +nd-docs: DOCS-437 title: NGINX SSL Termination toc: true weight: 100 diff --git a/content/nginx/admin-guide/security-controls/terminating-ssl-tcp.md b/content/nginx/admin-guide/security-controls/terminating-ssl-tcp.md index af416b053..a1f0cbf57 100644 --- a/content/nginx/admin-guide/security-controls/terminating-ssl-tcp.md +++ b/content/nginx/admin-guide/security-controls/terminating-ssl-tcp.md @@ -1,7 +1,7 @@ --- description: Terminate SSL/TLS-encrypted traffic from clients, relieving your upstream TCP servers of the computational load. -docs: DOCS-438 +nd-docs: DOCS-438 title: SSL Termination for TCP Upstream Servers toc: true weight: 200 diff --git a/content/nginx/admin-guide/web-server/app-gateway-uwsgi-django.md b/content/nginx/admin-guide/web-server/app-gateway-uwsgi-django.md index d65bd8a5d..dc46f512e 100644 --- a/content/nginx/admin-guide/web-server/app-gateway-uwsgi-django.md +++ b/content/nginx/admin-guide/web-server/app-gateway-uwsgi-django.md @@ -1,6 +1,6 @@ --- description: Configure NGINX and F5 NGINX Plus as an application gateway for uWSGI and Django -docs: DOCS-439 +nd-docs: DOCS-439 title: Using NGINX and NGINX Plus as an Application Gateway with uWSGI and Django toc: true weight: 500 diff --git a/content/nginx/admin-guide/web-server/compression.md b/content/nginx/admin-guide/web-server/compression.md index 3f2c685bd..52bdf677f 100644 --- a/content/nginx/admin-guide/web-server/compression.md +++ b/content/nginx/admin-guide/web-server/compression.md @@ -1,7 +1,7 @@ --- description: Compress server responses, or decompress them for clients that don't support compression, to improve delivery speed and reduce overhead on the server. -docs: DOCS-440 +nd-docs: DOCS-440 title: Compression and Decompression toc: true weight: 400 diff --git a/content/nginx/admin-guide/web-server/reverse-proxy.md b/content/nginx/admin-guide/web-server/reverse-proxy.md index b00d5531e..144f9e82c 100644 --- a/content/nginx/admin-guide/web-server/reverse-proxy.md +++ b/content/nginx/admin-guide/web-server/reverse-proxy.md @@ -1,7 +1,7 @@ --- description: Configure NGINX as a reverse proxy for HTTP and other protocols, with support for modifying request headers and fine-tuned buffering of responses. -docs: DOCS-441 +nd-docs: DOCS-441 title: NGINX Reverse Proxy toc: true weight: 300 @@ -21,7 +21,7 @@ When NGINX proxies a request, it: 1. Sends the request to a specified proxy server 1. Fetches the response -1. Sends the response back to the client. +1. Sends the response back to the client. It is possible to proxy requests to an HTTP server (another NGINX server or any other server) or a non-HTTP server (which can run an application developed with a specific framework, such as PHP or Python) using a specified protocol. Supported protocols include [FastCGI](https://nginx.org/en/docs/http/ngx_http_fastcgi_module.html), [uwsgi](https://nginx.org/en/docs/http/ngx_http_uwsgi_module.html), [SCGI](https://nginx.org/en/docs/http/ngx_http_scgi_module.html), and [memcached](https://nginx.org/en/docs/http/ngx_http_memcached_module.html). @@ -41,7 +41,7 @@ location ~ \.php { } ``` -Note that in the first example above, the address of the proxied server is followed by a URI, `/link/`. If the URI is specified along with the address, it replaces the part of the request URI that matches the location parameter. +Note that in the first example above, the address of the proxied server is followed by a URI, `/link/`. If the URI is specified along with the address, it replaces the part of the request URI that matches the location parameter. For example, the request with the `/some/path/page.html` URI will be proxied to `http://www.example.com/link/page.html`. However, if the address is specified without a URI, or it is not possible to determine the part of URI to be replaced, the full request URI is passed (possibly, modified). diff --git a/content/nginx/admin-guide/web-server/serving-static-content.md b/content/nginx/admin-guide/web-server/serving-static-content.md index 3bf089c49..b2ad7eb5f 100644 --- a/content/nginx/admin-guide/web-server/serving-static-content.md +++ b/content/nginx/admin-guide/web-server/serving-static-content.md @@ -1,7 +1,7 @@ --- description: Configure NGINX and F5 NGINX Plus to serve static content, with type-specific root directories, checks for file existence, and performance optimizations. -docs: DOCS-442 +nd-docs: DOCS-442 title: Serve Static Content toc: true weight: 200 diff --git a/content/nginx/admin-guide/web-server/web-server.md b/content/nginx/admin-guide/web-server/web-server.md index 772f17302..c92863549 100644 --- a/content/nginx/admin-guide/web-server/web-server.md +++ b/content/nginx/admin-guide/web-server/web-server.md @@ -1,7 +1,7 @@ --- description: Configure NGINX and F5 NGINX Plus as a web server, with support for virtual server multi-tenancy, URI and response rewriting, variables, and error handling. -docs: DOCS-443 +nd-docs: DOCS-443 title: Configuring NGINX and NGINX Plus as a Web Server toc: true weight: 100 diff --git a/content/nginx/deployment-guides/amazon-web-services/ec2-instances-for-nginx.md b/content/nginx/deployment-guides/amazon-web-services/ec2-instances-for-nginx.md index 0b1b05f2b..d20aa3c6a 100644 --- a/content/nginx/deployment-guides/amazon-web-services/ec2-instances-for-nginx.md +++ b/content/nginx/deployment-guides/amazon-web-services/ec2-instances-for-nginx.md @@ -6,7 +6,7 @@ description: Create Amazon Elastic Compute Cloud (EC2) instances for running NGI toc: true type: how-to product: NGINX+ -docs: DOCS-444 +nd-docs: DOCS-444 --- This guide explains how to create instances in the Amazon Elastic Compute Cloud (EC2) that can run NGINX Open Source and F5 NGINX Plus. diff --git a/content/nginx/deployment-guides/amazon-web-services/high-availability-keepalived.md b/content/nginx/deployment-guides/amazon-web-services/high-availability-keepalived.md index 8df51d9ae..87ff7efcb 100644 --- a/content/nginx/deployment-guides/amazon-web-services/high-availability-keepalived.md +++ b/content/nginx/deployment-guides/amazon-web-services/high-availability-keepalived.md @@ -1,7 +1,7 @@ --- description: Create a highly available active-passive deployment of F5 NGINX Plus on AWS with a solution combining keepalived and the AWS Elastic IP address feature. -docs: DOCS-445 +nd-docs: DOCS-445 title: Active-Passive HA for NGINX Plus on AWS Using Elastic IP Addresses toc: true weight: 200 diff --git a/content/nginx/deployment-guides/amazon-web-services/high-availability-network-load-balancer.md b/content/nginx/deployment-guides/amazon-web-services/high-availability-network-load-balancer.md index c37434906..9929a6858 100644 --- a/content/nginx/deployment-guides/amazon-web-services/high-availability-network-load-balancer.md +++ b/content/nginx/deployment-guides/amazon-web-services/high-availability-network-load-balancer.md @@ -1,7 +1,7 @@ --- description: Create a highly available active-active deployment of F5 NGINX Plus on AWS in combination with AWS Network Load Balancer (NLB). -docs: DOCS-446 +nd-docs: DOCS-446 title: Active-Active HA for NGINX Plus on AWS Using AWS Network Load Balancer toc: true weight: 100 diff --git a/content/nginx/deployment-guides/amazon-web-services/ingress-controller-elastic-kubernetes-services.md