Jonas Notes

Nginx

4 min read

Deep Dive into Nginx

Introduction

Nginx (pronounced “engine-x”) is a high-performance web server and reverse proxy server that has gained widespread popularity for its speed, scalability, and versatility. It is used for web serving, reverse proxying, caching, load balancing, media streaming, and more. Nginx is known for its event-driven, asynchronous architecture, which enables it to handle a large number of simultaneous connections with low resource consumption.

How Nginx Works

Nginx operates by handling incoming requests and forwarding them to appropriate backend servers or serving static content directly. It uses a modular approach, where different functionalities like HTTP, HTTPS, and load balancing are implemented as modules.

Nginx Architecture

  1. Master and Worker Processes:

    • Master Process: The master process reads and evaluates configuration files, maintains worker processes, and manages the reloading of configuration without downtime.
    • Worker Processes: The worker processes handle the actual client requests. Each worker process is single-threaded and handles multiple connections using non-blocking I/O and event-driven mechanisms.

  2. Event-Driven Model:

    • Nginx uses an event-driven (asynchronous) architecture, where each worker process uses a single-threaded event loop to handle multiple connections. This model allows Nginx to handle thousands of simultaneous connections efficiently.

  3. Modules:

    • Nginx’s functionality is extended through modules, which can be compiled into the Nginx binary. Modules include HTTP, Stream (TCP/UDP), Mail, and third-party modules for additional features.
    • Core Modules: Provide essential functionalities such as event handling, configuration parsing, and process management.
    • Standard Modules: Include HTTP and Stream modules for web serving and reverse proxying.
    • Third-Party Modules: Extend Nginx capabilities, like the ngx_pagespeed module for web performance optimization.

Key Features

  1. Reverse Proxy:

    • Nginx can act as a reverse proxy server, forwarding client requests to backend servers and returning the responses to the clients. This helps in load balancing, caching, and SSL termination.
    server {
    listen 80;
    server_name example.com;
 
    location / {
        proxy_pass http://backend_server;
        proxy_set_header Host $host;
        proxy_set_header X-Real-IP $remote_addr;
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        proxy_set_header X-Forwarded-Proto $scheme;
    }
}

  2. Load Balancing:

    • Nginx supports various load balancing algorithms such as round-robin, least connections, and IP hash. It distributes client requests across multiple backend servers to ensure high availability and scalability.
    upstream backend {
    server backend1.example.com;
    server backend2.example.com;
}
 
server {
    listen 80;
 
    location / {
        proxy_pass http://backend;
    }
}

  3. Caching:

    • Nginx can cache responses from backend servers to improve performance and reduce the load on backend systems. This is particularly useful for serving static content and reducing latency.
    http {
    proxy_cache_path /data/nginx/cache levels=1:2 keys_zone=my_cache:10m max_size=10g inactive=60m use_temp_path=off;
 
    server {
        location / {
            proxy_cache my_cache;
            proxy_pass http://backend_server;
        }
    }
}

  4. SSL/TLS Termination:

    • Nginx can terminate SSL/TLS connections, offloading the encryption/decryption workload from backend servers and providing secure connections to clients.
    server {
    listen 443 ssl;
    server_name example.com;
 
    ssl_certificate /etc/nginx/ssl/example.com.crt;
    ssl_certificate_key /etc/nginx/ssl/example.com.key;
 
    location / {
        proxy_pass http://backend_server;
    }
}

  5. Static Content Serving:

    • Nginx excels at serving static content directly from the file system, such as HTML, CSS, JavaScript, and images. It can handle large amounts of traffic with low resource usage.
    server {
    listen 80;
    server_name example.com;
 
    location / {
        root /var/www/html;
        index index.html index.htm;
    }
}

Advanced Features

  1. HTTP/2 Support:

    • Nginx supports HTTP/2, which improves web performance by allowing multiple concurrent streams over a single TCP connection.

  2. Microcaching:

    • Nginx can implement microcaching to cache dynamic content for short periods, significantly improving performance for high-traffic sites.
    server {
    listen 80;
    server_name example.com;
 
    location / {
        proxy_cache microcache;
        proxy_cache_valid 200 1s;
        proxy_pass http://backend_server;
    }
}

  3. Content Compression:

    • Nginx can compress responses using gzip or Brotli to reduce bandwidth usage and improve load times.
    http {
    gzip on;
    gzip_types text/plain text/css application/json application/javascript text/xml application/xml application/xml+rss text/javascript;
}

  4. Access Control and Security:

    • Nginx provides access control based on IP addresses, authentication methods, and security features to protect against common attacks like DDoS and SQL injection.
    server {
    listen 80;
    server_name example.com;
 
    location / {
        allow 192.168.1.0/24;
        deny all;
    }
}

Summary

Nginx is a versatile and high-performance web server and reverse proxy server, known for its event-driven architecture and modular design. Its ability to handle a large number of simultaneous connections with low resource consumption makes it ideal for modern web applications. With features like reverse proxying, load balancing, caching, SSL/TLS termination, and more, Nginx is a powerful tool for building scalable and reliable web infrastructures. Its wide adoption and support for advanced features like HTTP/2, microcaching, and content compression further enhance its capabilities.

Backlinks