NGINX App Protect WAF 101 – Part 1: What Is a Policy?

In Part 1 of the NGINX App Protect WAF 101 Series we discuss “What is a Policy?” In essence, it is the configuration that reflects the protection you want applied to your application and APIs. You can define a specific policy for your application whether it is JSON, XML, gRPC or GraphQL that is appropriate and the amount of security you want to apply to it.

In this demo, we review the out of the box default policy provided by NGINX App Protect WAF as the starting point for your application security. We discuss the supported security features and provide guidance on what to consider prior to tuning your policy.

NGINX App Protect WAF’s policy is a JSON file that allows you to attach a JSON schema file or OpenAPI file that describes your apps or APIs to the JSON policy to help you easily and quickly create a detailed policy without having to build out all the individual positive security rules. Additionally, it works well with security automation tools providing consistency in functionality and assurance of security efficacy once your application goes into production.

https://docs.nginx.com/nginx-app-protect-waf

Additional Resources:

Webpage: NGINX App Protect WAF
⬢ https://bit.ly/41IEYtc

Datasheet: NGINX App Protect WAF
⬢ https://bit.ly/40sebzX

Blog: Automate Security with NGINX App Protect WAF to Reduce the Cost of Breaches
⬢ https://www.nginx.com/blog/automate-security-f5-nginx-app-protect-f5-nginx-plus-to-reduce-cost-of-breaches/

Free Trial: Test Drive NGINX App Protect WAF for 30 Days
⬢ https://bit.ly/3Ad9WOk