NGINX Plus Releases
- NGINX Plus Release 18 (R18)
- NGINX Plus Release 17 (R17)
- NGINX Plus Release 16 (R16)
- NGINX Plus Release 15 (R15)
- NGINX Plus Release 14 (R14)
- NGINX Plus Release 13 (R13)
- NGINX Plus Release 12 (R12)
- NGINX Plus Release 11 (R11)
- NGINX Plus Release 10 (R10)
- NGINX Plus Release 9 (R9)
- NGINX Plus Release 8 (R8)
- NGINX Plus Release 7 (R7)
- NGINX Plus Release 6 (R6)
- NGINX Plus Release 5 (R5)
- NGINX Plus Release 4 (R4)
- NGINX Plus Release 3 (R3)
- NGINX Plus Release 2 (R2)
- NGINX Plus Initial Release (R1)
NGINX Plus Release 18 (R18)
NGINX open source build 1.15.10, 9 April 2019
NGINX Plus R18 is a feature release:
- Added support for dynamic SSL certificate loading, either from file or from key-value storage (for the latter case, prefix the variable with
data:
). - Added support for opaque session tokens as a browser cookie, refresh tokens to refresh expired ID tokens without user interaction, and a logout URL to OpenID Connect reference implementation.
- Active health checks extended with additional logic of verifying arbitrary variables (the
require
parameter of thematch
directive). - Clustering enhancement: A single
zone_sync
configuration can now be used for all instances in a cluster with the help of wildcard support in thelisten
directive. - Port ranges can now be used in the
listen
directive. - Stream proxy: Added the ability to explicitly close existing connections to the particular upstream server after it is removed from the group due to health check failure, API call, or re-resolve action (the
proxy_session_drop
directive). - New variable,
$upstream_bytes_sent
, contains number of bytes sent to an upstream server. - New or updated dynamic modules:
- Brotli (New): A general‑purpose, lossless data compression algorithm.
- OpenTracing (New): Ability to instrument NGINX Plus with OpenTracing-compliant requests for a range of distributed tracing services, such as Datadog, Jaeger, and Zipkin.
- Lua (Updated): A scripting language for NGINX Plus, updated to use LuaJIT 2.1.
- NGINX JavaScript (Updated): A JavaScript module for NGINX Plus, updated to 0.3.0.
NGINX Plus R18 is supported on:
- Alpine Linux 3.8, 3.9
- Amazon Linux (2018.03+), Amazon Linux 2 LTS
- CentOS 6.5+, 7.4+
- Debian 8.0, 9.0
- FreeBSD 11.2+, 12.0
- Oracle Linux 6.5+, 7.4+
- RHEL 6.5+, 7.4+, 8
- SUSE Linux Enterprise Server 12, 15
- Ubuntu 14.04 LTS, 16.04 LTS, 18.04, 18.10
Notes:
- Amazon Linux 2017.09 is no longer supported, minimum supported version is now 2018.03
- CentOS/Oracle/Red Hat Enterprise Linux 7.3 is no longer supported, minimum supported version is now 7.4
- Debian 8.0 will be removed in NGINX Plus R19
- Ubuntu 14.04 will be removed in NGINX Plus R19
More information: Announcing NGINX Plus R18
NGINX Plus Release 17 (R17)
NGINX open source build 1.15.7, 11 December 2018
NGINX Plus R17 is a feature release:
- Support for TLS 1.3 using
TLSv1.3
parameter tossl_protocols
directive - Support for two‑stage rate limiting with the new
delay=
parameter; excessive requests are initially delayed and then ultimately rejected - Added support for the Ed25519 and Ed448 cryptographic algorithms to the JSON Web Token (JWT) module
- Ability to fetch JSON Web Keys (JWK) directly from identity provider (IdP) when using OpenID Connect with the new
auth_jwt_key_request
directive - New
proxy_socket_keepalive
directive enables TCP keepalives between NGINX Plus and the proxied server - New
keepalive_timeout
directive controls how long an HTTP keepalive connection between NGINX Plus and the proxied server can be idle before being closed - New
proxy_requests
directive for the Stream module defines how many packets are sent from NGINX Plus to the proxied server before a new UDP “session” to that server is started - The Zone Synchronization module can now pass the server name using SNI when connecting to cluster nodes for server name verification, as enabled with new
zone_sync_ssl_server_name
directive - The NGINX JavaScript module has been updated:
- Support for arguments objects
- Support for non‑integer fractions
- Support for additional time methods:
console.time()
andconsole.timeEnd()
- Variables and functions can be redeclared
- Integration with the NGINX Stream module for TCP/UDP applications has been refactored to use various return functions, including a
send()
method for modifying ingress traffic. Egress traffic is now available through a callback.