b/content/nginx/deployment-guides/amazon-web-services/ingress-controller-elastic-kubernetes-services.md index 09f4df0a0..8f710bad2 100644 --- a/content/nginx/deployment-guides/amazon-web-services/ingress-controller-elastic-kubernetes-services.md +++ b/content/nginx/deployment-guides/amazon-web-services/ingress-controller-elastic-kubernetes-services.md @@ -1,7 +1,7 @@ --- description: Use NGINX or F5 NGINX Plus as the Ingress Controller for Amazon Elastic Kubernetes Services. -docs: DOCS-447 +nd-docs: DOCS-447 title: Using NGINX or NGINX Plus as the Ingress Controller for Amazon Elastic Kubernetes Services toc: true @@ -19,7 +19,7 @@ This guide explains how to use NGINX Open Source or F5 NGINX Plus with NGINX Ing ## Prerequisites - [An AWS account](https://docs.aws.amazon.com/AmazonSimpleDB/latest/DeveloperGuide/AboutAWSAccounts.html). -- A prebuilt image of the NGINX or NGINX Plus Ingress Controller for Kubernetes. +- A prebuilt image of the NGINX or NGINX Plus Ingress Controller for Kubernetes. - For NGINX Open Source you can use the pre-built image [on DockerHub](https://hub.docker.com/r/nginx/nginx-ingress/). You can also build your own image. - For NGINX Plus, you must [build an image](https://docs.nginx.com/nginx-ingress-controller/installation/build-nginx-ingress-controller/). @@ -30,16 +30,16 @@ make container DOCKERFILE=DockerfileForPlus PREFIX=nginx/nginx-plus-ingress ``` The `PREFIX` argument specifies the repo name in your private container registry. In this example, we set it to `nginx/nginx-plus-ingress`. You can later use that name to reference the image instead of its numerical ID. - + ## Create an Amazon EKS Cluster You can create an Amazon EKS cluster with: - the AWS Management Console - the AWS CLI -- the `eksctl` command line utility. +- the `eksctl` command line utility. -This guide covers the `eksctl` command as it is the simplest option. +This guide covers the `eksctl` command as it is the simplest option. 1. Follow the instructions in the [eksctl.io documentation](https://eksctl.io/installation/) to install or update the `eksctl` command. @@ -50,7 +50,7 @@ This guide covers the `eksctl` command as it is the simplest option. This step is only required if you do not plan to use the prebuilt NGINX Open Source image. -1. Use the [AWS documentation](https://docs.aws.amazon.com/AmazonECR/latest/userguide/repository-create.html) to create a repository in the Amazon Elastic Container Registry (ECR). In Step 4 of the AWS instructions, name the repository {{}}**nginx-plus-ic**{{}} as that is what we use in this guide. +1. Use the [AWS documentation](https://docs.aws.amazon.com/AmazonECR/latest/userguide/repository-create.html) to create a repository in the Amazon Elastic Container Registry (ECR). In Step 4 of the AWS instructions, name the repository {{}}**nginx-plus-ic**{{}} as that is what we use in this guide. 2. Run the following AWS CLI command. It generates an auth token for your AWS ECR registry, then pipes it into the `docker login` command. This lets AWS ECR authenticate and authorize the upcoming Docker requests. For details about the command, see the [AWS documentation](https://docs.aws.amazon.com/AmazonECR/latest/userguide/registry_auth.html). @@ -93,7 +93,7 @@ Complete the steps up to and including [Confirm NGINX Ingress Controller is runn These steps assume you've cloned the [kubernetes-ingress](https://github.com/nginx/kubernetes-ingress) repository in the previous step. -You need a Kubernetes `LoadBalancer` service to route traffic to the NGINX Ingress Controller. By default, Amazon EKS will create a [Classic Load Balancer](https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/introduction.html) for Kubernetes services of type `LoadBalancer`. However, we recommend that you create a [Network Load Balancer](https://docs.aws.amazon.com/elasticloadbalancing/latest/network/introduction.html) (NLB). It operates at the transport layer and is optimized for high performance and low latency. +You need a Kubernetes `LoadBalancer` service to route traffic to the NGINX Ingress Controller. By default, Amazon EKS will create a [Classic Load Balancer](https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/introduction.html) for Kubernetes services of type `LoadBalancer`. However, we recommend that you create a [Network Load Balancer](https://docs.aws.amazon.com/elasticloadbalancing/latest/network/introduction.html) (NLB). It operates at the transport layer and is optimized for high performance and low latency. We also recommend enabling the PROXY Protocol for both the NGINX Plus Ingress Controller and your NLB target groups. This is used to forward client connection information. If you choose not to enable the PROXY protocol, see the [Appendix](#appendix). @@ -144,7 +144,7 @@ Apply the manifest `deployments/service/loadbalancer-aws-elb.yaml` to create a ` * The `kubectl` commands are relative to the `deployment/examples/ingress-resources/complete-example` directory of the [kubernetes-ingress](https://github.com/nginx/kubernetes-ingress) repository. * Run the `curl` command listed in the instructions. It will access the demo app and populate the NGINX Plus Ingress Controller logs. -4. Run the following commands to check if the PROXY Protocol is enabled: +4. Run the following commands to check if the PROXY Protocol is enabled: 1. Display the pod of NGINX Ingress Controller: ```shell diff --git a/content/nginx/deployment-guides/amazon-web-services/route-53-global-server-load-balancing.md b/content/nginx/deployment-guides/amazon-web-services/route-53-global-server-load-balancing.md index 3cf5c6530..be9d7369a 100644 --- a/content/nginx/deployment-guides/amazon-web-services/route-53-global-server-load-balancing.md +++ b/content/nginx/deployment-guides/amazon-web-services/route-53-global-server-load-balancing.md @@ -1,7 +1,7 @@ --- description: Deploy global server load balancing (GSLB) for domains hosted in multiple AWS regions, with Amazon Route 53 and F5 NGINX Plus in an HA configuration. -docs: DOCS-448 +nd-docs: DOCS-448 title: Global Server Load Balancing with Amazon Route 53 and NGINX Plus toc: true weight: 300 diff --git a/content/nginx/deployment-guides/global-server-load-balancing/ns1-global-server-load-balancing.md b/content/nginx/deployment-guides/global-server-load-balancing/ns1-global-server-load-balancing.md index 8e14e22e7..414687c03 100644 --- a/content/nginx/deployment-guides/global-server-load-balancing/ns1-global-server-load-balancing.md +++ b/content/nginx/deployment-guides/global-server-load-balancing/ns1-global-server-load-balancing.md @@ -1,7 +1,7 @@ --- description: Deploy global server load balancing (GSLB) for domains registered with DNS services provider NS1 and proxied by F5 NGINX Plus. -docs: DOCS-449 +nd-docs: DOCS-449 title: Global Server Load Balancing with NS1 and NGINX Plus toc: true weight: 100 diff --git a/content/nginx/deployment-guides/google-cloud-platform/high-availability-all-active.md b/content/nginx/deployment-guides/google-cloud-platform/high-availability-all-active.md index f44b95e75..d2b076277 100644 --- a/content/nginx/deployment-guides/google-cloud-platform/high-availability-all-active.md +++ b/content/nginx/deployment-guides/google-cloud-platform/high-availability-all-active.md @@ -1,7 +1,7 @@ --- description: Configure highly available F5 NGINX Plus load balancing of application instances, in an all-active deployment on the Google Cloud Platform. -docs: DOCS-450 +nd-docs: DOCS-450 title: All-Active HA for NGINX Plus on the Google Cloud Platform toc: true weight: 100 diff --git a/content/nginx/deployment-guides/load-balance-third-party/apache-tomcat.md b/content/nginx/deployment-guides/load-balance-third-party/apache-tomcat.md index 0cc3af9b2..44dae6f63 100644 --- a/content/nginx/deployment-guides/load-balance-third-party/apache-tomcat.md +++ b/content/nginx/deployment-guides/load-balance-third-party/apache-tomcat.md @@ -1,7 +1,7 @@ --- description: Load balance Apache Tomcat application servers with NGINX Open Source or the advanced features in F5 NGINX Plus, following our step-by-step setup instructions. -docs: DOCS-451 +nd-docs: DOCS-451 title: Load Balancing Apache Tomcat Servers with NGINX Open Source and NGINX Plus toc: true weight: 100 diff --git a/content/nginx/deployment-guides/load-balance-third-party/microsoft-exchange.md b/content/nginx/deployment-guides/load-balance-third-party/microsoft-exchange.md index 1c1a48769..31cbd5e53 100644 --- a/content/nginx/deployment-guides/load-balance-third-party/microsoft-exchange.md +++ b/content/nginx/deployment-guides/load-balance-third-party/microsoft-exchange.md @@ -1,7 +1,7 @@ --- description: Load balance Microsoft Exchange servers with the advanced features in F5 NGINX Plus, following our step-by-step setup instructions. -docs: DOCS-452 +nd-docs: DOCS-452 title: Load Balancing Microsoft Exchange Servers with NGINX Plus toc: true weight: 100 diff --git a/content/nginx/deployment-guides/load-balance-third-party/node-js.md b/content/nginx/deployment-guides/load-balance-third-party/node-js.md index 93c8b64da..3bef20cac 100644 --- a/content/nginx/deployment-guides/load-balance-third-party/node-js.md +++ b/content/nginx/deployment-guides/load-balance-third-party/node-js.md @@ -1,7 +1,7 @@ --- description: Load balance Node.js application servers with NGINX Open Source or the advanced features in F5 NGINX Plus, following our step-by-step setup instructions. -docs: DOCS-453 +nd-docs: DOCS-453 title: Load Balancing Node.js Application Servers with NGINX Open Source and NGINX Plus toc: true diff --git a/content/nginx/deployment-guides/load-balance-third-party/oracle-e-business-suite.md b/content/nginx/deployment-guides/load-balance-third-party/oracle-e-business-suite.md index 47466094e..bf04cf29b 100644 --- a/content/nginx/deployment-guides/load-balance-third-party/oracle-e-business-suite.md +++ b/content/nginx/deployment-guides/load-balance-third-party/oracle-e-business-suite.md @@ -1,7 +1,7 @@ --- description: Load balance Oracle E-Business Suite applications with the advanced features in F5 NGINX Plus, following our step-by-step setup instructions. -docs: DOCS-454 +nd-docs: DOCS-454 title: Load Balancing Oracle E-Business Suite with NGINX Plus toc: true weight: 100 diff --git a/content/nginx/deployment-guides/load-balance-third-party/oracle-weblogic-server.md b/content/nginx/deployment-guides/load-balance-third-party/oracle-weblogic-server.md index 872e44ebf..f8dfa6d88 100644 --- a/content/nginx/deployment-guides/load-balance-third-party/oracle-weblogic-server.md +++ b/content/nginx/deployment-guides/load-balance-third-party/oracle-weblogic-server.md @@ -1,7 +1,7 @@ --- description: Load balance Oracle WebLogic Servers with NGINX Open Source and the advanced features in F5 NGINX Plus, following our step-by-step setup instructions. -docs: DOCS-455 +nd-docs: DOCS-455 title: Load Balancing Oracle WebLogic Server with NGINX Open Source and NGINX Plus toc: true weight: 100 diff --git a/content/nginx/deployment-guides/load-balance-third-party/wildfly.md b/content/nginx/deployment-guides/load-balance-third-party/wildfly.md index 92c0d72b4..d7e92f7c1 100644 --- a/content/nginx/deployment-guides/load-balance-third-party/wildfly.md +++ b/content/nginx/deployment-guides/load-balance-third-party/wildfly.md @@ -1,7 +1,7 @@ --- description: Load balance Wildfly (JBoss) application servers with NGINX Open Source or the advanced features in F5 NGINX Plus, following our step-by-step setup instructions. -docs: DOCS-456 +nd-docs: DOCS-456 title: Load Balancing Wildfly and JBoss Application Servers with NGINX Open Source and NGINX Plus toc: true diff --git a/content/nginx/deployment-guides/microsoft-azure/high-availability-standard-load-balancer.md b/content/nginx/deployment-guides/microsoft-azure/high-availability-standard-load-balancer.md index e804a2ca2..5503b26aa 100644 --- a/content/nginx/deployment-guides/microsoft-azure/high-availability-standard-load-balancer.md +++ b/content/nginx/deployment-guides/microsoft-azure/high-availability-standard-load-balancer.md @@ -1,7 +1,7 @@ --- description: Create a highly available active-active deployment of F5 NGINX Plus on Microsoft Azure in combination with the Azure Standard Load Balancer. -docs: DOCS-457 +nd-docs: DOCS-457 title: Active-Active HA for NGINX Plus on Microsoft Azure Using the Azure Standard Load Balancer toc: true diff --git a/content/nginx/deployment-guides/microsoft-azure/virtual-machines-for-nginx.md b/content/nginx/deployment-guides/microsoft-azure/virtual-machines-for-nginx.md index ebbc17c53..f507efbb6 100644 --- a/content/nginx/deployment-guides/microsoft-azure/virtual-machines-for-nginx.md +++ b/content/nginx/deployment-guides/microsoft-azure/virtual-machines-for-nginx.md @@ -1,7 +1,7 @@ --- description: Create Microsoft Azure virtual machines for running NGINX Open Source and F5 NGINX Plus. -docs: DOCS-458 +nd-docs: DOCS-458 title: Creating Microsoft Azure Virtual Machines for NGINX Open Source and F5 NGINX Plus toc: true diff --git a/content/nginx/deployment-guides/migrate-hardware-adc/citrix-adc-configuration.md b/content/nginx/deployment-guides/migrate-hardware-adc/citrix-adc-configuration.md index de397e3b0..026d4db9c 100644 --- a/content/nginx/deployment-guides/migrate-hardware-adc/citrix-adc-configuration.md +++ b/content/nginx/deployment-guides/migrate-hardware-adc/citrix-adc-configuration.md @@ -1,7 +1,7 @@ --- description: Migrate load-balancing configuration from Citrix ADC to F5 NGINX Plus for equal performance at lower cost, using our syntax conversion examples. -docs: DOCS-459 +nd-docs: DOCS-459 title: Migrating Load Balancer Configuration from Citrix ADC to NGINX Plus toc: true weight: 100 diff --git a/content/nginx/deployment-guides/migrate-hardware-adc/f5-big-ip-configuration.md b/content/nginx/deployment-guides/migrate-hardware-adc/f5-big-ip-configuration.md index f5e2a4dec..b5f1f8adf 100644 --- a/content/nginx/deployment-guides/migrate-hardware-adc/f5-big-ip-configuration.md +++ b/content/nginx/deployment-guides/migrate-hardware-adc/f5-big-ip-configuration.md @@ -1,7 +1,7 @@ --- description: Migrate load-balancing configuration from F5 BIG-IP LTM to NGINX Plus, using our syntax conversion examples. -docs: DOCS-460 +nd-docs: DOCS-460 title: Migrating Load Balancer Configuration from F5 BIG-IP LTM to F5 NGINX Plus toc: true weight: 100 diff --git