Cheatsheet Nginx V2
// Structured learning part for Cheatsheet Nginx V2 covering Status Seri.
This overview is designed to help you choose the right entry point quickly. Follow the full track from lesson one, continue from your last checkpoint, or jump straight into a phase that matches what you need right now.
Curriculum Map
Navigate by phase, then choose the lesson that matches your current depth.
NGINX Foundation: Role, Variants, and When to Use It
33 minMembangun mental model NGINX, varian produknya, posisi arsitekturalnya, dan batas tanggung jawabnya dalam enterprise Java systems.
Request Lifecycle: Client → DNS → Load Balancer → NGINX → Service → Pod → JAX-RS
38 minMenelusuri request dari client hingga JAX-RS endpoint dan kembali, termasuk latency, connection, proxy, dan failure boundaries.
Configuration Mental Model: Context, Inheritance, Includes, and Reload
25 minMemahami struktur konfigurasi, scope directive, inheritance, evaluation, validation, dan lifecycle proses NGINX.
Server Blocks, Virtual Hosts, and Location Matching
23 minMenguasai server selection, host/SNI relationship, location algorithm, path normalization, rewrite, dan routing ambiguity.
Reverse Proxy Contract with Java/JAX-RS Backends
29 minMenghubungkan proxy behavior dengan base URI, forwarded headers, redirects, real client identity, dan error handling Java/JAX-RS.
HTTP Semantics at the Proxy Layer
33 minMenilai bagaimana NGINX dapat mempertahankan atau merusak HTTP semantics, compatibility, dan protocol negotiation.
TLS Architecture: Termination, Re-encryption, mTLS, and Certificates
36 minMemahami TLS termination, passthrough, re-encryption, trust chains, SNI, ALPN, certificate rotation, dan mTLS.
Upstreams, Load Balancing, Health, and Connection Pools
41 minMendalami upstream pools, balancing algorithms, health behavior, keepalive, DNS discovery, failover, dan feature gap Open Source/Plus.
Timeout Chains, Retry Semantics, and Gateway Failures
21 minMembangun timeout budget end-to-end, retry safety, serta mental model 408/499/502/503/504.
Buffers, Streaming, Uploads, and Large Bodies
26 minMemahami request/response buffering, temp files, backpressure, uploads, downloads, SSE, WebSocket, dan memory/disk impact.
Compression, Proxy Caching, and Static Content
29 minMenguasai gzip/brotli, proxy cache, validators, static assets, SPA delivery, dan cache-related security failures.
NGINX Security Hardening and Abuse Resistance
33 minMembangun secure defaults untuk request parsing, paths, headers, methods, IP controls, WAF, dan log privacy.
Rate Limits, Connection Limits, and Traffic Shaping
31 minMemahami token-bucket behavior, keys, burst, concurrency limits, distributed limitations, dan protection strategy untuk Java services.
Authentication at the Edge and Authorization Boundaries
43 minMenempatkan basic auth, auth_request, OIDC proxies, JWT, mTLS identity, dan application authorization pada boundary yang benar.
Access Logs, Error Logs, Metrics, and Trace Correlation
45 minMembangun telemetry yang dapat memisahkan client, NGINX, network, Kubernetes, dan upstream latency/failure.
Performance Engineering: Workers, Connections, Buffers, and Capacity
44 minMenghubungkan event loop, workers, file descriptors, connections, buffers, TLS, CPU, memory, disk, network, Kubernetes, dan load testing.
Containerized NGINX: Image, Config, Signals, and Hardening
44 minMengoperasikan NGINX secara aman sebagai container, termasuk config injection, signals, health, non-root, storage, dan sidecar.
Kubernetes Ingress and NGINX Controller Fundamentals
48 minMembangun model control plane/data plane Ingress, controller resources, Services, TLS Secrets, classes, scaling, dan availability.
Ingress Routing: Hosts, Paths, Protocols, Conflicts, and Canary
40 minMendalami host/path rules, pathType, regex/rewrite, backend protocols, affinity, canary, conflicts, namespace, dan troubleshooting.