NGINX Plus R17 is supported on:
- Alpine Linux 3.8, 3.9
- Amazon Linux (2017.09), Amazon Linux 2 LTS
- CentOS 6.5+, 7.0+
- Debian 8.0, 9.0
- FreeBSD 11.2+, 12.0
- Oracle Linux 6.5+, 7.0+
- RHEL 6.5+, 7.0+
- SUSE Linux Enterprise Server 12, 15
- Ubuntu 14.04 LTS, 16.04 LTS, 18.04, 18.10
Notes:
- Alpine Linux 3.8 and 3.9 support are new in this release
- FreeBSD 10.4 and 11.1 are removed in this release
- FreeBSD 11.2 and 12.0 support are new in this release
- CentOS/RHEL 7.3 will be removed with NGINX Plus R18
- Ubuntu 14.04 will be removed with NGINX Plus R19
- Ubuntu 18.10 support is new in this release
More information: Announcing NGINX Plus R17
NGINX Plus Release 16 (R16)
NGINX open source build 1.15.2, 5 September 2018
NGINX Plus R16 is a feature release:
- Support for rate limiting in a cluster using Zone Synchronization module
- Support for key-value store in a cluster using Zone Synchronization module
- Support for timeouts in Key-Value Store module
- New
random
load‑balancing algorithm with Random with Two Choices variant, for whichleast_time
orleast_conn
can be used to decide between the two choices - UDP load balancing (
stream
module) enhanced with support for multiple UDP packets from the client, enabling use of more complex UDP protocols such as OpenVPN, VoIP, and VDI - Support for the PROXY Protocol v2 (PPv2) header, and the ability to inspect custom TLV values in the header
- Support for AWS PrivateLink, Amazon’s technology for creating secure tunnels into a VPC
- Extension of the OpenID Connect reference implementation to support opaque session tokens
- New
$ssl_preread_protocol
variable to distinguish between SSL/TLS and other protocols when forwarding traffic using a TCP (stream
) proxy - New Encrypted Session dynamic module available
- The NGINX JavaScript module has been updated:
- There is now a single object (
r
) to access both request and response attributes associated with each HTTP request. - New language support:
bytesFrom()
,padStart()
,padEnd()
,getrandom()
,getentropy()
, and binary literals
- There is now a single object (
NGINX Plus R16 is supported on:
- Amazon Linux (2017.09), Amazon Linux 2 LTS
- CentOS 6.5+, 7.0+
- Debian 8.0, 9.0
- FreeBSD 10.4+, 11.1+
- Oracle Linux 6.5+, 7.0+
- RHEL 6.5+, 7.0+
- SUSE Linux Enterprise Server 12
- Ubuntu 14.04 LTS, 16.04 LTS, 18.04
Notes:
- Support for Ubuntu 17.10 (Artful Aardvark) is no longer available.
- Minimum supported FreeBSD versions have changed (10.4+, 11.1+).
- Amazon Linux 2 (LTS) is updated to the GA version.
- The Upstream Conf and Extended Status modules are superseded by the NGINX Plus API module and are no longer distributed in NGINX Plus. Please read our transition guide.
- The NGINX New Relic plug‑in has been updated to use the new NGINX Plus API, but is no longer supported by NGINX, Inc.
More information: Announcing NGINX Plus R16
NGINX Plus R16 Updates
These are bug‑fix releases for NGINX Plus R16.
NGINX Plus R16 P1
30 October 2018
- Security Patch: When using HTTP/2 a client might cause excessive memory consumption (CVE-2018-16843) and CPU usage (CVE-2018-16844).
- Security Patch: Processing of a specially crafted mp4 file with the ngx_http_mp4_module might result in worker process memory disclosure (CVE-2018-16845).
