Thank you for sending your enquiry! One of our team members will contact you shortly.
Thank you for sending your booking! One of our team members will contact you shortly.
Course Outline
- HTTP/1.x Protocol
- Understanding request and response formats
- Analyzing HTTP traffic using tcpdump and Wireshark
- Examining HTTP headers within a web browser
- Sending requests via CURL
- Exploring common HTTP headers
- Implementing request pipelining
- Managing content length and chunked encoding
- Working with MIME types
- Installing Nginx
- Setting up Nginx from Debian packages
- Exploring Nginx variants available in Debian and Ubuntu
- Compiling and installing Nginx from source
- Starting the Nginx service
- Upgrading Nginx versions
- Configuring Nginx as a Static File Server
- Understanding the configuration file structure
- Setting up virtual hosts
- Configuring location blocks
- Understanding the location lookup order
- Customizing error pages
- Implementing redirects
- Performing various URL rewriting tasks
- Serving an empty GIF image
- Utilizing internal and named locations
- Overriding default MIME types
- Client-Side Performance Optimization
- Enabling resource caching for clients
- Managing the Vary: header
- Reducing the total number of HTTP requests
- Implementing keep-alive connections
- Handling dynamic resource requirements
- Integrating static files within web frameworks
- Content Post-Processing
- Applying Gzip compression
- Performing image scaling
- Access Control
- Restricting file access based on IP addresses
- Implementing geographical restrictions
- Hiding VCS directories and sensitive files
- Setting up basic authentication
- Exploring alternative authentication methods
- Combining multiple access restrictions
- Creating secure links
- Applying Limits and Traffic Management
- Shaping network traffic
- Grouping requests for effective limiting
- Rate-limiting incoming requests
- Restricting the number of simultaneous connections
- Configuring Nginx as a Reverse Proxy
- Supported upstream protocols
- Handling self-signed upstream SSL certificates
- Passing parameters to FastCGI and uWSGI backends
- Proxying WebSocket connections
- Utilizing X-Accel-* headers
- Modifying headers received from and sent to upstream servers
- Language-Specific Reverse Proxy Setups
- PHP integration
- Python integration
- Ruby integration
- Configuring Nginx as an SSL Terminator
- Generating self-signed SSL certificates
- Obtaining certificates from Let's Encrypt
- Restricting available cipher suites
- Managing SSL session tickets
- Implementing OCSP stapling
- Verifying SSL configuration security
- Accepting client-side certificates
- Considering HTTP/2 implications
- Load Balancing with Nginx
- Defining upstream groups
- Implementing sticky sessions via ip_hash
- Exploring Nginx Plus advanced load balancing features
- Comparing alternatives to Nginx and Nginx Plus
- Deploying Nginx behind another Nginx load balancer
- Placing Nginx behind HAProxy or AWS load balancers
- Configuring Nginx as a Cache
- Instructing Nginx to cache pages
- Understanding Nginx's reaction to standard caching headers
- Tuning cache parameters
- Comparing Nginx cache with application-level cache
- Clearing the cache manually
- Deploying Popular Web Applications with Nginx
- Application selection determined by the instructor
- Logging Configuration
- Managing access and error log files
- Defining custom log formats
- Tracking slow requests
- Optimizing logging performance
- Implementing log rotation
- Analyzing logs with external tools
- Monitoring Nginx
- Using the Nginx stub status page
- Utilizing the Nginx Plus extended live status page
- Understanding typical monitoring metrics and alerts for Nginx
- [Optional] High Availability with Nginx¹
- Distributing static content across multiple servers
- Sharing configuration files
- Implementing fail-over with elastic/virtual IP addresses
- Configuring VRRP using Keepalived
- Exploring other high-availability stacks
- Integrating Nginx Plus with Keepalived
- Common Mistakes and Security Issues in Nginx Configuration
- Addressing Common Performance Issues
¹ The High Availability module involves network configurations that may trigger intrusion detection systems or require multiple virtual machines per participant, which is beyond the scope of standard topics. Therefore, it is offered as an optional component.
Requirements
Participants should be proficient in using the Linux command line and possess a working knowledge of TCP/IP networking.
21 Hours
Testimonials (1)
The trainer was very knowledgeable and was able to answer most questions that were somewhat outside of the scope of what we needed to cover. He was dynamic, funny and polite.