a/content/nginx/deployment-guides/nginx-plus-high-availability-chef.md b/content/nginx/deployment-guides/nginx-plus-high-availability-chef.md index 3e709cab9..5f0b65a19 100644 --- a/content/nginx/deployment-guides/nginx-plus-high-availability-chef.md +++ b/content/nginx/deployment-guides/nginx-plus-high-availability-chef.md @@ -1,7 +1,7 @@ --- description: Step-by-step instructions for using Chef to automate the setup and maintenance of an active-passive high availability cluster of F5 NGINX Plus instances. -docs: DOCS-461 +nd-docs: DOCS-461 draft: true title: NGINX Plus High Availability Chef toc: true diff --git a/content/nginx/deployment-guides/setting-up-nginx-demo-environment.md b/content/nginx/deployment-guides/setting-up-nginx-demo-environment.md index a14367e24..8d68e7241 100644 --- a/content/nginx/deployment-guides/setting-up-nginx-demo-environment.md +++ b/content/nginx/deployment-guides/setting-up-nginx-demo-environment.md @@ -1,7 +1,7 @@ --- description: Configure NGINX Open Source as a web server and F5 NGINX Plus as a load balancer, as required for the sample deployments in NGINX deployment guides. -docs: DOCS-462 +nd-docs: DOCS-462 title: Setting up an NGINX demo environment toc: true weight: 100 diff --git a/content/nginx/deployment-guides/single-sign-on/active-directory-federation-services.md b/content/nginx/deployment-guides/single-sign-on/active-directory-federation-services.md index 3c1ed62f2..efa454958 100644 --- a/content/nginx/deployment-guides/single-sign-on/active-directory-federation-services.md +++ b/content/nginx/deployment-guides/single-sign-on/active-directory-federation-services.md @@ -6,7 +6,7 @@ title: Single Sign-On with Microsoft Active Directory FS toc: true weight: 300 product: NGINX-PLUS -docs: DOCS-1683 +nd-docs: DOCS-1683 --- This guide explains how to enable single sign-on (SSO) for applications being proxied by F5 NGINX Plus. The solution uses OpenID Connect as the authentication mechanism, with [Microsoft Active Directory Federation Services](https://docs.microsoft.com/en-us/windows-server/identity/active-directory-federation-services) (AD FS) as the Identity Provider (IdP) and NGINX Plus as the Relying Party (RP), or OIDC client application that verifies user identity. diff --git a/content/nginx/deployment-guides/single-sign-on/auth0.md b/content/nginx/deployment-guides/single-sign-on/auth0.md index 26eb60921..316596ed5 100644 --- a/content/nginx/deployment-guides/single-sign-on/auth0.md +++ b/content/nginx/deployment-guides/single-sign-on/auth0.md @@ -6,7 +6,7 @@ product: NGINX-PLUS title: Single Sign-On With Auth0 toc: true weight: 100 -docs: DOCS-1686 +nd-docs: DOCS-1686 --- This guide explains how to enable single sign-on (SSO) for applications being proxied by F5 NGINX Plus. The solution uses OpenID Connect as the authentication mechanism, with [Auth0](https://auth0.com/features/single-sign-on) as the Identity Provider (IdP), and NGINX Plus as the Relying Party, or OIDC client application that verifies user identity. @@ -31,7 +31,7 @@ This guide explains how to enable single sign-on (SSO) for applications being pr 3. On the **Applications** screen, select **Create Application**. -4. On the **Create application** screen: +4. On the **Create application** screen: - Enter the **Name** for the application, for example, **NGINX Demo App**. diff --git a/content/nginx/deployment-guides/single-sign-on/cognito.md b/content/nginx/deployment-guides/single-sign-on/cognito.md index f3dbfaf51..1ea0a7994 100644 --- a/content/nginx/deployment-guides/single-sign-on/cognito.md +++ b/content/nginx/deployment-guides/single-sign-on/cognito.md @@ -6,7 +6,7 @@ product: NGINX-PLUS title: Single Sign-On with Amazon Cognito toc: true weight: 200 -docs: DOCS-1685 +nd-docs: DOCS-1685 --- This guide explains how to enable single sign-on (SSO) for applications being proxied by F5 NGINX Plus. The solution uses OpenID Connect as the authentication mechanism, with [Amazon Cognito](https://aws.amazon.com/cognito/) as the Identity Provider (IdP), and NGINX Plus as the Relying Party, or OIDC client application that verifies user identity. @@ -16,10 +16,10 @@ This guide explains how to enable single sign-on (SSO) for applications being pr ## Prerequisites -- An [AWS account](https://aws.amazon.com/premiumsupport/knowledge-center/create-and-activate-aws-account/) +- An [AWS account](https://aws.amazon.com/premiumsupport/knowledge-center/create-and-activate-aws-account/) - A Cognito **User Pool** - + - An NGINX Plus [subscription](https://www.f5.com/products/nginx/nginx-plus) and NGINX Plus [Release 34](({{< ref "nginx/releases.md#r34" >}})) or later. For installation instructions, see [Installing NGINX Plus](https://docs.nginx.com/nginx/admin-guide/installing-nginx/installing-nginx-plus/). - A domain name pointing to your NGINX Plus instance, for example, `demo.example.com`. diff --git a/content/nginx/deployment-guides/single-sign-on/entra-id.md b/content/nginx/deployment-guides/single-sign-on/entra-id.md index 10637062f..3b360f1d7 100644 --- a/content/nginx/deployment-guides/single-sign-on/entra-id.md +++ b/content/nginx/deployment-guides/single-sign-on/entra-id.md @@ -6,7 +6,7 @@ product: NGINX-PLUS title: Single Sign-On with Microsoft Entra ID toc: true weight: 400 -docs: DOCS-1688 +nd-docs: DOCS-1688 --- This guide explains how to enable single sign-on (SSO) for applications being proxied by F5 NGINX Plus. The solution uses OpenID Connect as the authentication mechanism, with [Microsoft Entra ID](https://www.microsoft.com/en-us/security/business/identity-access/microsoft-entra-id) as the Identity Provider (IdP), and NGINX Plus as the Relying Party, or OIDC client application that verifies user identity. @@ -40,7 +40,7 @@ Register a new application in Microsoft Entra ID that will represent NGINX Plus 2. Register a New Application. - - Create a new application, for example, "Nginx Demo App", with NGINX callback URI `/oidc_callback`: + - Create a new application, for example, "Nginx Demo App", with NGINX callback URI `/oidc_callback`: ```bash az ad app create --display-name "Nginx Demo App" --web-redirect-uris "https://demo.example.com/oidc_callback" @@ -58,7 +58,7 @@ Register a new application in Microsoft Entra ID that will represent NGINX Plus - Replace the `` with the value obtained in the previous step. - - From the command output, copy the the `password` value which represents your **Client Secret**. You will need it later when configuring NGINX Plus. Make sure to securely save the generated client secret, as it will not be displayed again. + - From the command output, copy the the `password` value which represents your **Client Secret**. You will need it later when configuring NGINX Plus. Make sure to securely save the generated client secret, as it will not be displayed again. - From the same command output, copy the the `tenant` value which represents your **Tenant ID**. You will need it later when configuring NGINX Plus. diff --git a/content/nginx/deployment-guides/single-sign-on/keycloak.md b/content/nginx/deployment-guides/single-sign-on/keycloak.md index 3d9e7153c..b44ce3f6b 100644 --- a/content/nginx/deployment-guides/single-sign-on/keycloak.md +++ b/content/nginx/deployment-guides/single-sign-on/keycloak.md @@ -6,7 +6,7 @@ product: NGINX-PLUS title: Single Sign-On with Keycloak toc: true weight: 500 -docs: DOCS-1682 +nd-docs: DOCS-1682 --- This guide explains how to enable single sign-on (SSO) for applications being proxied by F5 NGINX Plus. The solution uses OpenID Connect as the authentication mechanism, with [Keycloak](https://www.keycloak.org/) as the Identity Provider (IdP), and NGINX Plus as the Relying Party, or OIDC client application that verifies user identity. @@ -44,7 +44,7 @@ This guide explains how to enable single sign-on (SSO) for applications being pr 4. In the **Capability Config** section: - Set **Client Authentication** to **On**. This sets the client type to **confidential**. - + - Select **Next**. 