NGINX Plus Release 15 (R15)
NGINX open source build 1.13.10, 10 April 2018
NGINX Plus R15 is a feature release:
- Support for proxying, load balancing, and SSL-termination of gRPC traffic
- Support for HTTP/2 server push
- Support for sticky learn session persistence in a cluster using new Zone Synchronization module, which synchronizes shared memory zones across a cluster of NGINX Plus instances
- Support for OpenID Connect (OIDC) authorization code flow, enabling integration with CA Single Sign-On (formerly SiteMinder), ForgeRock OpenAM, Keycloak, Okta, and other identity providers
- Support for making subrequests using NGINX JavaScript module
- Support for crypto libraries in NGINX JavaScript module with support for common hash functions MD5, SHA-1, and SHA-256
- Inheritance of the
CAP_NET_RAW
Linux capability so that transparent proxying does not require worker processes to have root privileges - New
auth_jwt_leeway
directive to compensate for clock skew between NGINX Plus and identity provider - Performance enhancements and bug fixes to NGINX WAF module
- Updates to LDAP authentication reference implementation
- New
$upstream_queue_time
variable to hold the amount of time a request spends in the upstream queue - New
$ssl_preread_alpn_protocols
variable to hold the Application Layer Protocol Negotiation (ALPN) protocols presented by client - New Cookie-Flag dynamic module available
NGINX Plus R15 is supported on:
- Amazon Linux (2017.09), Amazon Linux 2 LTS
- CentOS 6.5+, 7.0+
- Debian 8.0, 9.0
- FreeBSD 10.3, 11.0
- Oracle Linux 6.5+, 7.0+
- RHEL 6.5+, 7.0+
- SUSE Linux Enterprise Server 12
- Ubuntu 14.04 LTS, 16.04 LTS, 17.10, 18.04
Notes:
- Support for Ubuntu 17.04 (Zesty Zapus) is no longer available.
- nginScript is now known as the NGINX JavaScript module.
- The NGINX Plus API version has been incremented to 3. All previous versions of the NGINX Plus API are still supported.
- This is the last release to support the previous dynamic (on-the-fly) reconfiguration and extended status APIs.
More information: Announcing NGINX Plus R15
NGINX Plus R15 Updates
These are bug‑fix releases for NGINX Plus R15.
NGINX Plus R15 P2
30 October 2018
- Security Patch: When using HTTP/2 a client might cause excessive memory consumption (CVE-2018-16843) and CPU usage (CVE-2018-16844).
- Security Patch: Processing of a specially crafted mp4 file with the ngx_http_mp4_module might result in worker process memory disclosure (CVE-2018-16845).
NGINX Plus R15 P1
12 April 2018
- Fixed issue that prevented loading of third‑party modules due to signature incompatibility.
NGINX Plus Release 14 (R14)
NGINX open source build 1.13.7, 12 December 2017
NGINX Plus R14 is a feature release:
- Support for nested JSON Web Token (JWT) claims, array data, and longer key sizes (256‑, 384‑, and 512‑bit) for JWT signing algorithms, providing more flexibility and security when validating JWTs
- Clustering support for the
sticky_learn
method of session persistence, as a technology preview of distribution of session state data in a cluster - Support for the key‑value store and NGINX Plus API in the
stream
context, making the same key‑value store features are available for TCP/UDP applications as for HTTP applications - New NGINX Plus dashboard utilizing the NGINX Plus API which was introduced in NGINX Plus R13
- Improvements to NGINX JavaScript module, including the ability to manage JSON objects, read content from filesystems, and backtrace to errors and exceptions to further improve troubleshooting
- Ability to encode client certificates in a HTTP header and send them to backend applications with the
$ssl_client_escaped_cert
variable - Enhanced DNS resolver that preserves the list of upstream IP addresses across a reload of the NGINX Plus configuration
- Ability to drain upstream servers extended to file‑based configurations with the
drain
parameter to the upstreamserver
directive
NGINX Plus R14 is supported on:
- Amazon Linux (2016.09), Amazon Linux 2 (2017.12)
- CentOS 6.5+, 7.0+
- Debian 8.0, 9.0
- FreeBSD 10.3, 11.0
- Oracle Linux 6.5+, 7.0+
- RHEL 6.5+, 7.0+
- SUSE Linux Enterprise Server 12
- Ubuntu 14.04 LTS, 16.04 LTS, 17.04, 17.10
Notes:
- Support for Ubuntu 17.10 (Artful Aardvark) is new in this release.
- Support for Debian 7.0 is no longer available.
- The previous Upstream Conf and Extended Status APIs were deprecated in NGINX Plus R13. They will continue to be shipped through NGINX Plus R15, but not in subsequent releases.
More information: Announcing NGINX Plus R14
NGINX Plus R14 Updates
This is a bug‑fix release for NGINX Plus R14.
NGINX Plus R14 P1
25 January 2018
- Live activity monitoring: Reinstated some missing tooltips for the dashboard.
- NGINX Plus API: HTTP Basic Authentication now available for read‑write mode.
