Thank you for sending your enquiry! One of our team members will contact you shortly.
Thank you for sending your booking! One of our team members will contact you shortly.
Course Outline
- HTTP/1.x Protocol
- Request and response formats
- Inspecting HTTP conversations using tcpdump and Wireshark
- Examining HTTP headers within a web browser
- Making requests with CURL
- Common HTTP headers
- Request pipelining
- Content length and chunked encoding
- MIME types
- Installing Nginx
- Installing Nginx from Debian packages
- Nginx variants available in Debian and Ubuntu
- Compiling and installing Nginx from source
- Starting Nginx services
- Upgrading Nginx installations
- Configuring Nginx as a Static File Server
- Understanding the general configuration file structure
- Setting up virtual hosts
- Configuring location blocks
- Understanding location lookup order
- Configuring custom error pages
- Setting up URL redirects
- Implementing other URL rewriting techniques
- Serving empty GIF images
- Utilizing internal and named locations
- Overriding MIME types
- Client-Side Performance Optimization
- Enabling client-side caching for resources
- Understanding the Vary: header
- Minimizing the total number of requests
- Utilizing Keep-Alive connections
- Managing resource updates
- How web frameworks handle static files
- Content Post-Processing
- Gzip compression
- Image scaling
- Access Control
- Restricting file access based on IP addresses
- Implementing geographical restrictions
- Securing VCS directories and private files
- Basic authentication
- Alternative authentication methods
- Combining multiple restrictions
- Secure links
- Applying Limits and Traffic Shaping
- Traffic shaping techniques
- Grouping requests for rate limiting purposes
- Implementing rate limits on requests
- Restricting simultaneous connections
- Configuring Nginx as a Reverse Proxy
- Supported upstream protocols
- Handling self-signed upstream SSL certificates
- Passing parameters to FastCGI and uWSGI backends
- Proxying WebSocket connections
- Utilizing X-Accel-* headers
- Modifying headers received from and sent to upstream servers
- Language-Specific Reverse Proxy Setups
- PHP integration
- Python integration
- Ruby integration
- Implementing Nginx as an SSL Terminator
- Generating self-signed SSL certificates
- Obtaining certificates from Let's Encrypt
- Restricting available cipher suites
- Managing session tickets
- OCSP stapling
- Verifying SSL configuration
- Accepting client-side certificates
- Considerations for HTTP/2
- Load Balancing with Nginx
- Defining upstream groups
- Implementing sticky sessions using ip_hash
- Advanced features of Nginx Plus as a load balancer
- Alternatives to Nginx and Nginx Plus
- Deploying Nginx behind a Nginx load balancer
- Placing Nginx behind HAProxy or an AWS load balancer
- Using Nginx as a Cache
- Configuring Nginx to cache pages
- How Nginx responds to standard caching-related headers
- Adjustable cache parameters
- Comparing Nginx cache with application-level caches
- Clearing the cache
- Deploying Popular Web Applications with Nginx
- The list of applications to be discussed is determined by the trainer
- Logging and Log Management
- Access log and error log files
- Specifying custom log formats
- Tracking slow requests
- Optimizing logging performance
- Log rotation
- Log analysis using external programs
- Monitoring Nginx
- Using the Nginx stub status page
- Using the Nginx Plus extended live status page
- Typical monitoring systems' plots and alerts for Nginx
- [Optional] High Availability with Nginx¹
- Deploying identical static content across multiple servers
- Configuration sharing
- Fail-over using an elastic/virtual IP address
- Setting up VRRP with Keepalived
- Other high-availability stacks
- Nginx Plus integration with Keepalived
- Common Mistakes and Security Issues Related to Nginx Configuration
- Common Performance Issues
¹ The High Availability section involves a network setup that may trigger intrusion detection systems or require participants to set up multiple virtual machines each (a requirement not needed for other topics). Therefore, it is not provided by default.
Requirements
Participants should be comfortable with the Linux command line and possess a working knowledge of TCP/IP.
21 Hours
Testimonials (1)
The trainer was very knowledgeable and was able to answer most questions that were somewhat outside of the scope of what we needed to cover. He was dynamic, funny and polite.