5. In the **Login Settings** section: @@ -125,7 +125,7 @@ With Keycloak configured, you can enable OIDC on NGINX Plus. NGINX Plus serves a nginx version: nginx/1.27.4 (nginx-plus-r34) ``` -2. Ensure that you have the values of the **Client ID**, **Client Secret**, and **Issuer** obtained during +2. Ensure that you have the values of the **Client ID**, **Client Secret**, and **Issuer** obtained during [Keycloak Configuration](#keycloak-setup) if applicable. PKCE will not have a **Client Secret**. 3. In your preferred text editor, open the NGINX configuration file (`/etc/nginx/nginx.conf` for Linux or `/usr/local/etc/nginx/nginx.conf` for FreeBSD). @@ -160,7 +160,7 @@ With Keycloak configured, you can enable OIDC on NGINX Plus. NGINX Plus serves a - your actual Keycloak **Client ID** obtained in [Keycloak Configuration](#keycloak-setup) with the [`client_id`](https://nginx.org/en/docs/http/ngx_http_oidc_module.html#client_id) directive - - (if not using PKCE) your **Client Secret** obtained in [Keycloak Configuration](#keycloak-setup) with the + - (if not using PKCE) your **Client Secret** obtained in [Keycloak Configuration](#keycloak-setup) with the [`client_secret`](https://nginx.org/en/docs/http/ngx_http_oidc_module.html#client_secret) directive - the **Issuer** URL obtained in [Keycloak Configuration](#keycloak-setup) with the [`issuer`](https://nginx.org/en/docs/http/ngx_http_oidc_module.html#client_secret) directive diff --git a/content/nginx/deployment-guides/single-sign-on/oidc-njs/active-directory-federation-services.md b/content/nginx/deployment-guides/single-sign-on/oidc-njs/active-directory-federation-services.md index 6d0173780..d014bc302 100644 --- a/content/nginx/deployment-guides/single-sign-on/oidc-njs/active-directory-federation-services.md +++ b/content/nginx/deployment-guides/single-sign-on/oidc-njs/active-directory-federation-services.md @@ -1,7 +1,7 @@ --- description: Enable OpenID Connect-based single-sign for applications proxied by NGINX Plus, using Microsoft AD FS as the identity provider (IdP). -docs: DOCS-463 +nd-docs: DOCS-463 type: - how-to title: Single Sign-On with Microsoft AD FS and njs diff --git a/content/nginx/deployment-guides/single-sign-on/oidc-njs/auth0.md b/content/nginx/deployment-guides/single-sign-on/oidc-njs/auth0.md index 71d7f6f26..b789fb2f8 100644 --- a/content/nginx/deployment-guides/single-sign-on/oidc-njs/auth0.md +++ b/content/nginx/deployment-guides/single-sign-on/oidc-njs/auth0.md @@ -1,7 +1,7 @@ --- description: Learn how to enable single sign-on (SSO) with [Auth0](https://auth0.com/) for applications proxied by F5 NGINX Plus. -docs: DOCS-884 +nd-docs: DOCS-884 type: - tutorial title: Single Sign-On With Auth0 and njs diff --git a/content/nginx/deployment-guides/single-sign-on/oidc-njs/cognito.md b/content/nginx/deployment-guides/single-sign-on/oidc-njs/cognito.md index 94e62f0f8..6a1d3fa91 100644 --- a/content/nginx/deployment-guides/single-sign-on/oidc-njs/cognito.md +++ b/content/nginx/deployment-guides/single-sign-on/oidc-njs/cognito.md @@ -1,7 +1,7 @@ --- description: Enable OpenID Connect-based single-sign for applications proxied by NGINX Plus, using Amazon Cognito as the identity provider (IdP). -docs: DOCS-464 +nd-docs: DOCS-464 type: - how-to title: Single Sign-On with Amazon Cognito and njs diff --git a/content/nginx/deployment-guides/single-sign-on/oidc-njs/keycloak.md b/content/nginx/deployment-guides/single-sign-on/oidc-njs/keycloak.md index 25c8af487..9bfd26e66 100644 --- a/content/nginx/deployment-guides/single-sign-on/oidc-njs/keycloak.md +++ b/content/nginx/deployment-guides/single-sign-on/oidc-njs/keycloak.md @@ -1,7 +1,7 @@ --- description: Enable OpenID Connect-based single-sign for applications proxied by NGINX Plus, using Keycloak as the identity provider (IdP). -docs: DOCS-465 +nd-docs: DOCS-465 type: - how-to title: Single Sign-On with Keycloak and njs diff --git a/content/nginx/deployment-guides/single-sign-on/oidc-njs/okta.md b/content/nginx/deployment-guides/single-sign-on/oidc-njs/okta.md index 4d1c81094..6b83eb437 100644 --- a/content/nginx/deployment-guides/single-sign-on/oidc-njs/okta.md +++ b/content/nginx/deployment-guides/single-sign-on/oidc-njs/okta.md @@ -1,7 +1,7 @@ --- description: Learn how to enable single sign-on (SSO) with Okta for applications proxied by F5 NGINX Plus. -docs: DOCS-466 +nd-docs: DOCS-466 type: - how-to title: Single Sign-On with Okta and njs diff --git a/content/nginx/deployment-guides/single-sign-on/oidc-njs/onelogin.md b/content/nginx/deployment-guides/single-sign-on/oidc-njs/onelogin.md index b6c8fde9a..e5560f8d5 100644 --- a/content/nginx/deployment-guides/single-sign-on/oidc-njs/onelogin.md +++ b/content/nginx/deployment-guides/single-sign-on/oidc-njs/onelogin.md @@ -1,7 +1,7 @@ --- description: Learn how to enable single sign-on (SSO) with [OneLogin](https://www.onelogin.com/) for applications proxied by F5 NGINX Plus. -docs: DOCS-467 +nd-docs: DOCS-467 type: - tutorial title: Single Sign-On with OneLogin and njs diff --git a/content/nginx/deployment-guides/single-sign-on/oidc-njs/ping-identity.md b/content/nginx/deployment-guides/single-sign-on/oidc-njs/ping-identity.md index 495b2ebad..3332bb3fb 100644 --- a/content/nginx/deployment-guides/single-sign-on/oidc-njs/ping-identity.md +++ b/content/nginx/deployment-guides/single-sign-on/oidc-njs/ping-identity.md @@ -1,7 +1,7 @@ --- description: Enable OpenID Connect-based single-sign for applications proxied by NGINX Plus, using Ping Identity as the identity provider (IdP). -docs: DOCS-468 +nd-docs: DOCS-468 type: - how-to product: NGINX-PLUS diff --git a/content/nginx/deployment-guides/single-sign-on/okta.md b/content/nginx/deployment-guides/single-sign-on/okta.md index 2dc975726..933c60a16 100644 --- a/content/nginx/deployment-guides/single-sign-on/okta.md +++ b/content/nginx/deployment-guides/single-sign-on/okta.md @@ -6,7 +6,7 @@ product: NGINX-PLUS title: Single Sign-On with Okta toc: true weight: 700 -docs: DOCS-1689 +nd-docs: DOCS-1689 --- This guide explains how to enable single sign-on (SSO) for applications being proxied by F5 NGINX Plus. The solution uses OpenID Connect as the authentication mechanism, with [Okta](https://www.okta.com/) as the Identity Provider (IdP), and NGINX Plus as the Relying Party, or OIDC client application that verifies user identity. diff --git a/content/nginx/deployment-guides/single-sign-on/onelogin.md b/content/nginx/deployment-guides/single-sign-on/onelogin.md index 