NGINX Plus Release 13 (R13)
NGINX open source build 1.13.4, 29 August 2017
NGINX Plus R13 is a feature release:
- Ability to send duplicate all incoming traffic to a dedicated server (the
mirror
directive) - Improvements to NGINX JavaScript module, including the new interactive shell to facilitate development of NGINX JavaScript code
- New NGINX Plus API that incorporates the functionality of the previous
upstream_conf
and (extended)status
APIs; it includes a Swagger specification and adds support for key‑value stores - New build tool (download here) that creates installable packages of the many third‑party modules available for NGINX and NGINX Plus
- Ability to gracefully shut down all live client connections when restarting NGINX Plus (the
worker_shutdown_timeout
directive) - Support for adding HTTP trailers (the
add_trailer
directive) - Improvement to session persistence: quicker establishment of sticky sessions between clients and upstream groups (the
header
parameter to thesticky
learn
directive) - Support for the third‑party HTTP Substitutions Filter module, distributed in NGINX Plus packages and available on the Dynamic Modules page
NGINX Plus R13 is supported on:
- Amazon Linux 2016.09+
- CentOS 6.5+, 7.0+
- Debian 7.0, 8.0, 9.0
- FreeBSD 10.3, 11.0
- Oracle Linux 6.5+, 7.0+
- RHEL 6.5+, 7.0+
- Ubuntu 14.04 LTS, 16.04 LTS, 17.04 “Zesty”
Notes:
- Support for version 5.10+ of CentOS, Oracle Linux, and RHEL; Ubuntu 12.04 LTS (Precise Pangolin); and Ubuntu 16.10 (Yakkety Yak) is no longer available.
- Support for Ubuntu 17.04 (Zesty Zapus) is new in this release.
- The
sticky_cookie_insert
directive (deprecated in NGINX Plus R2) has been removed. - The
upstream_conf
and (extended)status
APIs are deprecated by the new NGINX Plus API and will be removed in a future release.
More information: Announcing NGINX Plus R13
NGINX Plus Release 12 (R12)
NGINX open source build 1.11.10, 14 March 2017
NGINX Plus R12 is a feature release:
- New
config_sync
package enables configuration to synchronized across an NGINX Plus cluster from a single master node. - Updates to the Extended Status module data set, including NGINX Plus version (
nginx_build
), usage statistics for shared memory zones (under theslabs/
subtree), and additional upstream fields (name
,service
) - New statistics displayed on live activity monitoring dashboard: NGINX Plus version, response time metrics, shared memory zones usage, and server names for upstreams
- Support for the
stale-while-revalidate
andstale-if-error
extensions to theCache-Control
header, as defined by RFC 5861 - Ability to bypass cache for byte range requests after a specified offset (the
proxy_cache_max_range_offset
directive) - Length of
Vary
andETag
cache headers increased to 128 bytes; note that the on‑disk cache format has changed, so cached content is invalidated after the upgrade and must be refreshed from the origin server mandatory
parameter to thehealth_check
directive (HTTP and Stream) which requires servers newly added to anupstream
group to pass the associated health check before receiving real traffic- “Zero config” UDP health check which does not require specifying a
match
block - Support in the Stream module for verification of client SSL certificates for TCP applications
- SSL variables representing various details about client certificates and capabilities (
$ssl_ciphers
,$ssl_client_v_end
,$ssl_client_v_start
,$ssl_client_v_remain
, and$ssl_curves
) - The
$ssl_client_verify
variable includes the reason for failure - The
$ssl_client_i_dn
andssl_client_s_dn
variables comply with RFC 2253; legacy variants are available as$ssl_client_i_dn_legacy
and$ssl_client_s_dn_legacy
- Support for accessing arbitrary JWT fields as variables
- Support for JSON escaping in access logs (the
escape
parameter to thelog_format
directive) - WebP support in the Image-Filter module.
- Output from the
nginx
-T
command excludes duplicated sections of configuration - Improvements to memory usage and performance, including upstream
queue
optimization
NGINX Plus R12 is supported on:
- Amazon Linux 2016.09+
- CentOS 5.10+, 6.5+, 7.0+
- Debian 7.0, 8.0, 9.0
- FreeBSD 10.3, 11.0
- Oracle Linux 5.10+, 6.5+, 7.0+
- RHEL 5.10+, 6.5+, 7.0+
- SLES 12, 12 SP1
- Ubuntu 12.04 LTS, 14.04 LTS, 16.04 LTS, 16.10
Support for Debian 9.0 (Stretch) is new in this release. FreeBSD 9 is no longer supported.
Note: NGINX Plus R12 is the last release to support Ubuntu 12.04 LTS and version 5.10+ of CentOS, Oracle Linux, and RHEL.
More information: Announcing NGINX Plus R12
NGINX Plus R12 Updates
These are bug‑fix releases for NGINX Plus R12.
NGINX Plus R12 P3
29 June 2017
- Content caching: fixed issue where a cache response could contain additional internal cache header data.
NGINX Plus R12 P2
30 March 2017
- Live activity monitoring: fixed issue where response time metric was miscalculated under certain conditions.
