CrowdSec WAF / AppSec Component Benchmark
The Application Security Component benchmarks have been run on a AWS EC2 Instance t2.medium
(2vCPU/4Go RAM).
All the benchmarks have been run with only one routine
configured for the Application Security Component.
The benchmarks cover the following tests:
- Basic GET request:
- 5 concurrent connections / 1000 requests
- 15 concurrent connections / 1000 requests
Each test has been run with multiple cases:
- Application Security Component enabled but without any rules
- Application Security Component enabled with 100 vpatch rules (in in-band)
- Application Security Component enabled with all the CRS (in in-band)
On the system, we deployed:
- Openresty
1.21.4.3
- CrowdSec
v1.6.0
- cs-openresty-bouncer
v1.0.1