Thank you for sending your enquiry! One of our team members will contact you shortly.
Thank you for sending your booking! One of our team members will contact you shortly.
Course Outline
- HTTP/1.x Protocol
- Request and Response Formats
- Analyzing HTTP Conversations with tcpdump and Wireshark
- Inspecting HTTP Headers in a Web Browser
- Sending Requests via CURL
- Common Headers
- Request Pipelining
- Content Length and Chunked Encoding
- MIME Types
- Nginx Installation
- Installing Nginx from Debian Packages
- Nginx Variants Available in Debian and Ubuntu
- Installing Nginx from Source Code
- Starting Nginx
- Upgrading Nginx
- Nginx as a Static File Server
- General Structure of the Configuration File
- Setting Up Virtual Hosts
- Configuring Locations
- Location Lookup Order
- Setting Up Error Pages
- Issuing Redirects
- Other Forms of URL Rewriting
- Serving an Empty GIF Image
- Internal and Named Locations
- Overriding MIME Types
- Client-Side Performance Optimization
- Allowing Clients to Cache Resources
- The Vary Header
- Minimizing the Number of Requests
- Keep-Alive Connections
- Handling Dynamic Resource Changes
- How Web Frameworks Manage Static Files
- Content Post-Processing
- Gzip Compression
- Image Scaling
- Access Control
- Restricting File Access Based on IP Address
- Geographical Restrictions
- Hiding Version Control Directories and Private Files
- Basic Authentication
- Other Authentication Methods
- Combining Restrictions
- Secure Links
- Applying Limits
- Traffic Shaping
- Grouping Requests for Limiting Purposes
- Rate-Limiting Requests
- Restricting Simultaneous Connections
- Nginx as a Reverse Proxy
- Supported Upstream Protocols
- Handling Self-Signed Upstream SSL Certificates
- Passing Parameters to FastCGI and uWSGI Backends
- Proxying WebSocket Connections
- X-Accel-* Headers
- Modifying Headers Received and Sent by Upstream
- Language-Specific Reverse Proxy Setups
- PHP
- Python
- Ruby
- Nginx as an SSL Terminator
- Generating Self-Signed SSL Certificates
- Obtaining Certificates from Let's Encrypt
- Restricting Available Ciphers
- Working with Session Tickets
- Stapling OCSP Responses
- Verifying SSL Configuration
- Accepting Client-Side Certificates
- HTTP/2 Considerations
- Load Balancing with Nginx
- Defining Upstream Groups
- Sticky Sessions Using ip_hash
- Extra Features of Nginx Plus as a Load Balancer
- Alternatives to Nginx and Nginx Plus
- Placing Another Nginx Behind a Nginx Load Balancer
- Nginx Behind HAProxy or AWS Load Balancer
- Nginx as a Cache
- Instructing Nginx to Cache Pages
- How Nginx Reacts to Standard Caching-Related Headers
- Tunable Parameters of Caches
- Nginx Cache vs. Application-Level Cache
- Clearing the Cache
- Deploying Popular Web Applications with Nginx
- The List of Applications to Be Discussed Is Determined by the Trainer
- Logging
- Access Log and Error Log Files
- Specifying Custom Log Formats
- Tracking Slow Requests
- Optimizing Logging
- Log Rotation
- Log Analysis by External Programs
- Monitoring Nginx
- Nginx Stub Status Page
- Nginx Plus Extended Live Status Page
- Typical Monitoring Metrics and Alerts for Nginx
- [Optional] High Availability with Nginx¹
- Deploying Identical Static Content to Multiple Servers
- Configuration Sharing
- Fail-Over Using an Elastic/Virtual IP Address
- Setting Up VRRP with Keepalived
- Other High-Availability Stacks
- Nginx Plus Integration with Keepalived
- Common Mistakes and Security Issues Related to Nginx Configuration
- Common Performance Issues
¹ The High Availability section involves a network setup that may trigger intrusion detection systems or require setting up multiple virtual machines per participant (which is not required for other topics). Therefore, it is not provided by default.
Requirements
Participants should be proficient in using the Linux command line and possess a working knowledge of TCP/IP.
21 Hours
Testimonials (1)
The trainer was very knowledgeable and was able to answer most questions that were somewhat outside of the scope of what we needed to cover. He was dynamic, funny and polite.