NGINX Plus R12 P1
14 March 2017
- Live activity monitoring: fixed issue that could cause the dashboard to hang for certain configurations.
NGINX Plus Release 11 (R11)
NGINX open source build 1.11.5, 25 October 2016
NGINX Plus R11 is a feature release:
- Dynamic modules binary compatibility between NGINX Plus and the corresponding version of open source NGINX
- Enhancements to the Stream module: custom logging with a number of additional variables, PROXY protocol support for incoming connections, support for obtaining real IP address and port from PROXY protocol header, and ability to extract the server name from SNI into a variable for purposes such as custom routing
- Updates to the Extended Status module data set, including additional Stream metrics (
sessions
,discarded
) - Cache manager support for iterative operations mode when deleting old cache files, reducing the disk load (see the
manager_files
,manager_threshold
, andmanager_sleep
parameters of theproxy_cache_path
directive) - Support for variables in the
domain
parameter to thesticky
directive - New variable
$upstream_bytes_received
for both Stream and HTTP)
NGINX Plus R11 is supported on:
- CentOS 5.10+, 6.5+, 7.0+
- Debian 7.0, 8.0
- FreeBSD 9.3, 10.1+, 11.0
- Oracle Linux 5.10+, 6.5+, 7.0+
- RHEL 5.10+, 6.5+, 7.0+
- SLES 12, 12 SP1
- Ubuntu 12.04 LTS, 14.04 LTS, 16.04 LTS, 16.10
- Amazon Linux 2016.03+
Support for Ubuntu 16.10 (Yakkety Yak) and FreeBSD 11.0 is new in this release.
Note: NGINX Plus R11 does not include the nginx-plus-extras package. Any subscribers using this package must migrate to the nginx-plus package and then install the needed dynamic modules.
More information: Announcing NGINX Plus R11
NGINX Plus Release 10 (R10)
NGINX open source build 1.11.3, 23 August 2016
NGINX Plus R10 is a feature release:
- New dynamic module: ModSecurity (package name is nginx-plus-module-modsecurity) built on an early release of ModSecurity 3.0.
- New dynamic module: nginScript (package name is nginx-plus-module-njs)
- Support for client authentication using JSON Web Tokens (JWT)
- Enhancements to the Stream module used for TCP/UDP load balancing (more NGINX variables, resolver support, map module, geo module, geoip module, and split_clients A/B testing support)
- Support for dual‑stack RSA/ECC certificates by defining multiple ssl_certificate and ssl_certificate_key directives on the same virtual server
- Support for IP Transparency and Direct Server Return (DSR) using the
transparent
parameter to the proxy_bind directive. DSR only supported for UDP load balancing. - Support for the
IP_BIND_ADDRESS_NO_PORT
socket option where available, allowing for many more upstream connections (requires Linux kernel 4.2 or later) - HTTP/2 improvements: support for unbuffered upload,and various bug fixes
- New NGINX variables: $request_id, $proxy_protocol_port, $realip_remote_port
- Modules updated (both in nginx-plus-extras and as dynamic modules):
- Headers-More module updated to version 0.31
- Lua module updated to version 0.10.6
- Phusion Passenger Open Source module updated to version 5.0.30
- Set-Misc module updated to version 0.31
NGINX Plus R10 is supported on:
- CentOS 5.10+, 6.5+, 7.0+
- Debian 7.0, 8.0
- FreeBSD 9.3, 10.1+
- Oracle Linux 5.10+, 6.5+, 7.0+
- RHEL 5.10+, 6.5+, 7.0+
- SLES 12, 12 SP1
- Ubuntu 12.04 LTS, 14.04 LTS, 16.04 LTS
- Amazon Linux 2016.03+
Ubuntu 15.10 (Wily Werewolf) is no longer supported.
Note: NGINX Plus R10 is the last release to include the nginx-plus-extras package. Any subscribers using this package should migrate to the nginx-plus package and then install the needed dynamic modules.