1171890dc..c241a8fea 100644 --- a/content/nginx/deployment-guides/single-sign-on/onelogin.md +++ b/content/nginx/deployment-guides/single-sign-on/onelogin.md @@ -6,7 +6,7 @@ product: NGINX-PLUS title: Single Sign-On with OneLogin toc: true weight: 600 -docs: DOCS-1687 +nd-docs: DOCS-1687 --- This guide explains how to enable single sign-on (SSO) for applications being proxied by F5 NGINX Plus. The solution uses OpenID Connect as the authentication mechanism, with [OneLogin](https://www.onelogin.com/) as the Identity Provider (IdP) and NGINX Plus as the Relying Party (RP), or OIDC client application that verifies user identity. diff --git a/content/nginx/deployment-guides/single-sign-on/ping-identity.md b/content/nginx/deployment-guides/single-sign-on/ping-identity.md index c1bec1101..733847966 100644 --- a/content/nginx/deployment-guides/single-sign-on/ping-identity.md +++ b/content/nginx/deployment-guides/single-sign-on/ping-identity.md @@ -6,7 +6,7 @@ product: NGINX-PLUS title: Single Sign-On with Ping Identity toc: true weight: 800 -docs: DOCS-1684 +nd-docs: DOCS-1684 --- This guide explains how to enable single sign-on (SSO) for applications being proxied by F5 NGINX Plus. The solution uses OpenID Connect as the authentication mechanism, with [Ping Identity](https://www.pingidentity.com/en.html) (PingFederate or PingOne) as the Identity Provider (IdP), and NGINX Plus as the Relying Party. @@ -30,7 +30,7 @@ This guide explains how to enable single sign-on (SSO) for applications being pr Create a new application for NGINX Plus: 1. Log in to your Ping Identity admin console. - + 2. Go to **Applications** > **Applications**. 3. Click the **+** (plus) symbol to create a new OIDC Application. diff --git a/content/nginx/directives.md b/content/nginx/directives.md index e321d8207..20c3cb556 100644 --- a/content/nginx/directives.md +++ b/content/nginx/directives.md @@ -1,5 +1,5 @@ --- -docs: DOCS-469 +nd-docs: DOCS-469 title: NGINX Directives Index url: /nginx/directives weight: 700 diff --git a/content/nginx/fips-compliance-nginx-plus.md b/content/nginx/fips-compliance-nginx-plus.md index 52a378a44..eb11c2b91 100644 --- a/content/nginx/fips-compliance-nginx-plus.md +++ b/content/nginx/fips-compliance-nginx-plus.md @@ -1,6 +1,6 @@ --- description: '' -docs: DOCS-470 +nd-docs: DOCS-470 title: NGINX Plus FIPS Compliance toc: true weight: 600 diff --git a/content/nginx/open-source-components.md b/content/nginx/open-source-components.md index 6ecd01ee2..7b80cb289 100644 --- a/content/nginx/open-source-components.md +++ b/content/nginx/open-source-components.md @@ -1,7 +1,7 @@ --- description: License information for open source components included in the NGINX Plus software. -docs: DOCS-471 +nd-docs: DOCS-471 title: Open Source Components toc: true weight: 500 diff --git a/content/nginx/releases.md b/content/nginx/releases.md index 6533b24dd..764728ff0 100644 --- a/content/nginx/releases.md +++ b/content/nginx/releases.md @@ -1,7 +1,7 @@ --- description: Release information for F5 NGINX Plus, a complete application delivery platform, including new features and a list of supported platforms. -docs: DOCS-472 +nd-docs: DOCS-472 title: Releases toc: true weight: 300 diff --git a/content/nginx/technical-specs.md b/content/nginx/technical-specs.md index 5405859c6..d46a85875 100644 --- a/content/nginx/technical-specs.md +++ b/content/nginx/technical-specs.md @@ -2,7 +2,7 @@ description: Platforms supported by F5 NGINX Plus and dynamically loaded modules, supported SSL/TLS versions, supported deployment environments, and list of modules built into NGINX Plus. -docs: DOCS-473 +nd-docs: DOCS-473 title: Technical Specs toc: true weight: 400 diff --git a/content/nginx/variables.md b/content/nginx/variables.md index 3c68dd448..07de70141 100644 --- a/content/nginx/variables.md +++ b/content/nginx/variables.md @@ -2,7 +2,7 @@ title: NGINX Variables Index url: /nginx/variables weight: 800 -docs: DOCS-1681 +nd-docs: DOCS-1681 --- \ No newline at end of file diff --git a/content/nginxaas-azure/billing/overview.md b/content/nginxaas-azure/billing/overview.md index c0f5df504..a1e26f75a 100644 --- a/content/nginxaas-azure/billing/overview.md +++ b/content/nginxaas-azure/billing/overview.md @@ -2,7 +2,7 @@ title: Billing overview weight: 100 toc: true -docs: DOCS-885 +nd-docs: DOCS-885 url: /nginxaas/azure/billing/overview/ type: - concept diff --git a/content/nginxaas-azure/billing/usage-and-cost-estimator.md b/content/nginxaas-azure/billing/usage-and-cost-estimator.md index 3e813c6c3..28f2ef7a8 100644 --- a/content/nginxaas-azure/billing/usage-and-cost-estimator.md +++ b/content/nginxaas-azure/billing/usage-and-cost-estimator.md @@ -2,7 +2,7 @@ title: Usage and cost estimator weight: 200 toc: true -docs: DOCS-1474 +nd-docs: DOCS-1474 url: /nginxaas/azure/billing/usage-and-cost-estimator/ type: - concept diff --git a/content/nginxaas-azure/changelog.md b/content/nginxaas-azure/changelog.md index 131c0b2b3..e001d3128 100644 --- a/content/nginxaas-azure/changelog.md +++ b/content/nginxaas-azure/changelog.md @@ -2,7 +2,7 @@ title: "Changelog" weight: 900 toc: true -docs: "DOCS-870" +nd-docs: "DOCS-870" url: /nginxaas/azure/changelog/ --- diff --git a/content/nginxaas-azure/client-tools/cli.md b/content/nginxaas-azure/client-tools/cli.md index 7b3adb8c8..1731e17ec 100644 --- a/content/nginxaas-azure/client-tools/cli.md +++ b/content/nginxaas-azure/client-tools/cli.md @@ -3,7 +3,7 @@ title: Azure CLI weight: 900 description: Learn how to setup the Azure CLI to manage NGINXaaS for Azure. toc: true -docs: DOCS-1234 +nd-docs: DOCS-1234 url: /nginxaas/azure/client-tools/cli/ type: - task diff --git a/content/nginxaas-azure/client-tools/sdk.md b/content/nginxaas-azure/client-tools/sdk.md index 50305b9e7..55e41e647 100644 --- a/content/nginxaas-azure/client-tools/sdk.md +++ b/content/nginxaas-azure/client-tools/sdk.md @@ -4,7 +4,7 @@ weight: 300 description: Learn how to use the Python Azure Management SDK to manage NGINXaaS for Azure deployments. toc: true -docs: DOCS-1095 +nd-docs: DOCS-1095 url: /nginxaas/azure/client-tools/sdk/ type: - task diff --git a/content/nginxaas-azure/client-tools/templates.md b/content/nginxaas-azure/client-tools/templates.md index e9cdeb468..aae949498 100644 --- a/content/nginxaas-azure/client-tools/templates.md +++ b/content/nginxaas-azure/client-tools/templates.md @@ -4,7 +4,7 @@ weight: 100 description: Learn how to use Azure Resource Manager (ARM) JSON and Bicep templates to manage NGINXaaS for Azure. toc: true -docs: DOCS-1097 +nd-docs: DOCS-1097 url: /nginxaas/azure/client-tools/templates/ type: - task diff --git a/content/nginxaas-azure/client-tools/terraform.md b/content/nginxaas-azure/client-tools/terraform.md index 7a0ea91b2..e9baec4f1 100644 --- a/content/nginxaas-azure/client-tools/terraform.md +++ b/content/nginxaas-azure/client-tools/terraform.md @@ -3,7 +3,7 @@ title: Terraform weight: 400 description: Learn how to use the Terraform to manage NGINXaaS for Azure. toc: true -docs: DOCS-1472 +nd-docs: DOCS-1472 draft: true url: /nginxaas/azure/client-tools/terraform/ type: diff --git a/content/nginxaas-azure/get-help.md b/content/nginxaas-azure/get-help.md index ff1ffc96b..b418b008f 100644 --- a/content/nginxaas-azure/get-help.md +++ b/content/nginxaas-azure/get-help.md @@ -2,7 +2,7 @@ title: Get help weight: 750 toc: true -docs: DOCS-882 +nd-docs: DOCS-882 url: /nginxaas/azure/get-help/ type: - how-to diff --git a/content/nginxaas-azure/getting-started/create-deployment/deploy-azure-portal.md b/content/nginxaas-azure/getting-started/create-deployment/deploy-azure-portal.md index 3d58d49fb..44448cddd 100644 --- a/content/nginxaas-azure/getting-started/create-deployment/deploy-azure-portal.md +++ b/content/nginxaas-azure/getting-started/create-deployment/deploy-azure-portal.md @@ -2,7 +2,7 @@ title: Deploy using the Azure portal weight: 100 toc: true -docs: DOCS-878 +nd-docs: DOCS-878 url: /nginxaas/azure/getting-started/create-deployment/deploy-azure-portal/ type: - how-to diff --git a/content/nginxaas-azure/getting-started/managed-identity-portal.md b/content/nginxaas-azure/getting-started/managed-identity-portal.md index 802fa37ce..4051d36dc 100644 --- a/content/nginxaas-azure/getting-started/managed-identity-portal.md +++ b/content/nginxaas-azure/getting-started/managed-identity-portal.md @@ -2,7 +2,7 @@ title: Assign Managed Identities weight: 300 toc: true -docs: DOCS-872 +nd-docs: DOCS-872 url: /nginxaas/azure/getting-started/managed-identity-portal/ type: - how-to diff --git a/content/nginxaas-azure/getting-started/nginx-configuration/nginx-configuration-portal.md b/content/nginxaas-azure/getting-started/nginx-configuration/nginx-configuration-portal.md index 498f81133..77a0b75ba 100644 --- a/content/nginxaas-azure/getting-started/nginx-configuration/nginx-configuration-portal.md +++ b/content/nginxaas-azure/getting-started/nginx-configuration/nginx-configuration-portal.md @@ -2,7 +2,7 @@ title: Upload using the Azure portal weight: 100 toc: true -docs: DOCS-873 +nd-docs: DOCS-873 url: /nginxaas/azure/getting-started/nginx-configuration/nginx-configuration-portal/ type: - how-to diff --git a/content/nginxaas-azure/getting-started/prerequisites.md b/content/nginxaas-azure/getting-started/prerequisites.md index aefcdbf6d..a535f1d7f 100644 --- a/content/nginxaas-azure/getting-started/prerequisites.md +++ b/content/nginxaas-azure/getting-started/prerequisites.md @@ -2,7 +2,7 @@ title: Overview and prerequisites weight: 100 toc: true -docs: DOCS-880 +nd-docs: DOCS-880 url: /nginxaas/azure/getting-started/prerequisites/ type: - how-to diff --git a/content/nginxaas-azure/getting-started/ssl-tls-certificates/ssl-tls-certificates-portal.md b/content/nginxaas-azure/getting-started/ssl-tls-certificates/ssl-tls-certificates-portal.md index fd593de98..0c27e8ff3 100644 --- a/content/nginxaas-azure/getting-started/ssl-tls-certificates/ssl-tls-certificates-portal.md +++ b/content/nginxaas-azure/getting-started/ssl-tls-certificates/ssl-tls-certificates-portal.md @@ -2,7 +2,7 @@ title: Add certificates using the Azure portal weight: 100 toc: true -docs: DOCS-875 +nd-docs: DOCS-875 url: /nginxaas/azure/getting-started/ssl-tls-certificates/ssl-tls-certificates-portal/ type: - how-to diff --git a/content/nginxaas-azure/known-issues.md b/content/nginxaas-azure/known-issues.md index b7fe218d5..aecea3291 100644 --- a/content/nginxaas-azure/known-issues.md +++ b/content/nginxaas-azure/known-issues.md @@ -2,18 +2,18 @@ title: "Known issues" weight: 1000 toc: true -docs: "DOCS-871" +nd-docs: "DOCS-871" url: /nginxaas/azure/known-issues/ --- List of known issues in the latest release of F5 NGINX as a Service for Azure (NGINXaaS). -### {{% icon-bug %}} Custom and precompiled security policies cannot both be referenced in an NGINX configuration +### {{% icon-bug %}} Custom and precompiled security policies cannot both be referenced in an NGINX configuration When using NGINX App Protect WAF, you can only reference default or custom security policies in your NGINX configuration, not both. -**Workaround**: Make a copy of the default policy you want to use, then add it as a custom policy with a different name. +**Workaround**: Make a copy of the default policy you want to use, then add it as a custom policy with a different name. ### {{% icon-bug %}} Terraform fails to apply due to validation errors, but creates "Failed" resources in Azure (ID-4424) diff --git a/content/nginxaas-azure/monitoring/configure-alerts.md b/content/nginxaas-azure/monitoring/configure-alerts.md index 78dd3e9de..10a7d0a9f 100644 --- a/content/nginxaas-azure/monitoring/configure-alerts.md +++ b/content/nginxaas-azure/monitoring/configure-alerts.md @@ -3,7 +3,7 @@ title: Configure alerts weight: 300 toc: true draft: false -docs: DOCS-985 +nd-docs: DOCS-985 url: /nginxaas/azure/monitoring/configure-alerts/ type: - how-to diff --git a/content/nginxaas-azure/monitoring/enable-logging/logging-using-cli.md b/content/nginxaas-azure/monitoring/enable-logging/logging-using-cli.md index f2e9c9081..4344f69bc 100644 --- a/content/nginxaas-azure/monitoring/enable-logging/logging-using-cli.md +++ b/content/nginxaas-azure/monitoring/enable-logging/logging-using-cli.md @@ -2,7 +2,7 @@ title: Enable NGINX logs using CLI weight: 100 toc: true -docs: DOCS-1369 +nd-docs: DOCS-1369 url: /nginxaas/azure/monitoring/enable-logging/logging-using-cli/ type: - how-to diff --git a/content/nginxaas-azure/monitoring/enable-logging/logging-using-portal.md b/content/nginxaas-azure/monitoring/enable-logging/logging-using-portal.md index 59be2a8b3..70da26047 100644 --- a/content/nginxaas-azure/monitoring/enable-logging/logging-using-portal.md +++ b/content/nginxaas-azure/monitoring/enable-logging/logging-using-portal.md @@ -2,7 +2,7 @@ title: Enable NGINX logs using Azure Portal weight: 100 toc: true -docs: DOCS-1369 +nd-docs: DOCS-1369 url: /nginxaas/azure/monitoring/enable-logging/logging-using-portal/ type: - how-to diff --git a/content/nginxaas-azure/monitoring/enable-logging/logging-using-terraform.md b/content/nginxaas-azure/monitoring/enable-logging/logging-using-terraform.md index 059e1c642..af167f562 100644 --- a/content/nginxaas-azure/monitoring/enable-logging/logging-using-terraform.md +++ b/content/nginxaas-azure/monitoring/enable-logging/logging-using-terraform.md @@ -2,7 +2,7 @@ title: Enable NGINX logs using Terraform weight: 100 toc: true -docs: DOCS-1369 +nd-docs: DOCS-1369 url: /nginxaas/azure/monitoring/enable-logging/logging-using-terraform/ type: - how-to diff --git a/content/nginxaas-azure/monitoring/enable-monitoring.md b/content/nginxaas-azure/monitoring/enable-monitoring.md index 7185e3320..ebb97ce62 100644 --- a/content/nginxaas-azure/monitoring/enable-monitoring.md +++ b/content/nginxaas-azure/monitoring/enable-monitoring.md @@ -2,7 +2,7 @@ title: Enable monitoring weight: 200 toc: true -docs: DOCS-876 +nd-docs: DOCS-876 url: /nginxaas/azure/monitoring/enable-monitoring/ type: - how-to diff --git a/content/nginxaas-azure/monitoring/metrics-catalog.md b/content/nginxaas-azure/monitoring/metrics-catalog.md index f81686f7e..b31d887c9 100644 --- a/content/nginxaas-azure/monitoring/metrics-catalog.md +++ b/content/nginxaas-azure/monitoring/metrics-catalog.md @@ -2,7 +2,7 @@ title: Metrics catalog weight: 400 toc: false -docs: DOCS-877 +nd-docs: DOCS-877 url: /nginxaas/azure/monitoring/metrics-catalog/ type: - concept diff --git