Summary

Documentation Index

Fetch the complete documentation index at: https://notes.kodekloud.com/llms.txt

Use this file to discover all available pages before exploring further.

• Package managers
  • Use your distribution’s package manager (apt, yum, dnf, pacman, etc.) to install, upgrade, and remove software. Package managers handle dependencies and simplify maintenance compared with ad-hoc installations.
  • Compiling NGINX from source is possible and appropriate when you need custom modules or compile-time flags not available in distribution packages. For most production deployments, prefer your distribution’s prebuilt packages to reduce maintenance overhead.

• Installing NGINX
  • We demonstrated installing NGINX across Linux distributions; this module used Ubuntu for examples. Installation steps are similar across Linux families but use the package manager native to your distro.
  • Avoid running production NGINX on Windows or macOS. Most production NGINX servers run on Linux.
• Managing NGINX processes and configuration
  • On modern Linux systems using systemd, these are the most common service commands:

• Use NGINX signals and built-in checks for finer control:

# Test configuration syntax (always do this before reloading)
sudo nginx -t

# Gracefully reload (restarts worker processes without dropping connections)
sudo nginx -s reload

# Alternatively, use systemd to reload the service
sudo systemctl reload nginx

• Always run nginx -t before reloading to catch syntax errors and avoid service disruptions.
• nginx.conf structure and block contexts
  • nginx.conf is hierarchical and uses named contexts:

• Server blocks enable hosting multiple sites on one NGINX instance (name-based virtual hosts). Organize includes (e.g., /etc/nginx/sites-enabled) to keep configuration modular.
• server_name and default behavior
  • Always set server_name in each server block. If no server_name matches the Host header, NGINX uses the default server for the address:port — typically the first server block matching that listen socket (ordering can be influenced by include directives and file name order).
  • Explicit server_name entries prevent unexpected requests from being handled by the wrong server block.
• Serving static files and simple site pages
  • NGINX is optimized for serving static assets (HTML, CSS, JS, images). To verify your configuration, a simple index.html in your server root is often sufficient.
  • Example: place index.html in your configured root directory and ensure index and root directives in your server block point to it.
• Firewalls and network/port controls
  • Always enable and configure a host-level firewall (UFW, firewalld, iptables/nftables) to restrict access to only the ports and IPs you expect.
  • For public websites, open ports 80 (HTTP) and 443 (HTTPS). For private testing, whitelist your IP only.

• Don’t forget cloud-provider firewalls/security groups (GCP, Azure, AWS) — these are separate from the host firewall and must be configured to allow the same traffic.

• Test configuration changes with nginx -t before reloading to prevent downtime.
• Use systemd (systemctl) to manage the service on modern Linux distributions.
• Prefer distribution packages for production servers unless you have a clear, documented reason to compile from source.
• Keep your host firewall and cloud-provider network rules synchronized.

• NGINX Official Documentation: https://nginx.org/en/docs/
• Systemd documentation: https://www.freedesktop.org/wiki/Software/systemd/
• UFW (Uncomplicated Firewall) guide: https://help.ubuntu.com/community/UFW
• AWS Security Groups: https://docs.aws.amazon.com/vpc/latest/userguide/VPC_SecurityGroups.html