More information: Announcing NGINX Plus R10
NGINX Plus Release 9 (R9)
NGINX open source build 1.9.13, 12 April 2016
NGINX Plus R9 is a feature release:
Dynamic loading of modules (both NGINX‑authored and third‑party). The NGINX‑authored modules supported in this release:
- nginx-plus-module-geoip
- nginx-plus-module-image-filter
- nginx-plus-module-perl
- nginx-plus-module-xslt
The third‑party modules supported in this release:
UDP load balancing support, configured in the
stream
configuration contextSupport for retrieving upstream servers configuration via DNS
SRV
records, configured with the newservice
parameter to theserver
directiveAutomatic retrying of DNS requests over TCP when UDP responses are truncated
Failed nonidempotent HTTP requests (
POST
,LOCK
,PATCH
) are no longer retried with the other servers in theupstream
group, unless thenon_idempotent
parameter is included in theproxy_next_upstream
directiveImproved cache metadata accounting
Automatic binding of worker processes to available CPUs using the the new
auto
parameter of theworker_cpu_affinity
directiveOptional offloading of some cache write operations to thread pools, configured with the
aio_write
on
directiveSupport for customizing the
Server
response header, as well as the signature in standard error messagesUpdated live activity monitoring dashboard
In the nginx-plus-extras package:
- Headers-More module updated to version .29
- Lua module updated to version 0.10.2
- Phusion Passenger Open Source module updated to version 5.0.26
NGINX Plus R9 is supported on:
- CentOS 5.10+, 6.5+, 7.0+
- Debian 7.0, 8.0
- FreeBSD 9.3, 10.1+
- Oracle Linux 5.10+, 6.5+, 7.0+
- RHEL 5.10+, 6.5+, 7.0+
- SLES 12, 12 SP1
- Ubuntu 12.04 LTS, 14.04 LTS, 15.10, 16.04 LTS
- Amazon Linux 2016.03+
Ubuntu 15.04 (Vivid Vervet) is no longer supported.
More information: Announcing NGINX Plus R9
NGINX Plus R9 Updates
These are bug‑fix releases for NGINX Plus R9.
NGINX Plus R9 P1
25 May 2016
- Fixed potential segmentation fault when writing a client request body to a temporary file. A specially crafted request may cause an NGINX worker process to crash due to a NULL pointer dereference (CVE-2016-4450).
NGINX Plus Release 8 (R8)
NGINX open source build 1.9.9, 19 January 2016
NGINX Plus R8 is a feature release:
- OAuth Technology Preview, which performs OAuth 2.0 processing for proxied applications
- Improved HTTP/2 implementation now included in the nginx-plus and nginx-plus-extras packages; the nginx-plus-http2 package is deprecated
- Caching improvements, including support for caching
HEAD
requests and more effective caching of large files with the Cache Slice module - Changes to upstream groups made with the on‑the‑fly reconfiguration API can now be configured to persist across restarts and configuration reloads
- Support for sending health check requests to a specified port (the
port
parameter to thehealth_check
directive) - Enhancement to the Real IP module: the new
$realip_remote_addr
variable represents the original client IP address - Enhancement to
syslog
logging: thenohostname
parameter disables logging of the hostname field, which is unnecessary when logging to a localsyslog
server - Updated live activity monitoring dashboard
- In the nginx-plus-extras package:
- Headers-More module updated to version 0.28
- Lua module updated to version 0.9.20
- Phusion Passenger Open Source module updated to version 5.0.22
- Redis module for Lua access updated to version 0.21
NGINX Plus R8 is supported on:
- CentOS 5.10+, 6.5+, 7.0
- Debian 7.0, 8.0
- FreeBSD 9.3, 10.1+
- Oracle Linux 5.10+, 6.5+, 7.0
- RHEL 5.10+, 6.5+, 7.0
- SLES 12, 12 SP1
- Ubuntu 12.04 LTS, 14.04 LTS, 15.04, 15.10
- Amazon Linux
NGINX Plus R8 does not include the nginx-plus-lua package; customers previously using this package are advised to migrate to the nginx-plus-extras package.
More information: Announcing NGINX Plus R8
NGINX Plus R8 Updates
These are bug‑fix releases for NGINX Plus R8.
