{"id":6,"date":"2026-04-20T09:32:07","date_gmt":"2026-04-20T08:32:07","guid":{"rendered":"http:\/\/ganesh.ltm.publicvm.com\/index.php\/about-me\/"},"modified":"2026-04-20T09:32:07","modified_gmt":"2026-04-20T08:32:07","slug":"about-me","status":"publish","type":"page","link":"https:\/\/ganesh.ltm.publicvm.com\/index.php\/about-me\/","title":{"rendered":"About Me"},"content":{"rendered":"<div class=\"about-section\">\n<h1>\ud83d\udc4b Hi, I am Ganesh<\/h1>\n<h3>NGINX Infrastructure &amp; Cloud Security Engineer<\/h3>\n<hr\/>\n<h2>\ud83e\uddd1\u200d\ud83d\udcbb Professional Summary<\/h2>\n<p>Experienced infrastructure engineer specializing in <strong>F5 NGINX<\/strong> products, <strong>Kubernetes (AKS)<\/strong>, and <strong>WAF security<\/strong>. Passionate about building high-performance, secure, and observable application delivery platforms using modern cloud-native technologies.<\/p>\n<hr\/>\n<h2>\ud83d\udee0\ufe0f Core Technical Skills<\/h2>\n<h3>F5 \/ NGINX Products<\/h3>\n<ul>\n<li><strong>NGINX Plus<\/strong> \u2014 R33 through R36-P3 deployment, configuration, and management<\/li>\n<li><strong>NGINX App Protect (NAP) v4 &amp; v5<\/strong> \u2014 WAF policy design, enforcement modes, attack signature management<\/li>\n<li><strong>NGINX Instance Manager (NIM) 2.x<\/strong> \u2014 Instance management, Security Monitoring dashboard, ClickHouse integration<\/li>\n<li><strong>NGINX Ingress Controller (NIC)<\/strong> \u2014 v5.3.4, v5.4.1 deployment via Helm on AKS<\/li>\n<li><strong>NGINX App Protect DoS<\/strong> \u2014 L7 DDoS protection<\/li>\n<\/ul>\n<h3>Kubernetes &amp; Cloud<\/h3>\n<ul>\n<li><strong>Azure Kubernetes Service (AKS)<\/strong> \u2014 Multi-namespace cluster management, workload deployment<\/li>\n<li><strong>Helm<\/strong> \u2014 Chart deployment, custom values, lifecycle management<\/li>\n<li><strong>kubectl<\/strong> \u2014 Advanced resource management, debugging, log analysis<\/li>\n<li><strong>Azure<\/strong> \u2014 AKS, Azure Disk (managed-csi), Azure Files, LoadBalancer services<\/li>\n<li><strong>Docker<\/strong> \u2014 Container builds, private registry, multi-container pods<\/li>\n<\/ul>\n<h3>Security &amp; WAF<\/h3>\n<ul>\n<li><strong>WAF Policy Management<\/strong> \u2014 Blocking\/transparent mode, custom signatures, bot defense<\/li>\n<li><strong>Security Event Analysis<\/strong> \u2014 SQL injection, XSS, path traversal, command injection detection<\/li>\n<li><strong>NIM Security Monitoring<\/strong> \u2014 ClickHouse event pipeline, security dashboard integration<\/li>\n<li><strong>gRPC \/ TLS<\/strong> \u2014 Mutual TLS, certificate management, nginx-agent secure communication<\/li>\n<\/ul>\n<h3>Databases &amp; Observability<\/h3>\n<ul>\n<li><strong>ClickHouse<\/strong> \u2014 Security event schema, direct HTTP inserts, query optimization<\/li>\n<li><strong>dqlite<\/strong> \u2014 Internal NIM database analysis and troubleshooting<\/li>\n<li><strong>MariaDB \/ MySQL<\/strong> \u2014 Kubernetes-native deployments with persistent storage<\/li>\n<\/ul>\n<h3>Scripting &amp; Automation<\/h3>\n<ul>\n<li><strong>Python<\/strong> \u2014 Syslog forwarders, ClickHouse integrations, log parsers<\/li>\n<li><strong>Shell \/ Bash<\/strong> \u2014 Deployment automation, pod lifecycle