# Start with Docker

## Overview

open-appsec can be deployed on Docker or similar containerized platforms integrating with NGINX, Kong, APISIX and Envoy containers to provide protection to any applications and APIs served by these reverse proxies or API Gateways. 

Container images are provided for NGINX, Kong, APISIX and Envoy which have been enhanced to also contain the open-appsec attachment. This attachment then sends traffic for inspection to the open-appsec agent container.

{% tabs %}
{% tab title="NGINX" %}

<figure><img src="https://1225393248-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FNcZmX14M2KdTBrq9EOnI%2Fuploads%2Ffwr1ftGjiyZu4xFKVRn1%2FDeploy_Nginx_Docker_Elpis.svg?alt=media&#x26;token=41200b37-611b-4ccd-a7f8-a27107d62960" alt=""><figcaption></figcaption></figure>

NGINX container with open-appsec attachment + open-appsec Agent container
{% endtab %}

{% tab title="NGINX unified" %}

<figure><img src="https://1225393248-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FNcZmX14M2KdTBrq9EOnI%2Fuploads%2FI7vTaLcwXtbXcSYTdDjO%2Fimage.png?alt=media&#x26;token=1f0df621-ceaf-4c71-bc2a-d4a7926157ab" alt=""><figcaption></figcaption></figure>

Single unified container with NGINX, open-appsec attachment and also open-appsec Agent included in same container
{% endtab %}

{% tab title="Kong" %}

<figure><img src="https://1225393248-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FNcZmX14M2KdTBrq9EOnI%2Fuploads%2F3ZCdCv323hDqQXVPdBRP%2FDeploy_Kong_Docker_Elpis.svg?alt=media&#x26;token=ff4d112e-9f64-469b-b3e1-062832cad85b" alt=""><figcaption></figcaption></figure>

Kong container with open-appsec attachment + open-appsec Agent container
{% endtab %}

{% tab title="APISIX" %}

<figure><img src="https://1225393248-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FNcZmX14M2KdTBrq9EOnI%2Fuploads%2FsQklAdLwBy8odfSPszeC%2Fimage.png?alt=media&#x26;token=778f9497-e049-41d2-8484-a0cd2f1dff2e" alt=""><figcaption></figcaption></figure>

APISIX container with open-appsec attachment + open-appsec Agent container
{% endtab %}

{% tab title="Envoy" %}

<figure><img src="https://1225393248-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FNcZmX14M2KdTBrq9EOnI%2Fuploads%2FLcMLGLFse9q3WYNN5AEp%2Fimage.png?alt=media&#x26;token=d691006a-7bce-4079-9cb4-4ec1e768603f" alt=""><figcaption></figcaption></figure>

Envoy container with open-appsec attachment filter + open-appsec Agent container
{% endtab %}
{% endtabs %}

open-appsec also supports integration with NGINX Proxy Manager and Docker SWAG, you find more details about those here: [integrations](https://docs.openappsec.io/integrations "mention").

{% tabs %}
{% tab title="NGINX Proxy Manager" %}

<figure><img src="https://1225393248-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FNcZmX14M2KdTBrq9EOnI%2Fuploads%2FgHtbSKuk5vHRDr3TFdnQ%2Fimage.png?alt=media&#x26;token=dc78534b-6945-4a1b-a0ba-0e4f9ee35d76" alt=""><figcaption></figcaption></figure>

NGINX Proxy Manager (NPM) container with open-appsec attachment and option to manage and monitor open-appsec from the NPM WebUI or from open-appsec WebUI + open-appsec Agent container
{% endtab %}

{% tab title="SWAG" %}

<figure><img src="https://1225393248-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FNcZmX14M2KdTBrq9EOnI%2Fuploads%2FFds1Dk16rLj3szvYXo9T%2Fimage.png?alt=media&#x26;token=c5fc2491-2820-402b-9536-cf7bf5eb3823" alt=""><figcaption></figcaption></figure>

SWAG (Secure Web Application Gateway) container with open-appsec attachment filter + open-appsec Agent container
{% endtab %}

{% tab title="NPMplus" %}
open-appsec support is natively available in NPMplus project.\
NPMplus is a fork of the original NGINX Proxy Manager (NPM) project adding additional functionalities and improvements.\
\
Deployment instructions for open-appsec integration: [npmplus](https://docs.openappsec.io/integrations/npmplus "mention")\
NPMplus project in Github: <https://github.com/ZoeyVid/NPMplus>
{% endtab %}
{% endtabs %}