a/content/nginxaas-azure/overview/feature-comparison.md b/content/nginxaas-azure/overview/feature-comparison.md index 4bc1f8ed6..f30da905f 100644 --- a/content/nginxaas-azure/overview/feature-comparison.md +++ b/content/nginxaas-azure/overview/feature-comparison.md @@ -3,7 +3,7 @@ title: Feature comparison weight: 300 description: Compare NGINXaaS for Azure with other NGINX offerings. toc: false -docs: DOCS-1473 +nd-docs: DOCS-1473 url: /nginxaas/azure/overview/feature-comparison/ type: - concept diff --git a/content/nginxaas-azure/overview/overview.md b/content/nginxaas-azure/overview/overview.md index 336bee241..ae6d4b9c0 100644 --- a/content/nginxaas-azure/overview/overview.md +++ b/content/nginxaas-azure/overview/overview.md @@ -2,7 +2,7 @@ title: Overview and architecture weight: 100 toc: true -docs: DOCS-879 +nd-docs: DOCS-879 url: /nginxaas/azure/overview/overview/ type: - concept diff --git a/content/nginxaas-azure/quickstart/basic-caching.md b/content/nginxaas-azure/quickstart/basic-caching.md index ce7ad0bee..40b16402d 100644 --- a/content/nginxaas-azure/quickstart/basic-caching.md +++ b/content/nginxaas-azure/quickstart/basic-caching.md @@ -2,7 +2,7 @@ title: Enable content caching weight: 200 toc: true -docs: DOCS-897 +nd-docs: DOCS-897 url: /nginxaas/azure/quickstart/basic-caching/ type: - how-to diff --git a/content/nginxaas-azure/quickstart/hosting-static-content.md b/content/nginxaas-azure/quickstart/hosting-static-content.md index 3495ea824..05706b3b9 100644 --- a/content/nginxaas-azure/quickstart/hosting-static-content.md +++ b/content/nginxaas-azure/quickstart/hosting-static-content.md @@ -2,7 +2,7 @@ title: Hosting static content weight: 200 toc: true -docs: DOCS-1344 +nd-docs: DOCS-1344 url: /nginxaas/azure/quickstart/hosting-static-content/ type: - how-to diff --git a/content/nginxaas-azure/quickstart/njs-support.md b/content/nginxaas-azure/quickstart/njs-support.md index b64f26927..344bafc2e 100644 --- a/content/nginxaas-azure/quickstart/njs-support.md +++ b/content/nginxaas-azure/quickstart/njs-support.md @@ -2,7 +2,7 @@ title: Use the njs Scripting language weight: 400 toc: true -docs: DOCS-874 +nd-docs: DOCS-874 url: /nginxaas/azure/quickstart/njs-support/ type: - how-to diff --git a/content/nginxaas-azure/quickstart/rate-limiting.md b/content/nginxaas-azure/quickstart/rate-limiting.md index 61662c2bf..8dff3c692 100644 --- a/content/nginxaas-azure/quickstart/rate-limiting.md +++ b/content/nginxaas-azure/quickstart/rate-limiting.md @@ -2,7 +2,7 @@ title: Enable rate limiting weight: 300 toc: true -docs: DOCS-899 +nd-docs: DOCS-899 url: /nginxaas/azure/quickstart/rate-limiting/ type: - how-to diff --git a/content/nginxaas-azure/quickstart/recreate.md b/content/nginxaas-azure/quickstart/recreate.md index 4ba08ec0a..06b515b5a 100644 --- a/content/nginxaas-azure/quickstart/recreate.md +++ b/content/nginxaas-azure/quickstart/recreate.md @@ -2,7 +2,7 @@ title: Recreating a deployment weight: 500 toc: true -docs: DOCS-1378 +nd-docs: DOCS-1378 url: /nginxaas/azure/quickstart/recreate/ type: - how-to diff --git a/content/nginxaas-azure/quickstart/runtime-state-sharing.md b/content/nginxaas-azure/quickstart/runtime-state-sharing.md index 072932f92..0f86569b4 100644 --- a/content/nginxaas-azure/quickstart/runtime-state-sharing.md +++ b/content/nginxaas-azure/quickstart/runtime-state-sharing.md @@ -2,7 +2,7 @@ title: Runtime State Sharing weight: 100 toc: true -docs: DOCS-1499 +nd-docs: DOCS-1499 url: /nginxaas/azure/quickstart/runtime-state-sharing/ type: - how-to diff --git a/content/nginxaas-azure/quickstart/scaling.md b/content/nginxaas-azure/quickstart/scaling.md index 05f9d1608..7fb1777ea 100644 --- a/content/nginxaas-azure/quickstart/scaling.md +++ b/content/nginxaas-azure/quickstart/scaling.md @@ -2,7 +2,7 @@ title: Scaling guidance weight: 100 toc: true -docs: DOCS-989 +nd-docs: DOCS-989 url: /nginxaas/azure/quickstart/scaling/ type: - how-to diff --git a/content/nginxaas-azure/quickstart/security-controls/auth-basic.md b/content/nginxaas-azure/quickstart/security-controls/auth-basic.md index 4470cf1aa..9e147ec1a 100644 --- a/content/nginxaas-azure/quickstart/security-controls/auth-basic.md +++ b/content/nginxaas-azure/quickstart/security-controls/auth-basic.md @@ -2,7 +2,7 @@ title: Restricting access with HTTP basic authentication weight: 100 toc: true -docs: DOCS-990 +nd-docs: DOCS-990 url: /nginxaas/azure/security-controls/auth-basic/ type: - how-to diff --git a/content/nginxaas-azure/quickstart/security-controls/jwt.md b/content/nginxaas-azure/quickstart/security-controls/jwt.md index e3a4441dc..f403eef0e 100644 --- a/content/nginxaas-azure/quickstart/security-controls/jwt.md +++ b/content/nginxaas-azure/quickstart/security-controls/jwt.md @@ -2,7 +2,7 @@ title: Setting up JWT authentication weight: 200 toc: true -docs: DOCS-1101 +nd-docs: DOCS-1101 url: /nginxaas/azure/quickstart/security-controls/jwt/ type: - how-to diff --git a/content/nginxaas-azure/quickstart/security-controls/oidc.md b/content/nginxaas-azure/quickstart/security-controls/oidc.md index ea0aa9875..e67db825a 100644 --- a/content/nginxaas-azure/quickstart/security-controls/oidc.md +++ b/content/nginxaas-azure/quickstart/security-controls/oidc.md @@ -2,7 +2,7 @@ title: Set up OIDC authentication weight: 300 toc: true -docs: DOCS-1646 +nd-docs: DOCS-1646 url: /nginxaas/azure/quickstart/security-controls/oidc/ type: - how-to diff --git a/content/nginxaas-azure/quickstart/security-controls/securing-upstream-traffic.md b/content/nginxaas-azure/quickstart/security-controls/securing-upstream-traffic.md index c9b54ce8d..a3c4fcedd 100644 --- a/content/nginxaas-azure/quickstart/security-controls/securing-upstream-traffic.md +++ b/content/nginxaas-azure/quickstart/security-controls/securing-upstream-traffic.md @@ -2,7 +2,7 @@ title: Securing upstream traffic weight: 300 toc: true -docs: DOCS-1475 +nd-docs: DOCS-1475 url: /nginxaas/azure/quickstart/security-controls/securing-upstream-traffic/ type: - how-to diff --git a/content/nginxaas-azure/quickstart/upgrade-channels.md b/content/nginxaas-azure/quickstart/upgrade-channels.md index 9abd6486f..5c5360047 100644 --- a/content/nginxaas-azure/quickstart/upgrade-channels.md +++ b/content/nginxaas-azure/quickstart/upgrade-channels.md @@ -2,7 +2,7 @@ title: Upgrade channels weight: 150 toc: true -docs: DOCS-1480 +nd-docs: DOCS-1480 url: /nginxaas/azure/quickstart/upgrade-channels/ type: - how-to diff --git a/content/nim/admin-guide/add-license.md b/content/nim/admin-guide/add-license.md index 7d9aa0f2a..3c5b7afa8 100644 --- a/content/nim/admin-guide/add-license.md +++ b/content/nim/admin-guide/add-license.md @@ -1,5 +1,5 @@ --- -docs: DOCS-789 +nd-docs: DOCS-789 title: Add a license (connected) toc: true weight: 10 diff --git a/content/nim/admin-guide/authentication/basic-auth/set-up-basic-authentication.md b/content/nim/admin-guide/authentication/basic-auth/set-up-basic-authentication.md index f118da1c5..bbe22d82f 100644 --- a/content/nim/admin-guide/authentication/basic-auth/set-up-basic-authentication.md +++ b/content/nim/admin-guide/authentication/basic-auth/set-up-basic-authentication.md @@ -5,7 +5,7 @@ toc: true weight: 10 type: how-to product: NIM -docs: DOCS-792 +nd-docs: DOCS-792 ---