scripts<\/li>\n<li><strong>YAML<\/strong> \u2014 Kubernetes manifests, Helm values, ConfigMap management<\/li>\n<\/ul>\n<hr\/>\n<h2>\ud83d\ude80 Key Projects<\/h2>\n<h3>NIM Security Monitoring Integration (NGINX App Protect v5)<\/h3>\n<p>Designed and implemented a complete WAF security event pipeline for NGINX App Protect v5 on AKS. Solved a DPM license entitlement issue that blocked the native nginx-agent syslog path by building a Python-based NAP forwarder that directly tails the security log and inserts events into ClickHouse \u2014 making WAF violations visible in the NIM Security Monitoring dashboard.<\/p>\n<ul>\n<li>3-container pod architecture: nginx-plus + waf-enforcer + waf-config-mgr<\/li>\n<li>Custom Python syslog forwarder deployed via ConfigMap and startup script<\/li>\n<li>Direct ClickHouse HTTP integration for security event ingestion<\/li>\n<\/ul>\n<h3>NGINX Plus Ingress Controller Multi-Tenant AKS Setup<\/h3>\n<p>Deployed multiple NGINX Plus Ingress Controller instances (v5.3.4, v5.4.1) across dedicated namespaces in AKS with isolated IngressClasses, Azure LoadBalancer IPs, and separate license management per tenant.<\/p>\n<h3>NGINX Plus NAP v5 Kubernetes Deployment Framework<\/h3>\n<p>Built a complete Kubernetes deployment framework for NGINX Plus R36 with App Protect v5 including: initContainer-based policy compilation, shared emptyDir volumes for WAF engine communication, ConfigMap-driven configuration, and automated startup orchestration.<\/p>\n<hr\/>\n<h2>\ud83d\udcda Certifications &amp; Training<\/h2>\n<ul>\n<li>F5 NGINX Product Training<\/li>\n<li>Kubernetes Administration<\/li>\n<li>Azure Cloud Fundamentals<\/li>\n<\/ul>\n<hr\/>\n<h2>\ud83d\udcec Contact<\/h2>\n<p>Feel free to connect for NGINX, Kubernetes, or WAF security discussions.<\/p>\n<p><strong>Site:<\/strong> ganesh.ltm.publicvm.com<\/p>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>\ud83d\udc4b Hi, I am Ganesh NGINX Infrastructure &amp; Cloud Security Engineer \ud83e\uddd1\u200d\ud83d\udcbb Professional Summary Experienced infrastructure engineer specializing in F5 NGINX products, Kubernetes (AKS), and WAF security. Passionate about building high-performance, secure, and observable application delivery platforms using modern cloud-native technologies. \ud83d\udee0\ufe0f Core Technical Skills F5 \/ NGINX Products NGINX Plus \u2014 R33 through R36-P3 [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"footnotes":""},"class_list":["post-6","page","type-page","status-publish","hentry"],"_links":{"self":[{"href":"https:\/\/ganesh.ltm.publicvm.com\/index.php\/wp-json\/wp\/v2\/pages\/6","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ganesh.ltm.publicvm.com\/index.php\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/ganesh.ltm.publicvm.com\/index.php\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/ganesh.ltm.publicvm.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/ganesh.ltm.publicvm.com\/index.php\/wp-json\/wp\/v2\/comments?post=6"}],"version-history":[{"count":0,"href":"https:\/\/ganesh.ltm.publicvm.com\/index.php\/wp-json\/wp\/v2\/pages\/6\/revisions"}],"wp:attachment":[{"href":"https:\/\/ganesh.ltm.publicvm.com\/index.php\/wp-json\/wp\/v2\/media?parent=6"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}