NGINX Plus R8 P3
24 February 2016
- HTTP/2: Fixed handling of
client_body_timeout
directive
NGINX Plus R8 P2
11 February 2016
- Logging: Fixed buffer over‑read while logging invalid request headers
- HTTP/2: Various fixes
NGINX Plus R8 P1
26 January 2016
- Resolver: Limit
CNAME
resolutions to prevent remote attackers from causing a denial of service (CVE-2016-0747)
NGINX Plus Release 7 (R7)
NGINX open source build 1.9.4, 15 September 2015
NGINX Plus R7 is a feature release:
Support for HTTP/2 in the new nginx-plus-http2 package (the nginx-plus and nginx-plus-extras packages continue to support SPDY)
Note: Before installing the nginx-plus-http2 package, you must remove the
spdy
parameter on alllisten
directives in your configuration (replace it with thehttp2
andssl
parameters to enable support for HTTP/2). NGINX Plus fails to start if anylisten
directives have thespdy
parameter.Support for proxying NTLM requests
Enhancements to TCP load balancing and proxying:
- Access controls
- Connection limiting
- Bandwidth limiting for upload and download
- Client‑side PROXY protocol support
- Ability to set local IP address of origin for outgoing connections
- New
backlog
parameter tolisten
directive to limit size of queue of pending connections - New
tcp_nodelay
directive to control use of OSTCP_NODELAY
option
More efficient distribution of connections across NGINX Plus worker processes (new
reuseport
parameter to thelisten
directive)Thread pools for multithreaded reading and sending of files without blocking worker processes
Live activity monitoring dashboard redesigned to use tabs
Additional live activity monitoring metrics in the Status module (dataset version 6)
Additional arguments to playlist and fragment URIs in the HLS module (
start
,end
, andoffset
)New
-T
flag onnginx
command to dump the configuration to standard output in a standardized formatNew
$upstream_connect_time
variable to capture the connection time to upstream serverssub_filter
directive now supports variables in both the string being replaced and the replacement string; multiplesub_filter
directives can appear at a configuration levelIn the nginx-plus-extras package:
- New Redis module for access to Redis databases through Lua
- Headers-More module updated to version 0.26
- Lua module updated to version 0.9.16
- Phusion Passenger Open Source module updated to version 5.0.15
- Set-Misc module updated to version 0.29
NGINX Plus R7 is supported on:
- CentOS 5.10+, 6.5+, 7.0+
- Debian 7.0, 8.0
- FreeBSD 9.3, 10.1+
- Oracle Linux 5.10+, 6.5+, 7.0+
- RHEL 5.10+, 6.5+, 7.0+
- SLES 12
- Ubuntu 12.04 LTS, 14.04 LTS, 15.04
The following OS distributions are no longer supported: Debian 6.0, SLES 11 SP3, and Ubuntu 10.04 LTS (Lucid Lynx) and 14.10 (Utopic Unicorn).
The nginx-plus-extras package has additional dependencies.
NGINX Plus R7 is the last release that includes the nginx-plus-lua package; customers using the package will have to migrate to the nginx-plus-extras package in NGINX Plus R8.
More information and important upgrade information for users of the Phusion Passenger Open Source module: Announcing NGINX Plus Release 7
NGINX Plus Release 6 (R6)
NGINX open source build 1.7.11, 14 April 2015
NGINX Plus R6 is a feature release:
- TCP proxy enhancements (health checks, dynamic reconfiguration, SSL support, logging, status counters)
- New Least-Time load‑balancing algorithm
- Support for unbuffered upload (
proxy_request_buffering
directive) - Proxy SSL authentication support for HTTP and uwsgi
- Proxy cache enhancements (variables in value of
proxy_cache
directive, newuse_temp_path
parameter toproxy_cache_path
directive) - Mail proxy supports client SSL certificates
- Enhancement to Autoindex module (new
autoindex_format
directive) - New live activity monitoring dashboard
- In the nginx-plus-extras package:
- Lua module updated to version 0.9.16rc1
- Phusion Passenger Open Source module updated to version 4.0.59
- Set-Misc module updated to version 0.28
NGINX Plus R6 is supported on:
- CentOS 5.10+, 6.5+, 7.0
- Debian 6.0, 7.0, 8.0
- FreeBSD 9.3, 10.1
- Oracle Linux 5.10+, 6.5+, 7.0
- RHEL 5.10+, 6.5+, 7.0
- SLES 11 SP3, 12
- Ubuntu 10.04 LTS, 12.04 LTS, 14.04 LTS, 14.10
The nginx-plus-extras package has additional dependencies.
More information: Announcing NGINX Plus Release 6 with Enhanced Load Balancing, High Availability, and Monitoring Features
NGINX Plus Release 5 (R5)
NGINX open source build 1.7.7, 2 December 2014
NGINX Plus R5 is a feature release:
- Proxying and load balancing of raw TCP traffic (the
Stream
module) - Sticky session timeout now applies from the most recent request in the session
- Upstream “draining” can be used to remove an upstream server without interrupting any user sessions (new
drain
parameter to theupstream_conf
directive) - Improved control over request retries in the event of failure, based on number of tries and time; also available for FastCGI, memcached, SCGI, and uwsgi modules
Vary
field in response header is correctly handled for caching (multiple variants of the same resource can be cached); note that the on‑disk cache format has changed, so upgrading to R5 invalidates cached content- Improved caching support for byte‑range requests
- Control of upstream bandwidth (new
proxy_limit_rate
directive) - In the nginx-plus-extras package:
- Lua module updated to version 0.9.13
- Phusion Passenger Open Source module updated to version 4.0.53
- In the nginx-plus-lua package:
- Lua module updated to version 0.9.13
NGINX Plus R5 is supported on:
- CentOS 5.9, 6.5, 7.0
- Debian 6.0, 7.0
- FreeBSD 9.3, 10.0
- Oracle Linux 5.10+, 6.5+, 7.0
- RHEL 5.9, 6.5, 7.0
- SLES 11 SP3, 12
- Ubuntu 10.04 LTS, 12.04 LTS, 14.04 LTS, 14.10
The nginx-plus-extras and nginx-plus-lua packages have additional dependencies.
