Revise best practices for F5 DoS configuration

Updated section headings and added details for F5 DoS configuration in NGINX.

Author: rnitzan

content/nap-dos/deployment-guide/best-practices.md

@@ -10,20 +10,22 @@ type:
 
 This guide shows how to modify your NGINX configuration to enable F5 DoS for NGINX (NGINX App Protect DoS). We will configure NAPDOS to protect a proxy server.
 
-## Load the F5 DoS for NGINX module
+## F5 DoS configuration
+
+### Load the F5 DoS for NGINX module
 
 ```nginx
 load_module modules/ngx_http_app_protect_dos_module.so;
 ```
 
-## Enable F5 DoS for NGINX
+### Enable F5 DoS for NGINX
 Add the directive in the appropriate context, You can set it in location, server, or http blocks:
 
 ```nginx
 app_protect_dos_enable on;
 ```
 
-## Set a Protected Object name
+#### Set a Protected Object name
 Choose a unique name. You can set it in location, server, or http blocks.
 
 ```nginx
@@ -50,7 +52,7 @@ Capacity limits
 - Up to 1,000 Protected Objects in versions 4.4 and later <br>
 
 
-## Set a Monitor directive
+### Set a Monitor directive
 The `app_protect_dos_monitor` directive monitors the stress level of a Protected Object by generating requests from localhost (127.0.0.1) that traverse your NGINX configuration like normal client traffic (through the same `server` / `location` / `proxy_pass` chain).  
 **This directive is mandatory for optimal accuracy (it may be omitted only when using HTTP/1.1, though it is still strongly recommended).**
 ```nginx