NGINX App Protect Room for Improvement

MS
Head Competence Center Agile & Communication at a insurance company with 1,001-5,000 employees

The solution is working on OpenShift, but we have the feeling the product was designed not only for OpenShift or a container-based solution to operate. 

In addition, they have a messy license model; it's not really made for microservice architecture. It's getting expensive really, really fast.

NGINX made some promises for a roadmap which they weren't able to deliver. One was about virus scanning, and the other was WebSocket inspection. I think they will provide both features in the future, but the communication was really bad. Then there was a problem in production during config reload. If you want to deploy a new API, it takes around 20 seconds. For one API it's not a lot, but if you have 300 APIs, it takes a lot of time. It's not made for deployment in a self-service model. 

Most important to see in a new release would be the WebSocket inspection and virus scan.

View full review »
MariosChristodoulou - PeerSpot reviewer
Chief Information Officer at F.P. eSafe Solutions LTD

NGINX App Protect could provide a better user interface.

View full review »
AntoineBlaud - PeerSpot reviewer
Security Data Scientist at a comms service provider with 10,001+ employees

I encountered issues with NGINX App Protect while trying to upgrade custom rules. 

View full review »
Buyer's Guide
Web Application Firewall (WAF)
March 2024
Find out what your peers are saying about F5, Amazon Web Services (AWS), Microsoft and others in Web Application Firewall (WAF). Updated: March 2024.
765,234 professionals have used our research since 2012.
FF
IT Security at a insurance company with 501-1,000 employees

The product's user interface is an area with shortcomings as it can be quite confusing for users, making it an area where improvements are required. The main menu can be quite confusing.

After you implement it, it's not so easy to understand how it works. Though in my company, we understand the basics of the product, if you want to explore the more advanced features, then the principal product doesn't explain it to us, which can be quite confusing when navigating through the main menu.

View full review »
VijayLalwani - PeerSpot reviewer
Manager - Cyber Security at a financial services firm with 10,001+ employees

NGINX App Protect would be improved with integration with Shape and F5 WAF, which would make it easy for users to manage all their web application security with a single solution. In the next release, I'd like to see some enhancements in bot protection, API security, and mobile application security.

View full review »
VL
Manager - Cyber Security (SOC) at a financial services firm with 10,001+ employees

This firewall should support more of the network layers.

Profiling capability should be improved.

Setting policies and parameters through the UI should be more automated because the process is manual, where we can only edit one rule at a time.

View full review »
Saurav Kumar - PeerSpot reviewer
Senior security architecture at National Payment Corporation Of India

Right now, the tool doesn't provide an option revolving around update feeds, specifically the signature update option in the UI. My company uses NGINX Management Suite, which doesn't have the option for UI. NGINX Management Suite doesn't have the proper UI to change a configuration file, which is an ability that the tool should offer.

It would be good if NGINX could provide documentation explaining how to deploy gRPC over NGINX App Protect.

View full review »
Md. Al Imran Chowdhury - PeerSpot reviewer
Cyber Security Analyst at Link3 Technologies

During the NGINX App Protect v1.1 upgrade, we encountered compatibility issues with our existing telecom infrastructure, specifically the load balancer and WAF. These issues manifested as difficulties with the HTTP 1.1 protocol. While attempting to solve the problem through upgrades, we ultimately opted for alternative solutions as the desired effect could not be achieved. This highlights the technical challenges of integrating NGINX App Protect with diverse network components.

View full review »
SR
Information Security Engineer at a computer software company with 1,001-5,000 employees

The price of NGINX App Protect could improve.

View full review »
CM
Senior Network Administrator at Nexio South Africa

The solution's technical support could be better.

View full review »
OD
Technical Expert at SFR

Areas for improvement would be if NGINX could scan for vulnerabilities and learn and update the signatures of DoS attacks.

View full review »
DK
Chief Technology Officer at a tech company with 11-50 employees

NGINX App Protect could improve security.

View full review »
AI
Chief Technology Officer at a tech services company with 201-500 employees

The configuration needs to be more flexible because it is difficult to do things that are outside of the ordinary.

This solution would benefit from having a support portal that can be opened directly from the dashboard.

View full review »
RS
Tech Lead Security at a comms service provider with 51-200 employees

The integration of NGINX App Protect could improve.

View full review »
AA
Head Of Information Security at a financial services firm with 501-1,000 employees

The dashboard could provide a more comprehensive view of the status of the connections.

View full review »
MO
Senior Network and Security Specialist at a tech services company with 51-200 employees

As I see it now, there are some things to improve, but the F5's WAF is, more enhanced when compared to NGINX's. However, they have done a good job adapting it.

It should be automated in some way. 

Currently, the policies have to be handled manually, and you have to create from scratch, which can be a bit time-consuming, in a large environment.

It would be good if some kind of automation was included.

View full review »
LM
Product Manager - Technical at a tech services company with 5,001-10,000 employees

The solution does well when there's low throughput but when we go for any high throughput, it's always a challenge. I'm expecting the next version to have a better high throughput. I also find that the bug fix rate is pretty slow.

I would like to see some more tools and to have some more automation capabilities in the next release, because right now the exposure of the API in NGINX is pretty limited. So I would like to see more of that as well as robustness in the scaling of the solution. 

View full review »
SB
Platform Engineer at a tech vendor with 51-200 employees

The contributions I think sometimes take a toll on you like you're going to spend a lot of time on the right contributions. So as a product it is good, but from the development standpoint but if you think about somebody who's not from development background, this won't work. It's not up to speed if you really realize. So the set up process, it's good from a development standpoint. The development was easy to set up because they know that their understanding of the machine that they are going to set it up and take care of everything else.

View full review »
Buyer's Guide
Web Application Firewall (WAF)
March 2024
Find out what your peers are saying about F5, Amazon Web Services (AWS), Microsoft and others in Web Application Firewall (WAF). Updated: March 2024.
765,234 professionals have used our research since 2012.