More information: NGINX Plus R5 Released
NGINX Plus Release 4 (R4)
NGINX open source build 1.7.3, 24 July 2014
NGINX Plus R4 is a feature release:
- Ability to verify backend SSL certificates
- Support for SNI while working with SSL backends
- Passphrases for SSL private keys can now be stored in an external file
- New load‑balancing method based on user‑defined keys with optional consistency (hash directive)
- New session affinity mechanism (sticky learn) based on server‑initiated sessions
- Cache revalidation now uses
If-None-Match
header field when possible - Conditional logging for requests (new
if
parameter to theaccess_log
directive) - Ability to retrieve a subset of the live activity monitoring data
- MP4 module now supports the
end
argument in request URIs, which sets the end point of playback - In the nginx-plus-extras package:
- Lua module updated to version 0.9.10
- Phusion Passenger Open Source module updated to version 4.0.45
- In the nginx-plus-lua package:
- Lua module updated to version 0.9.10
NGINX Plus R4 is supported on:
- CentOS 5.9, 6.5, 7.0
- Debian 6.0, 7.0
- FreeBSD 9.2, 10.0
- Oracle Linux 5.10+, 6.5+, 7.0
- RHEL 5.9, 6.5, 7.0
- SLES 11 SP3
- Ubuntu 10.04 LTS, 12.04 LTS, 14.04 LTS
The nginx-plus-extras and nginx-plus-lua packages have additional dependencies.
More information: NGINX Plus R4 Released
NGINX Plus Release 3 (R3)
NGINX open source build 1.5.12‑1, 2 April 2014
NGINX Plus R3 is a feature release:
- Automatic re‑resolution of hostnames in upstream groups allows group members to be updated on‑the‑fly using DNS
- New connection limits and an internal connection queue protect servers from connection overload and improve connection scheduling by NGINX Plus’ load balancing
- Support for PROXY protocol
- SPDY support updated to comply with draft 3.1
- Additional controls over SSL have been added to control the use of session tickets and reduce time to first byte
- Support for IPv6 DNS resolution
NGINX Plus R3 is supported on:
- CentOS 5.9, 6.5
- Debian 6.0, 7.0
- FreeBSD 9.2, 10.0
- Oracle Linux 5.10+, 6.5+, 7.0
- RHEL 5.9, 6.5
- SLES 11 SP3
- Ubuntu 10.04 LTS, 12.04 LTS, 12.10, 13.10, 14.04 LTS
The nginx-plus-extras and nginx-plus-lua packages have additional dependencies.
More information: NGINX Plus R3 Released
NGINX Plus Release 2 (R2)
NGINX open source build 1.5.7‑1, 12 December 2013
NGINX Plus R2 is a feature release:
- Enhanced sticky routing support
- Additional status metrics for virtual hosts and cache zones
- Cache purge support (also available for FastCGI)
- Support for cache revalidation
- Support for authorization based on the result of a subrequest (new
ngx_http_auth_request_module
module)
NGINX Plus R2 Updates
Security Update to NGINX Plus Release R2NGINX open source build 1.5.7‑4, 21 March 2014
- Fixes vulnerability in experimental SPDY implementation in open source build 1.5.7‑3 and earlier.
Functional Update to NGINX Plus R2NGINX open source build 1.5.7‑3, 5 March 2014
- NGINX Plus now correctly applies the value set with the
client_max_body_size
directive when processing HTTP requests that contain chunk‑encoded body data.
Functional Update to NGINX Plus R2NGINX open source build 1.5.7‑2, 13 February 2014
- Updates to MP4 and HLS streaming functionality
- Fix for premature closing of connections when using SPDY with proxy cache
- Updates to implementation of SPDY/2
- Added status.html file for live activity monitoring, missing from some packages
NGINX Plus Initial Release (R1)
NGINX open source build 1.5.3‑1, 22 August 2013
NGINX Plus is the fully supported, commercial version of NGINX. It includes most NGINX open source modules and adds further features:
- Application health checks
- Live activity monitoring (implemented in the Extended Status module)
- Advanced load balancing
- On‑the‑fly reconfiguration of load‑balanced upstream groups
- Extended logging capabilities
- High availability setup
- Adaptive media streaming