惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

C
Cisco Blogs
Cyberwarzone
Cyberwarzone
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
SecWiki News
SecWiki News
Martin Fowler
Martin Fowler
T
Tor Project blog
N
Netflix TechBlog - Medium
C
Cybersecurity and Infrastructure Security Agency CISA
V
Vulnerabilities – Threatpost
V
Visual Studio Blog
GbyAI
GbyAI
PCI Perspectives
PCI Perspectives
D
DataBreaches.Net
Jina AI
Jina AI
H
Heimdal Security Blog
云风的 BLOG
云风的 BLOG
P
Privacy International News Feed
A
About on SuperTechFans
J
Java Code Geeks
美团技术团队
H
Hackread – Cybersecurity News, Data Breaches, AI and More
N
News | PayPal Newsroom
有赞技术团队
有赞技术团队
MyScale Blog
MyScale Blog
博客园 - 司徒正美
C
Check Point Blog
T
Threat Research - Cisco Blogs
Attack and Defense Labs
Attack and Defense Labs
宝玉的分享
宝玉的分享
AI
AI
Simon Willison's Weblog
Simon Willison's Weblog
C
Cyber Attacks, Cyber Crime and Cyber Security
I
Intezer
P
Proofpoint News Feed
Blog — PlanetScale
Blog — PlanetScale
Apple Machine Learning Research
Apple Machine Learning Research
Hugging Face - Blog
Hugging Face - Blog
The Last Watchdog
The Last Watchdog
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
Vercel News
Vercel News
I
InfoQ
阮一峰的网络日志
阮一峰的网络日志
Cisco Talos Blog
Cisco Talos Blog
W
WeLiveSecurity
Hacker News: Ask HN
Hacker News: Ask HN
Recent Commits to openclaw:main
Recent Commits to openclaw:main
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
D
Docker
博客园 - Franky
Security Archives - TechRepublic
Security Archives - TechRepublic

NGINX Community Blog

External Authentication Policy in NGINX Ingress Controller: A Real World Use Case – NGINX Community Blog External Authentication Policy in NGINX Ingress Controller: Patterns for VirtualServer and Ingress – NGINX Community Blog mTLS Policies in NGINX Ingress Controller – NGINX Community Blog Optimising NGINX Ingress Controller Startup Performance – NGINX Community Blog Meet With Us: NGINX Gateway Fabric & NGINX Ingress Controller Community Calls  – NGINX Community Blog Security, Performance, and Easier Migration – NGINX Community Blog Strengthening the NGINX Community – NGINX Community Blog F5 WAF for NGINX Comes to the Gateway API – NGINX Community Blog How NGINX Ingress Controller and NGINX Gateway Fabric Handle Kubernetes Backend Changes Natively – NGINX Community Blog Cache Policy in NGINX Ingress Controller: A Practical Guide for VirtualServer – NGINX Community Blog Access Control Policy in NGINX Ingress Controller: Patterns for Ingress – NGINX Community Blog Enterprise-Grade Features and Gateway API 1.5 Conformance – NGINX Community Blog Keep-alive to upstreams is now default in NGINX 1.29.7 – NGINX Community Blog CORS Policy in NGINX Ingress Controller v5.4.0: Patterns for VirtualServer and Ingress – NGINX Community Blog A Community Hub for NGINX on Kubernetes, Including a New Ingress-NGINX Migration Tool – NGINX Community Blog
NGINX OSS 1.29.6 and 1.29.7: Open-sourced Session Persistence, Multipath TCP and More – NGINX Community Blog
Michael Vernik · 2026-03-27 · via NGINX Community Blog

NGINX 1.29.6 and 1.29.7 introduce significant updates and mark the first in a planned series to add capabilities to NGINX Open Source formerly limited to NGINX Plus. With updates to core runtime behavior and network support, these releases ensure that NGINX can continue to meet the needs of modern applications and AI workloads. 

Highlights of these releases include: 

  • Open sourced sticky cookie session persistence 
  • Upstream proxy connections now default to HTTP/1.1 and no longer require explicitly configured keep-alives and connection headers 
  • Multipath TCP (MPTCP) support 
  • Several important security-related fixes 

Together, these changes expand what operators can do with NGINX Open Source while simplifying configurations for optimizing performance to proxied services. 

Open Sourced Sticky Cookies for Session Persistence 

NGINX 1.29.6 adds support for cookie-based session persistence to open source, a capability previously only available commercially in NGINX Plus. 

Sticky cookies allow NGINX to issue a session cookie and route subsequent requests from that client to the same upstream server. Unlike IP-based affinity methods, cookie persistence avoids issues introduced by NAT, mobile networks, carrier-grade proxies, or large-scale edge routing. 

Example configuration: 

upstream backend { 
   server backend1.example.com; 
   server backend2.example.com; 
 
   sticky cookie srv_id expires=1h domain=.example.com path=/; 

Why it matters

  • Many production workloads still rely on in-memory session state 
  • Stateless design is not always immediately achievable 
  • Cookie-based persistence provides deterministic routing without requiring external session stores or application refactoring 

Who it helps

  • E-commerce platforms maintaining transactional continuity 
  • Real-time dashboards and WebSocket applications 
  • Enterprises modernizing legacy stateful services 
  • Platform teams that need controlled session affinity in Kubernetes or VM environments 

Default to HTTP/1.1 for Upstream Connections 

NGINX 1.29.7 now defaults to HTTP/1.1 when proxying to upstreams. 

HTTP/1.1 enables persistent upstream connections via keep-alives, chunked transfer encoding, and broader compatibility with modern application frameworks. Learn more about this change in our dedicated post on this topic

Why it matters

  • Operators no longer need to explicitly configure HTTP/1.1, enable keep-alives and remove connection headers when routing traffic to upstreams 
  • Backend interoperability issues are reduced 
  • Default behavior aligns with modern framework expectations 

Who it helps

  • Teams running modern frameworks that expect persistent connections 
  • Operators troubleshooting inconsistent upstream behavior 
  • Platform teams standardizing proxy behavior across environments 

Multipath TCP (MPTCP) Support 

NGINX 1.29.7 adds support for Multipath TCP (MPTCP). MPTCP allows a single TCP connection to use multiple network paths simultaneously, improving resilience and throughput in multi-homed or heterogeneous network environments. 

Why it matters

  • Applications benefit from improved reliability without modification 
  • Transport-layer resilience increases as kernel-level MPTCP support matures 
  • Infrastructure performance improves across heterogeneous networks 

Who it helps

  • Edge and mobile deployments with variable connectivity 
  • Multi-interface servers in high-availability configurations 
  • Infrastructure teams optimizing network resilience 

A Deliberate Direction 

NGINX 1.29.6 and 1.29.7 represent our continued effort to align NGINX Open Source more closely with modern application requirements. Over the next several months, we will continue to release more commercial features as open source and, while subject to change, we have made these and other plans public in our new Github roadmap

Capabilities made available in NGINX 1.29.6 and 1.29.7, along with several bug and security fixes, mean that NGINX Open Source is now even more performant and production-ready. We encourage you to upgrade to NGINX 1.29.7 to take advantage of all the new features and ensure that you’re protected by all the latest security patches. 

View all updates and fixes in GitHub:  

1.29.6 -> https://github.com/nginx/nginx/releases/tag/release-1.29.6 

1.29.7 -> https://github.com/nginx/nginx/releases/tag/release-1.29.7 

Download NGINX and view the full changelog

NGINX Community Forum